Oval Definition:	oval:org.opensuse.security:def:53454
Revision Date: 2020-12-01 Version: 1 Title: Security update for nodejs12 (Important) Description: This update for nodejs12 fixes the following issues: - nodejs12 was updated to 12.18.4 LTS: - CVE-2020-8201: Fixed an HTTP Request Smuggling due to CR-to-Hyphen conversion (bsc#1176605). - CVE-2020-8252: Fixed a buffer overflow in realpath (bsc#1176589). - CVE-2020-15095: Fixed an information leak through log files (bsc#1173937). - Explicitly add -fno-strict-aliasing to CFLAGS to fix compilation on Aarch64 with gcc10 (bsc#1172686) Family: unix Class: patch Status: Reference(s): 1027024 1027025 1027026 1037384 1037559 1039348 1039357 1040043 1048289 1048544 1049877 1172686 1173937 1175193 1175194 1176589 1176605 676471 861318 880007 882089 889207 895528 899908 901488 903279 903680 904255 906996 910254 910681 912011 918995 918998 919098 919464 919663 928547 931448 940413 943989 944309 945345 947337 953233 954847 956491 956852 957805 957986 958324 960857 962336 962846 962872 963193 963572 963762 964461 964727 965319 966054 966245 966573 966831 967251 967292 967299 967903 968010 968141 968448 968512 968667 968670 968687 968812 968813 969439 969571 969655 969690 969735 969992 969993 970062 970114 970504 970506 970604 970892 970909 970911 970948 970955 970956 970958 970970 971049 971124 971125 971126 971159 971170 971360 971600 971628 971947 972003 972174 972844 972891 972933 972951 973378 973556 973570 973790 973855 974165 974308 974406 974418 974646 975371 975488 975533 975945 976739 976868 977582 977685 978401 978822 979169 979213 979419 979485 979548 979867 979879 980348 980371 981143 981344 982354 982698 983213 983318 983394 983904 984456 CVE-2009-2624 CVE-2009-3736 CVE-2010-0001 CVE-2010-4352 CVE-2012-3524 CVE-2013-2168 CVE-2014-1829 CVE-2014-1830 CVE-2014-3477 CVE-2014-3532 CVE-2014-3533 CVE-2014-3566 CVE-2014-3615 CVE-2014-3635 CVE-2014-3636 CVE-2014-3637 CVE-2014-3638 CVE-2014-3639 CVE-2014-4975 CVE-2014-7824 CVE-2014-8080 CVE-2014-8090 CVE-2014-8148 CVE-2014-9065 CVE-2014-9066 CVE-2014-9717 CVE-2015-0245 CVE-2015-0361 CVE-2015-1855 CVE-2015-2044 CVE-2015-2045 CVE-2015-2151 CVE-2015-2152 CVE-2015-2296 CVE-2015-3900 CVE-2015-7551 CVE-2015-8045 CVE-2015-8047 CVE-2015-8048 CVE-2015-8049 CVE-2015-8050 CVE-2015-8055 CVE-2015-8056 CVE-2015-8057 CVE-2015-8058 CVE-2015-8059 CVE-2015-8060 CVE-2015-8061 CVE-2015-8062 CVE-2015-8063 CVE-2015-8064 CVE-2015-8065 CVE-2015-8066 CVE-2015-8067 CVE-2015-8068 CVE-2015-8069 CVE-2015-8070 CVE-2015-8071 CVE-2015-8401 CVE-2015-8402 CVE-2015-8403 CVE-2015-8404 CVE-2015-8405 CVE-2015-8406 CVE-2015-8407 CVE-2015-8408 CVE-2015-8409 CVE-2015-8410 CVE-2015-8411 CVE-2015-8412 CVE-2015-8413 CVE-2015-8414 CVE-2015-8415 CVE-2015-8416 CVE-2015-8417 CVE-2015-8418 CVE-2015-8419 CVE-2015-8420 CVE-2015-8421 CVE-2015-8422 CVE-2015-8423 CVE-2015-8424 CVE-2015-8425 CVE-2015-8426 CVE-2015-8427 CVE-2015-8428 CVE-2015-8429 CVE-2015-8430 CVE-2015-8431 CVE-2015-8432 CVE-2015-8433 CVE-2015-8434 CVE-2015-8435 CVE-2015-8436 CVE-2015-8437 CVE-2015-8438 CVE-2015-8439 CVE-2015-8440 CVE-2015-8441 CVE-2015-8442 CVE-2015-8443 CVE-2015-8444 CVE-2015-8445 CVE-2015-8446 CVE-2015-8447 CVE-2015-8448 CVE-2015-8449 CVE-2015-8450 CVE-2015-8451 CVE-2015-8452 CVE-2015-8453 CVE-2015-8454 CVE-2015-8455 CVE-2015-8816 CVE-2015-8845 CVE-2016-0758 CVE-2016-2053 CVE-2016-2143 CVE-2016-2184 CVE-2016-2185 CVE-2016-2186 CVE-2016-2188 CVE-2016-2339 CVE-2016-2347 CVE-2016-2782 CVE-2016-2847 CVE-2016-3134 CVE-2016-3136 CVE-2016-3137 CVE-2016-3138 CVE-2016-3139 CVE-2016-3140 CVE-2016-3156 CVE-2016-3672 CVE-2016-3689 CVE-2016-3951 CVE-2016-4482 CVE-2016-4486 CVE-2016-4565 CVE-2016-4569 CVE-2016-4578 CVE-2016-4805 CVE-2016-5180 CVE-2016-5244 CVE-2017-1000364 CVE-2017-1000366 CVE-2017-1000381 