CVE-2018-12115

In all versions of Node.js prior to 6.14.4, 8.11.4 and 10.9.0 when used with UCS-2 encoding (recognized by Node.js under the names 'ucs2', 'ucs-2', 'utf16le' and 'utf-16le'), Buffer#write() can be abused to write outside of the bounds of a single Buffer. Writes that start from the second-to-last position of a buffer cause a miscalculation of the maximum length of the input bytes to be written.

References

Affected packages

Git / github.com/nodejs/node

Affected ranges

Type

GIT

Repo

https://github.com/nodejs/node

Events

Introduced

Fixed

1cb5aed5f596a9cb5b68e3a676222c0c35501a5e

Introduced

0d8021e5a4cf0a6aa3a700a361f6d42c2894f2ba

Fixed

0cae3c3fe5e3f4c275701446a4baf1f2727344f6

Introduced

cf41627411886000429bde058a6594fb7f6d6d47

Fixed

03b825811ed4af0addcdf6e75bacb3dc1c4c5940

Database specific

{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "fixed": "6.14.4"
        },
        {
            "introduced": "8.0.0"
        },
        {
            "fixed": "8.11.4"
        },
        {
            "introduced": "10.0.0"
        },
        {
            "fixed": "10.9.0"
        }
    ]
}

Affected versions

v10.*

v10.0.0

v10.1.0

v10.2.0

v10.2.1

v10.3.0

v10.4.0

v10.4.1

v10.5.0

v10.6.0

v10.7.0

v10.8.0

v8.*

v8.0.0

v8.1.0

v8.1.1

v8.1.2

v8.1.3

v8.1.4

v8.10.0

v8.11.0

v8.11.1

v8.11.2

v8.11.3

v8.2.0

v8.2.1

v8.3.0

v8.4.0

v8.5.0

v8.6.0

v8.7.0

v8.8.0

v8.8.1

v8.9.0

v8.9.1

v8.9.2

v8.9.3

v8.9.4

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-12115.json"

unresolved_ranges

[
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "3.11"
            }
        ]
    }
]