napi_get_value_string_*() allows various kinds of memory corruption in node < 10.21.0, 12.18.0, and < 14.4.0.
The product subtracts one value from another, such that the result is less than the minimum allowable integer value, which produces a value that is not equal to the correct result.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Node.js | Nodejs | * | 10.21.0 (excluding) |
Node.js | Nodejs | 12.0.0 (including) | 12.18.0 (excluding) |
Node.js | Nodejs | 14.0.0 (including) | 14.4.0 (excluding) |