OVAL Reference oval:org.opensuse.security:def:1711

Oval Definition:

oval:org.opensuse.security:def:1711

Revision Date:	2021-12-06	Version:	1
Title:	Security update for nodejs12 (Important)
Description:	This update for nodejs12 fixes the following issues: - CVE-2021-22959: Fixed HTTP Request Smuggling due to spaced in headers (bsc#1191601). - CVE-2021-22960: Fixed HTTP Request Smuggling when parsing the body (bsc#1191602). - CVE-2021-37701: Fixed arbitrary file creation and overwrite in nodejs-tar (bsc#1190057). - CVE-2021-37712: Fixed arbitrary file creation and overwrite in nodejs-tar (bsc#1190056). - CVE-2021-37713: Fixed arbitrary code execution and file creation and overwrite in nodejs-tar (bsc#1190055). - CVE-2021-39134: Fixed symling following vulnerability in nodejs-arborist (bsc#1190054). - CVE-2021-39135: Fixed symling following vulnerability in nodejs-arborist (bsc#1190053).
Family:	unix	Class:	patch
Status:		Reference(s):	1051510 1065729 1071995 1085030 1111666 1112178 1113956 1114279 1144333 1148868 1150660 1151927 1152107 1152624 1158983 1159058 1161016 1162002 1162063 1163309 1166985 1167104 1168081 1168959 1169194 1169514 1169771 1169795 1170011 1170442 1170592 1170617 1170618 1171124 1171424 1171529 1171530 1171558 1171732 1171739 1171743 1171753 1171759 1171835 1171841 1171868 1171904 1172247 1172257 1172344 1172458 1172484 1172537 1172538 1172687 1172719 1172759 1172775 1172781 1172782 1172783 1172871 1172872 1172999 1173060 1173074 1173146 1173265 1173280 1173284 1173428 1173514 1173567 1173573 1173659 1173746 1173818 1173820 1173825 1173826 1173833 1173838 1173839 1173845 1173857 1174113 1174115 1174122 1174123 1174186 1174187 1174296 1174343 1174356 1174409 1174438 1174462 1174543 1190053 1190054 1190055 1190056 1190057 1191601 1191602 CVE-2013-2142 CVE-2016-5104 CVE-2017-9410 CVE-2017-9411 CVE-2017-9412 CVE-2019-16746 CVE-2019-16746 CVE-2019-20810 CVE-2019-20810 CVE-2019-20908 CVE-2019-20908 CVE-2020-0305 CVE-2020-0305 CVE-2020-10766 CVE-2020-10766 CVE-2020-10767 CVE-2020-10767 CVE-2020-10768 CVE-2020-10768 CVE-2020-10769 CVE-2020-10769 CVE-2020-10773 CVE-2020-10773 CVE-2020-10781 CVE-2020-10781 CVE-2020-12771 CVE-2020-12771 CVE-2020-12888 CVE-2020-12888 CVE-2020-13974 CVE-2020-13974 CVE-2020-14416 CVE-2020-14416 CVE-2020-15393 CVE-2020-15393 CVE-2020-15780 CVE-2020-15780 CVE-2021-22959 CVE-2021-22960 CVE-2021-37701 CVE-2021-37712 CVE-2021-37713 CVE-2021-39134 CVE-2021-39135 SUSE-SU-2020:2107-1 SUSE-SU-2021:3940-1
Platform(s):	SUSE Linux Enterprise Build System Kit 12 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 15 SP3 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Basesystem 15 SP2 SUSE Linux Enterprise Module for CAP 15 SP1 SUSE Linux Enterprise Module for Containers 15 SUSE Linux Enterprise Module for Containers 15 SP1 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for Desktop Applications 15 SP3 SUSE Linux Enterprise Module for Development Tools 15 SUSE Linux Enterprise Module for Development Tools 15 SP1 SUSE Linux Enterprise Module for High Performance Computing 15 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SP3 SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Storage 7.1 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Manager Proxy 4.2 SUSE Manager Retail Branch Server 4.2 SUSE Manager Server 4.2	Product(s):
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 is installed AND kernel-zfcpdump-3.12.38-44 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information MozillaFirefox-31.3.0esr-15.2 is installed OR MozillaFirefox-branding-SLE-31.0-9.1 is installed OR MozillaFirefox-translations-31.3.0esr-15.2 is installed OR libfreebl3-3.17.2-12.4 is installed OR libfreebl3-32bit-3.17.2-12.4 is installed OR libsoftokn3-3.17.2-12.4 is installed OR libsoftokn3-32bit-3.17.2-12.4 is installed OR mozilla-nss-3.17.2-12.4 is installed OR mozilla-nss-32bit-3.17.2-12.4 is installed OR mozilla-nss-certs-3.17.2-12.4 is installed OR mozilla-nss-certs-32bit-3.17.2-12.4 is installed OR mozilla-nss-tools-3.17.2-12.4 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND libssh4-0.6.3-8 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-28 is installed OR aaa_base-extras-13.2+git20140911.61c1681-28 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information MozillaFirefox-52.2.0esr-108 is installed OR MozillaFirefox-translations-52.2.0esr-108 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 SP3 is installed AND libmp3lame-devel-3.100-1.33 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP2 is installed AND ctdb-4.4.2-29 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise High Performance Computing 15 SP3 is installed OR SUSE Linux Enterprise Module for Web Scripting 15 SP3 is installed OR SUSE Linux Enterprise Server 15 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed OR SUSE Linux Enterprise Storage 7.1 is installed OR SUSE Manager Proxy 4.2 is installed OR SUSE Manager Retail Branch Server 4.2 is installed OR SUSE Manager Server 4.2 is installed AND Package Information nodejs12-12.22.7-4.22.1 is installed OR nodejs12-devel-12.22.7-4.22.1 is installed OR nodejs12-docs-12.22.7-4.22.1 is installed OR npm12-12.22.7-4.22.