Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

CROSSSPAWN-8303230: Regular Expression Denial of Service (ReDoS) affecting cross-spawn package in versión 11.0.0 of Glob #615

Open
Miguelmatas998 opened this issue Nov 8, 2024 · 1 comment

Comments

@Miguelmatas998
Copy link

There is a vulnerability in version 11.0.0 of Glob originating from the cross-spawn 7.0.4 (CVE-2024-21538).

I am requesting a fix, as the cross-spawn library has already addressed this issue in version 7.0.5.

I appreciate your prompt attention to this matter. I look forward to a resolution.

@draialexis
Copy link

I have a PR open to fix the vuln in the relevant dependency: tapjs/foreground-child#60

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

2 participants