CVE-2017-2862 CVE-2017-2870 CVE-2017-6312 CVE-2017-6313 CVE-2017-6314 CVE-2017-8779 CVE-2020-14349 CVE-2020-14350 CVE-2020-15095 CVE-2020-8201 CVE-2020-8252 SUSE-SU-2015:0613-1 SUSE-SU-2015:2247-1 SUSE-SU-2016:1091-1 SUSE-SU-2016:1690-1 SUSE-SU-2017:1328-1 SUSE-SU-2017:1617-1 SUSE-SU-2017:1619-1 SUSE-SU-2017:2381-1 SUSE-SU-2020:2264-1 SUSE-SU-2020:2813-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Web Scripting 15 SP2 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information MozillaFirefox-60.0-lp150.2 is installed OR MozillaFirefox-translations-common-60.0-lp150.2 is installed OR MozillaFirefox-translations-other-60.0-lp150.2 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information evolution-3.26.6-lp151.4.3 is installed OR evolution-devel-3.26.6-lp151.4.3 is installed OR evolution-lang-3.26.6-lp151.4.3 is installed OR evolution-plugin-bogofilter-3.26.6-lp151.4.3 is installed OR evolution-plugin-pst-import-3.26.6-lp151.4.3 is installed OR evolution-plugin-spamassassin-3.26.6-lp151.4.3 is installed OR glade-catalog-evolution-3.26.6-lp151.4.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information acroread-9.5.5-0.5.5 is installed OR acroread-cmaps-9.4.6-0.4.5 is installed OR acroread-fonts-ja-9.4.6-0.4.5 is installed OR acroread-fonts-ko-9.4.6-0.4.5 is installed OR acroread-fonts-zh_CN-9.4.6-0.4.5 is installed OR acroread-fonts-zh_TW-9.4.6-0.4.5 is installed OR acroread_ja-9.4.2-0.4 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information bind-libs-9.9.4P2-0.6 is installed OR bind-libs-32bit-9.9.4P2-0.6 is installed OR bind-utils-9.9.4P2-0.6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND kvm-1.4.2-32 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information xen-4.4.1_10-9 is installed OR xen-kmp-default-4.4.1_10_k3.12.36_38-9 is installed OR xen-libs-4.4.1_10-9 is installed OR xen-libs-32bit-4.4.1_10-9 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information flash-player-11.2.202.554-114 is installed OR flash-player-gnome-11.2.202.554-114 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information gdk-pixbuf-2.34.0-19.5 is installed OR gdk-pixbuf-lang-2.34.0-19.5 is installed OR gdk-pixbuf-query-loaders-2.34.0-19.5 is installed OR gdk-pixbuf-query-loaders-32bit-2.34.0-19.5 is installed OR libgdk_pixbuf-2_0-0-2.34.0-19.5 is installed OR libgdk_pixbuf-2_0-0-32bit-2.34.0-19.5 is installed OR typelib-1_0-GdkPixbuf-2_0-2.34.0-19.5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND gzip-1.6-7 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information dbus-1-1.8.22-29.10 is installed OR dbus-1-x11-1.8.22-29.10 is installed OR libdbus-1-3-1.8.22-29.10 is installed OR libdbus-1-3-32bit-1.8.22-29.10 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 SP2 is installed AND Package Information nodejs12-12.18.4-4.6 is installed OR nodejs12-devel-12.18.4-4.6 is installed OR nodejs12-docs-12.18.4-4.6 is installed OR npm12-12.18.4-4.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information freeradius-server-3.0.3-10 is installed OR freeradius-server-doc-3.0.3-10 is installed OR freeradius-server-krb5-3.0.3-10 is installed OR freeradius-server-ldap-3.0.3-10 is installed OR freeradius-server-libs-3.0.3-10 is installed OR freeradius-server-mysql-3.0.3-10 is installed OR freeradius-server-perl-3.0.3-10 is installed OR freeradius-server-postgresql-3.0.3-10 is installed OR freeradius-server-python-3.0.3-10 is installed OR freeradius-server-sqlite-3.0.3-10 is installed OR freeradius-server-utils-3.0.3-10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information java-1_8_0-openjdk-1.8.0.144-27.5 is installed OR java-1_8_0-openjdk-demo-1.8.0.144-27.5 is installed OR java-1_8_0-openjdk-devel-1.8.0.144-27.5 is installed OR