Back to bug 1986170
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Guilherme de Almeida Suckevicz | 2021-07-26 20:03:50 UTC | Blocks | 1986171 | |
| RaTasha Tillery-Smith | 2021-07-27 13:30:31 UTC | Doc Text | A flaw was found in JSZip. Crafting a new zip file with filenames set to Object prototype values (ex. __proto__, toString, etc.) results in a returned object with a modified prototype instance. The highest threat from this vulnerability is to system availability. | |
| Sam Fowler | 2021-08-03 06:27:48 UTC | CC | aileenc, chazlett, drieden, dwhatley, dymurray, ggaughan, gmalinko, ibolton, janstey, jmatthew, jmontleo, jochrist, jwon, slucidi, sseago | |
| Hardik Vyas | 2021-08-03 07:20:13 UTC | Depends On | 1989406 | |
| Stoyan Nikolov | 2021-08-03 08:16:49 UTC | CC | alegrand, amuller, anpicker, aos-bugs, bmontgom, eparis, erooth, gghezzo, gparvin, jburrell, jokerman, jramanat, jross, kakkoyun, kconner, nstielau, pkrupa, rcernich, rgodfrey, spasquie, sponnaga, stcannon | |
| Stoyan Nikolov | 2021-08-03 08:21:28 UTC | CC | alegrand, amuller, anpicker, aos-bugs, bmontgom, eparis, erooth, gghezzo, gparvin, jburrell, jokerman, jramanat, jross, kakkoyun, kconner, nstielau, pkrupa, rcernich, rgodfrey, spasquie, sponnaga, stcannon | |
| Stoyan Nikolov | 2021-08-06 06:51:21 UTC | Fixed In Version | jszip 3.7.0 | |
| Red Hat Bugzilla | 2021-10-16 04:39:07 UTC | CC | dwhatley | |
| Red Hat Bugzilla | 2022-04-19 04:39:01 UTC | CC | ggaughan | |
| Red Hat Bugzilla | 2023-05-15 18:09:15 UTC | CC | drieden | |
| Red Hat Bugzilla | 2023-07-07 08:29:21 UTC | Assignee | security-response-team | nobody |
Back to bug 1986170