usn-4796-1
Vulnerability from osv_ubuntu
Published
2021-03-15 21:18
Modified
2026-06-29 10:52
Summary
nodejs vulnerabilities
Details

Alexander Minozhenko and James Bunton discovered that Node.js did not properly handle wildcards in name fields of X.509 TLS certificates. An attacker could use this vulnerability to execute a machine-in-the-middle- attack. This issue only affected Ubuntu 14.04 ESM and 16.04 ESM. (CVE-2016-7099)

It was discovered that Node.js incorrectly handled certain NAPTR responses. A remote attacker could possibly use this issue to cause applications using Node.js to crash, resulting in a denial of service. This issue only affected Ubuntu 16.04 ESM. (CVE-2017-1000381)

Nikita Skovoroda discovered that Node.js mishandled certain input, leading to an out of bounds write. An attacker could use this vulnerability to cause a denial of service (crash) or possibly execute arbitrary code. This issue only affected Ubuntu 18.04 ESM. (CVE-2018-12115)

Arkadiy Tetelman discovered that Node.js improperly handled certain malformed HTTP requests. An attacker could use this vulnerability to inject unexpected HTTP requests. This issue only affected Ubuntu 18.04 ESM. (CVE-2018-12116)

Jan Maybach discovered that Node.js did not time out if incomplete HTTP/HTTPS headers were received. An attacker could use this vulnerability to cause a denial of service by keeping HTTP/HTTPS connections alive for a long period of time. This issue only affected Ubuntu 18.04 ESM. (CVE-2018-12122)

Martin Bajanik discovered that the url.parse() method would return incorrect results if it received specially crafted input. An attacker could use this vulnerability to spoof the hostname and bypass hostname-specific security controls. This issue only affected Ubuntu 18.04 ESM. (CVE-2018-12123)

It was discovered that Node.js is vulnerable to a DNS rebinding attack which could be exploited to perform remote code execution. An attack is possible from malicious websites open in a web browser with network access to the system running the Node.js process. This issue only affected Ubuntu 18.04 ESM. (CVE-2018-7160)

It was discovered that the Buffer.fill() and Buffer.alloc() methods improperly handled certain inputs. An attacker could use this vulnerability to cause a denial of service. This issue only affected Ubuntu 18.04 ESM. (CVE-2018-7167)

Marco Pracucci discovered that Node.js mishandled HTTP and HTTPS connections. An attacker could use this vulnerability to cause a denial of service. This issue only affected Ubuntu 18.04 ESM. (CVE-2019-5737)


