Important: Red Hat Security Advisory: nodejs:24 security update

An update for the nodejs:24 module is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

BELL-CVE-2026-2581

Bulletin has no description...

CVE-2026-2581

This is an uncontrolled resource consumption vulnerability CWE-400 that can lead to Denial of Service DoS. In vulnerable Undici versions, when interceptors.deduplicate is enabled, response data for deduplicated requests could be accumulated in memory for downstream handlers. An attacker-controlle...

CVE-2026-2581

creationtimestamp| type| source ---|---|--- 2026-03-12 20:16:25+00:00| seen| https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-2581 2026-03-12 20:39:28+00:00| seen| https://bsky.app/profile/ulisesgascon.com/post/3mgvazs5nbc2f 2026-03-12 23:25:39+00:00| seen|...

@01.software/cli (>=0.1.1 <=0.2.0-dev.260310.cf511cb), @01.software/sdk (>=0.1.0-dev.260119.0a66443 <=0.3.0) +235 more potentially affected by CVE-2026-2581 via undici (>=7.18.0 <=7.22.0)

undici NPM version =7.18.0, =0.1.1, =0.1.0-dev.260119.0a66443, =0.0.1, =0.1.3, =21.1.0, =21.1.0, =1.0.1, =1.0.1-beta.0, =2026.1.14, =0.13.100, =1.21.1, =0.12.5, =0.0.1, =0.0.0-dev.20251108074143, =1.2.1-dev.20260414125348 and more Source cves: CVE-2026-2581 Source advisory: SNYK:JS-UNDICI-1551806...

CVE-2026-2581

This is an uncontrolled resource consumption vulnerability CWE-400 that can lead to Denial of Service DoS. In vulnerable Undici versions, when interceptors.deduplicate is enabled, response data for deduplicated requests could be accumulated in memory for downstream handlers. An attacker-controlle...