Description
The hapi server framework 2.0.x and 2.1.x before 2.2.0 for Node.js allows remote attackers to cause a denial of service (file descriptor consumption and process crash) via unspecified vectors.
Remediation
References
http://www.openwall.com/lists/oss-security/2014/05/13/1
http://www.openwall.com/lists/oss-security/2014/05/15/2
https://github.com/spumko/hapi/issues/1427
https://nodesecurity.io/advisories/hapi_File_descriptor_leak_DoS_vulnerability
Related Vulnerabilities
CVE-2021-40331 Vulnerability in maven package org.apache.ranger:ranger-hive-plugin
CVE-2022-31166 Vulnerability in maven package org.xwiki.platform:xwiki-platform-oldcore
CVE-2022-39249 Vulnerability in npm package matrix-js-sdk
CVE-2023-45827 Vulnerability in npm package @clickbar/dot-diver
CVE-2017-15703 Vulnerability in maven package org.apache.nifi:nifi-framework-cluster-protocol