A Node.js application that allows an attacker to trigger a DNS request for a host of their choice could trigger a Denial of Service in versions < 15.2.1, < 14.15.1, and < 12.19.1 by getting the application to resolve a DNS record with a larger number of responses. This is fixed in 15.2.1, 14.15.1, and 12.19.1.

A Node.js application that allows an attacker to trigger a DNS request for a host of their choice could trigger a Denial of Service in versions < 15.2.1, < 14.15.1, and < 12.19.1 by getting the application to resolve a DNS record with a larger number of responses. This is fixed in 15.2.1, 14.15.1, and 12.19.1.

A Node.js application that allows an attacker to trigger a DNS request for a host of their choice could trigger a Denial of Service in versions < 15.2.1, < 14.15.1, and < 12.19.1 by getting the application to resolve a DNS record with a larger number of responses. This is fixed in 15.2.1, 14.15.1, and 12.19.1.

A Node.js application that allows an attacker to trigger a DNS request ...

Security update for c-ares

Security update for c-ares

Security update for nodejs12

Security update for c-ares

Uncontrolled Resource Consumption in node

Уязвимость программной платформы Node.js, связанная с неконтролируемым расходом ресурсов, позволяющая нарушителю вызвать отказ в обслуживании

Security update for nodejs14

Security update for nodejs14

ELSA-2020-5499: nodejs:12 security and bug fix update (MODERATE)

Security update for nodejs12

Security update for nodejs12

Moderate: nodejs:12 security and bug fix update

Moderate: nodejs:14 security and bug fix update

ELSA-2021-0551: nodejs:14 security and bug fix update (MODERATE)