CVE-2021-32773 log

Severity Medium
Remote Yes
Type Sandbox escape
In Racket versions prior to 8.2, code evaluated using the Racket sandbox could cause system modules to incorrectly use attacker-created modules instead of their intended dependencies. This could allow system functions to be controlled by the attacker, giving access to facilities intended to be restricted.
Group Package Affected Fixed Severity Status Ticket
AVG-2175 racket 8.1-1 8.2-1 Medium Fixed
Date Advisory Group Package Severity Type
20 Jul 2021 ASA-202107-39 AVG-2175 racket Medium sandbox escape