Oval Definition:	oval:org.opensuse.security:def:53629
Revision Date: 2020-12-01 Version: 1 Title: Security update for nodejs10 (Critical) Description: This update for nodejs10 fixes the following issues: nodejs10 was updated to version 10.21.0 - CVE-2020-8174: Fixed multiple memory corruption in napi_get_value_string_*() (bsc#1172443). - CVE-2020-11080: Fixed a potential denial of service when receiving unreasonably large HTTP/2 SETTINGS frames (bsc#1172442). - CVE-2020-10531: Fixed an integer overflow in UnicodeString:doAppend() (bsc#1166844). - Fixed an issue with openssl by adding getrandom syscall definition for all Linux platforms (bsc#1162117). npm was updated to 6.14.3 - CVE-2020-7598: Fixed an issue which could have tricked minimist into adding or modifying properties of Object.prototype (bsc#1166916). Family: unix Class: patch Status: Reference(s): 1020950 1024749 1042298 1042299 1042300 1042301 1042302 1042303 1042304 1042305 1042306 1042307 1042308 1042309 1045460 1048457 1049796 1050083 1050116 1050139 1050469 1050632 1051441 1051847 1052450 1052553 1052689 1052744 1052758 1052764 1054757 1055214 1056432 1057157 1057719 1057729 1057730 1058485 1058637 1059666 1059778 1059809 1059811 1060176 1060321 1060577 1061254 1062750 1063798 1066003 1067181 1067184 1067409 1072385 1162117 1166844 1166916 1172442 1172443 1177914 898513 900914 915410 922710 957531 966682 CVE-2010-1205 CVE-2010-2761 CVE-2010-4410 CVE-2010-4411 CVE-2010-4777 CVE-2011-2501 CVE-2011-3026 CVE-2011-3045 CVE-2011-3048 CVE-2012-3355 CVE-2012-3386 CVE-2013-1988 CVE-2013-7353 CVE-2013-7354 CVE-2013-7447 CVE-2014-0172 CVE-2014-8242 CVE-2014-9447 CVE-2014-9512 CVE-2015-7981 CVE-2015-8126 CVE-2015-8327 CVE-2015-8540 CVE-2015-8853 CVE-2016-10087 CVE-2016-1238 CVE-2016-2381 CVE-2016-6185 CVE-2016-6354 CVE-2016-7586 CVE-2016-7589 CVE-2016-7592 CVE-2016-7599 CVE-2016-7623 CVE-2016-7632 CVE-2016-7635 CVE-2016-7639 CVE-2016-7641 CVE-2016-7645 CVE-2016-7652 CVE-2016-7654 CVE-2016-7656 CVE-2017-11188 CVE-2017-11478 CVE-2017-11523 CVE-2017-11527 CVE-2017-11535 CVE-2017-11640 CVE-2017-11752 CVE-2017-12140 CVE-2017-12435 CVE-2017-12587 CVE-2017-12644 CVE-2017-12662 CVE-2017-12669 CVE-2017-12983 CVE-2017-13134 CVE-2017-13735 CVE-2017-13769 CVE-2017-14138 CVE-2017-14172 CVE-2017-14173 CVE-2017-14175 CVE-2017-14341 CVE-2017-14342 CVE-2017-14531 CVE-2017-14607 CVE-2017-14608 CVE-2017-14632 CVE-2017-14633 CVE-2017-14682 CVE-2017-14733 CVE-2017-14989 CVE-2017-15217 CVE-2017-15930 CVE-2017-16545 CVE-2017-16546 CVE-2017-16669 CVE-2017-16909 CVE-2017-2350 CVE-2017-2354 CVE-2017-2355 CVE-2017-2356 CVE-2017-2362 CVE-2017-2363 CVE-2017-2364 CVE-2017-2365 CVE-2017-2366 CVE-2017-2369 CVE-2017-2371 CVE-2017-2373 CVE-2017-2496 CVE-2017-2510 CVE-2017-2538 CVE-2017-2539 CVE-2017-7018 CVE-2017-7030 CVE-2017-7034 CVE-2017-7037 CVE-2017-7039 CVE-2017-7046 CVE-2017-7048 CVE-2017-7055 CVE-2017-7056 CVE-2017-7061 CVE-2017-7064 CVE-2017-9343 CVE-2017-9344 CVE-2017-9345 CVE-2017-9346 CVE-2017-9347 CVE-2017-9348 CVE-2017-9349 CVE-2017-9350 CVE-2017-9351 CVE-2017-9352 CVE-2017-9353 CVE-2017-9354 CVE-2020-10531 CVE-2020-11080 CVE-2020-15999 CVE-2020-7598 CVE-2020-8174 SUSE-SU-2016:0092-1 SUSE-SU-2016:0173-1 SUSE-SU-2016:2550-1 SUSE-SU-2017:1663-1 SUSE-SU-2017:2933-1 SUSE-SU-2017:3388-1 SUSE-SU-2017:3392-1 SUSE-SU-2018:0015-1 SUSE-SU-2020:1568-1 SUSE-SU-2020:2995-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information elfutils-0.168-lp150.2 is installed OR elfutils-lang-0.168-lp150.2 is installed OR libasm1-0.168-lp150.2 is installed OR libdw1-0.168-lp150.2 is installed OR libdw1-32bit-0.168-lp150.2 is installed OR libebl-plugins-0.168-lp150.2 is installed OR libebl-plugins-32bit-0.168-lp150.2 is installed OR libelf1-0.168-lp150.2 is installed OR libelf1-32bit-0.168-lp150.2 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND transfig-3.2.6a-lp151.4.