all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

USN-6735-1: Node.js vulnerabilities

Add to bookmarks
April 16, 2024, 11:31 a.m. |

Ubuntu security notices ubuntu.com

It was discovered that Node.js incorrectly handled the use of invalid public
keys while creating an x509 certificate. If a user or an automated system were
tricked into opening a specially crafted input file, a remote attacker could
possibly use this issue to cause a denial of service. This issue only affected
Ubuntu 23.10. (CVE-2023-30588)

It was discovered that Node.js incorrectly handled the use of CRLF sequences to
delimit HTTP requests. If a user or an automated system were tricked …

attacker automated certificate cve denial of service file input issue keys node node.js node.js vulnerabilities public public keys service system ubuntu ubuntu 23.10 usn vulnerabilities

Visit resource

More from ubuntu.com / Ubuntu security notices

USN-6760-1: Gerbv vulnerability 14 hours ago | ubuntu.com
application attacker crash data +10
LSN-0103-1: Kernel Live Patch Security Notice 1 day, 1 hour ago | ubuntu.com
attacker con cve data +21
USN-6758-1: JSON5 vulnerability 1 day, 2 hours ago | ubuntu.com
access application attacker denial of service +12
USN-6761-1: Anope vulnerability 1 day, 5 hours ago | ubuntu.com
accounts attacker changing credentials +7
USN-6759-1: FreeRDP vulnerabilities 1 day, 20 hours ago | ubuntu.com
attacker crash denial of service issue +7
USN-6757-1: PHP vulnerabilities 1 day, 22 hours ago | ubuntu.com
arbitrary code attacker code cookie +15
USN-6744-3: Pillow vulnerability 1 day, 23 hours ago | ubuntu.com
advisory automated buffer buffer overflow +12
USN-6734-2: libvirt vulnerabilities 2 days, 1 hour ago | ubuntu.com
advisory api attacker crash +13
USN-6733-2: GnuTLS vulnerabilities 2 days, 1 hour ago | ubuntu.com
advisory attacker channel cve +18

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Senior Security Researcher

@ Microsoft | Redmond, Washington, United States
View on infosec-jobs.com

Sr. Cyber Risk Analyst

@ American Heart Association | Dallas, TX, United States
View on infosec-jobs.com

Cybersecurity Engineer 2/3

@ Scaled Composites, LLC | Mojave, CA, US
View on infosec-jobs.com

Information Security Operations Manager

@ DP World | Charlotte, NC, United States
View on infosec-jobs.com

Sr Cyber Security Engineer I

@ Staples | Framingham, MA, United States
View on infosec-jobs.com

Security Engineer - Heartland (Remote)

@ GuidePoint Security LLC | Remote in the US
View on infosec-jobs.com
View more jobs