CVE-2016-1000236 - Cookie-signature Project Cookie-signature and Debian Debian Linux

Moderate 4.4

Node-cookie-signature before 1.0.6 is affected by a timing attack due to the type of comparison used.

Affected software

Cookie-signature Project Cookie-signature

Debian Debian Linux

Reference links

Get alerted to vulnerabilities in your software

CVE alerts, vulnerability alerts, latest versions and news matched to your software stack.