Oval Definition:oval:org.opensuse.security:def:119258
Revision Date:2022-07-18Version:1
Title:Security update for nodejs12 (Important)
Description:

This update for nodejs12 fixes the following issues:

- CVE-2022-32212: Fixed DNS rebinding in --inspect via invalid IP addresses (bsc#1201328). - CVE-2022-32213: Fixed HTTP request smuggling due to flawed parsing of Transfer-Encoding (bsc#1201325). - CVE-2022-32214: Fixed HTTP request smuggling due to improper delimiting of header fields (bsc#1201326). - CVE-2022-32215: Fixed HTTP request smuggling due to incorrect parsing of multi-line Transfer-Encoding (bsc#1201327).
Family:unixClass:patch
Status:Reference(s):1201325
1201326
1201327
1201328
CVE-2022-32212
CVE-2022-32213
CVE-2022-32214
CVE-2022-32215
SUSE-SU-2022:2430-1
Platform(s):SUSE Linux Enterprise Server 15 SP2-BCL
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Server 15 SP2-BCL is installed
  • AND Package Information
  • nodejs12-12.22.12-150200.4.35.1 is installed
  • OR nodejs12-devel-12.22.12-150200.4.35.1 is installed
  • OR nodejs12-docs-12.22.12-150200.4.35.1 is installed
  • OR npm12-12.22.12-150200.4.35.1 is installed
  • BACK