Описание
The trim-newlines package before 3.0.1 and 4.x before 4.0.1 for Node.js has an issue related to regular expression denial-of-service (ReDoS) for the .end() method.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 1.0.0-1ubuntu0.18.04.1 |
| devel | needs-triage | |
| esm-apps/bionic | released | 1.0.0-1ubuntu0.18.04.1 |
| esm-apps/focal | released | 1.0.0-1ubuntu0.20.04.1 |
| esm-apps/jammy | not-affected | 3.0.0+~3.0.0-1 |
| esm-apps/noble | needs-triage | |
| esm-infra-legacy/trusty | DNE | |
| focal | released | 1.0.0-1ubuntu0.20.04.1 |
| groovy | ignored | end of life |
| hirsute | ignored | end of life |
Показывать по
EPSS
5 Medium
CVSS2
7.5 High
CVSS3
Связанные уязвимости
The trim-newlines package before 3.0.1 and 4.x before 4.0.1 for Node.js has an issue related to regular expression denial-of-service (ReDoS) for the .end() method.
The trim-newlines package before 3.0.1 and 4.x before 4.0.1 for Node.js has an issue related to regular expression denial-of-service (ReDoS) for the .end() method.
The trim-newlines package before 3.0.1 and 4.x before 4.0.1 for Node.j ...
Uncontrolled Resource Consumption in trim-newlines
EPSS
5 Medium
CVSS2
7.5 High
CVSS3