Ubuntu Security Notice 6380-1 - Rogier Schouten discovered that Node.js incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. Ethan Rubinson discovered that Node.js incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly use this issue to obtain sensitive information. This issue only affected Ubuntu 16.04 LTS and Ubuntu 18.04 LTS.
c9cc97e96bb7a83ea382245507e85fc0d4820b2068dcb9f3906a130008dfa00cDebian Linux Security Advisory 4669-1 - Multiple vulnerabilities were discovered in Node.js, which could result in denial of service or HTTP request smuggling.
6f962b4fe577287f2ccb2224302c35d90acb45019bf2b11ea4da941e04961852Red Hat Security Advisory 2020-1510-01 - The http-parser package provides a utility for parsing HTTP messages. An HTTP request smuggling vulnerability was addressed.
335d91cf414060a0080be61719c914c89c3326a0d37793f422f0fca45c961081Gentoo Linux Security Advisory 202003-48 - Multiple vulnerabilities have been found in Node.js, worst of which could allow remote attackers to write arbitrary files. Versions less than 12.15.0 are affected.
74cfd9bd90d2d33e764c86a5e1c80a6b642e808e00a02002d6d17c9467102fb0Red Hat Security Advisory 2020-0708-01 - The http-parser package provides a utility for parsing HTTP messages. It parses both requests and responses. The parser is designed to be used in performance HTTP applications. It does not make any system calls or allocations, it does not buffer data, and it can be interrupted at any time. Depending on your architecture, it only requires about 40 bytes of data per message stream. HTTP request smuggling was addressed.
a170d015c32f37432d9de939a73499f02f7638a9789e5e1796da178dc64bd3a1Red Hat Security Advisory 2020-0707-01 - The http-parser package provides a utility for parsing HTTP messages. It parses both requests and responses. The parser is designed to be used in performance HTTP applications. It does not make any system calls or allocations, it does not buffer data, and it can be interrupted at any time. Depending on your architecture, it only requires about 40 bytes of data per message stream. HTTP request smuggling was addressed.
356b5cddfb52ed1d8d5aa0bcc6cf2953a6fe74e992643df32307133cffd2e459Red Hat Security Advisory 2020-0703-01 - The http-parser package provides a utility for parsing HTTP messages. It parses both requests and responses. The parser is designed to be used in performance HTTP applications. It does not make any system calls or allocations, it does not buffer data, and it can be interrupted at any time. Depending on your architecture, it only requires about 40 bytes of data per message stream. HTTP request smuggling was addressed.
8ea83379a922dc0dcbacd24df3271f11e1b50698d6e2c37e5b91f8c7c0aff4f9Red Hat Security Advisory 2020-0602-01 - Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. HTTP request smuggling was addressed along with other security issues.
06640bfa1968df0b472481ae67bb1e2f62f27a46e4050fa57fce9b5cec78e50bRed Hat Security Advisory 2020-0598-01 - Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. HTTP request smuggling was addressed along with other security issues.
9fc3f9bc8d7dd7b61381febce5db7ceadfe94a7f3ed9b5467b3740dd5e2b5f6dRed Hat Security Advisory 2020-0597-01 - Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. HTTP request smuggling was addressed along with other security issues.
4f28657da8e272a2e2844edb1a5372df1b1680d0daf9e675279a4c550d709df9Red Hat Security Advisory 2020-0579-01 - Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. HTTP request smuggling was addressed along with other security issues.
b886b0e95ead26013e0308ccf593a5a846e8731401ea54bdeeb098795796b513Red Hat Security Advisory 2020-0573-01 - Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. HTTP request smuggling was addressed along with other security issues.
c2e5505c347e28a5c5b708280a3f87650156fcbc79f19efa78129e544ac3accb
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed