Oval Definition:oval:org.opensuse.security:def:5454
Revision Date:2020-12-02Version:1
Title:Security update for nodejs10 (Critical)
Description:

This update for nodejs10 fixes the following issues:

nodejs10 was updated to version 10.21.0

- CVE-2020-8174: Fixed multiple memory corruption in napi_get_value_string_*() (bsc#1172443). - CVE-2020-11080: Fixed a potential denial of service when receiving unreasonably large HTTP/2 SETTINGS frames (bsc#1172442). - CVE-2020-10531: Fixed an integer overflow in UnicodeString:doAppend() (bsc#1166844). - Fixed an issue with openssl by adding getrandom syscall definition for all Linux platforms (bsc#1162117).

npm was updated to 6.14.3

- CVE-2020-7598: Fixed an issue which could have tricked minimist into adding or modifying properties of Object.prototype (bsc#1166916).
Family:unixClass:patch
Status:Reference(s):1162117
1166844
1166916
1172442
1172443
1173160
CVE-2006-4197
CVE-2009-0688
CVE-2009-1273
CVE-2009-2694
CVE-2009-2703
CVE-2009-3026
CVE-2009-3083
CVE-2009-3084
CVE-2009-3085
CVE-2009-3615
CVE-2010-0013
CVE-2010-0277
CVE-2010-0420
CVE-2010-0423
CVE-2010-0750
CVE-2010-1624
CVE-2010-2528
CVE-2010-2935
CVE-2010-2936
CVE-2010-3711
CVE-2011-1091
CVE-2011-1485
CVE-2011-1761
CVE-2011-3594
CVE-2012-2214
CVE-2012-3374
CVE-2012-4425
CVE-2012-6152
CVE-2013-0271
CVE-2013-0272
CVE-2013-0273
CVE-2013-0274
CVE-2013-1990
CVE-2013-1999
CVE-2013-2126
CVE-2013-2127
CVE-2013-4233
CVE-2013-4234
CVE-2013-4282
CVE-2013-4288
CVE-2013-6477
CVE-2013-6478
CVE-2013-6479
CVE-2013-6481
CVE-2013-6482
CVE-2013-6483
CVE-2013-6484
CVE-2013-6485
CVE-2013-6486
CVE-2013-6487
CVE-2014-0020
CVE-2014-0247
CVE-2014-3524
CVE-2014-3575
CVE-2014-3693
CVE-2014-3694
CVE-2014-3695
CVE-2014-3696
CVE-2014-3697
CVE-2014-3698
CVE-2014-7300
CVE-2014-8146
CVE-2014-8147
CVE-2014-9093
CVE-2015-3218
CVE-2015-3247
CVE-2015-3255
CVE-2015-3256
CVE-2015-4551
CVE-2015-4625
CVE-2015-5212
CVE-2015-5213
CVE-2015-5214
CVE-2015-7236
CVE-2020-10531
CVE-2020-10745
CVE-2020-11080
CVE-2020-7598
CVE-2020-8174
SUSE-SU-2020:1568-1
SUSE-SU-2020:2065-1
Platform(s):openSUSE 13.1
openSUSE 13.1 NonFree
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise for SAP 12
SUSE Linux Enterprise for SAP 12 SP1
SUSE Linux Enterprise for SAP 12 SP2
SUSE Linux Enterprise High Availability 12 SP2
SUSE Linux Enterprise High Performance Computing 12 SP5
SUSE Linux Enterprise Live Patching 12 SP3
SUSE Linux Enterprise Module for Advanced Systems Management 12
SUSE Linux Enterprise Module for Containers 12
SUSE Linux Enterprise Module for Legacy Software 12
SUSE Linux Enterprise Module for Public Cloud 12
SUSE Linux Enterprise Module for Toolchain 12
SUSE Linux Enterprise Module for Web Scripting 12
SUSE Linux Enterprise Point of Sale 12 SP2
SUSE Linux Enterprise Real Time Extension 12 SP1
SUSE Linux Enterprise Server 11
SUSE Linux Enterprise Server 11 SP1-LTSS
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP2-LTSS
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
SUSE Linux Enterprise Server for SAP Applications 12
SUSE Linux Enterprise Server for SAP Applications 12 SP1
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Software Development Kit 11 SP4
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP3
SUSE Linux Enterprise Software Development Kit 12 SP4
SUSE Linux Enterprise Workstation Extension 12
SUSE Linux Enterprise Workstation Extension 12 SP1
SUSE Linux Enterprise Workstation Extension 12 SP2
SUSE OpenStack Cloud 5
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND python-lxml-2.3.6-0.13.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • libldap-2_4-2-2.4.26-0.35.1 is installed
  • OR libldap-2_4-2-32bit-2.4.26-0.35.1 is installed
  • OR openldap2-client-2.4.26-0.35.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND libmodplug1-0.8.8.4-13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • cyrus-sasl-2.1.26-7 is installed
  • OR cyrus-sasl-32bit-2.1.26-7 is installed
  • OR cyrus-sasl-crammd5-2.1.26-7 is installed
  • OR cyrus-sasl-crammd5-32bit-2.1.26-7 is installed
  • OR cyrus-sasl-digestmd5-2.1.26-7 is installed
  • OR cyrus-sasl-digestmd5-32bit-2.1.26-7 is installed
  • OR cyrus-sasl-gssapi-2.1.26-7 is installed
  • OR cyrus-sasl-gssapi-32bit-2.1.26-7 is installed
  • OR cyrus-sasl-plain-2.1.26-7 is installed
  • OR cyrus-sasl-plain-32bit-2.1.26-7 is installed
  • OR cyrus-sasl-saslauthd-2.1.26-7 is installed
  • OR libsasl2-3-2.1.26-7 is installed
  • OR libsasl2-3-32bit-2.1.26-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • bash-4.3-82 is installed
  • OR bash-doc-4.3-82 is installed
  • OR bash-lang-4.3-82 is installed
  • OR libreadline6-6.3-82 is installed
  • OR libreadline6-32bit-6.3-82 is installed
  • OR readline-doc-6.3-82 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-71.85 is installed
  • OR libMagick++-6_Q16-3-6.8.8.1-71.85 is installed
  • OR libMagickCore-6_Q16-1-6.8.8.1-71.85 is installed
  • OR libMagickCore-6_Q16-1-32bit-6.8.8.1-71.85 is installed
  • OR libMagickWand-6_Q16-1-6.8.8.1-71.85 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise for SAP 12 is installed
  • AND Package Information
  • kgraft-patch-3_12_60-52_54-default-2-2.2 is installed
  • OR kgraft-patch-3_12_60-52_54-xen-2-2.2 is installed
  • OR kgraft-patch-SLE12_Update_15-2-2.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise for SAP 12 SP1 is installed
  • AND sudo-1.8.10p3-2.19.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise for SAP 12 SP2 is installed
  • AND Package Information
  • compat-openssl098-0.9.8j-105.1 is installed
  • OR libopenssl0_9_8-0.9.8j-105.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP2 is installed
  • AND conntrack-tools-1.4.2-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Performance Computing 12 SP5 is installed
  • AND Package Information
  • fuse-2.9.3-6.3 is installed
  • OR libfuse2-2.9.3-6.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Live Patching 12 SP3 is installed
  • AND Package Information
  • kgraft-patch-4_4_92-6_18-default-1-4 is installed
  • OR kgraft-patch-SLE12-SP3_Update_4-1-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed
  • AND Package Information
  • salt-2016.11.4-45.2 is installed
  • OR salt-api-2016.11.4-45.2 is installed
  • OR salt-bash-completion-2016.11.4-45.2 is installed
  • OR salt-cloud-2016.11.4-45.2 is installed
  • OR salt-doc-2016.11.4-45.2 is installed
  • OR salt-master-2016.11.4-45.2 is installed
  • OR salt-minion-2016.11.4-45.2 is installed
  • OR salt-proxy-2016.11.4-45.2 is installed
  • OR salt-ssh-2016.11.4-45.2 is installed
  • OR salt-syndic-2016.11.4-45.2 is installed
  • OR salt-zsh-completion-2016.11.4-45.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Containers 12 is installed
  • AND python-setuptools-1.1.7-7.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 12 is installed
  • AND syslog-ng-3.4.5-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Public Cloud 12 is installed
  • AND python-requests-2.3.0-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Toolchain 12 is installed
  • AND Package Information
  • cpp5-5.3.1+r233831-9 is installed
  • OR gcc5-5.3.1+r233831-9 is installed
  • OR gcc5-c++-5.3.1+r233831-9 is installed
  • OR gcc5-fortran-5.3.1+r233831-9 is installed
  • OR gcc5-info-5.3.1+r233831-9 is installed
  • OR gcc5-locale-5.3.1+r233831-9 is installed
  • OR libffi-devel-gcc5-5.3.1+r233831-9 is installed
  • OR libstdc++6-devel-gcc5-5.3.1+r233831-9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 12 is installed
  • AND Package Information
  • nodejs6-6.9.5-7 is installed
  • OR nodejs6-devel-6.9.5-7 is installed
  • OR nodejs6-docs-6.9.5-7 is installed
  • OR npm6-6.9.5-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Point of Sale 12 SP2 is installed
  • AND Package Information
  • salt-2016.11.4-46.7.1 is installed
  • OR salt-minion-2016.11.4-46.7.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Real Time Extension 12 SP1 is installed
  • AND Package Information
  • kernel-compute-3.12.58-14.1 is installed
  • OR kernel-compute-base-3.12.58-14.1 is installed
  • OR kernel-compute-devel-3.12.58-14.1 is installed
  • OR kernel-compute_debug-3.12.58-14.1 is installed
  • OR kernel-compute_debug-devel-3.12.58-14.1 is installed
  • OR kernel-devel-rt-3.12.58-14.1 is installed
  • OR kernel-rt-3.12.58-14.1 is installed
  • OR kernel-rt-base-3.12.58-14.1 is installed
  • OR kernel-rt-devel-3.12.58-14.1 is installed
  • OR kernel-rt_debug-3.12.58-14.1 is installed
  • OR kernel-rt_debug-devel-3.12.58-14.1 is installed
  • OR kernel-source-rt-3.12.58-14.1 is installed
  • OR kernel-syms-rt-3.12.58-14.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 is installed
  • AND Package Information
  • ntp-4.2.4p6-1.17.1 is installed
  • OR ntp-doc-4.2.4p6-1.17.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP1-LTSS is installed
  • AND Package Information
  • java-1_6_0-ibm-1.6.0_sr16.7-10.1 is installed
  • OR java-1_6_0-ibm-alsa-1.6.0_sr16.7-10.1 is installed
  • OR java-1_6_0-ibm-fonts-1.6.0_sr16.7-10.1 is installed
  • OR java-1_6_0-ibm-jdbc-1.6.0_sr16.7-10.1 is installed
  • OR java-1_6_0-ibm-plugin-1.6.0_sr16.7-10.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND Package Information
  • glib2-2.22.5-0.2.23 is installed
  • OR glib2-doc-2.22.5-0.2.23 is installed
  • OR glib2-lang-2.22.5-0.2.23 is installed
  • OR libgio-2_0-0-2.22.5-0.2.23 is installed
  • OR libgio-2_0-0-32bit-2.22.5-0.2.23 is installed
  • OR libgio-2_0-0-x86-2.22.5-0.2.23 is installed
  • OR libglib-2_0-0-2.22.5-0.2.23 is installed
  • OR libglib-2_0-0-32bit-2.22.5-0.2.23 is installed
  • OR libglib-2_0-0-x86-2.22.5-0.2.23 is installed
  • OR libgmodule-2_0-0-2.22.5-0.2.23 is installed
  • OR libgmodule-2_0-0-32bit-2.22.5-0.2.23 is installed
  • OR libgmodule-2_0-0-x86-2.22.5-0.2.23 is installed
  • OR libgobject-2_0-0-2.22.5-0.2.23 is installed
  • OR libgobject-2_0-0-32bit-2.22.5-0.2.23 is installed
  • OR libgobject-2_0-0-x86-2.22.5-0.2.23 is installed
  • OR libgthread-2_0-0-2.22.5-0.2.23 is installed
  • OR libgthread-2_0-0-32bit-2.22.5-0.2.23 is installed
  • OR libgthread-2_0-0-x86-2.22.5-0.2.23 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND Package Information
  • PackageKit-0.3.14-2.28.46 is installed
  • OR PackageKit-lang-0.3.14-2.28.46 is installed
  • OR hal-0.5.12-23.68.1 is installed
  • OR hal-32bit-0.5.12-23.68.1 is installed
  • OR hal-doc-0.5.12-23.68.1 is installed
  • OR hal-x86-0.5.12-23.68.1 is installed
  • OR libpackagekit-glib10-0.3.14-2.28.46 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND Package Information
  • MozillaFirefox-31.1.0esr-1 is installed
  • OR MozillaFirefox-translations-31.1.0esr-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • alsa-1.0.27.2-11 is installed
  • OR alsa-docs-1.0.27.2-11 is installed
  • OR libasound2-1.0.27.2-11 is installed
  • OR libasound2-32bit-1.0.27.2-11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • dovecot22-2.2.13-4.1 is installed
  • OR dovecot22-backend-mysql-2.2.13-4.1 is installed
  • OR dovecot22-backend-pgsql-2.2.13-4.1 is installed
  • OR dovecot22-backend-sqlite-2.2.13-4.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • libtasn1-4.9-1 is installed
  • OR libtasn1-6-4.9-1 is installed
  • OR libtasn1-6-32bit-4.9-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • alsa-1.0.27.2-15 is installed
  • OR alsa-docs-1.0.27.2-15 is installed
  • OR libasound2-1.0.27.2-15 is installed
  • OR libasound2-32bit-1.0.27.2-15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
  • AND Package Information
  • gpg2-2.0.24-3 is installed
  • OR gpg2-lang-2.0.24-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 12 is installed
  • AND Package Information
  • kgraft-patch-3_12_60-52_63-default-5-2 is installed
  • OR kgraft-patch-3_12_60-52_63-xen-5-2 is installed
  • OR kgraft-patch-SLE12_Update_18-5-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 12 SP1 is installed
  • AND Package Information
  • kgraft-patch-3_12_69-60_64_32-default-5-2 is installed
  • OR kgraft-patch-3_12_69-60_64_32-xen-5-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_13-5-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND Package Information
  • nodejs10-10.21.0-1.21 is installed
  • OR nodejs10-devel-10.21.0-1.21 is installed
  • OR nodejs10-docs-10.21.0-1.21 is installed
  • OR npm10-10.21.0-1.21 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND PolicyKit-devel-0.9-14.43.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 is installed
  • AND dhcp-devel-4.2.6-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP3 is installed
  • AND Package Information
  • libid3tag-devel-0.15.1b-182 is installed
  • OR libid3tag0-0.15.1b-182 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP4 is installed
  • AND accountsservice-devel-0.6.42-16.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 is installed
  • AND argyllcms-1.6.3-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP1 is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-8 is installed
  • OR libMagick++-6_Q16-3-6.8.8.1-8 is installed
  • OR libMagickCore-6_Q16-1-32bit-6.8.8.1-8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP2 is installed
  • AND Package Information
  • kernel-default-4.4.21-90.1 is installed
  • OR kernel-default-extra-4.4.21-90.1 is installed
    • BACK