VYPR

browserify-sign

by Browserify

npm: browserify-sign

Source repositories

CVEs (1)

  • CVE-2023-46234Oct 26, 2023
    risk 0.00cvss epss 0.01

    browserify-sign is a package to duplicate the functionality of node's crypto public key functions, much of this is based on Fedor Indutny's work on indutny/tls.js. An upper bound check issue in `dsaVerify` function allows an attacker to construct signatures that can be…