20 matches found
EUVD-2022-5914
Malicious code in bioql PyPI...
EUVD-2022-6069
Malicious code in bioql PyPI...
fast-string-search denial-of-service vulnerability
fast-string-search is a search function that can search for strings using N-API and boyer-moore-magiclen. fast-string-search suffers from a denial-of-service vulnerability that stems from incorrect computation of non-string input, which can be exploited by an attacker to cause fast-string- search...
Uncontrolled Resource Consumption in fast-string-search
All versions of package fast-string-search are vulnerable to Denial of Service DoS when computations are incorrect for non-string inputs. One can cause the V8 to attempt reading from non-permitted locations and cause a segmentation fault due to the violation...
Out-of-bounds Read in fast-string-search
All versions of package fast-string-search are vulnerable to Out-of-bounds Read due to incorrect memory freeing and length calculation for any non-string input as the source. This allows the attacker to read previously allocated memory...
GHSA-HMQG-P8F8-3QRW Out-of-bounds Read in fast-string-search
All versions of package fast-string-search are vulnerable to Out-of-bounds Read due to incorrect memory freeing and length calculation for any non-string input as the source. This allows the attacker to read previously allocated memory...
CVE-2022-22138
All versions of package fast-string-search are vulnerable to Denial of Service DoS when computations are incorrect for non-string inputs. One can cause the V8 to attempt reading from non-permitted locations and cause a segmentation fault due to the violation...
CVE-2022-25872
All versions of package fast-string-search are vulnerable to Out-of-bounds Read due to incorrect memory freeing and length calculation for any non-string input as the source. This allows the attacker to read previously allocated memory...
CVE-2022-25872
All versions of package fast-string-search are vulnerable to Out-of-bounds Read due to incorrect memory freeing and length calculation for any non-string input as the source. This allows the attacker to read previously allocated memory...
CVE-2022-22138
All versions of package fast-string-search are vulnerable to Denial of Service DoS when computations are incorrect for non-string inputs. One can cause the V8 to attempt reading from non-permitted locations and cause a segmentation fault due to the violation...
Design/Logic Flaw
All versions of package fast-string-search are vulnerable to Denial of Service DoS when computations are incorrect for non-string inputs. One can cause the V8 to attempt reading from non-permitted locations and cause a segmentation fault due to the violation...
CVE-2022-25872
The CVE-2022-25872 entry concerns the npm package fast-string-search. The vulnerability is an out-of-bounds read caused by incorrect memory freeing and length calculation when the source input is not a string, allowing access to previously allocated memory. Affected component is the fast-string-s...
CVE-2022-22138 Denial of Service (DoS)
All versions of package fast-string-search are vulnerable to Denial of Service DoS when computations are incorrect for non-string inputs. One can cause the V8 to attempt reading from non-permitted locations and cause a segmentation fault due to the violation...
CVE-2022-22138
CVE-2022-22138 affects the npm package fast-string-search . The vulnerability causes a Denial of Service when computations are incorrect for non-string inputs, potentially causing the V8 engine to read from non-permitted locations and leading to a segmentation fault. Connected sources describe Do...
CVE-2022-22138
All versions of package fast-string-search are vulnerable to Denial of Service DoS when computations are incorrect for non-string inputs. One can cause the V8 to attempt reading from non-permitted locations and cause a segmentation fault due to the violation...
fast-string-search 安全漏洞
fast-string-search is a search function that can search for strings using N-API and boyer-moore-magiclen. fast-string-search suffers from a denial-of-service vulnerability that stems from incorrect computation of non-string input, which can be exploited by an attacker to cause fast-string- search...
fast-string-search 缓冲区错误漏洞
fast-string-search is a module from the individual developer Magic Len Ron Li in China that searches for substrings in a string using N-API and boyer-moore-magiclen. A security vulnerability exists in fast-string-search due to incorrect memory freeing and length calculation of any non-string inpu...
express-check-introspection-key (=1.0.0), leapfin-exercise (>=1.0.0 <=1.1.1) +1 more potentially affected by CVE-2022-25872 via fast-string-search (=1.4.4)
fast-string-search NPM version =1.4.4 is affected by a known vulnerability. The following packages have a transitive dependency on fast-string-search and may be impacted: - express-check-introspection-key =1.0.0 - leapfin-exercise =1.0.0, =0.0.1, =0.0.2-beta.0 Source cves: CVE-2022-25872 Source...
express-check-introspection-key (=1.0.0), leapfin-exercise (>=1.0.0 <=1.1.1) +1 more potentially affected by CVE-2022-22138 via fast-string-search (=1.4.4)
fast-string-search NPM version =1.4.4 is affected by a known vulnerability. The following packages have a transitive dependency on fast-string-search and may be impacted: - express-check-introspection-key =1.0.0 - leapfin-exercise =1.0.0, =0.0.1, =0.0.2-beta.0 Source cves: CVE-2022-22138 Source...
Denial of Service (DoS)
Overview fast-string-search is a module that can search substrings in a string by using N-API and boyer-moore-magiclen. Affected versions of this package are vulnerable to Denial of Service DoS when computations are incorrect for non-string inputs. One can cause the V8 to attempt reading from...