{
  "affected": [
    {
      "database_specific": {
        "cves_map": {
          "cves": [
            {
              "id": "CVE-2016-7099",
              "severity": [
                {
                  "score": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            }
          ],
          "ecosystem": "Ubuntu:Pro:14.04:LTS"
        }
      },
      "ecosystem_specific": {
        "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
        "binaries": [
          {
            "binary_name": "nodejs",
            "binary_version": "0.10.25~dfsg2-2ubuntu1.2+esm1"
          },
          {
            "binary_name": "nodejs-legacy",
            "binary_version": "0.10.25~dfsg2-2ubuntu1.2+esm1"
          }
        ]
      },
      "package": {
        "ecosystem": "Ubuntu:Pro:14.04:LTS",
        "name": "nodejs",
        "purl": "pkg:deb/ubuntu/nodejs@0.10.25~dfsg2-2ubuntu1.2+esm1?arch=source\u0026distro=trusty/esm"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "0.10.25~dfsg2-2ubuntu1.2+esm1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "0.10.15~dfsg1-4",
        "0.10.21~dfsg1-1",
        "0.10.22~dfsg1-2",
        "0.10.23~dfsg1-1",
        "0.10.23~dfsg1-2",
        "0.10.23~dfsg1-3",
        "0.10.24~dfsg1-1",
        "0.10.25~dfsg2-2",
        "0.10.25~dfsg2-2ubuntu1",
        "0.10.25~dfsg2-2ubuntu1.2"
      ]
    },
    {
      "database_specific": {
        "cves_map": {
          "cves": [
            {
              "id": "CVE-2016-7099",
              "severity": [
                {
                  "score": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2017-1000381",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            }
          ],
          "ecosystem": "Ubuntu:Pro:16.04:LTS"
        }
      },
      "ecosystem_specific": {
        "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
        "binaries": [
          {
            "binary_name": "nodejs",
            "binary_version": "4.2.6~dfsg-1ubuntu4.2+esm1"
          },
          {
            "binary_name": "nodejs-legacy",
            "binary_version": "4.2.6~dfsg-1ubuntu4.2+esm1"
          }
        ]
      },
      "package": {
        "ecosystem": "Ubuntu:Pro:16.04:LTS",
        "name": "nodejs",
        "purl": "pkg:deb/ubuntu/nodejs@4.2.6~dfsg-1ubuntu4.2+esm1?arch=source\u0026distro=esm-apps/xenial"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "4.2.6~dfsg-1ubuntu4.2+esm1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "0.10.25~dfsg2-2ubuntu1",
        "4.2.2~dfsg-1",
        "4.2.3~dfsg-1",
        "4.2.4~dfsg-1ubuntu1",
        "4.2.4~dfsg-2",
        "4.2.6~dfsg-1ubuntu1",
        "4.2.6~dfsg-1ubuntu4",
        "4.2.6~dfsg-1ubuntu4.1",
        "4.2.6~dfsg-1ubuntu4.2"
      ]
    },
    {
      "database_specific": {
        "cves_map": {
          "cves": [
            {
              "id": "CVE-2018-7160",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2018-7167",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2018-12115",
              "severity": [
                {
                  "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2018-12116",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2018-12122",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2018-12123",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
                  "type": "CVSS_V3"
                },
                {
                  "score": "low",
                  "type": "Ubuntu"
                }
              ]
            },
            {
              "id": "CVE-2019-5737",
              "severity": [
                {
                  "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "type": "CVSS_V3"
                },
                {
                  "score": "medium",
                  "type": "Ubuntu"
                }
              ]
            }
          ],
          "ecosystem": "Ubuntu:Pro:18.04:LTS"
        }
      },
      "ecosystem_specific": {
        "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
        "binaries": [
          {
            "binary_name": "nodejs",
            "binary_version": "8.10.0~dfsg-2ubuntu0.4+esm1"
          }
        ]
      },
      "package": {
        "ecosystem": "Ubuntu:Pro:18.04:LTS",
        "name": "nodejs",
        "purl": "pkg:deb/ubuntu/nodejs@8.10.0~dfsg-2ubuntu0.4+esm1?arch=source\u0026distro=esm-apps/bionic"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "8.10.0~dfsg-2ubuntu0.4+esm1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "6.11.4~dfsg-1ubuntu1",
        "6.11.4~dfsg-1ubuntu2",
        "6.12.0~dfsg-1ubuntu1",
        "6.12.0~dfsg-2ubuntu1",
        "6.12.0~dfsg-2ubuntu2",
        "8.10.0~dfsg-2",
        "8.10.0~dfsg-2ubuntu0.2",
        "8.10.0~dfsg-2ubuntu0.3",
        "8.10.0~dfsg-2ubuntu0.4"
      ]
    }
  ],
  "aliases": [],
  "details": "Alexander Minozhenko and James Bunton discovered that Node.js did not\nproperly handle wildcards in name fields of X.509 TLS certificates. An\nattacker could use this vulnerability to execute a machine-in-the-middle-\nattack. This issue only affected Ubuntu 14.04 ESM and 16.04 ESM. (CVE-2016-7099)\n\nIt was discovered that Node.js incorrectly handled certain NAPTR responses.\nA remote attacker could possibly use this issue to cause applications using\nNode.js to crash, resulting in a denial of service. This issue only affected\nUbuntu 16.04 ESM. (CVE-2017-1000381)\n\nNikita Skovoroda discovered that Node.js mishandled certain input, leading\nto an out of bounds write. An attacker could use this vulnerability to\ncause a denial of service (crash) or possibly execute arbitrary code. This\nissue only affected Ubuntu 18.04 ESM. (CVE-2018-12115)\n\nArkadiy Tetelman discovered that Node.js improperly handled certain\nmalformed HTTP requests. An attacker could use this vulnerability to inject\nunexpected HTTP requests. This issue only affected Ubuntu 18.04 ESM.\n(CVE-2018-12116)\n\nJan Maybach discovered that Node.js did not time out if incomplete\nHTTP/HTTPS headers were received. An attacker could use this vulnerability\nto cause a denial of service by keeping HTTP/HTTPS connections alive for a\nlong period of time. This issue only affected Ubuntu 18.04 ESM.\n(CVE-2018-12122)\n\nMartin Bajanik discovered that the url.parse() method would return\nincorrect results if it received specially crafted input. An attacker could\nuse this vulnerability to spoof the hostname and bypass hostname-specific\nsecurity controls. This issue only affected Ubuntu 18.04 ESM. (CVE-2018-12123)\n\nIt was discovered that Node.js is vulnerable to a DNS rebinding attack which\ncould be exploited to perform remote code execution. An attack is possible\nfrom malicious websites open in a web browser with network access to the system\nrunning the Node.js process. This issue only affected Ubuntu 18.04 ESM.\n(CVE-2018-7160)\n\nIt was discovered that the Buffer.fill() and Buffer.alloc() methods\nimproperly handled certain inputs. An attacker could use this vulnerability\nto cause a denial of service. This issue only affected Ubuntu 18.04 ESM.\n(CVE-2018-7167)\n\nMarco Pracucci discovered that Node.js mishandled HTTP and HTTPS\nconnections. An attacker could use this vulnerability to cause a denial of\nservice. This issue only affected Ubuntu 18.04 ESM. (CVE-2019-5737)\n",
  "id": "USN-4796-1",
  "modified": "2026-06-29T10:52:49Z",
  "published": "2021-03-15T21:18:37Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://ubuntu.com/security/notices/USN-4796-1"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2016-7099"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2017-1000381"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2018-7160"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2018-7167"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2018-12115"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2018-12116"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2018-12122"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2018-12123"
    },
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2019-5737"
    }
  ],
  "related": [],
  "schema_version": "1.7.0",
  "summary": "nodejs vulnerabilities",
  "upstream": [
    "UBUNTU-CVE-2016-7099",
    "UBUNTU-CVE-2017-1000381",
    "UBUNTU-CVE-2018-7160",
    "UBUNTU-CVE-2018-7167",
    "UBUNTU-CVE-2018-12115",
    "UBUNTU-CVE-2018-12116",
    "UBUNTU-CVE-2018-12122",
    "UBUNTU-CVE-2018-12123",
    "UBUNTU-CVE-2019-5737"
  ]
}



Log in or create an account to share your comment.




Tags
Taxonomy of the tags.


Loading…

Loading…

Loading…

Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.

Sightings

Author Source Type Date Other

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Loading…

Detection rules are retrieved from Rulezet.

Loading…

Loading…