Oval Definition:oval:org.opensuse.security:def:102817
Revision Date:2021-08-30Version:1
Title:Security update for nodejs12 (Important)
Description:

This update for nodejs12 fixes the following issues:

Update to 12.22.5:

- CVE-2021-3672/CVE-2021-22931: Improper handling of untypical characters in domain names (bsc#1189370, bsc#1188881) - CVE-2021-22940: Use after free on close http2 on stream canceling (bsc#1189368) - CVE-2021-22939: Incomplete validation of rejectUnauthorized parameter (bsc#1189369) - CVE-2021-22930: http2: fixes use after free on close http2 on stream canceling (bsc#1188917)
Family:unixClass:patch
Status:Reference(s):1188881
1188917
1189368
1189369
1189370
CVE-2021-22930
CVE-2021-22931
CVE-2021-22939
CVE-2021-22940
CVE-2021-3672
SUSE-SU-2021:2875-1
Platform(s):SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise Module for Web Scripting 15 SP2
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Storage 7
SUSE Manager Proxy 4.1
SUSE Manager Server 4.1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 SP2 is installed
  • AND Package Information
  • nodejs12-12.22.5-4.19.1 is installed
  • OR nodejs12-devel-12.22.5-4.19.1 is installed
  • OR nodejs12-docs-12.22.5-4.19.1 is installed
  • OR npm12-12.22.5-4.19.1 is installed
    • BACK