CVE-2021-29443, GHSA-58f5-hfqc-jgch
npm/jose
Information Exposure Through Discrepancy
jose is an npm library providing a number of cryptographic operations.
All versions starting from 1.0.0 before 1.28.1, all versions starting from 2.0.0 before 2.0.5, all versions starting from 3.0.0 before 3.11.4
Upgrade to versions 1.28.1, 2.0.5, 3.11.4 or above.
2021-05-03
source |