VYPR

npm package

ced

pkg:npm/ced

Vulnerabilities (1)

  • CVE-2021-39131Aug 17, 2021
    affected < 1.0.0fixed 1.0.0

    ced detects character encoding using Google’s compact_enc_det library. In ced v0.1.0, passing data types other than `Buffer` causes the Node.js process to crash. The problem has been patched in ced v1.0.0. As a workaround, before passing an argument to ced, verify it’s a `Buffer`