GHSA-9f2c-xxfm-32mj

Source

https://github.com/advisories/GHSA-9f2c-xxfm-32mj

Import Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/01/GHSA-9f2c-xxfm-32mj/GHSA-9f2c-xxfm-32mj.json

JSON Data

https://api.osv.dev/v1/vulns/GHSA-9f2c-xxfm-32mj

Withdrawn

2023-01-11T18:58:40Z

Published

2023-01-11T06:30:20Z

Modified

2024-11-28T05:50:37.563485Z

Summary

Duplicate of GHSA-4xh4-v2pq-jvhm

Details

Duplicate Advisory

This advisory has been withdrawn because it is a duplicate of GHSA-4xh4-v2pq-jvhm. This link is maintained to preserve external references.

Original Description

The personnummer implementation before 3.0.3 for Dart mishandles numbers in which the last four digits match the ^000[0-9]$ regular expression.

Database specific

{
    "nvd_published_at": "2023-01-11T06:15:00Z",
    "cwe_ids": [],
    "severity": "LOW",
    "github_reviewed": true,
    "github_reviewed_at": "2023-01-11T18:58:40Z"
}

References

Affected packages

Pub / personnummer

Package

Name: personnummer
Purl: pkg:pub/personnummer

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.0.3

Affected versions

1.*

1.0.0

1.0.1

1.0.2

2.*

2.0.0

2.1.0

3.*

3.0.0

3.0.1

3.0.2