Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

mardi 20 avril 2021

vscode-restructuredtext prior 146.0.0 Workspace Configuration injection

A vulnerability classified as critical has been found in vscode-restructuredtext. This affects an unknown code block of the component Workspace Configuration Handler. Upgrading to version 146.0.0 eliminates this vulnerability. The upgrade is hosted for download at Applying a patch is able to eliminate this problem. The bugfix is ready for download at The best possible mitigation is suggested to be upgrading to the latest version.

Lien vers l'article source

Auteur: VulDB

Catégories: VulDBNombre de vues: 38


Événements SSI