CVE-2017-20165

A vulnerability classified as problematic has been found in debug-js debug up to 3.0.x. This affects the function useColors of the file src/node.js. The manipulation of the argument str leads to inefficient regular expression complexity. Upgrading to version 3.1.0 is able to address this issue. T...

Security Bulletin: IBM Planning Analytics Workspace is affected by vulnerabilities in multiple Open Source Software (OSS) components

Summary There are vulnerabilities in multiple Open Source Software OSS components consumed by IBM Planning Analytics Workspace. IBM Planning Analytics Workspace 2.0 Release 94 has addressed the applicable CVEs by upgrading or removing the vulnerable libraries. Please refer to the table in the...

@bahmutov/add-typescript-to-cypress (>=1.0.2 <=1.1.1), @betit/orion (>=1.0.0-beta.1 <=1.0.0-beta.6) +178 more potentially affected by CVE-2017-20165 via debug (>=3.0.0 <=3.0.1)

debug NPM version =3.0.0, =1.0.2, =1.0.0-beta.1, =1.0.0-beta.6, =2.0.1-SNAPSHOT.88, =0.0.4, =0.0.12, =1.0.1, =1.0.0, =1.0.0, =0.1.5, =2.8.0, =1.0.71, =1.0.10-14, =1.1.16 and more Source cves: CVE-2017-20165 Source advisory: OSV:GHSA-9VVW-CC9W-F27H...

CVE-2017-20165

A vulnerability classified as problematic has been found in debug-js debug up to 3.0.x. This affects the function useColors of the file src/node.js. The manipulation of the argument str leads to inefficient regular expression complexity. Upgrading to version 3.1.0 is able to address this issue. T...

CVE-2017-20165

CVE-2017-20165 affects the debug-js package (debug up to 3.0.x). The vulnerability is in the useColors function in src/node.js, where manipulating the argument str leads to inefficient regular-expression complexity (ReDoS). A fix is available in version 3.1.0, and the patch is identified as c38a0...