DescriptionThe HTTP server in Node.js 0.10.x before 0.10.21 and 0.8.x before 0.8.26 allows remote attackers to cause a denial of service (memory and CPU consumption) by sending a large number of pipelined requests without reading the response.
Overall state of this security issue: Pending
This issue is currently rated as having low severity.
|National Vulnerability Database|
- openSUSE-SU-2013:1863-1, published Thu, 12 Dec 2013 18:05:22 +0100 (CET)
List of released packages
|Product(s)||Fixed package version(s)||References|
|openSUSE 12.3|| ||Patchnames:
|openSUSE 13.1|| ||Patchnames:
List of planned updatesThe following information is the current evaluation information for this security issue. It might neither be accurate nor complete, Use at own risk.
Status of this issue by product and package
|SUSE Studio Onsite 1.3||nodejs||Affected|