[Snyk] Upgrade multiaddr from 8.0.0 to 10.0.1 #32

MarcelRaschke · 2022-09-24T17:47:26Z

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade multiaddr from 8.0.0 to 10.0.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

Warning: This is a major version upgrade, and may be a breaking change.

The recommended version is 8 versions ahead of your current version.
The recommended version was released a year ago, on 2021-08-19.

The recommended version fixes:

Issue	PriorityScore (*)	Exploit Maturity
Prototype Pollution SNYK-JS-Y18N-1021887	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Arbitrary File Write SNYK-JS-TAR-1579155	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Arbitrary File Write SNYK-JS-TAR-1579152	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Arbitrary File Write SNYK-JS-TAR-1579147	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Arbitrary File Overwrite SNYK-JS-TAR-1536531	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Arbitrary File Overwrite SNYK-JS-TAR-1536528	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Arbitrary File Write SNYK-JS-TAR-1579155	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Arbitrary File Write SNYK-JS-TAR-1579152	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Arbitrary File Write SNYK-JS-TAR-1579147	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Arbitrary File Overwrite SNYK-JS-TAR-1536531	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Arbitrary File Overwrite SNYK-JS-TAR-1536528	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Remote Code Execution (RCE) SNYK-JS-SHELLQUOTE-1766506	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Improper Privilege Management SNYK-JS-SHELLJS-2332187	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVERREGEX-1585624	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVERREGEX-1584358	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-NTHCHECK-1586032	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Pollution SNYK-JS-MERGEDEEP-1070277	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Prototype Pollution SNYK-JS-JSONSCHEMA-1920922	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Prototype Pollution SNYK-JS-I18NEXT-1065979	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-3014407	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-2994414	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-2992478	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-2992453	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Denial of Service (DoS) SNYK-JS-ELECTRON-2961655	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Type Confusion SNYK-JS-ELECTRON-2946891	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Heap-based Buffer Overflow SNYK-JS-ELECTRON-2946881	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Mature
Use After Free SNYK-JS-ELECTRON-2870632	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Heap-based Buffer Overflow SNYK-JS-ELECTRON-2838863	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-2824110	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-2812497	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Inappropriate implementation SNYK-JS-ELECTRON-2808874	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-2808873	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-2808872	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-2807809	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-2807804	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Improper Input Validation SNYK-JS-ELECTRON-2807803	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Heap-based Buffer Overflow SNYK-JS-ELECTRON-2806730	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Type Confusion SNYK-JS-ELECTRON-2806357	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-2805927	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-2774694	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Type Confusion SNYK-JS-ELECTRON-2434822	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Mature
Use After Free SNYK-JS-ELECTRON-2404183	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Type Confusion SNYK-JS-ELECTRON-2339883	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-2330890	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Type Confusion SNYK-JS-ELECTRON-2329257	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-2329162	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-2322001	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Mature
Use After Free SNYK-JS-ELECTRON-1924893	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-WS-1296835	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVERREGEX-2824151	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVERREGEX-1047770	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Pollution SNYK-JS-PATHVAL-596926	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHPARSE-1077067	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Information Exposure SNYK-JS-NODEFETCH-2342118	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Information Exposure SNYK-JS-NANOID-2332193	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Pollution SNYK-JS-I18NEXT-585930	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Buffer Overflow SNYK-JS-I18NEXT-575536	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-HAPISTATEHOOD-2769251	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Prototype Pollution SNYK-JS-FLAT-596927	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Improper Authentication SNYK-JS-ELECTRON-2992482	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Access Control Bypass SNYK-JS-ELECTRON-2978519	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Buffer Overflow SNYK-JS-ELECTRON-2978483	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Improper Input Validation SNYK-JS-ELECTRON-2977512	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Information Exposure SNYK-JS-ELECTRON-2977510	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Protection Mechanism Failure SNYK-JS-ELECTRON-2934721	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Improper Input Validation SNYK-JS-ELECTRON-2932172	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Exposure of Resource to Wrong Sphere SNYK-JS-ELECTRON-2869410	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Improper Input Validation SNYK-JS-ELECTRON-2869408	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Inappropriate implementation SNYK-JS-ELECTRON-2812499	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Inappropriate implementation SNYK-JS-ELECTRON-2807802	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Type Confusion SNYK-JS-ELECTRON-2805803	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Mature
Use After Free SNYK-JS-ELECTRON-2420994	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Integer Overflow or Wraparound SNYK-JS-ELECTRON-2420972	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-2414027	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Mature
Improper Check or Handling of Exceptional Conditions SNYK-JS-ELECTRON-2404184	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Interger Underflow SNYK-JS-ELECTRON-2351961	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-2338684	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Type Confusion SNYK-JS-ELECTRON-1930826	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Improper implementation SNYK-JS-ELECTRON-2803053	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Type Confusion SNYK-JS-ELECTRON-2803052	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-2434824	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Information Exposure SNYK-JS-ELECTRON-2422385	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Improper Control of a Resource Through its Lifetime SNYK-JS-ELECTRON-2332176	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Domain Spoofing SNYK-JS-ELECTRON-2329155	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Inappropriate Implementation SNYK-JS-ELECTRON-1924895	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Inappropriate Implementation SNYK-JS-ELECTRON-1924894	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Information Exposure SNYK-JS-ELECTRON-1912085	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Mature
Regular Expression Denial of Service (ReDoS) SNYK-JS-TAR-1536758	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-TAR-1536758	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Prototype Pollution SNYK-JS-MINIMIST-2429795	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Improper Access Control SNYK-JS-ELECTRON-2431353	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Improper Input Validation SNYK-JS-ELECTRON-2332173	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Heap-based Buffer Overflow SNYK-JS-ELECTRON-1912084	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Heap-based Buffer Overflow SNYK-JS-ELECTRON-1912082	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-1912075	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-1912074	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Type Confusion SNYK-JS-ELECTRON-1911949	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Use After Free SNYK-JS-ELECTRON-1910987	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-1910985	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Mature
Type Confusion SNYK-JS-ELECTRON-1656752	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Access Restriction Bypass SNYK-JS-ELECTRON-1656746	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Out-of-Bounds SNYK-JS-ELECTRON-1656745	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-1656743	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Mature
Buffer Overflow SNYK-JS-ELECTRON-1656742	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Type Confusion SNYK-JS-ELECTRON-1586050	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-1536587	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-1536581	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Type Confusion SNYK-JS-ELECTRON-1534883	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Mature
Use After Free SNYK-JS-ELECTRON-1534882	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-1534881	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-1533614	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-1315151	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-1314896	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-1313765	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Mature
Use After Free SNYK-JS-ELECTRON-1312315	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Access of Resource Using Incompatible Type ('Type Confusion') SNYK-JS-ELECTRON-1312314	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Mature
Use After Free SNYK-JS-ELECTRON-1312313	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Heap-based Buffer Overflow SNYK-JS-ELECTRON-1296565	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Race Condition SNYK-JS-ELECTRON-1296563	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-1296561	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Type Confusion SNYK-JS-ELECTRON-1296559	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Use After Free SNYK-JS-ELECTRON-1296557	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Heap-based Buffer Overflow SNYK-JS-ELECTRON-1296555	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Heap-based Buffer Overflow SNYK-JS-ELECTRON-1296553	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Integer Overflow SNYK-JS-ELECTRON-1277205	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Heap-based Buffer Overflow SNYK-JS-ELECTRON-1277203	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Out-of-bounds Read SNYK-JS-ELECTRON-1261111	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Integer Overflow or Wraparound SNYK-JS-ELECTRON-1260586	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-1259349	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-1258207	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Improper Access Control SNYK-JS-ELECTRON-1910991	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Exposure of Resource to Wrong Sphere SNYK-JS-ELECTRON-1910988	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Sandbox Bypass SNYK-JS-ELECTRON-1731315	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Improper Input Validation SNYK-JS-ELECTRON-1727344	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Mature
Improper Input Validation SNYK-JS-ELECTRON-1727342	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Out-of-Bounds SNYK-JS-ELECTRON-1585619	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Mature
Use After Free SNYK-JS-ELECTRON-1536579	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Heap-based Buffer Overflow SNYK-JS-ELECTRON-1534884	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Out-of-bounds Write SNYK-JS-ELECTRON-1315668	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-1313767	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Improper Input Validation SNYK-JS-ELECTRON-1277526	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Out Of Bounds Read SNYK-JS-ELECTRON-1278596	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Out-of-bounds SNYK-JS-ELECTRON-1257943	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Mature
Use After Free SNYK-JS-ELECTRON-1253281	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-1253279	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-1252280	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-1252279	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Mature
Insecure Defaults SNYK-JS-ELECTRON-1088602	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Out-of-bounds Write SNYK-JS-ELECTRON-1088600	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Mature
Use After Free SNYK-JS-ELECTRON-1087442	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Improper Input Validation SNYK-JS-ELECTRON-1086695	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Out-of-Bounds SNYK-JS-ELECTRON-1086693	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Out-of-Bounds SNYK-JS-ELECTRON-1085996	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-1085994	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-1085705	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Mature
Heap Buffer Overflow SNYK-JS-ELECTRON-1085647	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Insufficient Validation SNYK-JS-ELECTRON-1070014	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-1064561	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-1064558	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Insufficient Validation SNYK-JS-ELECTRON-1050882	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Mature
Use After Free SNYK-JS-ELECTRON-1050424	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-1049547	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Improper Input Validation SNYK-JS-ELECTRON-1049323	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Improper Access Control SNYK-JS-ELECTRON-1049321	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Heap-based Buffer Overflow SNYK-JS-ELECTRON-1048693	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Improper Validation SNYK-JS-ELECTRON-1047306	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Mature
Use After Free SNYK-JS-ELECTRON-1041745	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Mature
Heap-based Buffer Overflow SNYK-JS-ELECTRON-1021884	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Mature
Prototype Pollution SNYK-JS-ASYNC-2441827	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Pollution SNYK-JS-ASYNC-2441827	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Prototype Pollution SNYK-JS-AJV-584908	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Access Restriction Bypass SNYK-JS-ELECTRON-1086694	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Information Exposure SNYK-JS-ELECTRON-1085998	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-1070015	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Use After Free SNYK-JS-ELECTRON-1070013	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Out-of-bounds Read SNYK-JS-ELECTRON-1051000	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Information Exposure SNYK-JS-ELECTRON-1065981	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Improper Input Validation SNYK-JS-ELECTRON-1064555	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Use After Free SNYK-JS-ELECTRON-1050999	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Remote Code Execution (RCE) SNYK-JS-EJS-2803307	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Information Exposure SNYK-JS-ELECTRON-1050427	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
Arbitrary Code Injection SNYK-JS-EJS-1049328	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-COLORSTRING-1082939	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: multiaddr

