CVE-2021-39134
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2021-39134
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-39134.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2021-39134
- Aliases
- Related
- Published
- 2021-08-31T17:15:08Z
- Modified
- 2024-09-18T03:16:15.150225Z
- Severity
-
- 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
@npmcli/arborist, the library that calculates dependency trees and manages thenode_modulesfolder hierarchy for the npm command line interface, aims to guarantee that package dependency contracts will be met, and the extraction of package contents will always be performed into the expected folder. This is, in part, accomplished by resolving dependency specifiers defined inpackage.jsonmanifests for dependencies with a specific name, and nesting folders to resolve conflicting dependencies. When multiple dependencies differ only in the case of their name, Arborist's internal data structure saw them as separate items that could coexist within the same level in thenode_moduleshierarchy. However, on case-insensitive file systems (such as macOS and Windows), this is not the case. Combined with a symlink dependency such asfile:/some/path, this allowed an attacker to create a situation in which arbitrary contents could be written to any location on the filesystem. For example, a packagepwn-acould define a dependency in theirpackage.jsonfile such as"foo": "file:/some/path". Another package,pwn-bcould define a dependency such asFOO: "file:foo.tgz". On case-insensitive file systems, ifpwn-awas installed, and thenpwn-bwas installed afterwards, the contents offoo.tgzwould be written to/some/path, and any existing contents of/some/pathwould be removed. Anyone using npm v7.20.6 or earlier on a case-insensitive filesystem is potentially affected. This is patched in @npmcli/arborist 2.8.2 which is included in npm v7.20.7 and above. - References
-
- https://github.com/npm/arborist/security/advisories/GHSA-2h3h-q99f-3fhc
- https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf
- https://www.oracle.com/security-alerts/cpuoct2021.html
- https://www.npmjs.com/package/%40npmcli/arborist
- https://security.alpinelinux.org/vuln/CVE-2021-39134
- https://security-tracker.debian.org/tracker/CVE-2021-39134
