GMS-2014-21: Denial-of-Service Extended Event Loop Blocking

August 6, 2014

qs is affected by a denial of service vulnerability that results from excessive recursion in parsing a deeply nested JSON string.

References

www.npmjs.org/package/qs

Detect and mitigate GMS-2014-21 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →