Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2017:2913
HistoryOct 18, 2017 - 4:29 p.m.

(RHSA-2017:2913) Moderate: rh-nodejs6-nodejs-tough-cookie security update

2017-10-1816:29:25
access.redhat.com
74

0.011 Low

EPSS

Percentile

84.8%

JSON

Tough-Cookie is a Node.js module that offers RFC6265 Cookies and Cookie Jar.

The following packages have been upgraded to a later upstream version: rh-nodejs6-nodejs-tough-cookie (2.3.3). (BZ#1497701)

Security Fix(es):

  • A regular expression denial of service flaw was found in Tough-Cookie. An attacker able to make an application using Touch-Cookie to parse a sufficiently large HTTP request Cookie header could cause the application to consume an excessive amount of CPU. (CVE-2017-15010)

Related

nodejs 1
veracode 2
osv 2
nvd 2
cve 2
fedora 1
ubuntucve 1
redhatcve 1
cvelist 1
github 1
nessus 4
debiancve 1
prion 1
openvas 1
redhat 3
nodejs
nodejs
Regular Expression Denial of Service
2017-09-08 18:07:02
veracode
veracode
Regular Expression Denial Of Service (ReDoS) Via Parsing Cookies
2017-09-06 06:29:35
Regular Expression Denial Of Service (ReDoS) Via Parsing Cookies
2019-01-15 09:19:22
osv
osv
CVE-2017-15010
2017-10-04 01:29:03
Regular Expression Denial of Service in tough-cookie
2018-07-24 20:14:39
nvd
nvd
CVE-2017-15010
2017-10-04 01:29:03
CVE-2017-16112
2020-01-27 13:15:10
cve
cve
CVE-2017-15010
2017-10-04 01:29:03
CVE-2017-16112
2020-01-27 13:15:10
fedora
fedora
[SECURITY] Fedora 30 Update: nodejs-tough-cookie-2.3.4-1.fc30
2019-06-12 14:48:48
ubuntucve
ubuntucve
CVE-2017-15010
2017-10-04 00:00:00
redhatcve
redhatcve
CVE-2017-15010
2017-10-03 15:49:16
cvelist
cvelist
CVE-2017-15010
2017-10-03 16:00:00
github
github
Regular Expression Denial of Service in tough-cookie
2018-07-24 20:14:39
nessus
nessus
Fedora 30 : nodejs-tough-cookie (2019-76f1b57c1c)
2019-06-13 00:00:00
RHEL 6 / 7 : rh-nodejs6-nodejs-tough-cookie (RHSA-2017:2913)
2024-04-27 00:00:00
RHEL 7 : Red Hat Mobile Application Platform 4.6.0 (RHSA-2018:1263)
2018-05-04 00:00:00
debiancve
debiancve
CVE-2017-15010
2017-10-04 01:29:03
prion
prion
Design/Logic Flaw
2017-10-04 01:29:00
openvas
openvas
Fedora Update for nodejs-tough-cookie FEDORA-2019-76f1b57c1c
2019-06-13 00:00:00
redhat
redhat
(RHSA-2017:2912) Moderate: rh-nodejs4-nodejs-tough-cookie security update
2017-10-18 16:29:05
(RHSA-2018:1263) Moderate: Red Hat Mobile Application Platform 4.6.0 release - RPMs
2018-04-30 18:31:09
(RHSA-2018:1264) Moderate: Red Hat Mobile Application Platform 4.6.0 Release - Container Images
2018-04-30 14:14:41

0.011 Low

EPSS

Percentile

84.8%

JSON
Related for RHSA-2017:2913
nodejs1veracode2osv2nvd2cve2fedora1ubuntucve1redhatcve1cvelist1github1nessus4debiancve1prion1openvas1redhat3