Fix CVE-2021-27568 change wrong affected_range (!6889) · Merge requests · GitLab.org / security-products / advisory-database · GitLab

Thanks you for this project.

This MR is fix adovisory for CVE-2021-27568.

affected_range: "[1.3.2,2.3.1),[2.4,2.4.1)" is wrong.

According to NVD, json-smart 1.3.2 does not vulnerable.
https://nvd.nist.gov/vuln/detail/CVE-2021-27568

Deep respect.

Edited May 30, 2021 by Masahiro Fujimura