RSS   Vulnerabilities for 'Detect-character-encoding'   RSS

2021-08-31
 
CVE-2021-39176

CWE-401
 

 
detect-character-encoding is a package for detecting character encoding using ICU. In detect-character-encoding v0.3.0 and earlier, allocated memory is not released. The problem has been patched in detect-character-encoding v0.3.1.

 
2021-08-24
 
CVE-2021-39157

CWE-755
 

 
detect-character-encoding is an open source character encoding inspection library. In detect-character-encoding v0.6.0 and earlier, data matching no charset causes the Node.js process to crash. The problem has been patched in [detect-character-encoding v0.7.0](https://github.com/sonicdoe/detect-character-encoding/releases/tag/v0.7.0). No workaround are available and all users should update to resolve this issue.

 


Copyright 2021, cxsecurity.com

 

Back to Top