Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
Showing
1 changed file
with
2 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
4debf8f
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@akilovich - @srikanthprathi has requested a CVE for this report (https://www.huntr.dev/bounties/a98264fb-1930-4c7c-b774-af24c0175fd4/)...
Are you happy for us to go ahead and arrange this?
4debf8f
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@JamieSlome Hi. I don't quite understand what you mean. Can you elaborate on this a little bit?
4debf8f
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@akilovich - sure 👍
Because @srikanthprathi disclosed a valid security vulnerability to us, we are able to create a CVE for this report.
A CVE notifies developers using your package about this vulnerability, and the version that patches it as well.
You can read more about it here.
4debf8f
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@JamieSlome Yes, you can proceed.
4debf8f
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@akilovich - CVE published! 🎉
CVE-2021-3836