npm package
@fastly/js-compute
pkg:npm/%40fastly/js-compute
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-38375 | Med | 5.3 | >= 3.0.0, < 3.16.0 | 3.16.0 | Jun 26, 2024 | @fastly/js-compute is a JavaScript SDK and runtime for building Fastly Compute applications. The implementation of several functions were determined to include a use-after-free bug. This bug could allow for unintended data loss if the result of the preceding functions were sent a | |
| CVE-2022-39218 | — | >= 0.4.0, < 0.5.3 | 0.5.3 | Sep 20, 2022 | The JS Compute Runtime for Fastly's Compute@Edge platform provides the environment JavaScript is executed in when using the Compute@Edge JavaScript SDK. In versions prior to 0.5.3, the `Math.random` and `crypto.getRandomValues` methods fail to use sufficiently random values. The |
- affected >= 3.0.0, < 3.16.0fixed 3.16.0
@fastly/js-compute is a JavaScript SDK and runtime for building Fastly Compute applications. The implementation of several functions were determined to include a use-after-free bug. This bug could allow for unintended data loss if the result of the preceding functions were sent a
- CVE-2022-39218Sep 20, 2022affected >= 0.4.0, < 0.5.3fixed 0.5.3
The JS Compute Runtime for Fastly's Compute@Edge platform provides the environment JavaScript is executed in when using the Compute@Edge JavaScript SDK. In versions prior to 0.5.3, the `Math.random` and `crypto.getRandomValues` methods fail to use sufficiently random values. The