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information MozillaFirefox-17.0.9esr-0.3 is installed OR MozillaFirefox-translations-17.0.9esr-0.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-24.8.0esr-0.8 is installed OR MozillaFirefox-translations-24.8.0esr-0.8 is installed OR libfreebl3-3.16.4-0.8 is installed OR libfreebl3-32bit-3.16.4-0.8 is installed OR libsoftokn3-3.16.4-0.8 is installed OR libsoftokn3-32bit-3.16.4-0.8 is installed OR mozilla-nspr-4.10.7-0.3 is installed OR mozilla-nspr-32bit-4.10.7-0.3 is installed OR mozilla-nss-3.16.4-0.8 is installed OR mozilla-nss-32bit-3.16.4-0.8 is installed OR mozilla-nss-tools-3.16.4-0.8 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information bind-9.9.6P1-0.15 is installed OR bind-libs-9.9.6P1-0.15 is installed OR bind-libs-32bit-9.9.6P1-0.15 is installed OR bind-utils-9.9.6P1-0.15 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND rsync-3.1.0-6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information gtk2-2.24.24-3 is installed OR gtk2-lang-2.24.24-3 is installed OR gtk2-tools-2.24.24-3 is installed OR gtk2-tools-32bit-2.24.24-3 is installed OR libgtk-2_0-0-2.24.24-3 is installed OR libgtk-2_0-0-32bit-2.24.24-3 is installed OR typelib-1_0-Gtk-2_0-2.24.24-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information libwireshark8-2.2.7-47 is installed OR libwiretap6-2.2.7-47 is installed OR libwscodecs1-2.2.7-47 is installed OR libwsutil7-2.2.7-47 is installed OR wireshark-2.2.7-47 is installed OR wireshark-gtk-2.2.7-47 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information perl-5.18.2-11 is installed OR perl-32bit-5.18.2-11 is installed OR perl-base-5.18.2-11 is installed OR perl-doc-5.18.2-11 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information at-3.1.14-8.6 is installed OR libQtWebKit4-4.8.7+2.3.4-4.7 is installed OR libQtWebKit4-32bit-4.8.7+2.3.4-4.7 is installed OR libbonobo-2.32.1-16 is installed OR libbonobo-32bit-2.32.1-16 is installed OR libbonobo-lang-2.32.1-16 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information file-5.19-9 is installed OR file-magic-5.19-9 is installed OR libmagic1-5.19-9 is installed OR libmagic1-32bit-5.19-9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND wget-1.14-21.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libqt4-4.8.6-7 is installed OR libqt4-32bit-4.8.6-7 is installed OR libqt4-qt3support-4.8.6-7 is installed OR libqt4-qt3support-32bit-4.8.6-7 is installed OR libqt4-sql-4.8.6-7 is installed OR libqt4-sql-32bit-4.8.6-7 is installed OR libqt4-sql-mysql-4.8.6-7 is installed OR libqt4-sql-sqlite-4.8.6-7 is installed OR libqt4-x11-4.8.6-7 is installed OR libqt4-x11-32bit-4.8.6-7 is installed OR qt4-x11-tools-4.8.6-7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information kernel-default-4.4.121-92.80 is installed OR kernel-default-base-4.4.121-92.80 