Affected packages
Alpine:v3.11 / nodejs
Package
- Name
- nodejs
- Purl
- pkg:apk/alpine/nodejs?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed12.22.6-r0
Affected versions
4.*
4.4.3-r0
4.4.4-r0
4.4.5-r0
4.4.7-r0
4.5.0-r0
6.*
6.9.1-r0
6.9.1-r1
6.9.2-r0
6.9.4-r0
6.9.4-r1
6.9.5-r0
6.9.5-r1
6.10.0-r0
6.10.1-r0
6.10.3-r0
6.11.0-r0
6.11.1-r0
6.11.1-r1
6.11.1-r2
6.11.2-r0
6.11.3-r0
6.11.4-r0
6.11.5-r0
8.*
8.9.0-r0
8.9.1-r0
8.9.2-r0
8.9.3-r0
8.9.3-r1
8.9.4-r0
8.10.0-r0
8.11.0-r0
8.11.0-r1
8.11.1-r0
8.11.1-r1
8.11.1-r2
8.11.2-r0
8.11.3-r0
8.11.3-r1
8.11.3-r2
8.11.3-r3
8.11.4-r0
8.12.0-r0
10.*
10.13.0-r0
10.14.0-r0
10.14.1-r0
10.14.2-r0
10.15.1-r0
10.15.3-r0
10.16.0-r0
10.16.1-r0
10.16.2-r0
10.16.3-r0
12.*
12.13.0-r0
12.13.0-r1
12.13.1-r0
12.14.0-r0
12.15.0-r0
12.15.0-r1
12.20.1-r0
12.21.0-r0
12.22.1-r0
12.22.2-r0
12.22.4-r0
12.22.5-r0
Alpine:v3.12 / nodejs
Package
- Name
- nodejs
- Purl
- pkg:apk/alpine/nodejs?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed12.22.6-r0
Affected versions
4.*
4.4.3-r0
4.4.4-r0
4.4.5-r0
4.4.7-r0
4.5.0-r0
6.*
6.9.1-r0
6.9.1-r1
6.9.2-r0
6.9.4-r0
6.9.4-r1
6.9.5-r0
6.9.5-r1
6.10.0-r0
6.10.1-r0
6.10.3-r0
6.11.0-r0
6.11.1-r0
6.11.1-r1
6.11.1-r2
6.11.2-r0
6.11.3-r0
6.11.4-r0
6.11.5-r0
8.*
8.9.0-r0
8.9.1-r0
8.9.2-r0
8.9.3-r0
8.9.3-r1
8.9.4-r0
8.10.0-r0
8.11.0-r0
8.11.0-r1
8.11.1-r0
8.11.1-r1
8.11.1-r2
8.11.2-r0
8.11.3-r0
8.11.3-r1
8.11.3-r2
8.11.3-r3
8.11.4-r0
8.12.0-r0
10.*
10.13.0-r0
10.14.0-r0
10.14.1-r0
10.14.2-r0
10.15.1-r0
10.15.3-r0
10.16.0-r0
10.16.1-r0
10.16.2-r0
10.16.3-r0
12.*
12.13.0-r0
12.13.0-r1
12.13.1-r0
12.14.0-r0
12.14.1-r0
12.15.0-r0
12.15.0-r1
12.15.0-r2
12.16.2-r0
12.16.3-r0
12.16.3-r1
12.17.0-r0
12.18.3-r0
12.18.4-r0
12.19.0-r0
12.20.1-r0
12.21.0-r0
12.22.1-r0
12.22.2-r0
12.22.4-r0
12.22.5-r0
Alpine:v3.13 / nodejs
Package
- Name
- nodejs
- Purl
- pkg:apk/alpine/nodejs?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed14.17.6-r0
Affected versions
4.*
4.4.3-r0
4.4.4-r0
4.4.5-r0
4.4.7-r0
4.5.0-r0
6.*
6.9.1-r0
6.9.1-r1
6.9.2-r0
6.9.4-r0
6.9.4-r1
6.9.5-r0
6.9.5-r1
6.10.0-r0
6.10.1-r0
6.10.3-r0
6.11.0-r0
6.11.1-r0
6.11.1-r1
6.11.1-r2
6.11.2-r0
6.11.3-r0
6.11.4-r0
6.11.5-r0
8.*
8.9.0-r0
8.9.1-r0
8.9.2-r0
8.9.3-r0
8.9.3-r1
8.9.4-r0
8.10.0-r0
8.11.0-r0
8.11.0-r1
8.11.1-r0
8.11.1-r1
8.11.1-r2
8.11.2-r0
8.11.3-r0
