We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Hello,
thank you for this library. I've used it in one of my projects and got a security alert about CVE-2020-8175 / Uncontrolled resource consumption in jpeg-js.
I saw you forked both get-pixels and save-pixels and published them under get-pixels-frame-info-update and save-pixels-jpeg-js-upgrade respectively and used the forks as dependencies in this project.
get-pixels
save-pixels
get-pixels-frame-info-update
save-pixels-jpeg-js-upgrade
Since the original projects seem to be abandoned, someone forked them and addressed the aforementioned CVE:
get-pixels-updated
save-pixels-updated
Would it be possible for you incorporate the fix (which is apparently just updating jpeg-js to a newer version) into your forks as well?
jpeg-js
The text was updated successfully, but these errors were encountered:
No branches or pull requests
Hello,
thank you for this library. I've used it in one of my projects and got a security alert about CVE-2020-8175 / Uncontrolled resource consumption in jpeg-js.
I saw you forked both
get-pixelsandsave-pixelsand published them underget-pixels-frame-info-updateandsave-pixels-jpeg-js-upgraderespectively and used the forks as dependencies in this project.Since the original projects seem to be abandoned, someone forked them and addressed the aforementioned CVE:
get-pixels-updatedsave-pixels-updatedWould it be possible for you incorporate the fix (which is apparently just updating
jpeg-jsto a newer version) into your forks as well?The text was updated successfully, but these errors were encountered: