4 matches found
ROOT-APP-NPM-CVE-2026-2739 CVE-2026-2739 in @rootio/bn.js - Patched by Root
Root has patched CVE-2026-2739 in the @rootio/bn.js package for Root:npm. Multiple fixed versions available...
SUSE CVE-2026-2739
This affects versions of the package bn.js before 5.2.3. Calling maskn0 on any BN instance corrupts the internal state, causing toString, divmod, and other methods to enter an infinite loop, hanging the process indefinitely...
CVE-2026-2739
creationtimestamp| type| source ---|---|--- 2026-02-20 22:40:40+00:00| seen| https://gist.github.com/alon710/385828216ee91709a87b6de0813d1ccc...
org.webjars.npm:asn1.js (>=4.0.0 <=5.4.1), org.webjars.npm:asn1.js-rfc5280 (=3.0.0) +26 more potentially affected by CVE-2026-2739 via org.webjars.npm:bn.js (>=4.11.6 <=5.2.0)
org.webjars.npm:bn.js MAVEN version =4.11.6, =4.0.0, =4.0.1, =4.0.0, =5.0.0, =6.2.3, =6.6.1 - org.webjars.npm:ethereum-cryptography =0.1.3 - org.webjars.npm:ethers =5.4.6 - org.webjars.npm:ethersprojectaddress =5.4.0 - org.webjars.npm:ethersprojectbignumber =5.4.1 and more Source cves:...