8.11.3-r1
8.11.3-r2
8.11.3-r3
8.11.4-r0
8.12.0-r0
10.*
10.13.0-r0
10.14.0-r0
10.14.1-r0
10.14.2-r0
10.15.1-r0
10.15.3-r0
10.16.0-r0
10.16.1-r0
10.16.2-r0
10.16.3-r0
12.*
12.13.0-r0
12.13.0-r1
12.13.1-r0
12.14.0-r0
12.14.1-r0
12.15.0-r0
12.15.0-r1
12.15.0-r2
12.16.2-r0
12.16.3-r0
12.16.3-r1
12.17.0-r0
12.18.0-r0
12.18.0-r1
12.18.0-r2
12.18.2-r0
12.18.3-r0
12.18.4-r0
12.19.0-r0
14.*
14.15.1-r0
14.15.3-r0
14.15.3-r1
14.15.3-r2
14.15.4-r0
14.15.5-r0
14.16.0-r0
14.16.1-r0
14.16.1-r1
14.17.3-r0
14.17.4-r0
14.17.5-r0
Alpine:v3.14 / nodejs
Package
- Name
- nodejs
- Purl
- pkg:apk/alpine/nodejs?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed14.17.6-r0
Affected versions
4.*
4.4.3-r0
4.4.4-r0
4.4.5-r0
4.4.7-r0
4.5.0-r0
6.*
6.9.1-r0
6.9.1-r1
6.9.2-r0
6.9.4-r0
6.9.4-r1
6.9.5-r0
6.9.5-r1
6.10.0-r0
6.10.1-r0
6.10.3-r0
6.11.0-r0
6.11.1-r0
6.11.1-r1
6.11.1-r2
6.11.2-r0
6.11.3-r0
6.11.4-r0
6.11.5-r0
8.*
8.9.0-r0
8.9.1-r0
8.9.2-r0
8.9.3-r0
8.9.3-r1
8.9.4-r0
8.10.0-r0
8.11.0-r0
8.11.0-r1
8.11.1-r0
8.11.1-r1
8.11.1-r2
8.11.2-r0
8.11.3-r0
8.11.3-r1
8.11.3-r2
8.11.3-r3
8.11.4-r0
8.12.0-r0
10.*
10.13.0-r0
10.14.0-r0
10.14.1-r0
10.14.2-r0
10.15.1-r0
10.15.3-r0
10.16.0-r0
10.16.1-r0
10.16.2-r0
10.16.3-r0
12.*
12.13.0-r0
12.13.0-r1
12.13.1-r0
12.14.0-r0
12.14.1-r0
12.15.0-r0
12.15.0-r1
12.15.0-r2
12.16.2-r0
12.16.3-r0
12.16.3-r1
12.17.0-r0
12.18.0-r0
12.18.0-r1
12.18.0-r2
12.18.2-r0
12.18.3-r0
12.18.4-r0
12.19.0-r0
14.*
14.15.1-r0
14.15.3-r0
14.15.3-r1
14.15.3-r2
14.15.4-r0
14.15.5-r0
14.16.0-r0
14.16.0-r1
14.16.1-r0
14.16.1-r1
14.16.1-r2
14.17.0-r0
14.17.1-r0
14.17.3-r0
14.17.4-r0
14.17.5-r0
Alpine:v3.15 / nodejs
Package
- Name
- nodejs
- Purl
- pkg:apk/alpine/nodejs?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed14.17.6-r0
Affected versions
4.*
4.4.3-r0
4.4.4-r0
4.4.5-r0
4.4.7-r0
4.5.0-r0
6.*
6.9.1-r0
6.9.1-r1
6.9.2-r0
6.9.4-r0
6.9.4-r1
6.9.5-r0
6.9.5-r1
6.10.0-r0
6.10.1-r0
6.10.3-r0
6.11.0-r0
6.11.1-r0
6.11.1-r1
6.11.1-r2
6.11.2-r0
6.11.3-r0
6.11.4-r0
6.11.5-r0
8.*
8.9.0-r0
8.9.1-r0
8.9.2-r0
8.9.3-r0
8.9.3-r1
8.9.4-r0
8.10.0-r0
8.11.0-r0
8.11.0-r1
8.11.1-r0
8.11.1-r1
8.11.1-r2
8.11.2-r0
8.11.3-r0
8.11.3-r1
8.11.3-r2
8.11.3-r3
8.11.4-r0
8.12.0-r0
10.*
10.13.0-r0
10.14.0-r0
10.14.1-r0
10.14.2-r0
10.15.1-r0
10.15.3-r0
10.16.0-r0
10.16.1-r0
10.16.2-r0
10.16.3-r0
