OMGeeky/advisory-db
1
0
Fork 0
mirror of https://github.com/OMGeeky/advisory-db.git synced 2026-01-02 01:26:42 +01:00
Code Issues Packages Projects Releases Wiki Activity

Add rustsec advisory for GHSA-f3fg-5j9p-vchc (#1020)

Browse Source
This commit is contained in:
Jon Moroney
2021-09-09 14:49:39 -07:00
committed by GitHub
parent 8e5d566ef0
commit 951070000d
1 changed files with 16 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

16
crates/pleaser/RUSTSEC-0000-0000.md Normal file
View File

@@ -0,0 +1,16 @@
```toml
[advisory]
id = "RUSTSEC-0000-0000"
package = "pleaser"
date = "2021-05-27"
url = "https://nvd.nist.gov/vuln/detail/CVE-2021-31153"
categories = ["file-disclosure"]
cvss = "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"
aliases = ["CVE-2021-31153"]
[versions]
patched = [">= 0.4"]
```
# File exposure in pleaser
pleaser before 0.4 allows a local unprivileged attacker to gain knowledge about the existence of files or directories in privileged locations via the search_path function, the --check option, or the -d option.