advisory-database icon indicating copy to clipboard operation
advisory-database copied to clipboard
verified publisher icon github

[GHSA-mhxj-85r3-2x55] file-type vulnerable to Infinite Loop via malformed MKV file

Open ItalyPaleAle opened this issue 3 years ago • 2 comments

Updates

  • CVSS
  • Description
  • Severity

ItalyPaleAle avatar Aug 11 '22 22:08 ItalyPaleAle

hi @ItalyPaleAle, thank you for the contribution! can you point me to any references to support your suggestions about the version ranges and severity scoring?

taladrane avatar Aug 15 '22 22:08 taladrane

Here it is: https://security.snyk.io/vuln/SNYK-JS-FILETYPE-2958042

ItalyPaleAle avatar Aug 15 '22 22:08 ItalyPaleAle

Hi @ItalyPaleAle! Thank you so much for contributing to the GitHub Advisory Database. This database is free, open, and accessible to all, and it's people like you who make it great. Thanks for choosing to help others. We hope you send in more contributions in the future!

advisory-database[bot] avatar Aug 16 '22 15:08 advisory-database[bot]