win-ca icon indicating copy to clipboard operation
win-ca copied to clipboard

Published 20 hours ago verified publisher icon ukoloff

CVE-2020-7720 fix from node-forge

Open toefraz opened this issue 4 years ago • 2 comments

Are there plans to upgrade to version 0.10.0 of node-forge to address security vulnerability CVE-2020-7720?

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7720 https://github.com/digitalbazaar/forge/blob/master/CHANGELOG.md#0100---2020-09-01

toefraz avatar Sep 14 '20 20:09 toefraz

Yes, I'm going to release it today, after passing some tests...

ukoloff avatar Sep 15 '20 04:09 ukoloff

v3.2.2 is on NPM.

Please test.

ukoloff avatar Sep 15 '20 08:09 ukoloff

@ukoloff I think this can be closed, right?

gjsjohnmurray avatar Apr 17 '23 08:04 gjsjohnmurray

Yes, you're right!

ukoloff avatar Apr 17 '23 09:04 ukoloff