CVE-2021-23371

Uncontrolled Resource Consumption in npm/chrono-node

Identifier

CVE-2021-23371

Package Slug

npm/chrono-node

Vulnerability

Uncontrolled Resource Consumption

Description

This affects the package chrono-node; it hangs on a date-like string with lots of embedded spaces.

Affected Versions

All versions before 2.2.4

Solution

Upgrade to version 2.2.4 or above.

Last Modified

2021-04-30

source