Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Fix breakout console #6

Merged
merged 3 commits into from Jul 14, 2019
Merged

Fix breakout console #6

merged 3 commits into from Jul 14, 2019

Conversation

commenthol
Copy link
Owner

@commenthol commenthol commented Jul 14, 2019

A node sandbox breakout was reported using console.constructor.
This PR fixes this issue.

@commenthol commenthol merged commit 073267a into master Jul 14, 2019
@commenthol commenthol deleted the fix-breakout-console branch Jul 14, 2019
@JLLeitschuh
Copy link

JLLeitschuh commented Oct 12, 2019

This change should have a CVE number assigned to it correct? Was there a CVE assigned?

@commenthol
Copy link
Owner Author

commenthol commented Oct 12, 2019

Hi @JLLeitschuh ,
Issue was reported here: commenthol/serialize-to-js#1
To my knowledge there is no CVE assigned.

@JLLeitschuh
Copy link

JLLeitschuh commented Oct 12, 2019

Sorry to put more work on you. But as a maintainer of a project with over 35k downstream projects, it needs to be part of your patching cycle to have CVE numbers assigned to bypass issues when they are discovered.

https://cveform.mitre.org

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

None yet

2 participants