undici Security breach

undici is an HTTP/1.1 client. A security vulnerability exists in undici version 6.14.0 through versions prior to 6.19.2, which stems from the response.arrayBuffer function potentially containing portions of memory from a Node.js process...

PT-2024-27966 · Node.Js · Undici

Name of the Vulnerable Software and Affected Versions: Undici versions prior to 6.19.2 Description: Undici is an HTTP/1.1 client, written from scratch for Node.js. Depending on network and process conditions of a fetch request, response.arrayBuffer might include a portion of memory from the Node....