EUVD-2022-6074

Malicious code in bioql PyPI...

Malicious code in winston-pg-native (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c5ce4395f11e08aabe826bbeccb1004202503971e7d29e5d42730ce51f7f44b3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-7152 Malicious code in winston-pg-native (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c5ce4395f11e08aabe826bbeccb1004202503971e7d29e5d42730ce51f7f44b3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

GHSA-J32J-2HXV-RQF7 pg-native and libpq vulnerable to uncontrolled resource consumption

pg-native before 3.0.1 and libpq before 1.8.10 are vulnerable to Denial of Service DoS when the addons attempt to cast the second argument to an array and fail. This happens for every non-array argument passed. Note: pg-native is a mere binding to npm's libpq library, which in turn has the addons...

pg-native and libpq vulnerable to uncontrolled resource consumption

pg-native before 3.0.1 and libpq before 1.8.10 are vulnerable to Denial of Service DoS when the addons attempt to cast the second argument to an array and fail. This happens for every non-array argument passed. Note: pg-native is a mere binding to npm's libpq library, which in turn has the addons...

CVE-2022-25852

All versions of package pg-native; all versions of package libpq are vulnerable to Denial of Service DoS when the addons attempt to cast the second argument to an array and fail. This happens for every non-array argument passed. Note: pg-native is a mere binding to npm's libpq library, which in...

Design/Logic Flaw

All versions of package pg-native; all versions of package libpq are vulnerable to Denial of Service DoS when the addons attempt to cast the second argument to an array and fail. This happens for every non-array argument passed. Note: pg-native is a mere binding to npm's libpq library, which in...

CVE-2022-25852

The CVE-2022-25852 issue affects pg-native and libpq bindings for Node.js, causing Denial of Service when addons cast the second argument to an array and fail. Affected versions: pg-native prior to 3.0.1 and libpq prior to 1.8.10. The DoS condition occurs for every non-array argument passed. Reme...

CVE-2022-25852 Denial of Service (DoS)

All versions of package pg-native; all versions of package libpq are vulnerable to Denial of Service DoS when the addons attempt to cast the second argument to an array and fail. This happens for every non-array argument passed. Note: pg-native is a mere binding to npm's libpq library, which in...

CVE-2022-25852

All versions of package pg-native; all versions of package libpq are vulnerable to Denial of Service DoS when the addons attempt to cast the second argument to an array and fail. This happens for every non-array argument passed. Note: pg-native is a mere binding to npm's libpq library, which in...

PT-2022-17569 · Npm · Libpq +1

Name of the Vulnerable Software and Affected Versions: pg-native versions prior to 3.0.1 libpq versions prior to 1.8.10 Description: The issue is related to a Denial of Service DoS condition that occurs when the addons attempt to cast the second argument to an array and fail. This happens for eve...

npm pg-native 代码问题漏洞

npm pg-native is a high-performance native binding between node.js and PostgreSQL from US-based npm, using a simple API via libpq. A code issue vulnerability exists in pg-native that stems from the plugin's susceptibility to a denial of service DoS when it attempts to convert the second parameter...

@abeai/job-consumer (>=3.5.0 <=3.7.0), @abeai/node-logging (>=7.5.0 <=7.10.0) +15 more potentially affected by CVE-2022-25852 via pg-native (=3.0.0)

pg-native NPM version =3.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on pg-native and may be impacted: - @abeai/job-consumer =3.5.0, =7.5.0, =6.3.0, =1.1.1, =0.0.1, =10.0.0, =10.0.0, =1.0.0, =1.0.0, =1.3.1, =1.0.0-alpha, =2.0.4, =3.0.5 and more...

Denial of Service (DoS)

Overview pg-native is a high performance native bindings between node.js and PostgreSQL via libpq with a simple API. Affected versions of this package are vulnerable to Denial of Service DoS when the addons attempt to cast the second argument to an array and fail. This happens for every non-array...

Denial of Service (DoS)

Overview libpq is a node native bindings to the PostgreSQL libpq C client library. Affected versions of this package are vulnerable to Denial of Service DoS when the addons attempt to cast the second argument to an array and fail. This happens for every non-array argument passed. Note: pg-native ...