- deps: update archs files for OpenSSL-1.1.1k (Tobias Nießen) #37940.All versions of the 14.x, 12.x and 10.x releases lines.This is a vulnerability in the y18n npm module which may be exploited by prototype pollution.CVE-2020-7774: npm upgrade - Update y18n to fix Prototype-Pollution (High).
CVE-2021-3449: OpenSSL - NULL pointer deref in signature_algorithms processing (High). All versions of the 15.x, 14.x, 12.x and 10.x releases lines. This is a vulnerability in OpenSSL which may be exploited through Node.js. CVE-2021-3450: OpenSSL - CA certificate check bypass with X509_V_FLAG_X509_STRICT (High). Node v10.24.1 (LTS) By Myles Borins, Notable Changes
0 kommentar(er)
