Node.js: All versions prior to Node.js 6.15.0 and 8.14.0: HTTP request splitting: If Node.js can be convinced to use unsanitized user-provided Unicode data for the path option of an HTTP request, then data can be provided which will trigger a second, unexpected, and user-defined HTTP request to made to the same server.
Weakness
The product misinterprets an input, whether from an attacker or another product, in a security-relevant fashion.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Node.js | Nodejs | 6.0.0 (including) | 6.8.1 (including) |
| Node.js | Nodejs | 6.9.0 (including) | 6.15.0 (excluding) |
| Node.js | Nodejs | 8.0.0 (including) | 8.8.1 (including) |
| Node.js | Nodejs | 8.9.0 (including) | 8.14.0 (excluding) |
| Red Hat Software Collections for Red Hat Enterprise Linux 7 | RedHat | rh-nodejs8-nodejs-0:8.16.0-1.el7 | * |
| Red Hat Software Collections for Red Hat Enterprise Linux 7.4 EUS | RedHat | rh-nodejs8-nodejs-0:8.16.0-1.el7 | * |
| Red Hat Software Collections for Red Hat Enterprise Linux 7.5 EUS | RedHat | rh-nodejs8-nodejs-0:8.16.0-1.el7 | * |
| Red Hat Software Collections for Red Hat Enterprise Linux 7.6 EUS | RedHat | rh-nodejs8-nodejs-0:8.16.0-1.el7 | * |
| Nodejs | Ubuntu | bionic | * |
| Nodejs | Ubuntu | cosmic | * |
| Nodejs | Ubuntu | esm-apps/bionic | * |
| Nodejs | Ubuntu | upstream | * |
References
- https://access.redhat.com/errata/RHSA-2019:1821
- https://nodejs.org/en/blog/vulnerability/november-2018-security-releases/
- https://security.gentoo.org/glsa/202003-48
- https://access.redhat.com/errata/RHSA-2019:1821
- https://nodejs.org/en/blog/vulnerability/november-2018-security-releases/
- https://security.gentoo.org/glsa/202003-48