Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2021-23364HistoryApr 28, 2021 - 4:15 p.m.
CVE-2021-23364
2021-04-2816:15:00
Debian Security Bug Tracker
security-tracker.debian.org
10
0.002 Low
EPSS
Percentile
57.1%
The package browserslist from 4.0.0 and before 4.16.5 are vulnerable to Regular Expression Denial of Service (ReDoS) during parsing of queries.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | node-browserslist | < 4.16.3+~cs5.4.72-2 | node-browserslist_4.16.3+~cs5.4.72-2_all.deb |
| Debian | 11 | all | node-browserslist | < 4.16.3+~cs5.4.72-2 | node-browserslist_4.16.3+~cs5.4.72-2_all.deb |
| Debian | 10 | all | node-browserslist | <= 2.11.3-1 | node-browserslist_2.11.3-1_all.deb |
| Debian | 999 | all | node-browserslist | < 4.16.3+~cs5.4.72-2 | node-browserslist_4.16.3+~cs5.4.72-2_all.deb |
| Debian | 13 | all | node-browserslist | < 4.16.3+~cs5.4.72-2 | node-browserslist_4.16.3+~cs5.4.72-2_all.deb |
Related
cve
cve
CVE-2021-23364
2021-04-28 16:15:00
redhatcve
redhatcve
CVE-2021-23364
2021-04-30 17:49:22
ibm
ibm
Security Bulletin: Open Source Dependency Vulnerability
2023-05-15 18:11:50
nodejs
nodejs
Regular Expression Denial of Service
2021-05-24 19:56:39
osv
osv
Regular Expression Denial of Service in browserslist
2021-05-24 19:52:40
CVE-2021-23364
2021-04-28 16:15:08
ubuntucve
ubuntucve
CVE-2021-23364
2021-04-28 00:00:00
github
github
Regular Expression Denial of Service in browserslist
2021-05-24 19:52:40
veracode
veracode
Regular Expression Denial Of Service (ReDoS)
2021-04-23 01:46:56
cvelist
cvelist
CVE-2021-23364 Regular Expression Denial of Service (ReDoS)
2021-04-28 00:00:00
prion
prion
Design/Logic Flaw
2021-04-28 16:15:00
redhat
redhat