nodejs-handlebars Info

nodejs-handlebars was added to epel7 repo on 2014-12-28
Page updated: 2023-11-21 11:36
Repo Status - Overall Status

Source NVR: nodejs-handlebars-4.0.5-1.el7 (2015-12-31)

Binary Packages

nodejs-handlebars nodejs-handlebars-4.0.5-1.el7

Bugs

1685826 NEW nodejs-handlebars: prototype pollution in object's prototype leading to arbitrary code execution on the server [epel-all]
1789962 NEW CVE-2019-19919 nodejs-handlebars: prototype pollution leading to remote code execution via crafted payloads [epel-7]
1882258 NEW CVE-2019-20922 nodejs-handlebars: an endless loop while processing specially-crafted templates leads to DoS [epel-all]
1882262 NEW CVE-2019-20920 nodejs-handlebars: lookup helper fails to properly validate templates allowing for arbitrary JavaScript execution [epel-all]
1956691 NEW CVE-2021-23369 nodejs-handlebars: Remote code execution when compiling untrusted compile templates with strict:true option [epel-7]
1956695 NEW CVE-2021-23383 nodejs-handlebars: Remote code execution when compiling untrusted compile templates with compat:true option [epel-7]

Install Failures