Количество 12
Количество 12
BDU:2025-10619
Уязвимость функции ReadFileUtf8() модели разрешений программной платформы Node.js, позволяющая нарушителю вызвать отказ в обслуживании
CVE-2025-23165
In Node.js, the `ReadFileUtf8` internal binding leaks memory due to a corrupted pointer in `uv_fs_s.file`: a UTF-16 path buffer is allocated but subsequently overwritten when the file descriptor is set. This results in an unrecoverable memory leak on every call. Repeated use can cause unbounded memory growth, leading to a denial of service. Impact: * This vulnerability affects APIs relying on `ReadFileUtf8` on Node.js release lines: v20 and v22.
CVE-2025-23165
In Node.js, the `ReadFileUtf8` internal binding leaks memory due to a corrupted pointer in `uv_fs_s.file`: a UTF-16 path buffer is allocated but subsequently overwritten when the file descriptor is set. This results in an unrecoverable memory leak on every call. Repeated use can cause unbounded memory growth, leading to a denial of service. Impact: * This vulnerability affects APIs relying on `ReadFileUtf8` on Node.js release lines: v20 and v22.
CVE-2025-23165
In Node.js, the `ReadFileUtf8` internal binding leaks memory due to a corrupted pointer in `uv_fs_s.file`: a UTF-16 path buffer is allocated but subsequently overwritten when the file descriptor is set. This results in an unrecoverable memory leak on every call. Repeated use can cause unbounded memory growth, leading to a denial of service. Impact: * This vulnerability affects APIs relying on `ReadFileUtf8` on Node.js release lines: v20 and v22.
CVE-2025-23165
CVE-2025-23165
In Node.js, the `ReadFileUtf8` internal binding leaks memory due to a ...
GHSA-gcf6-vgcr-474f
In Node.js, the `ReadFileUtf8` internal binding leaks memory due to a corrupted pointer in `uv_fs_s.file`: a UTF-16 path buffer is allocated but subsequently overwritten when the file descriptor is set. This results in an unrecoverable memory leak on every call. Repeated use can cause unbounded memory growth, leading to a denial of service. Impact: * This vulnerability affects APIs relying on `ReadFileUtf8` on Node.js release lines: v20 and v22.
SUSE-SU-2025:01879-1
Security update for nodejs22
SUSE-SU-2025:01878-1
Security update for nodejs22
ELSA-2025-8493
ELSA-2025-8493: nodejs22 security update (IMPORTANT)
SUSE-SU-2025:02045-1
Security update for nodejs20
SUSE-SU-2025:02039-1
Security update for nodejs20
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2025-10619 Уязвимость функции ReadFileUtf8() модели разрешений программной платформы Node.js, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 3.7 | 0% Низкий | 4 месяца назад |
 | CVE-2025-23165 In Node.js, the `ReadFileUtf8` internal binding leaks memory due to a corrupted pointer in `uv_fs_s.file`: a UTF-16 path buffer is allocated but subsequently overwritten when the file descriptor is set. This results in an unrecoverable memory leak on every call. Repeated use can cause unbounded memory growth, leading to a denial of service. Impact: * This vulnerability affects APIs relying on `ReadFileUtf8` on Node.js release lines: v20 and v22. | CVSS3: 3.7 | 0% Низкий | 4 месяца назад |
 | CVE-2025-23165 In Node.js, the `ReadFileUtf8` internal binding leaks memory due to a corrupted pointer in `uv_fs_s.file`: a UTF-16 path buffer is allocated but subsequently overwritten when the file descriptor is set. This results in an unrecoverable memory leak on every call. Repeated use can cause unbounded memory growth, leading to a denial of service. Impact: * This vulnerability affects APIs relying on `ReadFileUtf8` on Node.js release lines: v20 and v22. | CVSS3: 3.7 | 0% Низкий | 4 месяца назад |
 | CVE-2025-23165 In Node.js, the `ReadFileUtf8` internal binding leaks memory due to a corrupted pointer in `uv_fs_s.file`: a UTF-16 path buffer is allocated but subsequently overwritten when the file descriptor is set. This results in an unrecoverable memory leak on every call. Repeated use can cause unbounded memory growth, leading to a denial of service. Impact: * This vulnerability affects APIs relying on `ReadFileUtf8` on Node.js release lines: v20 and v22. | CVSS3: 3.7 | 0% Низкий | 4 месяца назад |
 | CVSS3: 3.7 | 0% Низкий | 2 месяца назад | |
| CVE-2025-23165 In Node.js, the `ReadFileUtf8` internal binding leaks memory due to a ... | CVSS3: 3.7 | 0% Низкий | 4 месяца назад |
| GHSA-gcf6-vgcr-474f In Node.js, the `ReadFileUtf8` internal binding leaks memory due to a corrupted pointer in `uv_fs_s.file`: a UTF-16 path buffer is allocated but subsequently overwritten when the file descriptor is set. This results in an unrecoverable memory leak on every call. Repeated use can cause unbounded memory growth, leading to a denial of service. Impact: * This vulnerability affects APIs relying on `ReadFileUtf8` on Node.js release lines: v20 and v22. | CVSS3: 3.7 | 0% Низкий | 4 месяца назад |
 | SUSE-SU-2025:01879-1 Security update for nodejs22 | 3 месяца назад | ||
| SUSE-SU-2025:01878-1 Security update for nodejs22 | 3 месяца назад | ||
| ELSA-2025-8493 ELSA-2025-8493: nodejs22 security update (IMPORTANT) | 3 месяца назад | ||
| SUSE-SU-2025:02045-1 Security update for nodejs20 | 3 месяца назад | ||
| SUSE-SU-2025:02039-1 Security update for nodejs20 | 3 месяца назад |
Уязвимостей на страницу