CVE-2021-34479 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	Medium
Remote	No
Type	Content spoofing
Description	A security issue has been found in Visual Studio Code before version 1.59.0. Guessable nonces in WebView could be abused for content spoofing.

Group	Package	Affected	Fixed	Severity	Status	Ticket
AVG-2427	code	1.58.0-1	1.60.2-1	Medium	Fixed

References
https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2021-34479 https://github.com/microsoft/vscode/issues/128557 https://github.com/microsoft/vscode/commit/5b8ce768f38a9466e493a63499b32fbea7e2f7bb

References

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2021-34479
https://github.com/microsoft/vscode/issues/128557
https://github.com/microsoft/vscode/commit/5b8ce768f38a9466e493a63499b32fbea7e2f7bb