VulnerableCode Package Details - pkg:deb/debian/nodejs@20.19.0%2Bdfsg1-1

Search for packages

Vulnerability	Summary	Fixed by
VCID-6m5m-4t1s-s3da Aliases: CVE-2025-23166	The C++ method SignTraits::DeriveBits() may incorrectly call ThrowException() based on user-supplied inputs when executing in a background thread, crashing the Node.js process. Such cryptographic operations are commonly applied to untrusted inputs. Thus, this mechanism potentially allows an adversary to remotely crash a Node.js runtime.	20.19.2+dfsg-1 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-6m5m-4t1s-s3da
Aliases:
CVE-2025-23166

The C++ method SignTraits::DeriveBits() may incorrectly call ThrowException() based on user-supplied inputs when executing in a background thread, crashing the Node.js process. Such cryptographic operations are commonly applied to untrusted inputs. Thus, this mechanism potentially allows an adversary to remotely crash a Node.js runtime.

20.19.2+dfsg-1
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-06-01T13:34:23.393018+00:00	Debian Importer	Fixing	VCID-r97s-9mta-aaaj	https://security-tracker.debian.org/tracker/data/json	36.0.0
2025-06-01T13:17:42.415924+00:00	Debian Importer	Affected by	VCID-6m5m-4t1s-s3da	https://security-tracker.debian.org/tracker/data/json	36.0.0
2025-05-15T16:42:54.461440+00:00	Debian Importer	Fixing	VCID-yjk5-q2yd-aaac	https://security-tracker.debian.org/tracker/data/json	36.0.0
2025-05-15T08:30:49.239893+00:00	Debian Importer	Fixing	VCID-ajr1-sm2f-2fh7	https://security-tracker.debian.org/tracker/data/json	36.0.0
2025-05-15T06:42:56.146541+00:00	Debian Importer	Fixing	VCID-um2g-zequ-aaaf	https://security-tracker.debian.org/tracker/data/json	36.0.0
2025-05-15T04:50:39.261641+00:00	Debian Importer	Fixing	VCID-2sh1-yqq9-aaah	https://security-tracker.debian.org/tracker/data/json	36.0.0
2025-05-15T04:46:43.324100+00:00	Debian Importer	Fixing	VCID-ctqm-mmue-aaaf	https://security-tracker.debian.org/tracker/data/json	36.0.0
2025-05-15T03:10:21.378007+00:00	Debian Importer	Fixing	VCID-23tg-44pz-cbcb	https://security-tracker.debian.org/tracker/data/json	36.0.0
2025-05-15T03:04:30.347272+00:00	Debian Importer	Fixing	VCID-qnpk-1b3c-aaah	https://security-tracker.debian.org/tracker/data/json	36.0.0
2025-05-15T02:54:16.854797+00:00	Debian Importer	Fixing	VCID-pg8s-z1fe-aaac	https://security-tracker.debian.org/tracker/data/json	36.0.0
2025-05-15T02:14:29.089254+00:00	Debian Importer	Fixing	VCID-849h-j5yz-aaan	https://security-tracker.debian.org/tracker/data/json	36.0.0
2025-05-15T02:11:27.251753+00:00	Debian Importer	Fixing	VCID-kr1n-t6yx-aaam	https://security-tracker.debian.org/tracker/data/json	36.0.0
2025-05-03T11:37:58.718624+00:00	Debian Importer	Fixing	VCID-k3ej-p9y8-1qfk	https://security-tracker.debian.org/tracker/data/json	36.0.0