Description
The riot-compiler version version 2.3.21 has an issue in a regex (Catastrophic Backtracking) thats make it unusable under certain conditions.
Remediation
References
https://github.com/riot/compiler/issues/46
https://nodesecurity.io/advisories/86
Related Vulnerabilities
CVE-2019-11358 Vulnerability in npm package jquery
CVE-2017-18197 Vulnerability in npm package mxgraph
CVE-2020-28500 Vulnerability in maven package org.webjars.bower:lodash
CVE-2022-31170 Vulnerability in npm package @openzeppelin/contracts
CVE-2023-24789 Vulnerability in maven package org.jeecgframework.boot:jeecg-boot-parent