Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[MED] chownr - Time of Check Time of Use (TOCTOU) (Due 09/30/18) #127

Closed
Tracked by #113
rjayasekera opened this issue Aug 1, 2018 · 2 comments
Closed
Tracked by #113

[MED] chownr - Time of Check Time of Use (TOCTOU) (Due 09/30/18) #127

rjayasekera opened this issue Aug 1, 2018 · 2 comments
Labels
High priority
Milestone
Sprint 7.2

Comments

@rjayasekera
Copy link
Contributor

rjayasekera commented Aug 1, 2018
edited by patphongs
Loading

Check logs sprint 6.5 (Penny Robinson) week 2 #3301 found following issue:

https://app.snyk.io/org/fecgov/project/0e33b068-0c21-4956-8f86-a63eec4b306e

Vulnerable module: chownr
Introduced through: @frctl/[email protected] and @frctl/[email protected]

No remediation path
@rjayasekera rjayasekera added this to the Sprint 6.5 milestone Aug 1, 2018
@rjayasekera rjayasekera mentioned this issue Aug 1, 2018
Closed
@JonellaCulmer JonellaCulmer changed the title [MED] chownr - Time of Check Time of Use (TOCTOU) [MED] chownr - Time of Check Time of Use (TOCTOU) (Due 09/30/18) Aug 1, 2018
@JonellaCulmer JonellaCulmer modified the milestones: Sprint 6.5, Sprint 6.6 Aug 2, 2018
@lbeaufort lbeaufort mentioned this issue Aug 9, 2018
Closed
@fecjjeng fecjjeng mentioned this issue Aug 15, 2018
Closed
@hcaofec hcaofec mentioned this issue Aug 22, 2018
Closed
@hcaofec hcaofec mentioned this issue Aug 29, 2018
Closed
@patphongs patphongs modified the milestones: Sprint 7.1, Sprint 7.2 Sep 5, 2018
@hcaofec hcaofec mentioned this issue Sep 7, 2018
Closed
@fecjjeng fecjjeng mentioned this issue Sep 12, 2018
Closed
@patphongs
Copy link
Member

Check @apburnes PR #129, will have justifications for JS vulnerabilities dealing with fractl.

@patphongs
Copy link
Member

Closing this issue since PR #129 took care of this for us

@patphongs patphongs mentioned this issue Mar 4, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
High priority
Projects
Website project
Archived in project
Milestone
Sprint 7.2
Development

No branches or pull requests
4 participants
@PaulClark2 @patphongs @rjayasekera @JonellaCulmer