DSA-5638-1 libuv1 – security update

Debian Security Advisory

It was discovered that the uv_getaddrinfo() function in libuv, an
asynchronous event notification library, incorrectly truncated certain
hostnames, which may result in bypass of security measures on internal
APIs or SSRF attacks.

https://security-tracker.debian.org/tracker/DSA-5638-1

READ MORE

Leave a Reply

Your email address will not be published. Required fields are marked *