12.*
12.13.0-r0
12.13.0-r1
12.13.1-r0
12.14.0-r0
12.14.1-r0
12.15.0-r0
12.15.0-r1
12.15.0-r2
12.16.2-r0
12.16.3-r0
12.16.3-r1
12.17.0-r0
12.18.0-r0
12.18.0-r1
12.18.0-r2
12.18.2-r0
12.18.3-r0
12.18.4-r0
12.19.0-r0
14.*
14.15.1-r0
14.15.3-r0
14.15.3-r1
14.15.3-r2
14.15.4-r0
14.15.5-r0
14.16.0-r0
14.16.0-r1
14.16.1-r0
14.16.1-r1
14.16.1-r2
14.17.0-r0
14.17.1-r0
14.17.2-r0
14.17.3-r0
14.17.4-r0
14.17.5-r0
Alpine:v3.16 / nodejs
Package
- Name
- nodejs
- Purl
- pkg:apk/alpine/nodejs?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed14.17.6-r0
Affected versions
4.*
4.4.3-r0
4.4.4-r0
4.4.5-r0
4.4.7-r0
4.5.0-r0
6.*
6.9.1-r0
6.9.1-r1
6.9.2-r0
6.9.4-r0
6.9.4-r1
6.9.5-r0
6.9.5-r1
6.10.0-r0
6.10.1-r0
6.10.3-r0
6.11.0-r0
6.11.1-r0
6.11.1-r1
6.11.1-r2
6.11.2-r0
6.11.3-r0
6.11.4-r0
6.11.5-r0
8.*
8.9.0-r0
8.9.1-r0
8.9.2-r0
8.9.3-r0
8.9.3-r1
8.9.4-r0
8.10.0-r0
8.11.0-r0
8.11.0-r1
8.11.1-r0
8.11.1-r1
8.11.1-r2
8.11.2-r0
8.11.3-r0
8.11.3-r1
8.11.3-r2
8.11.3-r3
8.11.4-r0
8.12.0-r0
10.*
10.13.0-r0
10.14.0-r0
10.14.1-r0
10.14.2-r0
10.15.1-r0
10.15.3-r0
10.16.0-r0
10.16.1-r0
10.16.2-r0
10.16.3-r0
12.*
12.13.0-r0
12.13.0-r1
12.13.1-r0
12.14.0-r0
12.14.1-r0
12.15.0-r0
12.15.0-r1
12.15.0-r2
12.16.2-r0
12.16.3-r0
12.16.3-r1
12.17.0-r0
12.18.0-r0
12.18.0-r1
12.18.0-r2
12.18.2-r0
12.18.3-r0
12.18.4-r0
12.19.0-r0
14.*
14.15.1-r0
14.15.3-r0
14.15.3-r1
14.15.3-r2
14.15.4-r0
14.15.5-r0
14.16.0-r0
14.16.0-r1
14.16.1-r0
14.16.1-r1
14.16.1-r2
14.17.0-r0
14.17.1-r0
14.17.2-r0
14.17.3-r0
14.17.4-r0
14.17.5-r0
Alpine:v3.17 / nodejs
Package
- Name
- nodejs
- Purl
- pkg:apk/alpine/nodejs?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed14.17.6-r0
Affected versions
4.*
4.4.3-r0
4.4.4-r0
4.4.5-r0
4.4.7-r0
4.5.0-r0
6.*
6.9.1-r0
6.9.1-r1
6.9.2-r0
6.9.4-r0
6.9.4-r1
6.9.5-r0
6.9.5-r1
6.10.0-r0
6.10.1-r0
6.10.3-r0
6.11.0-r0
6.11.1-r0
6.11.1-r1
6.11.1-r2
6.11.2-r0
6.11.3-r0
6.11.4-r0
6.11.5-r0
8.*
8.9.0-r0
8.9.1-r0
8.9.2-r0
8.9.3-r0
8.9.3-r1
8.9.4-r0
8.10.0-r0
8.11.0-r0
8.11.0-r1
8.11.1-r0
8.11.1-r1
8.11.1-r2
8.11.2-r0
8.11.3-r0
8.11.3-r1
8.11.3-r2
8.11.3-r3
8.11.4-r0
8.12.0-r0
10.*
10.13.0-r0
10.14.0-r0
10.14.1-r0
10.14.2-r0
10.15.1-r0
10.15.3-r0
10.16.0-r0
10.16.1-r0
10.16.2-r0
10.16.3-r0
12.*
12.13.0-r0
12.13.0-r1
12.13.1-r0
12.14.0-r0
12.14.1-r0
12.15.0-r0
12.15.0-r1
12.15.0-r2
12.16.2-r0
12.16.3-r0
12.16.3-r1
12.17.0-r0
12.18.0-r0
12.18.0-r1
12.18.0-r2
12.18.2-r0
12.18.3-r0
12.18.4-r0
12.19.0-r0
14.*
14.15.1-r0
14.15.3-r0
14.15.3-r1
14.15.3-r2
14.15.4-r0
14.15.5-r0
14.16.0-r0
14.16.0-r1
14.16.1-r0
14.16.1-r1
14.16.1-r2
14.17.0-r0
14.17.1-r0
14.17.2-r0
14.17.3-r0
14.17.4-r0
14.17.5-r0
Alpine:v3.18 / nodejs
Package
- Name
- nodejs
- Purl
- pkg:apk/alpine/nodejs?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed14.17.6-r0
Affected versions
4.*
4.4.3-r0
4.4.4-r0
4.4.5-r0
4.4.7-r0
4.5.0-r0
6.*
6.9.1-r0
6.9.1-r1
6.9.2-r0
6.9.4-r0
6.9.4-r1
6.9.5-r0
6.9.5-r1
6.10.0-r0
6.10.1-r0
6.10.3-r0
6.11.0-r0
6.11.1-r0
6.11.1-r1
6.11.1-r2
6.11.2-r0
6.11.3-r0
6.11.4-r0
6.11.5-r0
8.*
8.9.0-r0
8.9.1-r0
8.9.2-r0
8.9.3-r0
8.9.3-r1
8.9.4-r0
8.10.0-r0
8.11.0-r0
8.11.0-r1
8.11.1-r0
8.11.1-r1
8.11.1-r2
8.11.2-r0
8.11.3-r0
8.11.3-r1
8.11.3-r2
8.11.3-r3
8.11.4-r0
8.12.0-r0
10.*
10.13.0-r0
10.14.0-r0
10.14.1-r0
10.14.2-r0
10.15.1-r0
10.15.3-r0
10.16.0-r0
10.16.1-r0
10.16.2-r0
10.16.3-r0
12.*
12.13.0-r0
12.13.0-r1
12.13.1-r0
12.14.0-r0
12.14.1-r0
12.15.0-r0
12.15.0-r1
12.15.0-r2
12.16.2-r0
12.16.3-r0
12.16.3-r1
12.17.0-r0
12.18.0-r0
12.18.0-r1
12.18.0-r2
12.18.2-r0
12.18.3-r0
12.18.4-r0
12.19.0-r0
14.*
14.15.1-r0
14.15.3-r0
14.15.3-r1
14.15.3-r2
14.15.4-r0
14.15.5-r0
14.16.0-r0
14.16.0-r1
14.16.1-r0
14.16.1-r1
14.16.1-r2
14.17.0-r0
14.17.1-r0
14.17.2-r0
14.17.3-r0
14.17.4-r0
14.17.5-r0
Alpine:v3.19 / nodejs
Package
- Name
- nodejs
- Purl
- pkg:apk/alpine/nodejs?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed14.17.6-r0
Affected versions
4.*
4.4.3-r0
4.4.4-r0
4.4.5-r0
4.4.7-r0
4.5.0-r0
6.*
6.9.1-r0
6.9.1-r1
6.9.2-r0
6.9.4-r0
6.9.4-r1
6.9.5-r0
6.9.5-r1
6.10.0-r0
6.10.1-r0
6.10.3-r0
6.11.0-r0
6.11.1-r0
6.11.1-r1
6.11.1-r2
6.11.2-r0
6.11.3-r0
6.11.4-r0
6.11.5-r0
8.*
8.9.0-r0
8.9.1-r0
8.9.2-r0
8.9.3-r0
8.9.3-r1
8.9.4-r0
8.10.0-r0
8.11.0-r0
8.11.0-r1
8.11.1-r0
8.11.1-r1
8.11.1-r2
8.11.2-r0
8.11.3-r0
8.11.3-r1
8.11.3-r2
8.11.3-r3
8.11.4-r0
8.12.0-r0
10.*
10.13.0-r0
10.14.0-r0
10.14.1-r0
10.14.2-r0
10.15.1-r0
10.15.3-r0
10.16.0-r0
10.16.1-r0
10.16.2-r0
10.16.3-r0
12.*
12.13.0-r0
12.13.0-r1
12.13.1-r0
12.14.0-r0
12.14.1-r0
12.15.0-r0
12.15.0-r1
12.15.0-r2
12.16.2-r0
12.16.3-r0
12.16.3-r1
12.17.0-r0
12.18.0-r0
12.18.0-r1
12.18.0-r2
12.18.2-r0
