[USN-6086-1] minimatch vulnerability
Severity
High
Affected Packages
2
CVEs
1
minimatch could be made to crash if it opened a specially crafted input file.
It was discovered that minimatch incorrectly handled certain inputs. If a
user or an automated system were tricked into opening a specially crafted
input file, a remote attacker could possibly use this issue to cause a
denial of service.
Package | Affected Version |
---|---|
pkg:deb/ubuntu/node-minimatch?distro=focal | < 3.0.4-4ubuntu0.1 |
pkg:deb/ubuntu/node-minimatch?distro=bionic | < 3.0.4-3+deb10u1build0.18.04.1 |
- ID
- USN-6086-1
- Severity
- high
- Severity from
- CVE-2022-3517
- URL
- https://ubuntu.com/security/notices/USN-6086-1
- Published
-
2023-05-18T08:22:39
(16 months ago) - Modified
-
2023-05-18T08:22:39
(16 months ago) - Other Advisories
-
- ALSA-2022:8832
- ALSA-2022:8833
- ALSA-2022:9073
- ALSA-2023:0050
- ALSA-2023:0321
- ALSA-2023:1743
- ELSA-2022-8832
- ELSA-2022-8833
- ELSA-2023-0050
- ELSA-2023-0321
- ELSA-2023-1743
- FEDORA-2023-18fd476362
- FEDORA-2023-2e38c3756f
- FEDORA-2023-86d75130fe
- FEDORA-2023-a4f0b29f6c
- FEDORA-2023-ce8943223c
- NPM:GHSA-F8Q6-P94X-37V3
- RHSA-2022:8832
- RHSA-2022:8833
- RHSA-2022:9073
- RHSA-2023:0050
- RHSA-2023:0321
- RHSA-2023:1743
- RLSA-2022:8833
- RLSA-2022:9073
- RLSA-2023:0050
- RLSA-2023:0321
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:deb/ubuntu/node-minimatch?distro=focal | ubuntu | node-minimatch | < 3.0.4-4ubuntu0.1 | focal | ||
Affected | pkg:deb/ubuntu/node-minimatch?distro=bionic | ubuntu | node-minimatch | < 3.0.4-3+deb10u1build0.18.04.1 | bionic |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |