Lucene search
GoogleOSV:GHSA-2M39-62FM-Q8R3HistoryAug 15, 2018 - 1:22 p.m.
Regular Expression Denial of Service in sshpk
2018-08-1513:22:23
Google
osv.dev
14
0.002 Low
EPSS
Percentile
54.1%
Versions of sshpk before 1.13.2 or 1.14.1 are vulnerable to regular expression denial of service when parsing crafted invalid public keys.
Recommendation
Update to version 1.13.2, 1.14.1 or later.
Related
osv
osv
CVE-2018-3737
2018-06-07 02:29:08
github
github
Regular Expression Denial of Service in sshpk
2018-08-15 13:22:23
nodejs
nodejs
Regular Expression Denial of Service
2018-04-24 22:25:08
cvelist
cvelist
CVE-2018-3737
2018-04-26 00:00:00
redhatcve
redhatcve
CVE-2018-3737
2020-02-03 02:35:41
ubuntucve
ubuntucve
CVE-2018-3737
2018-06-07 00:00:00
veracode
veracode
Regular Expression Denial Of Service (ReDoS)
2018-04-05 05:41:24
prion
prion
Code injection
2018-06-07 02:29:00
nvd
nvd
CVE-2018-3737
2018-06-07 02:29:08
debiancve
debiancve
CVE-2018-3737
2018-06-07 02:29:08
cve
cve
CVE-2018-3737
2018-06-07 02:29:08
ibm
ibm
redhat
redhat
(RHSA-2020:2625) Moderate: rh-nodejs8-nodejs security update
2020-06-18 21:46:51
nessus
nessus
RHEL 7 : rh-nodejs8-nodejs (RHSA-2020:2625)
2023-01-23 00:00:00