Open larrycameron80 opened 5 years ago
Denial of Service (DoS) Vulnerable module: mem Introduced through: react-scripts@2.1.1 Detailed paths Introduced through: project-hydro-website@hydrogen-dev/projecthydro.org#ad6d285bec4814b92bb7397709fceb4e34f0efcd › react-scripts@2.1.1 › jest@23.6.0 › jest-cli@23.6.0 › yargs@11.1.0 › os-locale@2.1.0 › mem@1.1.0 Remediation: Upgrade to react-scripts@3.0.0. Introduced through: project-hydro-website@hydrogen-dev/projecthydro.org#ad6d285bec4814b92bb7397709fceb4e34f0efcd › react-scripts@2.1.1 › jest@23.6.0 › jest-cli@23.6.0 › jest-runtime@23.6.0 › yargs@11.1.0 › os-locale@2.1.0 › mem@1.1.0 Introduced through: project-hydro-website@hydrogen-dev/projecthydro.org#ad6d285bec4814b92bb7397709fceb4e34f0efcd › react-scripts@2.1.1 › jest@23.6.0 › jest-cli@23.6.0 › jest-runner@23.6.0 › jest-runtime@23.6.0 › yargs@11.1.0 › os-locale@2.1.0 › mem@1.1.0 Overview mem is an optimization used to speed up consecutive function calls by caching the result of calls with identical input.
Affected versions of this package are vulnerable to Denial of Service (DoS). Old results were deleted from the cache and could cause a memory leak.
Denial of Service (DoS) Vulnerable module: mem Introduced through: react-scripts@2.1.1 Detailed paths Introduced through: project-hydro-website@hydrogen-dev/projecthydro.org#ad6d285bec4814b92bb7397709fceb4e34f0efcd › react-scripts@2.1.1 › jest@23.6.0 › jest-cli@23.6.0 › yargs@11.1.0 › os-locale@2.1.0 › mem@1.1.0 Remediation: Upgrade to react-scripts@3.0.0. Introduced through: project-hydro-website@hydrogen-dev/projecthydro.org#ad6d285bec4814b92bb7397709fceb4e34f0efcd › react-scripts@2.1.1 › jest@23.6.0 › jest-cli@23.6.0 › jest-runtime@23.6.0 › yargs@11.1.0 › os-locale@2.1.0 › mem@1.1.0 Introduced through: project-hydro-website@hydrogen-dev/projecthydro.org#ad6d285bec4814b92bb7397709fceb4e34f0efcd › react-scripts@2.1.1 › jest@23.6.0 › jest-cli@23.6.0 › jest-runner@23.6.0 › jest-runtime@23.6.0 › yargs@11.1.0 › os-locale@2.1.0 › mem@1.1.0 Overview mem is an optimization used to speed up consecutive function calls by caching the result of calls with identical input.
Affected versions of this package are vulnerable to Denial of Service (DoS). Old results were deleted from the cache and could cause a memory leak.