Use of Sha-1 in tusdotnet
Low severity
GitHub Reviewed
Published
Nov 29, 2021
to the GitHub Advisory Database
•
Updated Feb 1, 2023
Withdrawn
This advisory was withdrawn on Nov 30, 2021
Description
Published by the National Vulnerability Database
Nov 22, 2021
Reviewed
Nov 23, 2021
Published to the GitHub Advisory Database
Nov 29, 2021
Withdrawn
Nov 30, 2021
Last updated
Feb 1, 2023
Withdrawn
After reviewing this CVE, we have withdrawn this advisory due to it not having actual security impact.
Original Advisory
The client in tusdotnet through 2.5.0 relies on SHA-1 to prevent spoofing of file content.
References