NodeJS/bcrypt/3.0.7
A bcrypt library for NodeJS.
https://www.npmjs.com/package/bcrypt
MIT
1 Security Vulnerabilities
Integer Overflow or Wraparound and Use of a Broken or Risky Cryptographic Algorithm in bcrypt
Published date: 2020-08-20T14:38:49Z
CVE: CVE-2020-7689
Links:
In bcrypt (npm package) before version 5.0.0, data is truncated wrong when its length is greater than 255 bytes.
Affected versions:
["0.1.2", "0.2.0", "0.2.1", "0.1.3", "0.2.2", "0.2.3", "0.2.4", "0.3.0", "0.3.1", "0.3.2", "0.4.0", "0.4.1", "0.5.0", "0.6.0", "0.7.0", "0.7.1", "0.7.2", "0.7.3", "0.7.4", "0.7.5", "0.7.6", "0.7.7", "0.7.8", "0.8.0", "0.8.1", "0.8.2", "0.8.3", "0.8.4", "0.8.5", "0.8.6", "0.8.7", "1.0.0", "1.0.1", "1.0.2", "1.0.3", "1.1.0-napi", "2.0.0", "2.0.1", "3.0.0", "3.0.1", "3.0.2", "3.0.3", "3.0.4", "3.0.4-napi", "3.0.5", "3.0.6", "3.0.7", "3.0.8", "4.0.0", "4.0.1"]
Secure versions:
[5.0.0, 5.0.1, 5.1.0, 5.1.1]
Recommendation:
Update to version 5.1.1.
54 Other Versions
Version | License | Security | Released | |
---|---|---|---|---|
0.1.2 | MIT | 1 | 2011-02-21 - 19:08 | about 13 years |
0.2.0 | MIT | 1 | 2011-03-28 - 05:57 | about 13 years |
0.2.1 | MIT | 1 | 2011-04-12 - 05:10 | about 13 years |
0.1.3 | MIT | 1 | 2011-04-12 - 05:25 | about 13 years |
0.2.2 | MIT | 1 | 2011-04-13 - 02:03 | about 13 years |
0.2.3 | MIT | 1 | 2011-04-24 - 19:32 | about 13 years |
0.2.4 | MIT | 1 | 2011-08-08 - 01:52 | almost 13 years |
0.3.0 | MIT | 1 | 2011-09-02 - 03:39 | over 12 years |
0.3.1 | MIT | 1 | 2011-09-02 - 22:19 | over 12 years |
0.3.2 | MIT | 1 | 2011-09-26 - 23:54 | over 12 years |
0.4.0 | MIT | 1 | 2011-10-05 - 12:48 | over 12 years |
0.4.1 | MIT | 1 | 2011-11-18 - 13:57 | over 12 years |
0.5.0 | MIT | 1 | 2012-01-09 - 04:15 | over 12 years |
0.6.0 | MIT | 1 | 2012-06-26 - 17:23 | almost 12 years |
0.7.0 | MIT | 1 | 2012-07-04 - 17:36 | almost 12 years |
0.7.1 | MIT | 1 | 2012-08-04 - 04:42 | almost 12 years |
0.7.2 | MIT | 1 | 2012-09-02 - 19:21 | over 11 years |
0.7.3 | MIT | 1 | 2012-11-04 - 04:16 | over 11 years |
0.7.4 | MIT | 1 | 2013-02-26 - 02:43 | about 11 years |
0.7.5 | MIT | 1 | 2013-03-12 - 03:21 | about 11 years |
0.7.6 | MIT | 1 | 2013-06-13 - 00:36 | almost 11 years |
0.7.7 | MIT | 1 | 2013-09-05 - 22:46 | over 10 years |
0.7.8 | MIT | 1 | 2014-04-25 - 14:22 | about 10 years |
0.8.0 | MIT | 1 | 2014-08-03 - 23:03 | almost 10 years |
0.8.1 | MIT | 1 | 2015-01-19 - 02:51 | over 9 years |
0.8.2 | MIT | 1 | 2015-03-29 - 02:02 | about 9 years |
0.8.3 | MIT | 1 | 2015-05-06 - 19:40 | about 9 years |
0.8.4 | MIT | 1 | 2015-07-24 - 16:48 | almost 9 years |
0.8.5 | MIT | 1 | 2015-08-12 - 22:11 | over 8 years |
0.8.6 | MIT | 1 | 2016-04-21 - 01:03 | about 8 years |
0.8.7 | MIT | 1 | 2016-06-10 - 02:45 | almost 8 years |
1.0.0 | MIT | 1 | 2016-12-05 - 01:01 | over 7 years |
1.0.1 | MIT | 1 | 2016-12-08 - 05:16 | over 7 years |
1.0.2 | MIT | 1 | 2016-12-31 - 22:40 | over 7 years |
1.0.3 | MIT | 1 | 2017-08-24 - 03:47 | over 6 years |
1.1.0-napi | MIT | 1 | 2018-01-21 - 07:35 | over 6 years |
2.0.0 | MIT | 1 | 2018-04-07 - 15:36 | about 6 years |
2.0.1 | MIT | 1 | 2018-04-20 - 17:40 | about 6 years |
3.0.0 | MIT | 1 | 2018-07-06 - 09:55 | almost 6 years |
3.0.1 | MIT | 1 | 2018-09-21 - 12:47 | over 5 years |
3.0.2 | MIT | 1 | 2018-10-18 - 02:58 | over 5 years |
3.0.3 | MIT | 1 | 2018-12-24 - 03:55 | over 5 years |
3.0.4 | MIT | 1 | 2019-02-06 - 20:11 | over 5 years |
3.0.4-napi | MIT | 1 | 2019-03-08 - 12:37 | about 5 years |
3.0.5 | MIT | 1 | 2019-03-19 - 12:54 | about 5 years |
3.0.6 | MIT | 1 | 2019-04-14 - 09:25 | about 5 years |
3.0.7 | MIT | 1 | 2019-11-18 - 10:26 | over 4 years |
3.0.8 | MIT | 1 | 2020-02-05 - 18:31 | over 4 years |
4.0.0 | MIT | 1 | 2020-02-21 - 09:58 | about 4 years |
4.0.1 | MIT | 1 | 2020-03-02 - 16:23 | about 4 years |
5.0.0 | MIT | 2020-06-08 - 10:01 | almost 4 years | |
5.0.1 | MIT | 2021-02-26 - 04:59 | about 3 years | |
5.1.0 | MIT | 2022-10-06 - 17:44 | over 1 year | |
5.1.1 | MIT | 2023-08-16 - 03:48 | 9 months |