Описание
Predictable results in nanoid generation when given non-integer values
When nanoid is called with a fractional value, there were a number of undesirable effects:
- in browser and non-secure, the code infinite loops on while (size--)
- in node, the value of poolOffset becomes fractional, causing calls to nanoid to return zeroes until the pool is next filled
- if the first call in node is a fractional argument, the initial buffer allocation fails with an error
Version 3.3.8 and 5.0.9 are fixed.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2024-55565
- https://github.com/ai/nanoid/pull/510
- https://github.com/ai/nanoid/compare/3.3.7...3.3.8
- https://github.com/ai/nanoid/releases/tag/5.0.9
- https://lists.debian.org/debian-lts-announce/2024/12/msg00025.html
- https://lists.debian.org/debian-lts-announce/2025/01/msg00006.html
Пакеты
Наименование
nanoid
npm
Затронутые версииВерсия исправления
>= 4.0.0, < 5.0.9
5.0.9
Наименование
nanoid
npm
Затронутые версииВерсия исправления
< 3.3.8
3.3.8
Связанные уязвимости
CVSS3: 4.3
ubuntu
около 1 года назад
nanoid (aka Nano ID) before 5.0.9 mishandles non-integer values. 3.3.8 is also a fixed version.
CVSS3: 6.5
redhat
около 1 года назад
nanoid (aka Nano ID) before 5.0.9 mishandles non-integer values. 3.3.8 is also a fixed version.
CVSS3: 4.3
nvd
около 1 года назад
nanoid (aka Nano ID) before 5.0.9 mishandles non-integer values. 3.3.8 is also a fixed version.
CVSS3: 4.3
debian
около 1 года назад
nanoid (aka Nano ID) before 5.0.9 mishandles non-integer values. 3.3.8 ...