Description
Uncontrolled resource consumption in jpeg-js before 0.4.0 may allow attacker to launch denial of service attacks using specially a crafted JPEG image.
Recommendation
Update the jpeg-js package to the latest compatible version. Followings are version details:
- Affected version(s): < 0.4.0
- Patched version(s): 0.4.0
References
Related Issues
- Uncontrolled Resource Consumption in firebase - CVE-2020-7765
- Uncontrolled Resource Consumption in node-opcua - CVE-2022-21208
- Uncontrolled Resource Consumption in markdown-it - CVE-2022-21670
- Cattown is Vulnerable to Uncontrolled Resource Consumption through Inefficient Regular Expression Complexity - CVE-2025-58451
- Tags:
- npm
- jpeg-js
Anything's wrong? Let us know Last updated on September 08, 2023