java-1_8_0-openjdk-headless-1.8.0.144-27.5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information at-3.1.14-7 is installed OR flex-2.5.37-8 is installed OR flex-32bit-2.5.37-8 is installed OR libQtWebKit4-4.8.6+2.3.3-3 is installed OR libQtWebKit4-32bit-4.8.6+2.3.3-3 is installed OR libbonobo-2.32.1-16 is installed OR libbonobo-32bit-2.32.1-16 is installed OR libbonobo-doc-2.32.1-16 is installed OR libbonobo-lang-2.32.1-16 is installed OR libkde4-4.12.0-7 is installed OR libkde4-32bit-4.12.0-7 is installed OR libkdecore4-4.12.0-7 is installed OR libkdecore4-32bit-4.12.0-7 is installed OR libksuseinstall1-4.12.0-7 is installed OR libksuseinstall1-32bit-4.12.0-7 is installed OR libnetpbm11-10.66.3-4 is installed OR libnetpbm11-32bit-10.66.3-4 is installed OR netpbm-10.66.3-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libzypp-16.17.20-27.52 is installed OR zypper-1.13.45-18.33 is installed OR zypper-log-1.13.45-18.33 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information cups-filters-1.0.58-15.2 is installed OR cups-filters-cups-browsed-1.0.58-15.2 is installed OR cups-filters-foomatic-rip-1.0.58-15.2 is installed OR cups-filters-ghostscript-1.0.58-15.2 is installed OR libqpdf18-7.1.1-3.3 is installed OR qpdf-7.1.1-3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_117-default-2-2 is installed OR kgraft-patch-SLE12-SP2_Update_31-2-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information gnutls-3.3.27-1 is installed OR libgnutls-openssl27-3.3.27-1 is installed OR libgnutls28-3.3.27-1 is installed OR libgnutls28-32bit-3.3.27-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information curl-7.37.0-37.43 is installed OR libcurl4-7.37.0-37.43 is installed OR libcurl4-32bit-7.37.0-37.43 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libecpg6-10.9-1.12 is installed OR libpq5-10.9-1.12 is installed OR libpq5-32bit-10.9-1.12 is installed OR postgresql10-10.9-1.12 is installed OR postgresql10-contrib-10.9-1.12 is installed OR postgresql10-docs-10.9-1.12 is installed OR postgresql10-libs-10.9-1.12 is installed OR postgresql10-plperl-10.9-1.12 is installed OR postgresql10-plpython-10.9-1.12 is installed OR postgresql10-pltcl-10.9-1.12 is installed OR postgresql10-server-10.9-1.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_156-94_61-default-8-2 is installed OR kgraft-patch-SLE12-SP3_Update_19-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.30-38.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information gdk-pixbuf-lang-2.34.0-19.17 is installed OR gdk-pixbuf-query-loaders-2.34.0-19.17 is installed OR gdk-pixbuf-query-loaders-32bit-2.34.0-19.17 is installed OR libgdk_pixbuf-2_0-0-2.34.0-19.17 is installed OR libgdk_pixbuf-2_0-0-32bit-2.34.0-19.17 is installed OR typelib-1_0-GdkPixbuf-2_0-2.34.0-19.17 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information libecpg6-10.14-4.25 is installed OR libpq5-10.14-4.25 is installed OR libpq5-32bit-10.14-4.25 is installed OR postgresql10-10.14-4.25 is installed OR postgresql10-contrib-10.14-4.25 is installed OR postgresql10-devel-10.14-4.25 is installed OR postgresql10-docs-10.14-4.25 is installed OR postgresql10-plperl-10.14-4.25 is installed OR postgresql10-plpython-10.14-4.25 is installed OR postgresql10-pltcl-10.14-4.25 is installed OR postgresql10-server-10.14-4.25 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND python-Django-1.8.9-1 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information git-2.12.3-27.14 is installed OR git-core-2.12.3-27.14 is installed OR git-doc-2.12.3-27.14 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND python-Werkzeug-0.14.1-3.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libpolkit0-0.113-5.18 is installed OR polkit-0.113-5.18 is installed OR typelib-1_0-Polkit-1_0-0.113-5.18 is installed
BACK