Skip to content

CVE-2026-2391 qs's arrayLimit bypass in comma parsing allows denial of service #960

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
vharseko merged 1 commit into from
Feb 15, 2026
+3 −3

Bump qs from 6.14.1 to 6.14.2 in /openam-ui/openam-ui-ria

f7d5b90
Select commit
Loading
Failed to load commit list.
Sign in for the full log view
Merged

CVE-2026-2391 qs's arrayLimit bypass in comma parsing allows denial of service #960

Bump qs from 6.14.1 to 6.14.2 in /openam-ui/openam-ui-ria
f7d5b90
Select commit
Loading
Failed to load commit list.
build-maven (11, macos-latest)
succeeded Feb 14, 2026 in 20m 4s