EUVD-2022-6990

Malicious code in bioql PyPI...

GHSA-2J79-8PQC-R7X6 react-native-reanimated vulnerable to ReDoS

The package react-native-reanimated before 2.10.0 is vulnerable to Regular Expression Denial of Service ReDoS due to improper usage of regular expression in the parser of Colors.js...

react-native-reanimated vulnerable to ReDoS

The package react-native-reanimated before 2.10.0 is vulnerable to Regular Expression Denial of Service ReDoS due to improper usage of regular expression in the parser of Colors.js...

@armiasystems/react-native-armia-chat-sdk (>=1.0.0 <=1.0.9), @ats-components/circular-manager (>=1.0.4 <=1.0.11) +409 more potentially affected by CVE-2022-24373 via react-native-reanimated (>=1.0.0-alpha.3 <=2.0.1)

react-native-reanimated NPM version =1.0.0-alpha.3, =1.0.0, =1.0.4, =1.0.3, =0.1.0, =5.2.0, =0.0.1-alpha.22, =3.1.5, =0.1.1, =1.0.0, =2.31.0, =1.0.2, =0.1.9, =0.6.33 and more Source cves: CVE-2022-24373 Source advisory: OSV:GHSA-2J79-8PQC-R7X6...

CVE-2022-24373

The package react-native-reanimated before 3.0.0-rc.1 are vulnerable to Regular Expression Denial of Service ReDoS due to improper usage of regular expression in the parser of Colors.js...

CVE-2022-24373 Regular Expression Denial of Service (ReDoS)

The package react-native-reanimated before 3.0.0-rc.1 are vulnerable to Regular Expression Denial of Service ReDoS due to improper usage of regular expression in the parser of Colors.js...

CVE-2022-24373 Regular Expression Denial of Service (ReDoS)

The package react-native-reanimated before 3.0.0-rc.1 are vulnerable to Regular Expression Denial of Service ReDoS due to improper usage of regular expression in the parser of Colors.js...

react-native-reanimated 资源管理错误漏洞

react-native-reanimated is an open source reimplementation of an animation library for React Native by Software Mansion. A resource management error vulnerability exists in versions prior to react-native-reanimated 3.0.0-rc.1, which stems from the incorrect use of regular expressions by the...

PT-2022-16652 · Unknown +1 · React-Native-Reanimated +1

Name of the Vulnerable Software and Affected Versions: react-native-reanimated versions prior to 3.0.0-rc.1 react-native-reanimated versions prior to 2.10.0 Description: The issue is related to a Regular Expression Denial of Service ReDoS in the parser of Colors.js due to improper usage of regula...

@toggled-apps/react-native-collapsible-scroll (>=1.0.0 <=1.0.2), @toggled-apps/react-native-product-carousel (=1.0.3) +9 more potentially affected by CVE-2022-24373 via react-native-reanimated (>=2.0.0-rc.0 <=2.0.1)

react-native-reanimated NPM version =2.0.0-rc.0, =1.0.0, =1.0.0, =41.0.0, =41.0.0, =1.0.0, =1.1.0, =1.1.2 - ui-ux =0.0.1 Source cves: CVE-2022-24373 Source advisory: SNYK:JS-REACTNATIVEREANIMATED-2949507...

Regular Expression Denial of Service (ReDoS)

Overview react-native-reanimated is a More powerful alternative to Animated library for React Native. Affected versions of this package are vulnerable to Regular Expression Denial of Service ReDoS due to improper usage of regular expression in the parser of Colors.js. PoC js new...