Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Backport 2.x] [CVE] Resolve jpeg-js to 0.4.4 #1757

Merged
merged 1 commit into from
Jun 17, 2022

Conversation

opensearch-trigger-bot[bot]
Copy link
Contributor

Backport 2a159e8 from #1753

Addresses Denial of Service (DoS) issue where a particular piece of input
will cause to enter an infinite loop and never return.

CVE: https://vuln.whitesourcesoftware.com/vulnerability/CVE-2022-25851

Issue Resolved:
#1725

Signed-off-by: Kawika Avilla <[email protected]>
(cherry picked from commit 2a159e8)
@opensearch-trigger-bot opensearch-trigger-bot bot requested a review from a team as a code owner June 16, 2022 19:38
@ananzh ananzh merged commit 25e6835 into 2.x Jun 17, 2022
@github-actions github-actions bot deleted the backport/backport-1753-to-2.x branch June 17, 2022 17:32
cliu123 pushed a commit to cliu123/OpenSearch-Dashboards that referenced this pull request Jun 30, 2022
…h-project#1757)

Addresses Denial of Service (DoS) issue where a particular piece of input
will cause to enter an infinite loop and never return.

CVE: https://vuln.whitesourcesoftware.com/vulnerability/CVE-2022-25851

Issue Resolved:
opensearch-project#1725

Signed-off-by: Kawika Avilla <[email protected]>
(cherry picked from commit 2a159e8)

Co-authored-by: Kawika Avilla <[email protected]>
cliu123 pushed a commit to cliu123/OpenSearch-Dashboards that referenced this pull request Jun 30, 2022
…h-project#1757)

Addresses Denial of Service (DoS) issue where a particular piece of input
will cause to enter an infinite loop and never return.

CVE: https://vuln.whitesourcesoftware.com/vulnerability/CVE-2022-25851

Issue Resolved:
opensearch-project#1725

Signed-off-by: Kawika Avilla <[email protected]>
(cherry picked from commit 2a159e8)

Co-authored-by: Kawika Avilla <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants