NodeJS/ssri/4.1.4
Standard Subresource Integrity library -- parses, serializes, generates, and verifies integrity metadata according to the SRI spec.
https://www.npmjs.com/package/ssri
CC0-1.0
1 Security Vulnerabilities
Regular Expression Denial of Service in ssri
Published date: 2018-03-07T22:22:20Z
CVE: CVE-2018-7651
Links:
Version of ssri
prior to 5.2.2 are vulnerable to regular expression denial of service (ReDoS) when using strict mode.
Recommendation
Update to version 5.2.2 or later.
Affected versions:
["0.0.0", "1.0.0", "2.0.0", "3.0.0", "3.0.1", "3.0.2", "4.0.0", "4.1.0", "4.1.1", "4.1.2", "4.1.3", "4.1.4", "4.1.5", "4.1.6", "5.0.0", "5.1.0", "5.2.1"]
Secure versions:
[8.0.1, 6.0.2, 7.1.1, 9.0.0, 9.0.1, 10.0.0, 10.0.1, 10.0.2, 10.0.3, 10.0.4, 10.0.5, 10.0.6]
Recommendation:
Update to version 10.0.6.
39 Other Versions
Version | License | Security | Released | |
---|---|---|---|---|
5.0.0 | ISC | 1 | 2017-10-23 - 18:24 | over 6 years |
7.0.1 | ISC | 1 | 2019-09-30 - 21:04 | over 4 years |
10.0.1 | ISC | 2022-12-07 - 20:32 | over 1 year | |
10.0.6 | ISC | 2024-05-04 - 01:11 | 18 days | |
10.0.4 | ISC | 2023-04-26 - 19:08 | about 1 year | |
10.0.5 | ISC | 2023-08-14 - 18:54 | 9 months | |
10.0.2 | ISC | 2023-04-04 - 21:55 | about 1 year | |
10.0.3 | ISC | 2023-04-11 - 18:51 | about 1 year | |
7.1.1 | ISC | 2021-05-17 - 22:14 | about 3 years | |
10.0.0 | ISC | 2022-10-14 - 05:22 | over 1 year | |
9.0.0 | ISC | 2022-04-05 - 16:19 | about 2 years | |
9.0.1 | ISC | 2022-05-19 - 16:24 | about 2 years | |
8.0.1 | ISC | 2021-01-27 - 19:34 | over 3 years | |
6.0.2 | ISC | 2021-04-07 - 20:01 | about 3 years | |
7.1.0 | ISC | 1 | 2019-10-24 - 23:57 | over 4 years |
5.1.0 | ISC | 1 | 2018-01-18 - 23:56 | over 6 years |
5.2.1 | ISC | 1 | 2018-02-07 - 00:07 | over 6 years |
5.2.2 | ISC | 1 | 2018-02-14 - 20:38 | over 6 years |
5.2.3 | ISC | 1 | 2018-02-16 - 22:39 | over 6 years |
5.2.4 | ISC | 1 | 2018-02-16 - 22:46 | over 6 years |
5.3.0 | ISC | 1 | 2018-03-13 - 02:25 | about 6 years |
6.0.0 | ISC | 1 | 2018-04-09 - 18:19 | about 6 years |
6.0.1 | ISC | 1 | 2018-08-27 - 19:53 | over 5 years |
7.0.0 | ISC | 1 | 2019-09-18 - 18:35 | over 4 years |
8.0.0 | ISC | 1 | 2020-02-18 - 01:26 | over 4 years |
4.1.5 | CC0-1.0 | 1 | 2017-06-05 - 21:14 | almost 7 years |
4.1.3 | CC0-1.0 | 1 | 2017-05-24 - 23:40 | almost 7 years |
4.1.2 | CC0-1.0 | 1 | 2017-04-18 - 09:53 | about 7 years |
4.1.4 | CC0-1.0 | 1 | 2017-05-31 - 04:22 | almost 7 years |
4.1.6 | CC0-1.0 | 1 | 2017-06-07 - 22:21 | almost 7 years |
4.0.0 | CC0-1.0 | 1 | 2017-04-03 - 10:37 | about 7 years |
3.0.2 | CC0-1.0 | 1 | 2017-04-03 - 05:18 | about 7 years |
4.1.0 | CC0-1.0 | 1 | 2017-04-07 - 15:42 | about 7 years |
3.0.0 | CC0-1.0 | 1 | 2017-04-03 - 04:45 | about 7 years |
1.0.0 | CC0-1.0 | 1 | 2017-03-23 - 07:22 | about 7 years |
0.0.0 | CC0-1.0 | 1 | 2017-03-23 - 04:56 | about 7 years |
2.0.0 | CC0-1.0 | 1 | 2017-03-24 - 07:50 | about 7 years |
3.0.1 | CC0-1.0 | 1 | 2017-04-03 - 05:17 | about 7 years |
4.1.1 | CC0-1.0 | 1 | 2017-04-12 - 04:17 | about 7 years |