Skip to content

Instantly share code, notes, and snippets.

View b-c-ds's full-sized avatar
💥

Ben Caller b-c-ds

💥
View GitHub Profile
### Keybase proof
I hereby claim:
* I am b-c-ds on github.
* I am bcaller (https://keybase.io/bcaller) on keybase.
* I have a public key ASCOydV1tNfjA5ZA7QHqjs2oMYJBH-SFR1rYA_2fFb2HMAo
To claim this, I am signing this object:
Doyensec Vulnerability Advisory
CVE-2021-27291
=======================================================================
* Regular Expression Denial of Service (REDoS) in pygments
* Affected Product: pygments v1.1+, fixed in 2.7.4
* Vendor: https://github.com/pygments
* Severity: Medium
* Vulnerability Class: Denial of Service
* Status: Fixed
* Author(s): Ben Caller (Doyensec)
Doyensec Vulnerability Advisory
CVE-2021-27292
=======================================================================
* Regular Expression Denial of Service (REDoS) in ua-parser-js
* Affected Product: ua-parser-js >= 0.7.14, fixed in 0.7.24
* Vendor: https://github.com/faisalman
* Severity: Medium
* Vulnerability Class: Denial of Service
* Status: Fixed
* Author(s): Ben Caller (Doyensec)