Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[5.8] Fixed lodash version (CVE-2019-10744) #5060

Merged
merged 1 commit into from Jul 15, 2019

Conversation

@omentes
Copy link
Contributor

commented Jul 15, 2019

Hello!

lodash in package.json - 4.17.5, but CVE-2019-10744 affected versions (<4.17.13) of lodash are vulnerable to Prototype Pollution

@driesvints driesvints changed the title Fixed lodash version (CVE-2019-10744) [5.9] Fixed lodash version (CVE-2019-10744) Jul 15, 2019

@driesvints driesvints changed the title [5.9] Fixed lodash version (CVE-2019-10744) [5.8] Fixed lodash version (CVE-2019-10744) Jul 15, 2019

@taylorotwell taylorotwell merged commit ff15a66 into laravel:master Jul 15, 2019

1 check passed

continuous-integration/styleci/pr The analysis has passed
Details

@omentes omentes deleted the omentes:fix_cve_2019_10744 branch Jul 20, 2019

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
3 participants
You can’t perform that action at this time.