We found that the fix to address the DoS vulnerability in React was incomplete (bsky.app) 14 points by nettlin 7mo ago ↗ HN
[–] nettlin 7mo ago ↗ > The patches published earlier are vulnerable.> If you already updated for the Critical Security Vulnerability last week, you will need to update again.> If you updated to 19.0.2, 19.1.3, and 19.2.2, these are incomplete and you will need to update again.https://react.dev/blog/2025/12/11/denial-of-service-and-sour...
1 comment
[ 4.5 ms ] story [ 13.1 ms ] thread> If you already updated for the Critical Security Vulnerability last week, you will need to update again.
> If you updated to 19.0.2, 19.1.3, and 19.2.2, these are incomplete and you will need to update again.
https://react.dev/blog/2025/12/11/denial-of-service-and-sour...