CVE-2021-3769

CVE-2021-3769

# Vulnerability in `pygmalion`, `pygmalion-virtualenv` and `refined` themes **Description**: these themes use `print -P` on user-supplied strings to print them to the terminal. All of them do that on git information, particularly the branch name, so if the branch has a specially-crafted name the vulnerability can be exploited. **Fixed in**: [b3ba9978](https://github.com/ohmyzsh/ohmyzsh/commit/b3ba9978). **Impacted areas**: – `pygmalion` theme. – `pygmalion-virtualenv` theme. – `refined` theme.

Source: CVE-2021-3769

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다