CVE-2021-39131

CVE-2021-39131

ced detects character encoding using Google’s compact_enc_det library. In ced v0.1.0, passing data types other than `Buffer` causes the Node.js process to crash. The problem has been patched in ced v1.0.0. As a workaround, before passing an argument to ced, verify it’s a `Buffer` using `Buffer.isBuffer(obj)`.

Source: CVE-2021-39131

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다