Skip to content

CVE-2022-1537 file.copy operations in GruntJS are vulnerable to a TOCTOU race condition leading to arbitrary file write #113

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
maximthomas merged 1 commit into from
May 20, 2025
Merged

CVE-2022-1537 file.copy operations in GruntJS are vulnerable to a TOCTOU race condition leading to arbitrary file write #113

maximthomas merged 1 commit into from
May 20, 2025

Conversation

@maximthomas
Copy link
Contributor

@maximthomas maximthomas commented May 20, 2025

No description provided.

@maximthomas maximthomas requested a review from vharseko May 20, 2025 07:10
@maximthomas maximthomas changed the title Bump Grunt to 1.5.3 CVE-2022-1537 file.copy operations in GruntJS are vulnerable to a TOCTOU race condition leading to arbitrary file write May 20, 2025
@maximthomas maximthomas merged commit d4800f0 into OpenIdentityPlatform:master May 20, 2025
17 checks passed
@maximthomas maximthomas deleted the bump-grunt branch May 20, 2025 08:10
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@vharseko vharseko vharseko approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@maximthomas @vharseko