CVE-2020-7754 – Regular Expression Denial of Service (ReDoS)

https://notcve.org/view.php?id=CVE-2020-7754

27 Oct 2020 — This affects the package npm-user-validate before 1.0.1. The regex that validates user emails took exponentially longer to process long input strings beginning with @ characters. Esto afecta al paquete npm-user-validate versiones anteriores a 1.0.1. La expresión regular que comprueba los correos electrónicos de los usuarios tardó exponencialmente más en procesar cadenas de entrada largas que comienzan con caracteres @ Node.js is a software development platform for building fast and scalable network app... • https://github.com/npm/npm-user-validate/commit/c8a87dac1a4cc6988b5418f30411a8669bef204e • CWE-400: Uncontrolled Resource Consumption •