5 matches found
SUSE CVE-2018-3745
atob 2.0.3 and earlier allocates uninitialized Buffers when number is passed in input on Node.js 4.x and below...
@2create/drone (>=1.0.0 <=1.2.3), @applicaster/zapp-pipes-dev-kit (=1.2.2) +412 more potentially affected by CVE-2018-3745 via atob (>=1.0.1 <=2.0.3)
atob NPM version =1.0.1, =1.0.0, =0.13.0-nightly.96bf9c47, =0.6.0, =0.7.0-alpha.e30d743f, =0.3.25, =0.3.1, =1.1.2, =0.5.1-pbenes-pb-tc-utils-2017-05-02T12-17-34-106Z, =0.7.30, =3.0.0, =0.2.5, =0.13.2, =0.23.0 and more Source cves: CVE-2018-3745 Source advisory: OSV:GHSA-8W4H-3CM3-2PM2...
CVE-2018-3745
atob 2.0.3 and earlier allocates uninitialized Buffers when number is passed in input on Node.js 4.x and below...
CVE-2018-3745
atob 2.0.3 and earlier allocates uninitialized Buffers when number is passed in input on Node.js 4.x and below...
CVE-2018-3745
CVE-2018-3745 describes an information disclosure/DoS risk in the atob Node.js module (versions 2.0.3 and earlier) caused by allocating uninitialized Buffers when a number is provided as input on Node.js 4.x and earlier. The vulnerability affects the atob module itself and is due to uninitialized...