CVE-2020-36661
CVE-2020-36661 affects Kong lua-multipart 0.5.8-1. The vulnerability resides in the is_header function in src/multipart.lua, causing inefficient regular expression complexity (redos). The issue has a stated fix: upgrade to version 0.5.9-1, with the patch identified as d632e5df43a2928fd537784a99a7...