It was discovered that thenify incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly use this issue to execute arbitrary code.
{ "availability": "No subscription needed", "binaries": [ { "node-thenify": "3.3.0-1+deb10u1build0.20.04.1" } ] }
{ "availability": "No subscription needed", "binaries": [ { "node-thenify": "3.3.0-1+deb10u1build0.18.04.1" } ] }