diff options
| author | Moritz Muehlenhoff <jmm@debian.org> | 2021-11-16 10:39:27 +0100 |
|---|---|---|
| committer | Moritz Muehlenhoff <jmm@debian.org> | 2021-11-16 10:39:27 +0100 |
| commit | d87d008873c3218416df27e8461370f2035d8c93 (patch) | |
| tree | f64c79bcf0687c38eb674785ab86e7bc2630c2d4 | |
| parent | e951504a681913541d8513541c71c6ed89170f13 (diff) | |
new laravel issue
| -rw-r--r-- | data/CVE/2021.list | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/data/CVE/2021.list b/data/CVE/2021.list index d187883d57..ba10c3f458 100644 --- a/data/CVE/2021.list +++ b/data/CVE/2021.list @@ -315,7 +315,8 @@ CVE-2021-43618 (GNU Multiple Precision Arithmetic Library (GMP) through 6.2.1 ha NOTE: https://gmplib.org/list-archives/gmp-bugs/2021-September/005077.html NOTE: https://gmplib.org/repo/gmp-6.2/rev/561a9c25298e CVE-2021-43617 (Laravel Framework through 8.70.2 does not sufficiently block the uploa ...) - TODO: check + - php-laravel-framework <unfixed> + NOTE: https://hosein-vita.medium.com/laravel-8-x-image-upload-bypass-zero-day-852bd806019b CVE-2021-3957 RESERVED CVE-2021-43616 (The npm ci command in npm 7.x and 8.x through 8.1.3 proceeds with an i ...) |