isaacs/chownr

Releases11

Frequency1 year 2 months

Last Release about 2 years ago

Stars29

Like `chown -R`

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2017-18869 ↗	Jun 15, 2020Monday, 15 June 2020, 15:15	2.5 LOW	1.9 LOW
A TOCTOU issue in the chownr package before 1.1.0 for Node.js 10.10 could allow a local attacker to trick it into descending into unintended directories via symlink attacks.