sshpk is vulnerable to ReDoS when parsing crafted invalid public keys.
{ "ubuntu_priority": "medium" }
{ "binaries": [ { "binary_name": "node-sshpk", "binary_version": "1.16.1+dfsg-2" } ], "availability": "No subscription required", "ubuntu_priority": "medium" }