npm

Severity: moderate

Regular Expression Denial of Service

riot-compiler

Overview

Affected versions of riot-compiler are susceptible to a regular expression denial of service vulnerability.

Remediation

Update to version 2.3.22 or later.

Resources

Have content suggestions? Send them to [email protected]

Advisory timeline

  1. published

    Advisory published
    Mar 21st, 2016
  2. reported

    Initial report by Alberto Martínez
    Mar 18th, 2016