Description
The hapi server framework 2.0.x and 2.1.x before 2.2.0 for Node.js allows remote attackers to cause a denial of service (file descriptor consumption and process crash) via unspecified vectors.
Remediation
References
http://www.openwall.com/lists/oss-security/2014/05/13/1
http://www.openwall.com/lists/oss-security/2014/05/15/2
https://github.com/spumko/hapi/issues/1427
https://nodesecurity.io/advisories/hapi_File_descriptor_leak_DoS_vulnerability
Related Vulnerabilities
CVE-2022-34195 Vulnerability in maven package org.jenkins-ci.plugins:repository-connector
CVE-2023-36665 Vulnerability in maven package org.webjars.npm:protobufjs
CVE-2021-41532 Vulnerability in maven package org.apache.ozone:ozone-recon
CVE-2014-0230 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-core
CVE-2020-13926 Vulnerability in maven package org.apache.kylin:kylin-server