Описание
This affects versions of the package bn.js before 5.2.3. Calling maskn(0) on any BN instance corrupts the internal state, causing toString(), divmod(), and other methods to enter an infinite loop, hanging the process indefinitely.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| node-bn.js | fixed | 5.2.3+~5.2.0-1 | package | |
| node-bn.js | no-dsa | trixie | package | |
| node-bn.js | no-dsa | bookworm | package |
Примечания
https://security.snyk.io/vuln/SNYK-JS-BNJS-15274301
https://github.com/indutny/bn.js/issues/316
https://github.com/indutny/bn.js/issues/186
https://gist.github.com/Kr0emer/02370d18328c28b5dd7f9ac880d22a91
https://github.com/indutny/bn.js/pull/317
Fixed by: https://github.com/indutny/bn.js/commit/33df26b5771e824f303a79ec6407409376baa64b (v5.2.3)
Связанные уязвимости
This affects versions of the package bn.js before 5.2.3. Calling maskn(0) on any BN instance corrupts the internal state, causing toString(), divmod(), and other methods to enter an infinite loop, hanging the process indefinitely.
This affects versions of the package bn.js before 5.2.3. Calling maskn(0) on any BN instance corrupts the internal state, causing toString(), divmod(), and other methods to enter an infinite loop, hanging the process indefinitely.
This affects versions of the package bn.js before 5.2.3. Calling maskn(0) on any BN instance corrupts the internal state, causing toString(), divmod(), and other methods to enter an infinite loop, hanging the process indefinitely.
This affects versions of the package bn.js before 5.2.3. Calling maskn(0) on any BN instance corrupts the internal state, causing toString(), divmod(), and other methods to enter an infinite loop, hanging the process indefinitely.