10.0.1 - 2021-08-19
10.0.0 - 2021-07-06
9.0.2 - 2021-06-23
9.0.1 - 2021-04-08
9.0.0 - 2021-04-08
8.1.2 - 2020-12-11
8.1.1 - 2020-10-30
8.1.0 - 2020-10-29
8.0.0 - 2020-08-07

from multiaddr GitHub release notes

Commit messages

Package name: multiaddr

5f1e3d6 chore: release version v10.0.1
665ece7 chore: update contributors
1296370 chore: remove .DS_Store file
19e6f14 chore: update uint8arrays (Update eslint to version 2.5.1 🚀 ipfs/ipfs-desktop#206)
3014294 chore: release version v10.0.0
755d494 chore: update contributors
7e3aff9 chore: update to new multiformats (Update electron-prebuilt to version 0.37.0 🚀 ipfs/ipfs-desktop#200)
0b3bfe5 chore: release version v9.0.2
25a37c0 chore: update contributors
2201344 Support buffer with any byteOffset values instead of 0 (Update electron-prebuilt to version 0.37.1 🚀 ipfs/ipfs-desktop#201)
a95b991 chore(deps-dev): bump sinon from 10.0.1 to 11.1.1 (Update ipfs-geoip to version 2.0.0 🚀 ipfs/ipfs-desktop#199)
b58474f chore: release version v9.0.1
cc9e03e chore: update contributors
54633f4 fix: types property (Update eslint to version 2.2.0 🚀 ipfs/ipfs-desktop#195)
9067450 chore: update changelog with breaking change examples
ac7da1b chore: release version v9.0.0
15f36bc chore: update contributors
7d284e4 feat: add types (Update eslint to version 2.0.0 🚀 ipfs/ipfs-desktop#189)
aac0144 chore: release version v8.1.2
d56cf70 chore: update contributors
0ac20ba fix: tell bundlers to return false for node dns module (Update lodash to version 4.0.1 🚀 ipfs/ipfs-desktop#163)
1cc85e3 cho...

Snyk has created this PR to upgrade multiaddr from 8.0.0 to 10.0.1. See this package in npm: https://www.npmjs.com/package/multiaddr See this project in Snyk: https://app.snyk.io/org/marcelraschke/project/f493f1be-5ead-445d-8c10-80d817e7ff4e?utm_source=github&utm_medium=referral&page=upgrade-pr

MarcelRaschke merged commit 567f862 into master Sep 28, 2022

delete-merged-branch bot deleted the snyk-upgrade-251f6cb4b2b9fddb453964d4d7757c81 branch September 28, 2022 02:27

MarcelRaschke self-assigned this Sep 28, 2022

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Snyk] Upgrade multiaddr from 8.0.0 to 10.0.1 #32

[Snyk] Upgrade multiaddr from 8.0.0 to 10.0.1 #32

MarcelRaschke commented Sep 24, 2022

[Snyk] Upgrade multiaddr from 8.0.0 to 10.0.1 #32

[Snyk] Upgrade multiaddr from 8.0.0 to 10.0.1 #32

Conversation

MarcelRaschke commented Sep 24, 2022

Snyk has created this PR to upgrade multiaddr from 8.0.0 to 10.0.1.