ROOT-APP-NPM-CVE-2021-33623 CVE-2021-33623 in @rootio/trim-newlines - Patched by Root

Root has patched CVE-2021-33623 in the @rootio/trim-newlines package for Root:npm. Multiple fixed versions available...

EUVD-2021-1281

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2021-33623

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The trim-newlines package before 3.0.1 and 4.x before 4.0.1 for Node.js has an issue related to regular expression denial-of-service ReDoS for the .end method...

RHEL 8 : nodejs-trim-newlines (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - nodejs-trim-newlines: ReDoS in .end method CVE-2021-33623 Note that Nessus has not tested for this issue but has...

Security Bulletin: Open Source Dependency Vulnerability

Summary IBM Edge Application Manager 4.5 has resolved the vulnerability. Vulnerability Details CVEID:CVE-2021-33623 DESCRIPTION: Node.js trim-newlines module is vulnerable to a denial of service, caused by a regular expression denial-of-service ReDoS flaw in the .end method. By sending a...

Ubuntu: Security Advisory (USN-5999-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-5999-1 node-trim-newlines vulnerability

It was discovered that trim-newlines incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly use this issue to cause a denial of service. CVE-2021-33623...

USN-5999-1: trim-newlines vulnerability

It was discovered that trim-newlines incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly use this issue to cause a denial of service. CVE-2021-33623...

Debian: Security Advisory (DLA-3247-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

DLA-3247-1 node-trim-newlines - security update

Bulletin has no description...

Debian dla-3247 : node-trim-newlines - security update

The remote Debian 10 host has a package installed that is affected by a vulnerability as referenced in the dla-3247 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3247-1 [email protected] https://www.debian.org/lts/security/...

nodejs-trim-newlines: ReDoS in .end() method

A flaw was found in nodejs-trim-newlines. Node.js has an issue related to regular expression denial-of-service ReDoS for the .end method...

Security Bulletin: IBM QRadar Deployment Intelligence app for IBM QRadar SIEM is vulnerable to using components with known vulnerabilities

Summary The product includes vulnerable components e.g., framework libraries that may be identified and exploited with automated tools. IBM QRadar Deployment Intelligence app for IBM QRadar SIEM has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2020-24025 DESCRIPTION: node-sass...

Regular Expression Denial of Service

Overview trim-newlines before 3.0.1 and 4.x before 4.0.1 for Node.js has an issue related to regular expression denial-of-service ReDoS for the .end method. Recommendation Upgrade to versions 3.0.1 or 4.0.1 or later References - CVE - GitHub Advisory...

Uncontrolled Resource Consumption in trim-newlines

@rkesters/gnuplot is an easy to use node module to draw charts using gnuplot and ps2pdf. The trim-newlines package before 3.0.1 and 4.x before 4.0.1 for Node.js has an issue related to regular expression denial-of-service ReDoS for the .end method...

GHSA-7P7H-4MM5-852V Uncontrolled Resource Consumption in trim-newlines

@rkesters/gnuplot is an easy to use node module to draw charts using gnuplot and ps2pdf. The trim-newlines package before 3.0.1 and 4.x before 4.0.1 for Node.js has an issue related to regular expression denial-of-service ReDoS for the .end method...

-tompan-reacttemplate (>=1.0.1 <=1.1.0), 0126af95c0e2d9b0a7c78738c4c00a860b04acc8 (>=0.0.0 <=1.0.0) +49768 more potentially affected by CVE-2021-33623 via trim-newlines (>=1.0.0 <=3.0.0)

trim-newlines NPM version =1.0.0, =1.0.1, =0.0.0, =1.0.0, =1.0.4, =1.0.0, =1.0.0, =1.2.1 and more Source cves: CVE-2021-33623 Source advisory: OSV:GHSA-7P7H-4MM5-852V...

Unspecified vulnerability in Joyent trim-newlines

trim-newlines is an npm package that modifies line breaks. A security vulnerability exists in Joyent trim-newlines, which stems from an issue related to the .end method as applied to Node.js in versions 3.0.1 and 4.0.1 and earlier. No details of the vulnerability are available at this time...

CVE-2021-33623

A flaw was found in nodejs-trim-newlines. Node.js has an issue related to regular expression denial-of-service ReDoS for the .end method...

Regular Expression Denial Of Service (ReDoS)

trim-newlines is vulnerable to Regular Expression Denial Of Service ReDoS. The usage of an insecure regular expression in the .end method allows an attacker to cause excessive resource consumption...