Oval Definition:	oval:org.opensuse.security:def:20195739
Revision Date: 2022-05-22 Version: 1 Title: CVE-2019-5739 Description: Keep-alive HTTP and HTTPS connections can remain open and inactive for up to 2 minutes in Node.js 6.16.0 and earlier. Node.js 8.0.0 introduced a dedicated server.keepAliveTimeout which defaults to 5 seconds. The behavior in Node.js 6.16.0 and earlier is a potential Denial of Service (DoS) attack vector. Node.js 6.17.0 introduces server.keepAliveTimeout and the 5-second default. Family: unix Class: vulnerability Status: Reference(s): CVE-2019-5739 SUSE-SU-2019:0658-1 SUSE-SU-2019:0818-1 openSUSE-SU-2019:1076-1 openSUSE-SU-2019:1173-1 Mitre CVE-2019-5739 SUSE CVE-2019-5739 SUSE-SU-2019:0658-1 SUSE-SU-2019:0818-1 openSUSE-SU-2019:1076-1 openSUSE-SU-2019:1173-1 Platform(s): openSUSE Leap 42.3 SUSE Linux Enterprise High Performance Computing 12 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND nodejs6-6.17.0-11.24.1 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND nodejs6-6.17.0-11.24.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information nodejs4-4.9.1-15.20 is installed OR nodejs4-devel-4.9.1-15.20 is installed OR nodejs4-docs-4.9.1-15.20 is installed OR nodejs6-6.17.0-11.24 is installed OR nodejs6-devel-6.17.0-11.24 is installed OR nodejs6-docs-6.17.0-11.24 is installed OR npm4-4.9.1-15.20 is installed OR npm6-6.17.0-11.24 is installed Definition Synopsis openSUSE Leap 42.3 is installed AND Package Information nodejs4-4.9.1-23 is installed AND nodejs4 is signed with openSUSE key OR nodejs4-devel-4.9.1-23 is installed AND nodejs4-devel is signed with openSUSE key OR nodejs4-docs-4.9.1-23 is installed AND nodejs4-docs is signed with openSUSE key OR nodejs6-6.17.0-21 is installed AND nodejs6 is signed with openSUSE key OR nodejs6-devel-6.17.0-21 is installed AND nodejs6-devel is signed with openSUSE key OR nodejs6-docs-6.17.0-21 is installed AND nodejs6-docs is signed with openSUSE key OR npm4-4.9.1-23 is installed AND npm4 is signed with openSUSE key OR npm6-6.17.0-21 is installed AND npm6 is signed with openSUSE key Definition Synopsis Release Information SUSE Linux Enterprise High Performance Computing 12 is installed OR SUSE Linux Enterprise Module for Web Scripting 12 is installed OR SUSE Linux Enterprise Server 12 is installed OR SUSE Linux Enterprise Server 12 SP3 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND Package Information nodejs4-4.9.1-15.20.1 is installed OR nodejs4-devel-4.9.1-15.20.1 is installed OR nodejs4-docs-4.9.1-15.20.1 is installed OR nodejs6-6.17.0-11.24.1 is installed OR nodejs6-devel-6.17.0-11.24.1 is installed OR nodejs6-docs-6.17.0-11.24.1 is installed OR npm4-4.9.1-15.20.1 is installed OR npm6-6.17.0-11.24.1 is installed
BACK