ByteBrief
We're a portrait publication through and through. Turn your phone back and your briefing picks up right where you left it.
(We tried widescreen once. It wasn't us.)
A vulnerability in Node's HTTP parser allows an attacker to append other requests' data to their own headers. Versions 0.5/0.6 before 0.6.17 and 0.7 before 0.7.8 are affected. Matthew Daley reported the flaw. Upgrade to 0.6.17 or apply the fix in commit c9a231d.
Tap to vote and see what everyone thinks.
Summary by ByteBrief