12.18.3-r0
12.18.4-r0
12.19.0-r0
14.*
14.15.1-r0
14.15.3-r0
14.15.3-r1
14.15.3-r2
14.15.4-r0
14.15.5-r0
14.16.0-r0
14.16.0-r1
14.16.1-r0
14.16.1-r1
14.16.1-r2
14.17.0-r0
14.17.1-r0
14.17.2-r0
14.17.3-r0
14.17.4-r0
14.17.5-r0
Alpine:v3.20 / nodejs
Package
- Name
- nodejs
- Purl
- pkg:apk/alpine/nodejs?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed14.17.6-r0
Affected versions
4.*
4.4.3-r0
4.4.4-r0
4.4.5-r0
4.4.7-r0
4.5.0-r0
6.*
6.9.1-r0
6.9.1-r1
6.9.2-r0
6.9.4-r0
6.9.4-r1
6.9.5-r0
6.9.5-r1
6.10.0-r0
6.10.1-r0
6.10.3-r0
6.11.0-r0
6.11.1-r0
6.11.1-r1
6.11.1-r2
6.11.2-r0
6.11.3-r0
6.11.4-r0
6.11.5-r0
8.*
8.9.0-r0
8.9.1-r0
8.9.2-r0
8.9.3-r0
8.9.3-r1
8.9.4-r0
8.10.0-r0
8.11.0-r0
8.11.0-r1
8.11.1-r0
8.11.1-r1
8.11.1-r2
8.11.2-r0
8.11.3-r0
8.11.3-r1
8.11.3-r2
8.11.3-r3
8.11.4-r0
8.12.0-r0
10.*
10.13.0-r0
10.14.0-r0
10.14.1-r0
10.14.2-r0
10.15.1-r0
10.15.3-r0
10.16.0-r0
10.16.1-r0
10.16.2-r0
10.16.3-r0
12.*
12.13.0-r0
12.13.0-r1
12.13.1-r0
12.14.0-r0
12.14.1-r0
12.15.0-r0
12.15.0-r1
12.15.0-r2
12.16.2-r0
12.16.3-r0
12.16.3-r1
12.17.0-r0
12.18.0-r0
12.18.0-r1
12.18.0-r2
12.18.2-r0
12.18.3-r0
12.18.4-r0
12.19.0-r0
14.*
14.15.1-r0
14.15.3-r0
14.15.3-r1
14.15.3-r2
14.15.4-r0
14.15.5-r0
14.16.0-r0
14.16.0-r1
14.16.1-r0
14.16.1-r1
14.16.1-r2
14.17.0-r0
14.17.1-r0
14.17.2-r0
14.17.3-r0
14.17.4-r0
14.17.5-r0
Debian:11 / npm
Package
- Name
- npm
- Purl
- pkg:deb/debian/npm?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
7.*
7.5.2+ds-2
7.6.0+ds-1
7.6.3+ds-1
7.24.0+ds-1
7.24.0+ds-2
7.24.2+ds-1
7.24.2+ds-2
8.*
8.1.4+ds-1
8.1.4+ds-2
8.3.0~ds-1
8.3.0~ds-2~bpo11+1
8.3.0~ds-2
8.3.1~ds-1~bpo11+1
8.3.1~ds-1
8.3.2~ds-1
8.4.0~ds-1
8.4.1~ds-1
8.5.0~ds-1
8.5.1~ds-1
8.5.2~ds-1
8.5.3~ds-1
8.5.3~ds1-1
8.5.4~ds1-1
8.5.5~ds1-1~bpo11+1
8.5.5~ds1-1
8.6.0~ds1-1
8.6.0~ds1-2
8.6.0~ds1-3
8.6.0~ds2-1
8.6.0~ds2-2
8.7.0~ds1-1
8.7.0~ds1-2
8.8.0~ds1-1
8.9.0~ds1-1
8.10.0~ds1-1
8.10.0~ds1-2
8.11.0~ds1-1
8.12.1~ds1-1
8.12.2~ds1-1
8.13.1~ds1-1
8.13.2~ds1-1
8.14.0~ds1-1
8.15.0~ds1-1
8.15.0~ds1-2
8.15.1~ds1-1
8.16.0~ds1-1
8.17.0~ds1-1
8.18.0~ds1-1
8.19.2~ds1-1
8.19.2~ds1-2
9.*
9.1.1~ds1-1
9.1.2~ds1-1
9.1.2~ds1-2
9.1.2~ds1-3
9.1.3~ds1-1
9.2.0~ds1-1
9.2.0~ds1-2
9.2.0~ds1-3
Debian:12 / npm
Package
- Name
- npm
- Purl
- pkg:deb/debian/npm?arch=source
Debian:13 / npm
Package
- Name
- npm
- Purl
