sqlite-vec 安全漏洞

sqlite-vec is a SQLite extension from the individual developer Alex Garcia. A security vulnerability exists in sqlite-vec version v0.1.1, which stems from the presence of a heap buffer overflow that allows an attacker to cause a denial of service DoS via a crafted file...

@alex.garcia/oak (>=0.0.17 <=0.0.19), @apify/better-sqlite3-prebuilds (=7.1.1) +195 more potentially affected by CVE-2021-32803 via tar (>=4.0.1 <=4.4.13)

tar NPM version =4.0.1, =0.0.17, =0.0.1, =0.2.0, =0.2.0, =3.0.7, =3.0.6, =1.4.0, =1.0.0, =1.0.0-alpha.1, =1.10.9-beta, =1.0.0, =1.1.4, =2.1.0, =2.2.0 and more Source cves: CVE-2021-32803 Source advisory: OSV:GHSA-R628-MHMH-QJHW...