374 matches found
CVE-2016-10540
CVE-2016-10540 refers to Minimatch (node) where the function minimatch(path, pattern) in Minimatch 3.0.1 and earlier is vulnerable to ReDoS through the pattern parameter. The connected IBM security bulletin reiterates the same description and CVSS base score of 7.5, noting multiple related CVEs b...
CVE-2016-10540
Minimatch is a minimal matching utility that works by converting glob expressions into JavaScript RegExp objects. The primary function, minimatchpath, pattern in Minimatch 3.0.1 and earlier is vulnerable to ReDoS in the pattern parameter...
CVE-2016-10540
Minimatch is a minimal matching utility that works by converting glob expressions into JavaScript RegExp objects. The primary function, minimatchpath, pattern in Minimatch 3.0.1 and earlier is vulnerable to ReDoS in the pattern parameter...
Red Hat OpenShift Enterprise Denial of Service Vulnerability (CNVD-2016-07357)
Red Hat OpenShift is a Platform-as-a-Service PaaS cloud computing platform from Red Hat, U.S. OpenShift Enterprise is an open source version of the private cloud. A denial of service vulnerability exists in Minimatch in Red Hat OpenShift Enterprise versions 3.1 and 3.2. An attacker could exploit...
nodejs-minimatch: Regular expression denial-of-service
A regular expression denial of service flaw was found in Minimatch. An attacker able to make an application using Minimatch to perform matching using a specially crafted glob pattern could cause the application to consume an excessive amount of CPU...
Moderate: Red Hat Security Advisory: nodejs010-nodejs-minimatch security update
An update for nodejs010-nodejs-minimatch is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
nodejs-minimatch: Regular expression denial-of-service
A regular expression denial of service flaw was found in Minimatch. An attacker able to make an application using Minimatch to perform matching using a specially crafted glob pattern could cause the application to consume an excessive amount of CPU...
Moderate: Red Hat Security Advisory: rh-nodejs4-nodejs-minimatch security update
An update for rh-nodejs4-nodejs-minimatch is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
nodejs-minimatch: Regular expression denial-of-service
A regular expression denial of service flaw was found in Minimatch. An attacker able to make an application using Minimatch to perform matching using a specially crafted glob pattern could cause the application to consume an excessive amount of CPU...
CVE-2016-1000023
A regular expression denial of service flaw was found in Minimatch. An attacker able to make an application using Minimatch to perform matching using a specially crafted glob pattern could cause the application to consume an excessive amount of CPU...
Regular Expression Denial of Service
Overview Affected versions of minimatch are vulnerable to regular expression denial of service attacks when user input is passed into the pattern argument of minimatchpath, pattern. Proof of Concept var minimatch = require“minimatch”; // utility function for generating long strings var genstr =...
Fedora Update for nodejs-glob FEDORA-2013-11780
Check for the Version of nodejs-glob OpenVAS Vulnerability Test Fedora Update for nodejs-glob FEDORA-2013-11780 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it und...
[SECURITY] Fedora 19 Update: nodejs-glob-3.2.3-1.fc19
This is a glob implementation in pure JavaScript. It uses the minimatch lib rary to do its matching...
[SECURITY] Fedora 18 Update: nodejs-glob-3.2.3-1.fc18
This is a glob implementation in pure JavaScript. It uses the minimatch lib rary to do its matching...