textract icon indicating copy to clipboard operation
textract copied to clipboard

Published 20 hours ago verified publisher icon dbashford

CVE-2021-23362

Open prafullkulkarni opened this issue 3 years ago • 5 comments

Hi,

A vulnerability has been reported on hosted-git-info

The package hosted-git-info before 3.0.8 are vulnerable to Regular Expression Denial of Service (ReDoS) via regular expression shortcutMatch in the fromUrl function in index.js. The affected regular expression exhibits polynomial worst-case time complexity.

prafullkulkarni avatar Apr 13 '21 12:04 prafullkulkarni

Hi @dbashford Did you get chance to look into it and have an update?

prafullkulkarni avatar Apr 26 '21 06:04 prafullkulkarni

Hi @dbashford any update on this issue?

prafullkulkarni avatar May 28 '21 06:05 prafullkulkarni

Hi @dbashford Did you get chance to look into it and have an update?

prafullkulkarni avatar Jun 07 '21 05:06 prafullkulkarni

Hi @dbashford Any update on this issue?

prafullkulkarni avatar Sep 14 '21 06:09 prafullkulkarni

Hi @dbashford Any specific reason, there is no update on this issue?

prafullkulkarni avatar Oct 08 '21 09:10 prafullkulkarni