search

facebook / fbjs

A collection of utility libraries used by other Meta JS projects.
MIT License
1.95k stars 313 forks source link

ua-parser-js ReDoS Vulnerability #500

Closed mathiasritter closed 1 year ago

mathiasritter commented 1 year ago

This library is using ua-parser-js version 0.7.30, which has a regular expression denial of service vulnerability. See CVE-2022-25927

gizm000 commented 1 year ago

Is there any progress on this issue? I'd like to see this resolved as soon as possible.