Moderate severityNVD Advisory· Published Aug 18, 2021· Updated Sep 16, 2024
Regular Expression Denial of Service (ReDoS)
CVE-2021-23425
Description
All versions of package trim-off-newlines are vulnerable to Regular Expression Denial of Service (ReDoS) via string processing.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
trim-off-newlinesnpm | < 1.0.3 | 1.0.3 |
Affected products
2- trim-off-newlines/trim-off-newlinesdescription
Patches
Vulnerability mechanics
References
6- github.com/advisories/GHSA-38fc-wpqx-33j7ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2021-23425ghsaADVISORY
- github.com/stevemao/trim-off-newlines/blob/master/index.js%23L6ghsax_refsource_MISCWEB
- github.com/stevemao/trim-off-newlines/pull/3ghsaWEB
- snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1567197ghsax_refsource_MISCWEB
- snyk.io/vuln/SNYK-JS-TRIMOFFNEWLINES-1296850ghsax_refsource_MISCWEB
News mentions
0No linked articles in our index yet.