AVG-2126 log
Package | nodejs |
Status | Fixed |
Severity | High |
Type | multiple issues |
Affected | 16.4.0-1 |
Fixed | 16.4.1-1 |
Current | 23.3.0-1 [extra] |
Ticket | None |
Created | Fri Jul 2 08:44:36 2021 |
Issue | Severity | Remote | Type | Description |
---|---|---|---|---|
CVE-2021-27290 | High | Yes | Denial of service | A security issue has been found in Node.js before versions 16.4.1, 14.17.2 and 12.22.2. There is a vulnerability in the ssri npm module which may be... |
CVE-2021-23362 | Medium | Yes | Denial of service | A security issue has been found in Node.js before versions 16.4.1, 14.17.2 and 12.22.2. There is a vulnerability in the hosted-git-info npm module which may... |
CVE-2021-22918 | Medium | Yes | Information disclosure | libuv before version 1.14.1, as bundled by Node.js before versions 16.4.1, 14.17.2 and 12.22.2, is vulnerable to an out-of-bounds read in the libuv's... |
Date | Advisory | Package | Type |
---|---|---|---|
06 Jul 2021 | ASA-202107-13 | nodejs | multiple issues |