Skip to content
This repository was archived by the owner on Dec 14, 2023. It is now read-only.

Commit 583cbba

Browse files
WardormeurWardormeur
committed
Security update for node-pg [CVE-2017-16082]
1 parent df0a8e7 commit 583cbba

File tree

2 files changed

+29
-1
lines changed

2 files changed

+29
-1
lines changed

package.json

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -44,7 +44,7 @@
4444
"newrelic": "^2.6.0",
4545
"node-uuid": "1.4.3",
4646
"optimist": "0.6.1",
47-
"pg": "5.1.0",
47+
"pg": "5.2.1",
4848
"pg-large-object": "0.0.1",
4949
"po2json": "0.4.2",
5050
"postgrator": "2.8.1",

yarn.lock

Lines changed: 28 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -2076,6 +2076,10 @@ [email protected]:
20762076
version "2.4.2"
20772077
resolved "https://registry.yarnpkg.com/generic-pool/-/generic-pool-2.4.2.tgz#886bc5bf0beb7db96e81bcbba078818de5a62683"
20782078

2079+
[email protected]:
2080+
version "2.4.3"
2081+
resolved "https://registry.yarnpkg.com/generic-pool/-/generic-pool-2.4.3.tgz#780c36f69dfad05a5a045dd37be7adca11a4f6ff"
2082+
20792083
generic-pool@^2.2.0:
20802084
version "2.5.4"
20812085
resolved "https://registry.yarnpkg.com/generic-pool/-/generic-pool-2.5.4.tgz#38c6188513e14030948ec6e5cf65523d9779299b"
@@ -3637,6 +3641,10 @@ oauth-sign@~0.8.0, oauth-sign@~0.8.1, oauth-sign@~0.8.2:
36373641
version "0.8.2"
36383642
resolved "https://registry.yarnpkg.com/oauth-sign/-/oauth-sign-0.8.2.tgz#46a6ab7f0aead8deae9ec0565780b7d4efeb9d43"
36393643

3644+
[email protected]:
3645+
version "4.1.0"
3646+
resolved "https://registry.yarnpkg.com/object-assign/-/object-assign-4.1.0.tgz#7a3b3d0e98063d43f4c03f2e8ae6cd51a86883a0"
3647+
36403648
object-assign@^2.0.0:
36413649
version "2.1.1"
36423650
resolved "https://registry.yarnpkg.com/object-assign/-/object-assign-2.1.1.tgz#43c36e5d569ff8e4816c4efa8be02d26967c18aa"
@@ -3870,6 +3878,13 @@ [email protected]:
38703878
version "0.0.1"
38713879
resolved "https://registry.yarnpkg.com/pg-large-object/-/pg-large-object-0.0.1.tgz#f38ff31a12b294151e06d7e7f3dcab6609645f3d"
38723880

3881+
pg-pool@1.*:
3882+
version "1.8.0"
3883+
resolved "https://registry.yarnpkg.com/pg-pool/-/pg-pool-1.8.0.tgz#f7ec73824c37a03f076f51bfdf70e340147c4f37"
3884+
dependencies:
3885+
generic-pool "2.4.3"
3886+
object-assign "4.1.0"
3887+
38733888
pg-types@1.*:
38743889
version "1.13.0"
38753890
resolved "https://registry.yarnpkg.com/pg-types/-/pg-types-1.13.0.tgz#75f490b8a8abf75f1386ef5ec4455ecf6b345c63"
@@ -3892,6 +3907,19 @@ [email protected]:
38923907
pgpass "0.0.6"
38933908
semver "4.3.2"
38943909

3910+
[email protected]:
3911+
version "5.2.1"
3912+
resolved "https://registry.yarnpkg.com/pg/-/pg-5.2.1.tgz#d43d0b2e53908ed61aa60928a38f6d791a2a66b3"
3913+
dependencies:
3914+
buffer-writer "1.0.1"
3915+
js-string-escape "1.0.1"
3916+
packet-reader "0.2.0"
3917+
pg-connection-string "0.1.3"
3918+
pg-pool "1.*"
3919+
pg-types "1.*"
3920+
pgpass "0.0.6"
3921+
semver "4.3.2"
3922+
38953923
pg@^4.5.5:
38963924
version "4.5.7"
38973925
resolved "https://registry.yarnpkg.com/pg/-/pg-4.5.7.tgz#45ae16b23706a6345a03279decc6af795c16d29b"

0 commit comments

Comments
 (0)