Описание
Out-of-bounds Read in base64url
Versions of base64url before 3.0.0 are vulnerable to to out-of-bounds reads as it allocates uninitialized Buffers when number is passed in input on Node.js 4.x and below.
Recommendation
Update to version 3.0.0 or later.
Пакеты
Наименование
base64url
npm
Затронутые версииВерсия исправления
< 3.0.0
3.0.0
Дефекты
CWE-125
Дефекты
CWE-125