CVE-2015-8315: Regular Expression Denial of Service

January 23, 2017 (updated March 1, 2017)

ms is vulnerable to regular expression denial of service (ReDoS) when extremely long version strings are parsed.

References

www.owasp.org/index.php/Regular_expression_Denial_of_Service_-_ReDoS

Code Behaviors & Features

Detect and mitigate CVE-2015-8315 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →