NextGuard
UNKNOWNCVE-2021-33623

Uncontrolled Resource Consumption in trim-newlines

Platform

nodejs

Component

trim-newlines

Fixed in

3.0.1

View on NVD

@rkesters/gnuplot is an easy to use node module to draw charts using gnuplot and ps2pdf. The trim-newlines package before 3.0.1 and 4.x before 4.0.1 for Node.js has an issue related to regular expression denial-of-service (ReDoS) for the `.end()` method.

How to fix

Actualice el paquete trim-newlines a la versión 3.0.1 o superior, o a la versión 4.0.1 o superior, para corregir la vulnerabilidad de denegación de servicio por expresión regular (ReDoS) en el método .end(). Esto se puede hacer ejecutando `npm install trim-newlines@latest` o `yarn upgrade trim-newlines`.

Monitor your dependencies automatically

Get notified when new vulnerabilities affect your projects. Free forever.

Start free
CVE-2021-33623 — Vulnerability Details | NextGuard | NextGuard