2 matches found
ROOT-APP-NPM-CVE-2024-38355 CVE-2024-38355 in @rootio/socket.io - Patched by Root
Root has patched CVE-2024-38355 in the @rootio/socket.io package for Root:npm. Multiple fixed versions available...
SUSE CVE-2024-38355
Socket.IO is an open source, real-time, bidirectional, event-based, communication framework. A specially crafted Socket.IO packet can trigger an uncaught exception on the Socket.IO server, thus killing the Node.js process. This issue is fixed by commit 15af22fc22 which has been included in...