Regular Expression Denial of Servicehawk
hawk prior to 3.1.3, or 4.x prior to 4.1.1 are affected by a regular expression denial of service vulnerability related to excessively long headers and URI's.
Update to hawk version 4.1.1 or later.
Have content suggestions? Send them to [email protected]
publishedAdvisory publishedJan 19th, 2016
reportedInitial report by Adam BaldwinJan 19th, 2016