GMS-2017-115: Denial of service in $sanitize
Running $sanitize on bad HTML can freeze the browser. The problem occurs with clobbered data; typically the “nextSibling” property on an element is changed to one of it’s child node, this makes it impossible to walk the HTML tree and leads to an infinite loop which freezes the browser.
Code Behaviors & Features
Detect and mitigate GMS-2017-115 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →