CVE-2021-39157

detect-character-encoding is an open source character encoding inspection library. In detect-character-encoding v0.6.0 and earlier, data matching no charset causes the Node.js process to crash. The problem has been patched in detect-character-encoding v0.7.0. No workaround are available and all...

Denial Of Service (DoS)

libgpac.so is vulnerable to Denial Of Service. The vulnerability exists in the loadxmtdone function of loaderxmt.c because of the missing release of allocated memory after an effective lifetime in detect-character-encoding which allows to the attacker to crash the application...

csv-extractor (=1.0.0), mi-lib (>=0.0.10 <=0.0.16) +1 more potentially affected by CVE-2021-39176 via detect-character-encoding (=0.2.1)

detect-character-encoding NPM version =0.2.1 is affected by a known vulnerability. The following packages have a transitive dependency on detect-character-encoding and may be impacted: - csv-extractor =1.0.0 - mi-lib =0.0.10, =0.3.0, =0.3.1 Source cves: CVE-2021-39176 Source advisory:...

CVE-2021-39176

detect-character-encoding is a package for detecting character encoding using ICU. In detect-character-encoding v0.3.0 and earlier, allocated memory is not released. The problem has been patched in detect-character-encoding v0.3.1...

CVE-2021-39176

CVE-2021-39176 (detect-character-encoding) affects the detect-character-encoding library (ICU-based) up to version 0.3.0. The root cause is that allocated memory is not released, leading to memory exhaustion. The issue has been patched in v0.3.1. Related advisories (GitHub GHSA, OSV, Red Hat, NVD...

CVE-2021-39176 Missing Release of Memory after Effective Lifetime in detect-character-encoding

detect-character-encoding is a package for detecting character encoding using ICU. In detect-character-encoding v0.3.0 and earlier, allocated memory is not released. The problem has been patched in detect-character-encoding v0.3.1...

detect-character-encoding 安全漏洞

detect-character-encoding is an open source C++ plugin. A security vulnerability exists in detect-character-encoding 0.3.0 and earlier versions, which is caused by software that does not free allocated memory...

book2json (>=1.0.0 <=1.0.1), csv-extractor (=1.0.0) +8 more potentially affected by CVE-2021-39157 via detect-character-encoding (>=0.2.1 <=0.6.0)

detect-character-encoding NPM version =0.2.1, =1.0.0, =1.0.0-beta.5, =0.0.10, =0.3.0, =0.3.0, =0.1.0, =0.3.0, =0.3.2 - whois-2 =0.0.1 Source cves: CVE-2021-39157 Source advisory: OSV:GHSA-JQFH-8HW5-FQJR...

CVE-2021-39157

detect-character-encoding is an open source character encoding inspection library. In detect-character-encoding v0.6.0 and earlier, data matching no charset causes the Node.js process to crash. The problem has been patched in detect-character-encoding v0.7.0. No workaround are available and all...

CVE-2021-39157

detect-character-encoding is an open source character encoding inspection library. In detect-character-encoding v0.6.0 and earlier, data matching no charset causes the Node.js process to crash. The problem has been patched in detect-character-encoding v0.7.0. No workaround are available and all...

CVE-2021-39157

The CVE-2021-39157 entry relates to detect-character-encoding, a library where data matching with no charset in versions ≤0.6.0 can crash a Node.js process. The issue is resolved by upgrading to v0.7.0, as documented in Red Hat and GHSA advisories, with no workaround provided. Impact is a crash/d...

CVE-2021-39157 Improper Handling of Exceptional Conditions in detect-character-encoding

detect-character-encoding is an open source character encoding inspection library. In detect-character-encoding v0.6.0 and earlier, data matching no charset causes the Node.js process to crash. The problem has been patched in detect-character-encoding v0.7.0. No workaround are available and all...

detect-character-encoding 安全漏洞

detect-character-encoding is an open source C++ plugin. A security vulnerability exists in detect-character-encoding, which stems from an authorization bypass vulnerability found in istio istio. Case-insensitive host comparisons were incorrect when computing rules specified with host or notHost...