|
|
* Changelog entry
Type: fix
Component: contrib/restricted/http-parser/http_parser.c
Hi there,
I identified another vulnerability in a clone function http_parser_execute() in `contrib/restricted/http-parser/http_parser.c` sourced from [nodejs/node](https://github.com/nodejs/node). This issue, originally reported in-8287](https://nvd.nist.gov/vuln/detail/cve-2020-8287), was resolved in the repository via this commit https://github.com/nodejs/node/commit/fc70ce08f5818a286fb5899a1bc3aff5965a745e.
This PR applies the corresponding patch to fix the vulnerabilities in this codebase.
Please review at your convenience. Thank you!
---
Pull Request resolved: https://github.com/ytsaurus/ytsaurus/pull/1260
Co-authored-by: nadya02 <nadya02@yandex-team.com>
commit_hash:074ecc3485a1c90bd75678a6464ea12654804660
|
