Vulnerability   
Search   
    Search 191973 CVE descriptions
and 86218 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2020-8252
Description:The implementation of realpath in libuv < 10.22.1, < 12.18.4, and < 14.9.0 used within Node.js incorrectly determined the buffer size which can result in a buffer overflow if the resolved path is longer than 256 bytes.
Test IDs: 1.3.6.1.4.1.25623.1.0.844623   1.3.6.1.4.1.25623.1.0.853491  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2020-8252
https://security.gentoo.org/glsa/202009-15
https://hackerone.com/reports/965914
https://hackerone.com/reports/965914
https://nodejs.org/en/blog/vulnerability/september-2020-security-releases/
https://nodejs.org/en/blog/vulnerability/september-2020-security-releases/
SuSE Security Announcement: openSUSE-SU-2020:1616 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00011.html
SuSE Security Announcement: openSUSE-SU-2020:1660 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00023.html
https://usn.ubuntu.com/4548-1/




© 1998-2020 E-Soft Inc. All rights reserved.