2 matches found
EUVD-2023-0326
Malicious code in bioql PyPI...
GHSA-3XQ5-WJFH-PPJC Luxon Inefficient Regular Expression Complexity vulnerability
Impact Luxon's DateTime.fromRFC2822 has quadratic N^2 complexity on some specific inputs. This causes a noticeable slowdown for inputs with lengths above 10k characters. Users providing untrusted data to this method are therefore vulnerable to ReDoS attacks. This is the same bug as Moment's...