An issue was discovered in the file-type package before 16.5.4 and 17.x before 17.1.3 for Node.js. A malformed MKV file could cause the file type detector to get caught in an infinite loop. This would make the application become unresponsive and could be used to cause a DoS attack.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2022-07-21T15:31:27
Updated: 2024-08-03T10:00:04.274Z
Reserved: 2022-07-20T00:00:00
Link: CVE-2022-36313
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-07-21T16:15:09.297
Modified: 2024-11-21T07:12:45.740
Link: CVE-2022-36313
Redhat