attritionorg
commented
7 years ago @kevinbror do you have a reference to the base 'ip' vuln?
Closed kevinbror closed 7 years ago
attritionorg
commented
7 years ago @kevinbror do you have a reference to the base 'ip' vuln?
kevinbror
commented
7 years ago Sorry for the delay, thanks @attritionorg
njb-said
Depends on a 1.X.X version of pac-proxy-agent which has an indirect dependency on the package ip version 1.0.1. That version of ip has the uninitialized mem exposure issue. Can you update to 2.0.0 of pac-proxy-agent to resolve this?