]> source.dussan.org Git - rspamd.git/commit
projects / rspamd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 8ef9b22) | patch
[WebUI] Update RequireJS to address CVE-2024-38999 5217/head
authorAlexander Moisseev <moiseev@mezonplus.ru>
Sat, 9 Nov 2024 12:40:10 +0000 (15:40 +0300)
committerAlexander Moisseev <moiseev@mezonplus.ru>
Sat, 9 Nov 2024 12:43:09 +0000 (15:43 +0300)
commite87b2786467223478e7cb289780c963d2cab444e
tree06eb79fbf97ac49f8a3dcec528342c7a9555e7b9tree | snapshot
parent8ef9b229241d7323cde9b275b24e333cf326c03acommit | diff
[WebUI] Update RequireJS to address CVE-2024-38999

Upgraded RequireJS from 2.3.6 to 2.3.7
to mitigate prototype pollution vulnerability (CVE-2024-38999) in `s.contexts._.configure` function,
which could allow arbitrary code execution or Denial of Service.
interface/js/lib/require.min.js diff | blob | history
Rapid spam filtering system: https://github.com/rspamd/rspamd