Oval Definition:oval:org.opensuse.security:def:105447
Revision Date:2020-06-09Version:1
Title:Security update for nodejs8 (Critical)
Description:

This update for nodejs8 fixes the following issues:

- CVE-2020-8174: Fixed multiple memory corruption in napi_get_value_string_*() (bsc#1172443). - CVE-2020-11080: Fixed a potential denial of service when receiving unreasonably large HTTP/2 SETTINGS frames (bsc#1172442). - CVE-2020-7598: Fixed an issue which could have tricked minimist into adding or modifying properties of Object.prototype (bsc#1166916).
Family:unixClass:patch
Status:Reference(s):1166916
1172442
1172443
CVE-2020-11080
CVE-2020-7598
CVE-2020-8174
SUSE-SU-2020:1576-1
Platform(s):SUSE Linux Enterprise High Performance Computing 15 SP1
SUSE Linux Enterprise Module for Web Scripting 15 SP1
SUSE Linux Enterprise Server 15 SP1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
SUSE Linux Enterprise Storage 6
SUSE Manager Proxy 4.0
SUSE Manager Server 4.0
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed
  • AND Package Information
  • nodejs8-8.17.0-3.32.1 is installed
  • OR nodejs8-devel-8.17.0-3.32.1 is installed
  • OR nodejs8-docs-8.17.0-3.32.1 is installed
  • OR npm8-8.17.0-3.32.1 is installed
    • BACK