A new vulnerability was discovered: CVE-2019-6338

debricked / soot-wrapper

Analyses how you use your dependencies to figure out if you use the vulnerable parts of a vulnerable dependency

MIT License

4 stars 5 forks source link

A new vulnerability was discovered: CVE-2019-6338 #9

Closed debricked[bot] closed 2 years ago

debricked[bot] commented 3 years ago

In Drupal Core versions 7.x prior to 7.62, 8.6.x prior to 8.6.6 and 8.5.x prior to 8.5.9; Drupal core uses the third-party PEAR Archive_Tar library. This library has released a security update which impacts some Drupal configurations. Refer to CVE-2018-1000888 for details

Read more at Debricked: https://app.debricked.com/en/service/vulnerability/117993