Replies: 1 comment
-
plus one here |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Snyk vulnarabilty scan reporting a vulnarabilty in the excel js library
VULNERABILITY: inflight Missing Release of Resource after Effective Lifetime
Overview
Affected versions of this package are vulnerable to Missing Release of Resource after Effective Lifetime via the makeres function due to improperly deleting keys from the reqs object after execution of callbacks. This behavior causes the keys to remain in the reqs object, which leads to resource exhaustion.
Exploiting this vulnerability results in crashing the node process or in the application crash.
Is there any fix coming?
Beta Was this translation helpful? Give feedback.
All reactions