CVE-2016-10519

Name of the Vulnerable Software and Affected Versions bittorrent-dht versions prior to 5.1.3

Description A security issue in bittorrent-dht allows an attacker to send a specific series of messages to a listening peer, causing it to reveal internal memory. This remote memory disclosure vulnerability is mitigated by two factors: modern kernels zeroing out new memory pages before allocation, and Node.js managing Buffers in a way that only previously allocated Buffer memory can be leaked.

Recommendations Update to version 5.1.3 or later.