AVG-2427 log

Package code
Status Fixed
Severity Medium
Type multiple issues
Affected 1.58.0-1
Fixed 1.60.2-1
Current 1.96.0-1 [extra]
Ticket None
Created Wed Sep 29 09:01:13 2021
Issue Severity Remote Type Description
CVE-2021-34528 Medium Yes Arbitrary code execution
A security issue has been found in Visual Studio Code before version 1.59.0. Using Git in untrusted workspaces could lead to arbitrary code execution. This...
CVE-2021-34479 Medium No Content spoofing
A security issue has been found in Visual Studio Code before version 1.59.0. Guessable nonces in WebView could be abused for content spoofing.
CVE-2021-26437 Medium No Content spoofing
A spoofing security issue has been found in Visual Studio Code version 1.59.1.