Information on source package libjs-handlebars

Available versions

ReleaseVersion
stretch3:4.0.5-4

Open issues

BugstretchDescription
CVE-2021-23383vulnerable (no DSA, postponed)The package handlebars before 4.7.7 are vulnerable to Prototype Pollut ...
CVE-2021-23369vulnerable (no DSA, ignored)The package handlebars before 4.7.7 are vulnerable to Remote Code Exec ...
CVE-2019-20920vulnerable (no DSA, ignored)Handlebars before 3.0.8 and 4.x before 4.5.3 is vulnerable to Arbitrar ...

Open unimportant issues

BugstretchDescription
TEMP-0000000-345A3Bvulnerablehandlebars: quoteless attributes in templates can lead to content injection

Resolved issues

BugDescription
CVE-2019-20922Handlebars before 4.4.5 allows Regular Expression Denial of Service (R ...

Search for package or bug name: Reporting problems