Closed mend-bolt-for-github[bot] closed 5 years ago
writable stream that concatenates strings or binary data and calls a callback with the result
path: /lethargy/node_modules/insert-module-globals/node_modules/concat-stream/package.json
Library home page: https://registry.npmjs.org/concat-stream/-/concat-stream-1.4.11.tgz
Versions of concat-stream before 1.5.2 are vulnerable to memory exposure if userp provided input is passed into write() Versions <1.3.0 are not affected due to not using unguarded Buffer constructor.
Publish Date: 2018-04-25
URL: WS-2018-0075
Base Score Metrics not available
Step up your Open Source Security Game with WhiteSource here
WS-2018-0075 - Medium Severity Vulnerability
writable stream that concatenates strings or binary data and calls a callback with the result
path: /lethargy/node_modules/insert-module-globals/node_modules/concat-stream/package.json
Library home page: https://registry.npmjs.org/concat-stream/-/concat-stream-1.4.11.tgz
Dependency Hierarchy: - :x: **concat-stream-1.4.11.tgz** (Vulnerable Library)Versions of concat-stream before 1.5.2 are vulnerable to memory exposure if userp provided input is passed into write() Versions <1.3.0 are not affected due to not using unguarded Buffer constructor.
Publish Date: 2018-04-25
URL: WS-2018-0075
Base Score Metrics not available
Step up your Open Source Security Game with WhiteSource here