lockss/lockss-daemon

Releases548

Frequency2 weeks 1 day

Last Release 14 days ago

Stars70

Classic LOCKSS System (LOCKSS 1.x)

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2023-42183 ↗	Dec 15, 2023Friday, 15 December 2023, 01:15	5.3 MEDIUM	—
lockss-daemon (aka Classic LOCKSS Daemon) before 1.77.3 performs post-Unicode normalization, which may allow bypass of intended access restrictions, such as when U+1FEF is converted to a backtick.