It was discovered that Underscore incorrectly handled certain inputs. An attacker could possibly use this issue to inject arbitrary code.
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "binaries": [ { "binary_name": "libjs-underscore", "binary_version": "1.4.4-2ubuntu1+esm1" }, { "binary_name": "node-underscore", "binary_version": "1.4.4-2ubuntu1+esm1" } ] }
{ "availability": "No subscription required", "binaries": [ { "binary_name": "libjs-underscore", "binary_version": "1.7.0~dfsg-1ubuntu1.1" }, { "binary_name": "node-underscore", "binary_version": "1.7.0~dfsg-1ubuntu1.1" } ] }
{ "availability": "No subscription required", "binaries": [ { "binary_name": "libjs-underscore", "binary_version": "1.8.3~dfsg-1ubuntu0.1" }, { "binary_name": "node-underscore", "binary_version": "1.8.3~dfsg-1ubuntu0.1" } ] }
{ "availability": "No subscription required", "binaries": [ { "binary_name": "libjs-underscore", "binary_version": "1.9.1~dfsg-1ubuntu0.20.04.1" }, { "binary_name": "node-underscore", "binary_version": "1.9.1~dfsg-1ubuntu0.20.04.1" } ] }