| Titel | @actions @actions/glob 0.5.0 Inefficient Regular Expression Complexity |
|---|
| Beschreibung | @actions/glob 0.5.0 allows context-dependent attackers to cause a regular expression denial of service by embedding maliciously constructed code blocks in the parsed Markdown code. |
|---|
| Quelle | ⚠️ https://github.com/actions/toolkit/pull/2057 |
|---|
| Benutzer | mmmsssttt (UID 85832) |
|---|
| Einreichung | 28.05.2025 04:45 (vor 1 Jahr) |
|---|
| Moderieren | 09.06.2025 08:26 (12 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 311661 [actions toolkit 0.5.0 glob internal-pattern.ts globEscape Denial of Service] |
|---|
| Punkte | 15 |
|---|