Description
All versions of package fast-string-search are vulnerable to Denial of Service (DoS) when computations are incorrect for non-string inputs. One can cause the V8 to attempt reading from non-permitted locations and cause a segmentation fault due to the violation.
Remediation
References
https://snyk.io/vuln/SNYK-JS-FASTSTRINGSEARCH-2392367
Related Vulnerabilities
CVE-2023-46498 Vulnerability in npm package @evershop/evershop
CVE-2022-29229 Vulnerability in npm package cassproject
CVE-2021-23447 Vulnerability in npm package teddy
CVE-2019-17495 Vulnerability in maven package org.webjars.npm:swagger-ui
CVE-2022-41940 Vulnerability in maven package org.webjars.bower:engine.io