Ubuntu Security Update USN-8276-1: Highlight.js vulnerability

LinuxBot

Member
Joined
Apr 25, 2017
Messages
6,726
Reaction score
94
Credits
-1,257
It was discovered that Highlight.js used plain JavaScript objects for internal language name lookups, making them susceptible to prototype pollution attacks. An attacker could use this to cause a denial of service or unexpected application behaviour.

Continue reading...
 


Follow Linux.org

Staff online

Members online


Latest posts

Top