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.48 is installed OR kernel-default-base-4.12.14-197.48 is installed OR kernel-default-devel-4.12.14-197.48 is installed OR kernel-default-man-4.12.14-197.48 is installed OR kernel-devel-4.12.14-197.48 is installed OR kernel-macros-4.12.14-197.48 is installed OR kernel-source-4.12.14-197.48 is installed OR kernel-zfcpdump-4.12.14-197.48 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed AND update-test-security-5.1-4.25 is installed
Definition Synopsis
SUSE Linux Enterprise Module for CAP 15 SP1 is installed AND cf-cli-6.43.0-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 15 is installed AND Package Information containerd-1.2.5-5.13 is installed OR docker-18.09.6_ce-6.17 is installed OR docker-bash-completion-18.09.6_ce-6.17 is installed OR docker-libnetwork-0.7.0.1+gitr2726_872f0a83c98a-4.12 is installed OR docker-runc-1.0.0rc6+gitr3804_2b18fe1d885e-6.18 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2726_872f0a83c98a-4.12 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 15 SP1 is installed AND Package Information containerd-1.2.5-5.13 is installed OR docker-18.09.6_ce-6.17 is installed OR docker-bash-completion-18.09.6_ce-6.17 is installed OR docker-libnetwork-0.7.0.1+gitr2726_872f0a83c98a-4.12 is installed OR docker-runc-1.0.0rc6+gitr3804_2b18fe1d885e-6.18 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2726_872f0a83c98a-4.12 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information cairo-1.15.10-4.5 is installed OR libcairo2-32bit-1.15.10-4.5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND Package Information bluez-5.48-5.16 is installed OR bluez-devel-5.48-5.16 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Development Tools 15 is installed AND mercurial-4.5.2-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Development Tools 15 SP1 is installed AND Package Information kernel-docs-4.12.14-197.4 is installed OR kernel-obs-build-4.12.14-197.4 is installed OR kernel-source-4.12.14-197.4 is installed OR kernel-syms-4.12.14-197.4 is installed
Definition Synopsis
SUSE Linux Enterprise Module for High Performance Computing 15 is installed AND Package Information libpmi0-17.11.13-6.15 is installed OR libslurm32-17.11.13-6.15 is installed OR perl-slurm-17.11.13-6.15 is installed OR slurm-17.11.13-6.15 is installed OR slurm-auth-none-17.11.13-6.15 is installed OR slurm-config-17.11.13-6.15 is installed OR slurm-devel-17.11.13-6.15 is installed OR slurm-doc-17.11.13-6.15 is installed OR slurm-lua-17.11.13-6.15 is installed OR slurm-munge-17.11.13-6.15 is installed OR slurm-node-17.11.13-6.15 is installed OR slurm-pam_slurm-17.11.13-6.15 is installed OR slurm-plugins-17.11.13-6.15 is installed OR slurm-slurmdbd-17.11.13-6.15 is installed OR slurm-sql-17.11.13-6.15 is installed OR slurm-torque-17.11.13-6.15 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-default-4.12.14-25.6 is installed OR kernel-default-livepatch-4.12.14-25.6 is installed OR kernel-livepatch-4_12_14-25_6-default-1-1.3 is installed OR kernel-livepatch-SLE15_Update_2-1-1.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information ffmpeg-3.4.2-4.12 is installed OR ffmpeg-private-devel-3.4.2-4.12 is installed OR libavdevice-devel-3.4.2-4.12 is installed OR libavdevice57-3.4.2-4.12 is installed OR libavfilter-devel-3.4.2-4.12 is installed OR libavfilter6-3.4.2-4.12 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information libvirt-5.1.0-8.3 is installed OR wireshark-plugin-libvirt-5.1.0-8.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information bzip2-1.0.6-29 is installed OR bzip2-doc-1.0.6-29 is installed OR libbz2-1-1.0.6-29 is installed OR libbz2-1-32bit-1.0.6-29 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information gnome-shell-3.20.4-76.3 is installed OR gnome-shell-browser-plugin-3.20.4-76.3 is installed OR gnome-shell-lang-3.20.4-76.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information gpgme-1.5.1-1.11 is installed OR libgpgme11-1.5.1-1.11 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 is installed AND libdmx-devel-1.1.3-3.52 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND libraw9-0.15.4-3.88 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND imobiledevice-tools-1.2.0+git20170122.45fda81-1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.10 is installed OR kernel-default-extra-4.12.14-197.10 is installed

BACK