| Title | yarn Yarn src/util/request-manager.js v1.22.22 Inefficient Regular Expression Complexity |
|---|
| Description | Yarn v1.22.22 src/util/request-manager.js allows context-dependent attackers to cause a regular expression denial of service by embedding maliciously constructed code blocks in the parsed Markdown code. |
|---|
| Source | ⚠️ https://github.com/yarnpkg/yarn/pull/9203 |
|---|
| User | mmmsssttt (UID 85832) |
|---|
| Submission | 08/13/2025 05:58 AM (6 months ago) |
|---|
| Moderation | 08/21/2025 07:58 AM (8 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 320913 [yarnpkg Yarn up to 1.22.22 request-manager.js setOptions redos] |
|---|
| Points | 16 |
|---|