Skip to content

Uncontrolled resource consumption in jpeg-js

moderate severity Published Jul 27, 2020 • Updated Jan 7, 2021

Package

npm jpeg-js (npm)

Affected versions

< 0.4.0

Patched versions

0.4.0

Description

Uncontrolled resource consumption in jpeg-js before 0.4.0 may allow attacker to launch denial of service attacks using specially a crafted JPEG image.

References

CVE ID

CVE-2020-8175