- pkg:deb/debian/npm?arch=source
Git / github.com/npm/arborist
Affected ranges
- Type
- GIT
- Repo
- https://github.com/npm/arborist
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
- Type
- GIT
- Repo
- https://github.com/npm/cli
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
- Type
- GIT
- Repo
- https://github.com/npm/hosted-git-info
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
0.*
0.1.27
1.*
1.0.0rc3
1.0.7
1.1.0-1
1.1.0-alpha-1
1.1.0-alpha-2
1.1.22
v0.*
v0.0.0
v0.0.0-pre.0
v0.0.0-pre.1
v0.0.0-pre.10
v0.0.0-pre.11
v0.0.0-pre.12
v0.0.0-pre.13
v0.0.0-pre.14
v0.0.0-pre.15
v0.0.0-pre.17
v0.0.0-pre.18
v0.0.0-pre.19
v0.0.0-pre.2
v0.0.0-pre.20
v0.0.0-pre.21
v0.0.0-pre.3
v0.0.0-pre.4
v0.0.0-pre.5
v0.0.0-pre.6
v0.0.0-pre.7
v0.0.0-pre.8
v0.0.0-pre.9
v0.0.1
v0.0.10
v0.0.11
v0.0.12
v0.0.13
v0.0.14
v0.0.15
v0.0.16
v0.0.17
v0.0.18
v0.0.19
v0.0.2
v0.0.20
v0.0.21
v0.0.22
v0.0.23
v0.0.24
v0.0.25
v0.0.26
v0.0.27
v0.0.28
v0.0.29
v0.0.3
v0.0.30
v0.0.31
v0.0.32
v0.0.33
v0.0.4
v0.0.5
v0.0.6
v0.0.7
v0.0.8
v0.0.9
v0.1.0
v0.1.1
v0.1.10
v0.1.11
v0.1.12
v0.1.13
v0.1.14
v0.1.15
v0.1.16
v0.1.17
v0.1.18
v0.1.2
v0.1.21
v0.1.22
v0.1.23
v0.1.24
v0.1.25
v0.1.26
v0.1.27
v0.1.27-1
v0.1.27-12
v0.1.27-2
v0.1.27-3
v0.1.27-4
v0.1.27-5
v0.1.27-6
v0.1.27-7
v0.1.27-8
v0.1.27-9
v0.1.3
v0.1.4
v0.1.5
v0.1.6
v0.1.7
v0.1.8
v0.1.9
v0.2.0
v0.2.1
v0.2.10
v0.2.10-1
v0.2.11
v0.2.11-1
v0.2.11-2
v0.2.11-3
v0.2.11-4
v0.2.11-5
v0.2.12
v0.2.12-1
v0.2.13
v0.2.13-1
v0.2.13-2
v0.2.13-3
v0.2.14
v0.2.14-1
v0.2.14-2
v0.2.14-3
v0.2.14-4
v0.2.14-5
v0.2.14-6
v0.2.15
v0.2.16
v0.2.17
v0.2.18
v0.2.2
v0.2.3
v0.2.3-3
v0.2.3-4
v0.2.3-5
v0.2.3-6
v0.2.4
v0.2.4-1
v0.2.5
v0.2.5-1
v0.2.7-2
v0.2.7-3
v0.2.8
v0.2.9
v0.3.0
v0.3.0-1
v0.3.0-10
v0.3.0-2
v0.3.0-3
v0.3.0-4
v0.3.0-5
v0.3.0-6
v0.3.0-7
v0.3.0-8
v0.3.0-9
v0.3.1
v0.3.10
v0.3.11
v0.3.12
v0.3.13
v0.3.14
v0.3.15
v0.3.16
v0.3.17
v0.3.2
v0.3.3
v0.3.4
v0.3.5
v0.3.6
v0.3.7
v0.3.8
v0.3.9
v1.*
v1.0.0
v1.0.0-1-rc
v1.0.0-2-rc
v1.0.0rc4
v1.0.0rc5
v1.0.0rc6
v1.0.0rc7
v1.0.0rc8
v1.0.0rc9
v1.0.1
v1.0.10
v1.0.100
v1.0.101
v1.0.102
v1.0.103
v1.0.104
v1.0.105
v1.0.106
v1.0.11
v1.0.12
v1.0.13
v1.0.14
v1.0.15
v1.0.16
v1.0.17
v1.0.18
v1.0.19
v1.0.1rc0
v1.0.1rc1
v1.0.1rc3
v1.0.1rc4
v1.0.1rc5
v1.0.1rc6
v1.0.1rc7
v1.0.1rc8
v1.0.1rc9
v1.0.1rcFINAL
v1.0.2
v1.0.20
v1.0.21
