Описание
The gh package before 1.5.0 for R delivers an HTTP response in a data structure that includes the Authorization header from the corresponding HTTP request.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| r-cran-gh | fixed | 1.5.0-1 | package | |
| r-cran-gh | fixed | 1.4.1-1+deb13u1 | trixie | package |
| r-cran-gh | fixed | 1.4.0-1+deb12u1 | bookworm | package |
Примечания
https://github.com/r-lib/gh/issues/222
https://github.com/r-lib/gh/commit/b575d488c71318449cc6c8c989c617db29275848 (v1.5.0)
Связанные уязвимости
CVSS3: 3.2
ubuntu
6 месяцев назад
The gh package before 1.5.0 for R delivers an HTTP response in a data structure that includes the Authorization header from the corresponding HTTP request.
CVSS3: 3.2
nvd
6 месяцев назад
The gh package before 1.5.0 for R delivers an HTTP response in a data structure that includes the Authorization header from the corresponding HTTP request.
CVSS3: 3.2
github
6 месяцев назад
The gh package before 1.5.0 for R delivers an HTTP response in a data structure that includes the Authorization header from the corresponding HTTP request.