d3-color vulnerable to ReDoS. The d3-color module provides representations for various color spaces in the browser. Versions prior to 3.1.0 are vulnerable to a Regular expression Denial of Service. This issue has been patched in version 3.1.0. There are no known workarounds.
Advisories are based on vulnerability information provided by Grype from Anchore.
Products
Chainguard Images© 2024 Chainguard, Inc.