GHSA-hfvc-g252-rp4g

Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2020/12/GHSA-hfvc-g252-rp4g/GHSA-hfvc-g252-rp4g.json
Aliases
  • CVE-2020-7791
Published
2020-12-14T19:50:22Z
Modified
2022-09-21T03:35:55.610265Z
Details

This affects the package i18n before version 2.1.15. Vulnerability arises out of insufficient handling of erroneous language tags in src/i18n/Concrete/TextLocalizer.cs and src/i18n/LocalizedApplication.cs.

References

Affected packages

NuGet / i18n

i18n

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0
Fixed
2.1.15

Affected versions

1.*

1.0.0
1.0.1
1.0.2
1.0.3
1.0.4
1.0.5
1.0.5-candidate
1.0.6
1.0.7
1.0.8

2.*

2.1.0
2.1.1
2.1.10
2.1.10-pre000
2.1.10-pre005
2.1.10-pre006
2.1.10-pre011
2.1.11
2.1.11-pre000
2.1.11-pre001
2.1.11-pre002
2.1.12-pre001
2.1.13
2.1.14
2.1.15-pre000
2.1.3
2.1.4
2.1.5
2.1.6
2.1.7
2.1.8
2.1.9