Skip to content

Commit dffca68

Browse files
keithchongkeithchong
authored
Merge pull request #57 from chengfang/path-to-regexp.1.9.0
fix: CVE-2024-45296 Backtracking regular expressions cause ReDoS by upgrading path-to-regexp from 1.8.0 to 1.9.0
2 parents 7941329 + 4e9163c commit dffca68

File tree

1 file changed

+3
-3
lines changed

1 file changed

+3
-3
lines changed

yarn.lock

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -4869,9 +4869,9 @@ path-to-regexp@0.1.7:
48694869
integrity sha512-5DFkuoqlv1uYQKxy8omFBeJPQcdoE07Kv2sferDCrAq1ohOU+MSDswDIbnx3YAM60qIOnYa53wBhXW0EbMonrQ==
48704870

48714871
path-to-regexp@^1.7.0:
4872-
version "1.8.0"
4873-
resolved "https://registry.yarnpkg.com/path-to-regexp/-/path-to-regexp-1.8.0.tgz#887b3ba9d84393e87a0a0b9f4cb756198b53548a"
4874-
integrity sha512-n43JRhlUKUAlibEJhPeir1ncUID16QnEjNpwzNdO3Lm4ywrBpBZ5oLD0I6br9evr1Y9JTqwRtAh7JLoOzAQdVA==
4872+
version "1.9.0"
4873+
resolved "https://registry.yarnpkg.com/path-to-regexp/-/path-to-regexp-1.9.0.tgz#5dc0753acbf8521ca2e0f137b4578b917b10cf24"
4874+
integrity sha512-xIp7/apCFJuUHdDLWe8O1HIkb0kQrOMb/0u6FXQjemHn/ii5LrIzU6bdECnsiTF/GjZkMEKg1xdiZwNqDYlZ6g==
48754875
dependencies:
48764876
isarray "0.0.1"
48774877

0 commit comments

Comments
 (0)