RHSA-2017:2908-01 -- Redhat rh-nodejs6-nodejsID: oval:org.secpod.oval:def:504970 | Date: (C)2021-02-03 (M)2024-04-17 |
Class: PATCH | Family: unix |
Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The following packages have been upgraded to a later upstream version: rh-nodejs6-nodejs . Security Fix: * It was found that Node.js was using a non-randomized seed when populating hash tables. An attacker, able to supply a large number of inputs, could send specially crafted entries to the Node.js application, maximizing hash collisions to trigger an excessive amount of CPU usage, resulting in a denial of service
Platform: |
Red Hat Enterprise Linux 7 |
Red Hat Enterprise Linux 6 |
Product: |
rh-nodejs6-nodejs |