Showing 1 - 1 of 1

CVE-2023-23919

Status Candidate

Overview

A cryptographic vulnerability exists in Node.js <19.2.0, <18.14.1, <16.19.1, <14.21.3 that in some cases did does not clear the OpenSSL error stack after operations that may set it. This may lead to false positive errors during subsequent cryptographic operations that happen to be on the same thread. This in turn could be used to cause a denial of service.

Related Files

Red Hat Security Advisory 2023-2654-01: Posted May 10, 2023; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2023-2654-01 - Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Issues addressed include buffer overflow, bypass, crlf injection, and denial of service vulnerabilities.; tags | advisory, denial of service, overflow, javascript, vulnerability; systems | linux, redhat; advisories | CVE-2021-35065, CVE-2022-25881, CVE-2022-4904, CVE-2023-23918, CVE-2023-23919, CVE-2023-23920, CVE-2023-23936, CVE-2023-24807; SHA-256 | 4e7a13c72b1bbe26649f90f2ee5c748667dc190692c7389ff21e92530336c9f3; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 134 files
Ubuntu 92 files
indoushka 29 files
Debian 27 files
Apple 22 files
Gentoo 20 files
nu11secur1ty 15 files
LiquidWorm 9 files
Google Security Research 6 files
jheysel-r7 4 files

File Archives

Systems

AIX (428)
Apple (2,025)
BSD (375)
CentOS (57)
Cisco (1,925)
Debian (6,853)
Fedora (1,692)
FreeBSD (1,246)
Gentoo (4,342)
HPUX (879)
iOS (357)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (46,873)
Mac OS X (687)
Mandriva (3,105)
NetBSD (256)
OpenBSD (486)
RedHat (13,930)
Slackware (941)
Solaris (1,610)
SUSE (1,444)
Ubuntu (8,960)
UNIX (9,320)
UnixWare (186)
Windows (6,590)
Other

CVE-2023-23919

Overview

Related Files

File Archive:

October 2023

Top Authors In Last 30 Days

File Tags

File Archives

Systems