v1.0.22
v1.0.23
v1.0.24
v1.0.25
v1.0.26
v1.0.27
v1.0.28
v1.0.29
v1.0.3
v1.0.30
v1.0.4
v1.0.5
v1.0.6
v1.0.7
v1.0.8
v1.0.9
v1.0.9-1
v1.0.90
v1.0.91
v1.0.92
v1.0.93
v1.0.94
v1.0.95
v1.0.96
v1.0.97
v1.0.98
v1.0.99
v1.1.0
v1.1.0-1
v1.1.0-2
v1.1.0-3
v1.1.0-alpha-3
v1.1.0-alpha-4
v1.1.0-alpha-5
v1.1.0-alpha-6
v1.1.0-beta-0
v1.1.0-beta-1
v1.1.0-beta-10
v1.1.0-beta-2
v1.1.0-beta-3
v1.1.0-beta-4
v1.1.0-beta-5
v1.1.0-beta-6
v1.1.0-beta-7
v1.1.0-beta-8
v1.1.0-beta-9
v1.1.1
v1.1.10
v1.1.11
v1.1.12
v1.1.13
v1.1.14
v1.1.15
v1.1.16
v1.1.17
v1.1.18
v1.1.19
v1.1.2
v1.1.20
v1.1.21
v1.1.22
v1.1.23
v1.1.24
v1.1.25
v1.1.26
v1.1.27
v1.1.28
v1.1.29
v1.1.3
v1.1.30
v1.1.31
v1.1.32
v1.1.33
v1.1.34
v1.1.35
v1.1.36
v1.1.37
v1.1.38
v1.1.39
v1.1.4
v1.1.40
v1.1.41
v1.1.42
v1.1.43
v1.1.44
v1.1.45
v1.1.46
v1.1.48
v1.1.49
v1.1.5
v1.1.50
v1.1.51
v1.1.52
v1.1.53
v1.1.54
v1.1.55
v1.1.56
v1.1.57
v1.1.58
v1.1.59
v1.1.6
v1.1.60
v1.1.61
v1.1.62
v1.1.63
v1.1.64
v1.1.65
v1.1.66
v1.1.67
v1.1.68
v1.1.69
v1.1.7
v1.1.70
v1.1.71
v1.1.8
v1.1.9
v1.2.0
v1.2.1
v1.2.10
v1.2.11
v1.2.12
v1.2.13
v1.2.14
v1.2.15
v1.2.16
v1.2.17
v1.2.18
v1.2.19
v1.2.2
v1.2.20
v1.2.21
v1.2.22
v1.2.23
v1.2.24
v1.2.25
v1.2.26
v1.2.27
v1.2.28
v1.2.29
v1.2.3
v1.2.30
v1.2.31
v1.2.32
v1.2.4
v1.2.5
v1.2.6
v1.2.7
v1.2.8
v1.2.9
v1.3.0
v1.3.1
v1.3.10
v1.3.11
v1.3.12
v1.3.13
v1.3.14
v1.3.15
v1.3.16
v1.3.17
v1.3.18
v1.3.19
v1.3.2
v1.3.20
v1.3.21
v1.3.22
v1.3.23
v1.3.24
v1.3.25
v1.3.26
v1.3.3
v1.3.4
v1.3.5
v1.3.6
v1.3.7
v1.3.8
v1.3.9
v1.4.0
v1.4.1
v1.4.10
v1.4.11
v1.4.12
v1.4.13
v1.4.14
v1.4.15
v1.4.16
v1.4.17
v1.4.18
v1.4.19
v1.4.2
v1.4.20
v1.4.21
v1.4.22
v1.4.23
v1.4.3
v1.4.4
v1.4.5
v1.4.6
v1.4.7
v1.4.8
v1.4.9
v1.5.0
v1.5.0-alpha-0
v1.5.0-alpha-1
v1.5.0-alpha-2
v1.5.0-alpha-3
v1.5.0-alpha-4
v1.5.1
v1.5.2
v1.5.3
v1.6.0
v2.*
v2.0.0
v2.0.0-alpha-5
v2.0.0-alpha.6.0
v2.0.0-alpha.7
v2.0.0-beta.0
v2.0.0-beta.1
v2.0.0-beta.2
v2.0.0-beta.3
v2.0.1
v2.0.2
v2.0.3
v2.0.4
v2.0.5
v2.0.6
v2.1.0
v2.1.1
v2.1.10
v2.1.11
v2.1.12
v2.1.13
v2.1.14
v2.1.15
v2.1.16
v2.1.17
v2.1.18
v2.1.2
v2.1.3
v2.1.4
v2.1.5
v2.1.6
v2.1.7
v2.1.8
v2.1.9
v2.2.0
v2.2.1
v2.2.2
v2.2.3
v2.2.4
v2.2.5
v2.2.6
v2.2.7
v2.2.8
v2.2.9
v2.3.0
v2.3.1
v2.4.0
v2.4.1
v2.4.2
v2.4.3
v2.4.4
v2.5.0
v2.5.1
v2.6.0
v2.6.1
v2.6.2
v2.6.3
v2.6.4
v2.7.0
v2.7.1
v2.7.2
v2.7.3
v2.7.4
v2.7.5
v2.7.6
v2.8.0
v2.8.1