![Debian LTS: DLA-3488-1: node-tough-cookie security update Debian LTS: DLA-3488-1: node-tough-cookie security update](https://search.ai.wiki/wp-content/uploads/2023/07/debian-lts-dla-3488-1-node-tough-cookie-security-update.jpg)
Debian LTS: DLA-3488-1: node-tough-cookie security update
Kokorin Vsevolod discovered a Prototype Pollution vulnerability in node-tough-cookie, a RFC6265 Cookies and Cookie Jar library for node.js. The issue is due to improper handling of Cookies when using CookieJar in rejectPublicSuffixes=false mode.