CVE-2020-28469: Uncontrolled Resource Consumption
(updated )
The enclosure regex used to check for strings ending in enclosure containing path separator.
References
- github.com/gulpjs/glob-parent/blob/6ce8d11f2f1ed8e80a9526b1dc8cf3aa71f43474/index.js%23L9
- github.com/gulpjs/glob-parent/pull/36
- github.com/gulpjs/glob-parent/releases/tag/v5.1.2
- nvd.nist.gov/vuln/detail/CVE-2020-28469
- snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWERGITHUBES128-1059093
- snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1059092
- snyk.io/vuln/SNYK-JS-GLOBPARENT-1016905
Detect and mitigate CVE-2020-28469 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →