[Pkg-javascript-devel] Bug#923042: node-handlebars: Prototype Pollution allowing an attacker to execute arbitrary code
Jonas Smedegaard
dr at jones.dk
Sat Feb 23 14:34:15 GMT 2019
Quoting Jonas Smedegaard (2019-02-23 15:15:25)
> All releases of handlebars older than 4.0.13 should be affected.
Possibly only 4.x versions are affected - according to this:
https://github.com/wycats/handlebars.js/issues/1495
- Jonas
--
* Jonas Smedegaard - idealist & Internet-arkitekt
* Tlf.: +45 40843136 Website: http://dr.jones.dk/
[x] quote me freely [ ] ask before reusing [ ] keep private
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: signature
URL: <http://alioth-lists.debian.net/pipermail/pkg-javascript-devel/attachments/20190223/7eaeb7a3/attachment.sig>
More information about the Pkg-javascript-devel
mailing list