Source: r-base Severity: grave Tags: security Please see https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-9060
I'm not sure whether this has been properly reported to the upstream
developers. The timeline of the Github link above mentions
03-27-18: Emailed author, no response
04-03-18: Emailed author, no response
04-10-18: Emailed author, no response
04-23-18: New version released; Submitted public disclosure
but it's not obvious who they contacted.
Cheers,
Moritz