is installed OR kernel-default-devel-4.4.121-92.80 is installed OR kernel-devel-4.4.121-92.80 is installed OR kernel-macros-4.4.121-92.80 is installed OR kernel-source-4.4.121-92.80 is installed OR kernel-syms-4.4.121-92.80 is installed OR kgraft-patch-4_4_121-92_80-default-1-3.5 is installed OR kgraft-patch-SLE12-SP2_Update_22-1-3.5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_109-default-6-2 is installed OR kgraft-patch-SLE12-SP2_Update_29-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information java-1_8_0-openjdk-1.8.0.242-27.41 is installed OR java-1_8_0-openjdk-demo-1.8.0.242-27.41 is installed OR java-1_8_0-openjdk-devel-1.8.0.242-27.41 is installed OR java-1_8_0-openjdk-headless-1.8.0.242-27.41 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information coreutils-8.25-12 is installed OR coreutils-lang-8.25-12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libpython3_4m1_0-3.4.6-25.29 is installed OR python3-3.4.6-25.29 is installed OR python3-base-3.4.6-25.29 is installed OR python3-curses-3.4.6-25.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information MozillaFirefox-60.8.0-109.83 is installed OR MozillaFirefox-translations-common-60.8.0-109.83 is installed OR libfreebl3-3.44.1-58.28 is installed OR libfreebl3-32bit-3.44.1-58.28 is installed OR libfreebl3-hmac-3.44.1-58.28 is installed OR libfreebl3-hmac-32bit-3.44.1-58.28 is installed OR libsoftokn3-3.44.1-58.28 is installed OR libsoftokn3-32bit-3.44.1-58.28 is installed OR libsoftokn3-hmac-3.44.1-58.28 is installed OR libsoftokn3-hmac-32bit-3.44.1-58.28 is installed OR mozilla-nss-3.44.1-58.28 is installed OR mozilla-nss-32bit-3.44.1-58.28 is installed OR mozilla-nss-certs-3.44.1-58.28 is installed OR mozilla-nss-certs-32bit-3.44.1-58.28 is installed OR mozilla-nss-sysinit-3.44.1-58.28 is installed OR mozilla-nss-sysinit-32bit-3.44.1-58.28 is installed OR mozilla-nss-tools-3.44.1-58.28 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_178-94_91-default-6-2 is installed OR kgraft-patch-SLE12-SP3_Update_25-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information apache2-2.4.23-29.24 is installed OR apache2-doc-2.4.23-29.24 is installed OR apache2-example-pages-2.4.23-29.24 is installed OR apache2-prefork-2.4.23-29.24 is installed OR apache2-utils-2.4.23-29.24 is installed OR apache2-worker-2.4.23-29.24 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND cifs-utils-6.5-9.3 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information nodejs10-10.21.0-1.21 is installed OR nodejs10-devel-10.21.0-1.21 is installed OR nodejs10-docs-10.21.0-1.21 is installed OR npm10-10.21.0-1.21 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND memcached-1.4.15-1 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information perl-5.18.2-12.20 is installed OR perl-32bit-5.18.2-12.20 is installed OR perl-base-5.18.2-12.20 is installed OR perl-doc-5.18.2-12.20 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information grafana-4.5.1-4.3 is installed OR kafka-0.9.0.1-5.3 is installed OR logstash-2.4.1-5.4 is installed OR openstack-monasca-installer-20180622_15.06-3.6 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND python-Werkzeug-0.14.1-3.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND slf4j-1.7.12-3.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND nodejs6-6.17.0-11.27 is installed
BACK