Withdrawn: ESLint dependencies are vulnerable (ReDoS and Prototype Pollution)
2020-03-13T20:36:16
ID GHSA-7FHM-MQM4-2WP7 Type github Reporter GitHub Advisory Database Modified 2020-04-03T23:20:25
Description
Withdrawn
GitHub has withdrawn this advisory in place of GHSA-vh95-rmgr-6w4m and GHSA-6chw-6frg-f759.
The reason for withdrawing is that some mistakes were made during the ingestion of CVE-2020-7598
which caused this advisory to be published with incorrect information.
In order to provide accurate advisory information, new advisories were created:
{"id": "GHSA-7FHM-MQM4-2WP7", "bulletinFamily": "software", "title": "Withdrawn: ESLint dependencies are vulnerable (ReDoS and Prototype Pollution)", "description": "**Withdrawn**\nGitHub has withdrawn this advisory in place of GHSA-vh95-rmgr-6w4m and GHSA-6chw-6frg-f759.\nThe reason for withdrawing is that some mistakes were made during the ingestion of CVE-2020-7598\nwhich caused this advisory to be published with incorrect information.\n\nIn order to provide accurate advisory information, new advisories were created:\n\n- minimist: https://github.com/advisories/GHSA-vh95-rmgr-6w4m\n- acorn: https://github.com/advisories/GHSA-6chw-6frg-f759", "published": "2020-03-13T20:36:16", "modified": "2020-04-03T23:20:25", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "https://github.com/advisories/GHSA-7fhm-mqm4-2wp7", "reporter": "GitHub Advisory Database", "references": ["https://github.com/advisories/GHSA-6chw-6frg-f759", "https://github.com/advisories/GHSA-7fhm-mqm4-2wp7"], "cvelist": [], "type": "github", "lastseen": "2020-04-06T23:39:16", "edition": 8, "viewCount": 179, "enchantments": {"dependencies": {"references": [{"type": "github", "idList": ["GHSA-7FHM-MQM4-2WP7", "GHSA-6CHW-6FRG-F759"]}], "modified": "2020-04-06T23:39:16", "rev": 2}, "score": {"value": 1.0, "vector": "NONE", "modified": "2020-04-06T23:39:16", "rev": 2}, "vulnersScore": 1.0}, "affectedSoftware": [{"name": "minimist", "operator": "lt", "version": "0.2.1"}], "scheme": null}
