GMS-2019-13: Out-of-bounds Read in byte

June 4, 2019 (updated August 4, 2021)

Versions of byte allocate uninitialized buffers and read data from them past the initialized length Update to or later.

References

github.com/advisories/GHSA-xm7f-x4wx-wmgv
github.com/node-modules/byte/pull/3
hackerone.com/reports/330351
www.npmjs.com/advisories/657

Code Behaviors & Features

Detect and mitigate GMS-2019-13 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →