Ecosyste.ms: Issues
An open API service for providing issue and pull request metadata for open source projects.
GitHub / nodejs/nodejs-dependency-vuln-assessments issues and pull requests
#201 - Inquiry: Will the OpenSSL security vulnerability CVE-2024-13176 affect Node.js?
Issue -
State: open - Opened by once0702 5 days ago
- 1 comment
#200 - CVE-2024-21538 in latest Node v18
Issue -
State: closed - Opened by KuSh 7 days ago
- 1 comment
Labels: dont-believe-affects-nodejs, v18.x, dont-fall-in-threat-model
#199 - chore(deps): bump the github-actions group with 2 updates
Pull Request -
State: closed - Opened by dependabot[bot] 22 days ago
Labels: dependencies
#198 - GitHub Actions up to date with GitHub's Dependabot
Pull Request -
State: closed - Opened by cclauss 22 days ago
#197 - Upgrade GitHub Actions
Pull Request -
State: closed - Opened by cclauss 22 days ago
#196 - shipped npm versions do contain a security vulnerability in lts versions
Issue -
State: closed - Opened by robertkowalski about 1 month ago
- 4 comments
#195 - cve-2023-45853: zlib version in node dependency showing up in scans
Issue -
State: open - Opened by reidsm about 2 months ago
- 4 comments
Labels: dont-believe-affects-nodejs
#194 - My issue follows the guidelines in the README file, and follows the 'How to ask a good question' guide at https://stackoverflow.com/help/how-to-ask
Issue -
State: closed - Opened by mhdawson 2 months ago
- 1 comment
#193 - Upgrade nodejs to latest npm version 10.9.1
Issue -
State: open - Opened by contactsmrajesh 2 months ago
- 9 comments
Labels: dont-believe-affects-nodejs, dont-fall-in-threat-model
#192 - Plan to port the fixes to the openssl versions (CVE-2024-6119) in use for nodejs.
Issue -
State: closed - Opened by qinpeilin 5 months ago
- 6 comments
#191 - Whether V8: CVE-2024-4761, CVE-2024-4947 and/or CVE-2024-5274 has impact on the use of nodejs
Issue -
State: open - Opened by dellagustin-sap 6 months ago
- 8 comments
Labels: dont-fall-in-threat-model
#190 - Whether V8: CVE-2024-7535 has impact on the use of nodejs ?
Issue -
State: open - Opened by qinpeilin 6 months ago
- 1 comment
Labels: dont-fall-in-threat-model
#189 - libuv CVE-2024-24806 in Node 20.15
Issue -
State: closed - Opened by glansbur 7 months ago
- 5 comments
Labels: fix in last security releases
#188 - node/deps/uv/docs/requirements.txt [email protected] is vulnerable to CVE-2023-37920
Issue -
State: closed - Opened by tahabiyikli 7 months ago
- 1 comment
Labels: dont-believe-affects-nodejs
#187 - chore: update version of nvdlib
Pull Request -
State: closed - Opened by mhdawson 7 months ago
#186 - fix: add v22.x to supported branches
Pull Request -
State: closed - Opened by richardlau 10 months ago
#185 - Tooling failing for 22.x
Issue -
State: closed - Opened by mhdawson 10 months ago
- 2 comments
#184 - Whether V8: CVE-2024-3159 and V8: CVE-2024-3156 have impact on the use of nodejs ?
Issue -
State: open - Opened by yansf 10 months ago
- 5 comments
Labels: dont-believe-affects-nodejs
#183 - Is CVE-2024-2625 true positive in node.js 21.6.2?
Issue -
State: closed - Opened by zjhua2002 10 months ago
- 7 comments
Labels: dont-believe-affects-nodejs
#182 - CVE-2023-45853 (zlib) found on v20.x
Issue -
State: closed - Opened by github-actions[bot] 11 months ago
- 1 comment
Labels: v20.x
#181 - CVE-2023-45853 (zlib) found on v18.x
Issue -
State: closed - Opened by github-actions[bot] 11 months ago
- 1 comment
Labels: v18.x
#180 - Change when we run checks
Pull Request -
State: closed - Opened by mhdawson 11 months ago
#179 - Only check for open issues, when looking for existing issue
Pull Request -
State: closed - Opened by mhdawson 11 months ago
#178 - CVE-2024-0727 (OpenSSL) found on v21.x
Issue -
State: closed - Opened by github-actions[bot] about 1 year ago
Labels: v21.x
#177 - CVE-2024-0727 (OpenSSL) found on v20.x
Issue -
State: closed - Opened by github-actions[bot] about 1 year ago
Labels: v20.x
#176 - CVE-2024-0727 (OpenSSL) found on v18.x
Issue -
State: closed - Opened by github-actions[bot] about 1 year ago
Labels: v18.x
#175 - CVE-2023-6129 (OpenSSL) found on main
Issue -
State: closed - Opened by github-actions[bot] about 1 year ago
Labels: main, waiting on OpenSSL release which fixes
#174 - CVE-2023-6129 (OpenSSL) found on v21.x
Issue -
State: closed - Opened by github-actions[bot] about 1 year ago
Labels: waiting on OpenSSL release which fixes, v21.x
#173 - CVE-2023-6129 (OpenSSL) found on v20.x
Issue -
State: closed - Opened by github-actions[bot] about 1 year ago
Labels: v20.x, waiting on OpenSSL release which fixes
#172 - CVE-2023-6129 (OpenSSL) found on v18.x
Issue -
State: closed - Opened by github-actions[bot] about 1 year ago
Labels: v18.x, waiting on OpenSSL release which fixes
#171 - fix: fix parsing for newer versions of brotli
Pull Request -
State: closed - Opened by richardlau about 1 year ago
- 1 comment
#170 - CVE-2023-5678 (OpenSSL) found on main
Issue -
State: closed - Opened by github-actions[bot] about 1 year ago
- 1 comment
Labels: main, waiting on OpenSSL release which fixes
#169 - CVE-2023-5678 (OpenSSL) found on v21.x
Issue -
State: closed - Opened by github-actions[bot] about 1 year ago
Labels: waiting on OpenSSL release which fixes, v21.x
#168 - CVE-2023-5678 (OpenSSL) found on v20.x
Issue -
State: closed - Opened by github-actions[bot] about 1 year ago
Labels: v20.x, waiting on OpenSSL release which fixes
#168 - CVE-2023-5678 (OpenSSL) found on v20.x
Issue -
State: closed - Opened by github-actions[bot] about 1 year ago
Labels: v20.x, waiting on OpenSSL release which fixes
#167 - CVE-2023-5678 (OpenSSL) found on v18.x
Issue -
State: closed - Opened by github-actions[bot] about 1 year ago
Labels: v18.x, waiting on OpenSSL release which fixes
#167 - CVE-2023-5678 (OpenSSL) found on v18.x
Issue -
State: closed - Opened by github-actions[bot] about 1 year ago
Labels: v18.x, waiting on OpenSSL release which fixes
#166 - CVE-2023-5363 (OpenSSL) found on v21.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
- 1 comment
Labels: dont-believe-affects-nodejs, v21.x
#165 - CVE-2023-5363 (OpenSSL) found on v20.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
- 1 comment
Labels: dont-believe-affects-nodejs, v20.x
#165 - CVE-2023-5363 (OpenSSL) found on v20.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
- 1 comment
Labels: dont-believe-affects-nodejs, v20.x
#164 - CVE-2023-5363 (OpenSSL) found on v18.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
- 1 comment
Labels: dont-believe-affects-nodejs, v18.x
#163 - CVE-2023-4807 (OpenSSL) found on v21.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
- 2 comments
Labels: v21.x, low-severity-will-ship-in-next-regular-release
#162 - CVE-2023-45853 (zlib) found on v21.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
- 1 comment
Labels: dont-believe-affects-nodejs, v21.x
#161 - CVE-2023-45853 (zlib) found on main
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
- 4 comments
Labels: dont-believe-affects-nodejs, main
#161 - CVE-2023-45853 (zlib) found on main
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
- 4 comments
Labels: dont-believe-affects-nodejs, main
#160 - CVE-2023-45853 (zlib) found on v20.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
- 3 comments
Labels: dont-believe-affects-nodejs, v20.x
#159 - CVE-2023-45853 (zlib) found on v18.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
- 3 comments
Labels: dont-believe-affects-nodejs, v18.x
#158 - feat: bump branches covered, add ada and simdutf support
Pull Request -
State: closed - Opened by RafaelGSS over 1 year ago
#158 - feat: bump branches covered, add ada and simdutf support
Pull Request -
State: closed - Opened by RafaelGSS over 1 year ago
#157 - CVE-2023-4807 (OpenSSL) found on main
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: main, low-severity-will-ship-in-next-regular-release
#157 - CVE-2023-4807 (OpenSSL) found on main
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: main, low-severity-will-ship-in-next-regular-release
#156 - CVE-2023-4807 (OpenSSL) found on v20.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: v20.x, low-severity-will-ship-in-next-regular-release
#155 - CVE-2023-4807 (OpenSSL) found on v18.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: v18.x, low-severity-will-ship-in-next-regular-release
#155 - CVE-2023-4807 (OpenSSL) found on v18.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: v18.x, low-severity-will-ship-in-next-regular-release
#154 - Check for vulnerabilities daily workflow was automatically disabled
Issue -
State: closed - Opened by richardlau over 1 year ago
#153 - Node LTS' NPM CLI vulnerable with CVE-2022-25883
Issue -
State: closed - Opened by sean-redmond over 1 year ago
- 2 comments
#153 - Node LTS' NPM CLI vulnerable with CVE-2022-25883
Issue -
State: closed - Opened by sean-redmond over 1 year ago
- 2 comments
#152 - Check for V8 vulnerabilities?
