Количество 27
Количество 27
CVE-2025-59466
We have identified a bug in Node.js error handling where "Maximum call stack size exceeded" errors become uncatchable when `async_hooks.createHook()` is enabled. Instead of reaching `process.on('uncaughtException')`, the process terminates, making the crash unrecoverable. Applications that rely on `AsyncLocalStorage` (v22, v20) or `async_hooks.createHook()` (v24, v22, v20) become vulnerable to denial-of-service crashes triggered by deep recursion under specific conditions.
CVE-2025-59466
We have identified a bug in Node.js error handling where "Maximum call stack size exceeded" errors become uncatchable when `async_hooks.createHook()` is enabled. Instead of reaching `process.on('uncaughtException')`, the process terminates, making the crash unrecoverable. Applications that rely on `AsyncLocalStorage` (v22, v20) or `async_hooks.createHook()` (v24, v22, v20) become vulnerable to denial-of-service crashes triggered by deep recursion under specific conditions.
CVE-2025-59466
We have identified a bug in Node.js error handling where "Maximum call stack size exceeded" errors become uncatchable when `async_hooks.createHook()` is enabled. Instead of reaching `process.on('uncaughtException')`, the process terminates, making the crash unrecoverable. Applications that rely on `AsyncLocalStorage` (v22, v20) or `async_hooks.createHook()` (v24, v22, v20) become vulnerable to denial-of-service crashes triggered by deep recursion under specific conditions.
CVE-2025-59466
We have identified a bug in Node.js error handling where "Maximum call ...
GHSA-52xj-vx8w-46qj
We have identified a bug in Node.js error handling where "Maximum call stack size exceeded" errors become uncatchable when `async_hooks.createHook()` is enabled. Instead of reaching `process.on('uncaughtException')`, the process terminates, making the crash unrecoverable. Applications that rely on `AsyncLocalStorage` (v22, v20) or `async_hooks.createHook()` (v24, v22, v20) become vulnerable to denial-of-service crashes triggered by deep recursion under specific conditions.
BDU:2026-00456
Уязвимость функции createHook() модуля async_hooks программной платформы Node.js, позволяющая нарушителю вызвать отказ в обслуживании
RLSA-2026:2783
Important: nodejs:20 security update
RLSA-2026:2782
Important: nodejs:22 security update
RLSA-2026:2781
Important: nodejs:24 security update
RLSA-2026:2422
Important: nodejs:20 security update
RLSA-2026:2421
Important: nodejs:22 security update
RLSA-2026:2420
Important: nodejs:24 security update
RLSA-2026:1843
Important: nodejs22 security update
RLSA-2026:1842
Important: nodejs24 security update
ELSA-2026-2783
ELSA-2026-2783: nodejs:20 security update (IMPORTANT)
ELSA-2026-2782
ELSA-2026-2782: nodejs:22 security update (IMPORTANT)
ELSA-2026-2781
ELSA-2026-2781: nodejs:24 security update (IMPORTANT)
ELSA-2026-2422
ELSA-2026-2422: nodejs:20 security update (IMPORTANT)
ELSA-2026-2421
ELSA-2026-2421: nodejs:22 security update (IMPORTANT)
ELSA-2026-2420
ELSA-2026-2420: nodejs:24 security update (IMPORTANT)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-59466 We have identified a bug in Node.js error handling where "Maximum call stack size exceeded" errors become uncatchable when `async_hooks.createHook()` is enabled. Instead of reaching `process.on('uncaughtException')`, the process terminates, making the crash unrecoverable. Applications that rely on `AsyncLocalStorage` (v22, v20) or `async_hooks.createHook()` (v24, v22, v20) become vulnerable to denial-of-service crashes triggered by deep recursion under specific conditions. | CVSS3: 7.5 | 0% Низкий | 2 месяца назад |
 | CVE-2025-59466 We have identified a bug in Node.js error handling where "Maximum call stack size exceeded" errors become uncatchable when `async_hooks.createHook()` is enabled. Instead of reaching `process.on('uncaughtException')`, the process terminates, making the crash unrecoverable. Applications that rely on `AsyncLocalStorage` (v22, v20) or `async_hooks.createHook()` (v24, v22, v20) become vulnerable to denial-of-service crashes triggered by deep recursion under specific conditions. | CVSS3: 5.9 | 0% Низкий | 2 месяца назад |
 | CVE-2025-59466 We have identified a bug in Node.js error handling where "Maximum call stack size exceeded" errors become uncatchable when `async_hooks.createHook()` is enabled. Instead of reaching `process.on('uncaughtException')`, the process terminates, making the crash unrecoverable. Applications that rely on `AsyncLocalStorage` (v22, v20) or `async_hooks.createHook()` (v24, v22, v20) become vulnerable to denial-of-service crashes triggered by deep recursion under specific conditions. | CVSS3: 7.5 | 0% Низкий | 2 месяца назад |
| CVE-2025-59466 We have identified a bug in Node.js error handling where "Maximum call ... | CVSS3: 7.5 | 0% Низкий | 2 месяца назад |
| GHSA-52xj-vx8w-46qj We have identified a bug in Node.js error handling where "Maximum call stack size exceeded" errors become uncatchable when `async_hooks.createHook()` is enabled. Instead of reaching `process.on('uncaughtException')`, the process terminates, making the crash unrecoverable. Applications that rely on `AsyncLocalStorage` (v22, v20) or `async_hooks.createHook()` (v24, v22, v20) become vulnerable to denial-of-service crashes triggered by deep recursion under specific conditions. | CVSS3: 5.9 | 0% Низкий | 2 месяца назад |
 | BDU:2026-00456 Уязвимость функции createHook() модуля async_hooks программной платформы Node.js, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 7.5 | 0% Низкий | 2 месяца назад |
 | RLSA-2026:2783 Important: nodejs:20 security update | около 1 месяца назад | ||
| RLSA-2026:2782 Important: nodejs:22 security update | около 1 месяца назад | ||
| RLSA-2026:2781 Important: nodejs:24 security update | около 1 месяца назад | ||
| RLSA-2026:2422 Important: nodejs:20 security update | около 1 месяца назад | ||
| RLSA-2026:2421 Important: nodejs:22 security update | около 1 месяца назад | ||
| RLSA-2026:2420 Important: nodejs:24 security update | около 1 месяца назад | ||
| RLSA-2026:1843 Important: nodejs22 security update | около 2 месяцев назад | ||
| RLSA-2026:1842 Important: nodejs24 security update | около 2 месяцев назад | ||
| ELSA-2026-2783 ELSA-2026-2783: nodejs:20 security update (IMPORTANT) | около 1 месяца назад | ||
| ELSA-2026-2782 ELSA-2026-2782: nodejs:22 security update (IMPORTANT) | около 1 месяца назад | ||
| ELSA-2026-2781 ELSA-2026-2781: nodejs:24 security update (IMPORTANT) | около 1 месяца назад | ||
| ELSA-2026-2422 ELSA-2026-2422: nodejs:20 security update (IMPORTANT) | около 1 месяца назад | ||
| ELSA-2026-2421 ELSA-2026-2421: nodejs:22 security update (IMPORTANT) | около 1 месяца назад | ||
| ELSA-2026-2420 ELSA-2026-2420: nodejs:24 security update (IMPORTANT) | около 1 месяца назад |
Уязвимостей на страницу