CNNVD-202601-2695 Information

CNNVD ID

CNNVD-202601-2695

Related CVE

CVE-2026-22863

• CNNVD Published: 2026-01-15

Description (Chinese)

Deno是Deno开源的一个简单、现代且安全的 JavaScript 和 TypeScript 运行环境。 Deno 2.6.0之前版本存在安全漏洞，该漏洞源于node:crypto未完成密码加密，可能导致无限加密攻击。

Description (English)

Deno is a simple, modern and safe JavaScript and TypeScript operating environment for Deno. There was a security loophole in the previous version of Deno 2.6.0, which originated from the failure of code encryption by Node:crypto, which could lead to an unlimited encryption attack.

Hazard Level

Medium

Affected Vendor

Deno

Published

2026-01-15

Last Modified

2026-02-24

References

https://github.com/denoland/deno/releases/tag/v2.6.0 https://github.com/denoland/deno/security/advisories/GHSA-5379-f5hf-w38v

Patch

https://github.com/denoland/deno/releases/tag/v2.6.0