Issue -
State: open - Opened by richardlau over 1 year ago
- 2 comments
#152 - Check for V8 vulnerabilities?
Issue -
State: open - Opened by richardlau over 1 year ago
- 2 comments
#151 - Does BDSA-2023-1613 (CVE-2023-3420) impacts Node?
Issue -
State: closed - Opened by ambercool99 over 1 year ago
- 21 comments
Labels: question
#150 - CVE-2023-3817 (OpenSSL) found on main
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: main, fix in last security releases
#150 - CVE-2023-3817 (OpenSSL) found on main
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: main, fix in last security releases
#149 - CVE-2023-3817 (OpenSSL) found on v20.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: v20.x, fix in last security releases
#148 - CVE-2023-3817 (OpenSSL) found on v18.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: v18.x, fix in last security releases
#148 - CVE-2023-3817 (OpenSSL) found on v18.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: v18.x, fix in last security releases
#147 - CVE-2023-3817 (OpenSSL) found on v16.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: v16.x, fix in last security releases
#146 - CVE-2023-2975 (OpenSSL) found on main
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: main, fix in last security releases
#145 - CVE-2023-2975 (OpenSSL) found on v20.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: v20.x, fix in last security releases
#144 - CVE-2023-2975 (OpenSSL) found on v18.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: v18.x, fix in last security releases
#144 - CVE-2023-2975 (OpenSSL) found on v18.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: v18.x, fix in last security releases
#143 - GHSA-cggh-pq45-6h9x (llhttp) found on v18.x
Issue -
State: open - Opened by github-actions[bot] over 1 year ago
- 7 comments
Labels: dont-believe-affects-nodejs, v18.x
#142 - GHSA-cggh-pq45-6h9x (llhttp) found on v16.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
- 6 comments
Labels: v16.x
#142 - GHSA-cggh-pq45-6h9x (llhttp) found on v16.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
- 6 comments
Labels: v16.x
#141 - Failures with nvd database check
Issue -
State: closed - Opened by mhdawson over 1 year ago
- 2 comments
#140 - fix: update version of nvdlib
Pull Request -
State: closed - Opened by mhdawson over 1 year ago
#139 - CVE-2023-2650 (OpenSSL) found on main
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: main, confirmed
#138 - CVE-2023-2650 (OpenSSL) found on v20.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: v20.x, confirmed
#138 - CVE-2023-2650 (OpenSSL) found on v20.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: v20.x, confirmed
#137 - CVE-2023-2650 (OpenSSL) found on v18.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: v18.x, confirmed
#136 - CVE-2023-2650 (OpenSSL) found on v16.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: v16.x, confirmed
#135 - CVE-2023-31147 (c-ares) found on v20.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: v20.x, confirmed
#135 - CVE-2023-31147 (c-ares) found on v20.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: v20.x, confirmed
#134 - CVE-2023-31130 (c-ares) found on v20.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: v20.x, confirmed
#134 - CVE-2023-31130 (c-ares) found on v20.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: v20.x, confirmed
#133 - CVE-2023-31124 (c-ares) found on v20.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: v20.x, confirmed
#132 - CVE-2023-31124 (c-ares) found on v20.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: v20.x, confirmed
#131 - CVE-2023-31147 (c-ares) found on v18.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: v18.x, confirmed
#130 - CVE-2023-31130 (c-ares) found on v18.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: v18.x, confirmed
#129 - CVE-2023-31124 (c-ares) found on v18.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: v18.x, confirmed
#128 - CVE-2023-31147 (c-ares) found on v16.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: v16.x, confirmed
#128 - CVE-2023-31147 (c-ares) found on v16.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: v16.x, confirmed
#127 - CVE-2023-31130 (c-ares) found on v16.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: v16.x, confirmed
#127 - CVE-2023-31130 (c-ares) found on v16.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: v16.x, confirmed
#126 - CVE-2023-31124 (c-ares) found on v16.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: v16.x, confirmed
#125 - CVE-2023-32067 (c-ares) found on v20.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: v20.x, confirmed
#124 - CVE-2023-32067 (c-ares) found on v18.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: v18.x, confirmed
#124 - CVE-2023-32067 (c-ares) found on v18.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: v18.x, confirmed
#123 - CVE-2023-32067 (c-ares) found on v16.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: v16.x, confirmed
#123 - CVE-2023-32067 (c-ares) found on v16.x
Issue -
State: closed - Opened by github-actions[bot] over 1 year ago
Labels: v16.x, confirmed
#122 - CVE-2023-1255 (OpenSSL) found on main
Issue -
State: closed - Opened by github-actions[bot] almost 2 years ago
- 1 comment
Labels: main, confirmed