Oval Definition:	oval:org.opensuse.security:def:119384
Revision Date: 2022-04-28 Version: 1 Title: Security update for nodejs14 (Important) Description: This update for nodejs14 fixes the following issues: - CVE-2022-0778: Fixed a infinite loop in BN_mod_sqrt() reachable when parsing certificates (bsc#1196877). - CVE-2021-44906: Fixed a prototype pollution in node-minimist (bsc#1198247). - CVE-2021-44907: Fixed a potential Denial of Service vulnerability in node-qs (bsc#1197283). - CVE-2022-0235: Fixed an exposure of sensitive information to an unauthorized actor in node-fetch (bsc#1194819). Family: unix Class: patch Status: Reference(s): 1194819 1196877 1197283 1198247 CVE-2021-44906 CVE-2021-44907 CVE-2022-0235 CVE-2022-0778 SUSE-SU-2022:1462-1 Platform(s): SUSE Linux Enterprise Server 15 SP2-LTSS Product(s): Definition Synopsis SUSE Linux Enterprise Server 15 SP2-LTSS is installed AND Package Information nodejs14-14.19.1-150200.15.31.1 is installed OR nodejs14-devel-14.19.1-150200.15.31.1 is installed OR nodejs14-docs-14.19.1-150200.15.31.1 is installed OR npm14-14.19.1-150200.15.31.1 is installed
BACK