Lucene search
NodejsCVELIST:CVE-2017-15897HistoryDec 07, 2017 - 12:00 a.m.
CVE-2017-15897
2017-12-0700:00:00
nodejs
www.cve.org
1
Node.js had a bug in versions 8.X and 9.X which caused buffers to not be initialized when the encoding for the fill value did not match the encoding specified. For example, ‘Buffer.alloc(0x100, “This is not correctly encoded”, “hex”);’ The buffer implementation was updated such that the buffer will be initialized to all zeros in these cases.
CNA Affected
[
{
"product": "Node.js",
"vendor": "The Node.js Project",
"versions": [
{
"status": "affected",
"version": "8.0 and higher"
},
{
"status": "affected",
"version": "9.0 and higher"
}
]
}
]Related
ubuntucve
ubuntucve
CVE-2017-15897
2017-12-11 00:00:00
prion
prion
Buffer overflow
2017-12-11 21:29:00
nvd
nvd
CVE-2017-15897
2017-12-11 21:29:00
debiancve
debiancve
CVE-2017-15897
2017-12-11 21:29:00
osv
osv
CVE-2017-15897
2017-12-11 21:29:00
cve
cve
CVE-2017-15897
2017-12-11 21:29:00
veracode
veracode
Uninitialized Memory Disclosure
2017-12-14 06:54:01
alpinelinux
alpinelinux
CVE-2017-15897
2017-12-11 21:29:00
redhatcve
redhatcve
CVE-2017-15897
2018-01-09 09:49:46
nodejsblog
nodejsblog
Data Confidentiality/Integrity Vulnerability, December 2017
2017-12-08 00:00:00
freebsd
freebsd
node.js -- Data Confidentiality/Integrity Vulnerability, December 2017
2017-12-08 00:00:00
nessus
nessus
FreeBSD : node.js -- Data Confidentiality/Integrity Vulnerability, December 2017 (bea84a7a-e0c9-11e7-b4f3-11baa0c2df21)
2017-12-15 00:00:00
RHEL 8 : nodejs (Unpatched Vulnerability)
2024-06-03 00:00:00
RHEL 8 : nodejs (Unpatched Vulnerability)
2024-05-11 00:00:00
ibm
ibm
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2019:14246-1)
2021-06-09 00:00:00