---

CVE-2021-32773 - log back

CVE-2021-32773 edited at 20 Jul 2021 08:09:58
References	https://github.com/racket/racket/security/advisories/GHSA-cgrw-p7p7-937c + https://github.com/racket/racket/commit/9877b84eaadd14e54e555b9f0ac8d784474795ce

CVE-2021-32773 edited at 20 Jul 2021 08:09:16
Severity	- Unknown + Medium
Remote	- Unknown + Remote
Type	- Unknown + Sandbox escape
Description	+ In Racket versions prior to 8.2, code evaluated using the Racket sandbox could cause system modules to incorrectly use attacker-created modules instead of their intended dependencies. This could allow system functions to be controlled by the attacker, giving access to facilities intended to be restricted.
References	+ https://github.com/racket/racket/security/advisories/GHSA-cgrw-p7p7-937c
Notes

CVE-2021-32773 created at 20 Jul 2021 08:04:42