Malicious Package

Overview All versions of aysnc typosquatted a popular package of similar name and tracked users who had installed the incorrect package. The package uploaded information to a remote server including: name of the downloaded package, name of the intended package, the Node version and whether the...

Malicious Package

Overview All versions of asnyc typosquatted a popular package of similar name and tracked users who had installed the incorrect package. The package uploaded information to a remote server including: name of the downloaded package, name of the intended package, the Node version and whether the...

Malicious Package

Overview All versions of asycn typosquatted a popular package of similar name and tracked users who had installed the incorrect package. The package uploaded information to a remote server including: name of the downloaded package, name of the intended package, the Node version and whether the...

Malicious Package

Overview All versions of asynnc typosquatted a popular package of similar name and tracked users who had installed the incorrect package. The package uploaded information to a remote server including: name of the downloaded package, name of the intended package, the Node version and whether the...

Malicious Package

Overview All versions of jajajejejiji typosquatted a popular package of similar name and tracked users who had installed the incorrect package. The package uploaded information to a remote server including: name of the downloaded package, name of the intended package, the Node version and whether...

Malicious Package

Overview All versions of 4equest typosquatted a popular package of similar name and tracked users who had installed the incorrect package. The package uploaded information to a remote server including: name of the downloaded package, name of the intended package, the Node version and whether the...

Security fix for the ALT Linux 10 package node version 10.15.3-alt1

March 9, 2019 Vitaly Lipatov 10.15.3-alt1 - new version 10.15.3 with rpmrb script - 2018-03-05, Version 10.15.3 'Dubnium' LTS, @BethGriggs - CVE-2019-5737 - fix rpm's cflags using, add -latomic on mipsel - use external gyp...

Security fix for the ALT Linux 10 package node version 10.14.1-alt1

Nov. 30, 2018 Vitaly Lipatov 10.14.1-alt1 - new version 10.14.1 with rpmrb script - disable internal doc - 2018-11-27, Version 10.14.0 'Dubnium' LTS, @rvagg - CVE-2018-12121, CVE-2018-12122, CVE-2018-12123...

Security fix for the ALT Linux 10 package node version 8.11.4-alt1

Aug. 29, 2018 Vitaly Lipatov 8.11.4-alt1 - new version 8.11.4 with rpmrb script - 2018-08-15, Version 8.11.4 'Carbon' LTS, @rvagg - CVE-2018-0732, CVE-2018-12115 - build with external libnghttp2 - fix build with ICU = 61 add -DUUSINGICUNAMESPACE=1...

Security fix for the ALT Linux 10 package node version 6.13.0-alt1

Feb. 27, 2018 Alexey Shabalin 6.13.0-alt1 - new version 6.13.0 - 2018-02-13, Version 6.13.0 'Boron' LTS - fixed CVE-2017-15896, CVE-2017-3738...

HTTP Server Security Vulnerability: Please upgrade to 0.6.17

HTTP Server Security Vulnerability: Please upgrade to 0.6.17 tl;dr A carefully crafted attack request can cause the contents of the HTTP parser's buffer to be appended to the attacking request's header, making it appear to come from the attacker. Since it is generally safe to echo back contents o...