mhart/StringStream

Releases3

Frequency1 year 4 months

Last Release almost 8 years ago

Stars27

Encode and decode streams into string streams in node.js

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2018-21270 ↗	Dec 3, 2020Thursday, 3 December 2020, 21:15	6.5 MEDIUM	5.8 MEDIUM
Versions less than 0.0.6 of the Node.js stringstream module are vulnerable to an out-of-bounds read because of allocation of uninitialized buffers when a number is passed in the input stream (when using Node.js 4.x).