SVR.JS Blog
2 months agoIMPORTANT! Update Node.JS to 18.19.1, 20.11.1, 21.6.2 or newer!
Sending specially crafted HTTP request leads to resource exhaustion and denial of service in older versions of Node.JS.
The vulnerability involves lack of limitations on chunk extension bytes causing CPU and network bandwidth exhaustion. [ more ]