You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
{{ message }}
This repository has been archived by the owner on Feb 18, 2022. It is now read-only.
Affected package: dns-packet
Ecosystem: NPM
Affected version range: < 1.3.2
Summary: Potential memory exposure in dns-packet
Description: This affects the package dns-packet before versions 1.3.2 and 5.2.2. It creates buffers with allocUnsafe and does not always fill them before forming network packets. This can expose internal application memory over unencrypted network when querying crafted invalid domain names.
identifiers: [{'type': 'GHSA', 'value': 'GHSA-3wcq-x3mq-6r9p'}, {'type': 'CVE', 'value': 'CVE-2021-23386'}]
Fixed Version: 1.3.2
Created Date = January 25, 2022
---
The text was updated successfully, but these errors were encountered:
The text was updated successfully, but these errors were encountered: