Cov neeg tawm tsam tau tswj kom tau txais kev tswj hwm ntawm coa NPM pob thiab tso tawm qhov hloov tshiab 2.0.3, 2.0.4, 2.1.1, 2.1.3 thiab 3.1.3, uas suav nrog kev hloov pauv tsis zoo. Cov pob coa, uas muab kev ua haujlwm rau kev txheeb xyuas cov kab lus sib cav, muaj txog 9 lab rub tawm hauv ib lub lis piam thiab siv los ua kev vam khom rau 159 lwm cov pob NPM, suav nrog cov ntawv react-scripts thiab vue/cli-service. NPM cov thawj coj twb tau tshem tawm qhov kev tso tawm nrog kev hloov pauv tsis zoo thiab thaiv kev tshaj tawm cov ntawv tshiab kom txog thaum nkag mus rau lub ntsiab tus tsim tawm lub chaw khaws cia.
Qhov kev tawm tsam tau ua los ntawm kev nyiag tus account ntawm tus tsim tawm qhov project. Cov kev hloov pauv tsis zoo ntxiv yog zoo ib yam li cov siv hauv kev tawm tsam rau cov neeg siv ntawm UAParser.js NPM pob ob lub lis piam dhau los, tab sis raug txwv rau qhov kev tawm tsam nkaus xwb ntawm Windows platform (qhov khoob khoob tau tso rau hauv qhov rub tawm rau Linux thiab macOS) . Cov ntaub ntawv ua tiav tau raug rub tawm thiab tso tawm mus rau tus neeg siv lub kaw lus los ntawm tus tswv tsev sab nraud rau mine Monero cryptocurrency (lub XMRig miner tau siv) thiab lub tsev qiv ntawv rau cuam tshuam cov passwords raug teeb tsa.
Ib qho yuam kev tau ua thaum tsim ib pob nrog cov lej tsis zoo uas ua rau kev teeb tsa ntawm lub pob ua tsis tiav, yog li qhov teeb meem tau txheeb xyuas sai thiab qhov kev faib tawm ntawm qhov tsis zoo hloov tshiab tau thaiv thaum ntxov. Cov neeg siv yuav tsum xyuas kom meej tias lawv muaj version coa 2.0.2 ntsia thiab nws yog ib qho tsim nyog los ntxiv qhov txuas mus rau qhov ua haujlwm version hauv package.json ntawm lawv cov haujlwm hauv rooj plaub ntawm kev sib tham. npm and yarn: "resolutions": { "coa": "2.0.2" }, pnpm: "pnpm": { "overrides": { "coa": "2.0.2" } },
Tau qhov twg los: opennet.ru