word-wrap vulnerable to Regular Expression Denial of Service #79

Closed
opened 2023-07-25 21:04:45 +01:00 by Vylpes · 1 comment
Owner

Package: word-wrap (nom)
Affected Versions: < 1.2.4
Patched Version: 1.2.4


All versions of the package word-wrap are vulnerable to Regular Expression Denial of Service (ReDoS) due to the usage of an insecure regular expression within the result variable.

Package: word-wrap (nom) Affected Versions: < 1.2.4 Patched Version: 1.2.4 --- All versions of the package word-wrap are vulnerable to Regular Expression Denial of Service (ReDoS) due to the usage of an insecure regular expression within the result variable.
Vylpes added the
type
dependencies
label 2023-07-25 21:04:51 +01:00
Vylpes added this to the 2.1.4 milestone 2023-07-25 21:05:19 +01:00
Vylpes started working 2023-09-13 11:45:23 +01:00
Author
Owner

Fixed but can't deploy right now as drone won't accept auth token, need to investigate

Fixed but can't deploy right now as drone won't accept auth token, need to investigate
Vylpes stopped working 2023-09-13 12:03:27 +01:00
18 minutes 4 seconds
Sign in to join this conversation.
No milestone
No project
No assignees
1 participant
Notifications
Total time spent: 18 minutes 4 seconds
Vylpes
18 minutes 4 seconds
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: RabbitLabs/random-bunny#79
No description provided.