CVE-2022-25872

Summary

All versions of package fast-string-search are vulnerable to Out-of-bounds Read due to incorrect memory freeing and length calculation for any non-string input as the source. This allows the attacker to read previously allocated memory.

Affected Software

VendorProductVersion RangeStatus
n/afast-string-search0 < unspecifiedaffected

Weaknesses

  • Out-of-bounds Read

ADP Enrichment

CVE Program Container

Additional References

References