Asymmetric denial of service In @vitejs/plugin-rsc
Description
@vitejs/plugin-rsc has a Denial of Service Vulnerability in React Server Components
Impact
@vitejs/plugin-rsc vendors react-server-dom-webpack, which contained a vulnerability in versions prior to 19.2.6. See details in React repository's advisory https://github.com/facebook/react/security/advisories/GHSA-rv78-f8rc-xrxh
Patches
Upgrade immediately to @vitejs/[email protected] or later.
Mitigation
Update Impact
Minimal update. May introduce new vulnerabilities or breaking changes.
Ecosystem | Package | Affected version | Patched versions |
|---|---|---|---|
 npm | 0.5.26 |
Aliases
1. 2. 3. 4.
References
1. 2.