The debug module is vulnerable to regular expression denial of service when untrusted user input is passed into the o formatter. It takes around 50k characters to block for 2 seconds making this a low severity issue.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | node-debug | < 3.1.0-1 | node-debug_3.1.0-1_all.deb |
Debian | 11 | all | node-debug | < 3.1.0-1 | node-debug_3.1.0-1_all.deb |
Debian | 10 | all | node-debug | < 3.1.0-1 | node-debug_3.1.0-1_all.deb |
Debian | 999 | all | node-debug | < 3.1.0-1 | node-debug_3.1.0-1_all.deb |
Debian | 13 | all | node-debug | < 3.1.0-1 | node-debug_3.1.0-1_all.deb |