Lucene search
Veracode Vulnerability DatabaseVERACODE:31166HistoryJul 10, 2021 - 1:46 p.m.
Information Disclosure
2021-07-1013:46:13
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
15
0.001 Low
EPSS
Percentile
46.7%
Node.js is vulnerable to an out-of-bounds read. The libuv's uv__idna_toascii() function which converts strings to ASCII is called by Nodeโs dns moduleโs lookup() function and can lead to information disclosures or crashes.
Related
nessus
nessus
Amazon Linux 2 : libuv (ALAS-2024-2410)
2024-01-09 00:00:00
RHEL 8 : libuv (RHSA-2021:3075)
2021-08-10 00:00:00
CentOS 8 : libuv (CESA-2021:3075)
2021-08-16 00:00:00
osv
osv
Low: libuv security update
2021-08-10 12:00:55
CVE-2021-22918
2021-07-12 11:15:07
Low: libuv security update
2021-08-10 12:00:55
openvas
openvas
Debian: Security Advisory (DSA-4936-1)
2021-07-07 00:00:00
Ubuntu: Security Advisory (USN-5007-1)
2021-07-08 00:00:00
hackerone
hackerone
Node.js: OOB read in libuv
2021-05-26 06:22:37
mageia
mageia
Updated libuv packages fix security vulnerability
2021-07-20 13:46:47
ibm
ibm
debiancve
debiancve
CVE-2021-22918
2021-07-12 11:15:07
rocky
rocky
libuv security update
2021-08-10 12:00:55
nodejs:12 security, bug fix, and enhancement update
2021-08-10 12:00:47
nodejs:14 security, bug fix, and enhancement update
2021-08-10 12:00:51
photon
photon
Important Photon OS Security Update - PHSA-2021-0074
2021-08-02 00:00:00
Moderate Photon OS Security Update - PHSA-2021-4.0-0074
2021-08-02 00:00:00
archlinux
archlinux
[ASA-202107-36] libuv: information disclosure
2021-07-20 00:00:00
[ASA-202107-13] nodejs: multiple issues
2021-07-06 00:00:00
[ASA-202107-33] nodejs-lts-erbium: multiple issues
2021-07-20 00:00:00
alpinelinux
alpinelinux
CVE-2021-22918
2021-07-12 11:15:07
cvelist
cvelist
CVE-2021-22918
2021-07-12 00:00:00
cve
cve
CVE-2021-22918
2021-07-12 11:15:07
prion
prion
Out-of-bounds
2021-07-12 11:15:00
ubuntu
ubuntu
libuv vulnerability
2021-07-07 00:00:00
ubuntucve
ubuntucve
CVE-2021-22918
2021-07-02 00:00:00
redhatcve
redhatcve
CVE-2021-22918
2021-07-06 15:17:41
debian
debian
[SECURITY] [DSA 4936-1] libuv1 security update
2021-07-05 18:35:15
altlinux
altlinux
Security fix for the ALT Linux 9 package node version 14.17.2-alt1
2021-08-03 00:00:00
Security fix for the ALT Linux 10 package node version 14.17.2-alt1
2021-07-01 00:00:00
amazon
amazon
Low: libuv
2024-01-03 21:04:00
nvd
nvd
CVE-2021-22918
2021-07-12 11:15:07
oraclelinux
oraclelinux
libuv security update
2021-08-11 00:00:00
nodejs:12 security, bug fix, and enhancement update
2021-08-12 00:00:00
nodejs:14 security, bug fix, and enhancement update
2021-08-12 00:00:00
redhat
redhat
(RHSA-2021:3075) Low: libuv security update
2021-08-10 12:00:55
almalinux
almalinux
Low: libuv security update
2021-08-10 12:00:55
Moderate: nodejs:14 security, bug fix, and enhancement update
2021-08-10 12:00:51
Moderate: nodejs:12 security, bug fix, and enhancement update
2021-08-10 12:00:47
cbl_mariner
cbl_mariner
CVE-2021-22918 affecting package nodejs 14.17.0-1
2021-08-11 06:39:34
gentoo
gentoo
libuv: Buffer Overread
2024-01-16 00:00:00
Node.js: Multiple Vulnerabilities
2024-05-08 00:00:00
freebsd
freebsd
Node.js -- July 2021 Security Releases
2021-07-01 00:00:00
suse
suse
Security update for nodejs14 (important)
2021-07-15 00:00:00
Security update for nodejs14 (important)
2021-07-20 00:00:00
Security update for nodejs10 (important)
2021-07-15 00:00:00
nodejsblog
nodejsblog
July 2021 Security Releases
2021-07-01 00:00:00
ics
ics
Siemens SINEC INS
2022-03-10 12:00:00