Security
Headlines
HeadlinesLatestCVEs

Headline

GHSA-6429-3g3w-6mw5: Uncaught Exception in bignum

All versions of the npm package bignum are vulnerable to Denial of Service (DoS) due to a type-check exception in V8. When verifying the type of the second argument to the .powm function, V8 will crash regardless of Node try/catch blocks.

ghsa
#dos#nodejs#git

Uncaught Exception in bignum

High severity GitHub Reviewed Published May 7, 2022 • Updated May 24, 2022

Related news

CVE-2022-25324

All versions of package bignum are vulnerable to Denial of Service (DoS) due to a type-check exception in V8, when verifying the type of the second argument to the .powm function, V8 will crash regardless of Node try/catch blocks.