File _patchinfo of Package patchinfo.41877

<patchinfo incident="41877">
  <issue tracker="bnc" id="1254481">VUL-0: CVE-2025-66453: rhino: high CPU consumption leading to DoS when an application passes an attacker controlled floating point number into the `toFixed()` function</issue>
  <issue tracker="cve" id="2025-66453"/>
  <packager>fstrba</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for rhino</summary>
  <description>This update for rhino fixes the following issues:

Update to version 1.7.15.1.

Security issues fixed:

- CVE-2025-66453: high CPU consumption when processing specific numbers via the `toFixed()` function (bsc#1254481).

Other changes and issues fixed:
  
- Version 1.7.15:
  * Basic support for "rest parameters".
  * Improvements in Unicode support.
  * "Symbol.species" implemented in many places.
  * More correct property ordering in many places.
  * Miscellaneous improvements and bug fixes.
</description>
</patchinfo>
Places

File _patchinfo of Package patchinfo.41877

Places
