sshpk is vulnerable to ReDoS when parsing crafted invalid public keys.
The product specifies a regular expression in a way that causes data to be improperly matched or compared.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Sshpk | Joyent | * | 1.13.1 (including) |