Security
Headlines
HeadlinesLatestCVEs

Headline

GHSA-9f24-jqhm-jfcw: fetch(url) leads to a memory leak in undici

Impact

Calling fetch(url) and not consuming the incoming body ((or consuming it very slowing) will lead to a memory leak.

Patches

Patched in v6.6.1

Workarounds

Make sure to always consume the incoming body.

ghsa
#nodejs#js#git

fetch(url) leads to a memory leak in undici

Moderate severity GitHub Reviewed Published Feb 16, 2024 in nodejs/undici • Updated Feb 16, 2024

ghsa: Latest News

GHSA-25xr-qj8w-c4vf: Apache Tomcat Coyote vulnerable to Denial of Service via excessive HTTP/2 streams