Denial of Service (DoS)

[larrycameron80]

Denial of Service (DoS) Vulnerable module: mem Introduced through: react-scripts@2.1.1 Detailed paths Introduced through: project-hydro-website@hydrogen-dev/projecthydro.org#ad6d285bec4814b92bb7397709fceb4e34f0efcd › react-scripts@2.1.1 › jest@23.6.0 › jest-cli@23.6.0 › yargs@11.1.0 › os-locale@2.1.0 › mem@1.1.0 Remediation: Upgrade to react-scripts@3.0.0. Introduced through: project-hydro-website@hydrogen-dev/projecthydro.org#ad6d285bec4814b92bb7397709fceb4e34f0efcd › react-scripts@2.1.1 › jest@23.6.0 › jest-cli@23.6.0 › jest-runtime@23.6.0 › yargs@11.1.0 › os-locale@2.1.0 › mem@1.1.0 Introduced through: project-hydro-website@hydrogen-dev/projecthydro.org#ad6d285bec4814b92bb7397709fceb4e34f0efcd › react-scripts@2.1.1 › jest@23.6.0 › jest-cli@23.6.0 › jest-runner@23.6.0 › jest-runtime@23.6.0 › yargs@11.1.0 › os-locale@2.1.0 › mem@1.1.0 Overview mem is an optimization used to speed up consecutive function calls by caching the result of calls with identical input.

Affected versions of this package are vulnerable to Denial of Service (DoS). Old results were deleted from the cache and could cause a memory leak.