23 matches found
CVE-2025-59466
Summary: CVE-2025-59466 describes an issue in Node.js error handling where uncatchable stack-overflow crashes occur when async_hooks.createHook() is enabled. The crash bypasses uncaughtException handling and can cause process termination under deep recursion, affecting applications using AsyncLoc...
CVE-2025-59466
We have identified a bug in Node.js error handling where "Maximum call stack size exceeded" errors become uncatchable when asynchooks.createHook is enabled. Instead of reaching process.on'uncaughtException', the process terminates, making the crash unrecoverable. Applications that rely on...
Mitigating Denial-of-Service Vulnerability from Unrecoverable Stack Space Exhaustion for React, Next.js, and APM Users
Mitigating Denial-of-Service Vulnerability from Unrecoverable Stack Space Exhaustion for React, Next.js, and APM Users TL;DR Node.js/V8 makes a best-effort attempt to recover from stack space exhaustion with a catchable error, which frameworks have come to rely on for service availability. An edg...