Oval Definition:oval:org.opensuse.security:def:60935
Revision Date:2020-12-01Version:1
Title:Security update for nodejs6 (Important)
Description:

This update for nodejs6 to version 6.16.0 fixes the following issues:

Security issues fixed:

- CVE-2018-0734: Fixed a timing vulnerability in the DSA signature generation (bsc#1113652) - CVE-2018-5407: Fixed a hyperthread port content side channel attack (aka 'PortSmash') (bsc#1113534) - CVE-2018-12120: Fixed that the debugger listens on any interface by default (bsc#1117625) - CVE-2018-12121: Fixed a denial of Service with large HTTP headers (bsc#1117626) - CVE-2018-12122: Fixed the 'Slowloris' HTTP Denial of Service (bsc#1117627) - CVE-2018-12116: Fixed HTTP request splitting (bsc#1117630) - CVE-2018-12123: Fixed hostname spoofing in URL parser for javascript protocol (bsc#1117629)
Family:unixClass:patch
Status:Reference(s):1032089
1037008
1037009
1049379
1050135
1052249
1052253
1052545
1054924
1055219
1055430
1057246
1059134
1059139
1061873
1087082
1087083
1089343
1104134
1110949
1113064
1113534
1113652
1117463
1117625
1117626
1117627
1117629
1117630
1120653
1120654
1122292
1122293
1122299
1123919
1124341
1124342
1128158
1141853
1149955
1155079
1160968
1165643
1169659
1169740
1170313
1170423
1171355
1172031
1172225
1172651
1172745
1172798
1172846
1173334
1173972
1174421
1174753
1174817
1175168
CVE-2016-10209
CVE-2016-10349
CVE-2016-10350
CVE-2016-7530
CVE-2017-11446
CVE-2017-11534
CVE-2017-12428
CVE-2017-12431
CVE-2017-12433
CVE-2017-13133
CVE-2017-13139
CVE-2017-14501
CVE-2017-14502
CVE-2017-15033
CVE-2018-0734
CVE-2018-1000877
CVE-2018-1000878
CVE-2018-11212
CVE-2018-12116
CVE-2018-12120
CVE-2018-12121
CVE-2018-12122
CVE-2018-12123
CVE-2018-17456
CVE-2018-18544
CVE-2018-1890
CVE-2018-20852
CVE-2018-3639
CVE-2018-3640
CVE-2018-3646
CVE-2018-5407
CVE-2018-8956
CVE-2019-1000019
CVE-2019-1000020
CVE-2019-12519
CVE-2019-12520
CVE-2019-12521
CVE-2019-12524
CVE-2019-16056
CVE-2019-18408
CVE-2019-20807
CVE-2019-2422
CVE-2019-2449
CVE-2020-11868
CVE-2020-11945
CVE-2020-13817
CVE-2020-13844
CVE-2020-15025
CVE-2020-15705
CVE-2020-2583
CVE-2020-2590
CVE-2020-2593
CVE-2020-2601
CVE-2020-2604
CVE-2020-2654
CVE-2020-2659
CVE-2020-9543
SUSE-SU-2017:2949-1
SUSE-SU-2018:2331-1
SUSE-SU-2018:4088-1
SUSE-SU-2019:0395-1
SUSE-SU-2019:0617-1
SUSE-SU-2020:0628-1
SUSE-SU-2020:0660-1
SUSE-SU-2020:1550-1
SUSE-SU-2020:1805-1
SUSE-SU-2020:2304-1
SUSE-SU-2020:3263-1
Platform(s):openSUSE Leap 15.1
openSUSE Leap 15.1 NonFree
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP4-ESPOS
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • mumble-1.2.19-9 is installed
  • OR mumble-32bit-1.2.19-lp151.4.6 is installed
  • OR mumble-server-1.2.19-9 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 NonFree is installed
  • AND opera-70.0.3728.71-lp151.2.24 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-71.12 is installed
  • OR libMagickCore-6_Q16-1-6.8.8.1-71.12 is installed
  • OR libMagickWand-6_Q16-1-6.8.8.1-71.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • ntp-4.2.8p15-88 is installed
  • OR ntp-doc-4.2.8p15-88 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND squid-3.5.21-26.23 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • java-1_7_0-openjdk-1.7.0.251-43.35 is installed
  • OR java-1_7_0-openjdk-demo-1.7.0.251-43.35 is installed
  • OR java-1_7_0-openjdk-devel-1.7.0.251-43.35 is installed
  • OR java-1_7_0-openjdk-headless-1.7.0.251-43.35 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-71.93 is installed
  • OR libMagickCore-6_Q16-1-6.8.8.1-71.93 is installed
  • OR libMagickWand-6_Q16-1-6.8.8.1-71.93 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • expat-2.1.0-21.3 is installed
  • OR libexpat1-2.1.0-21.3 is installed
  • OR libexpat1-32bit-2.1.0-21.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-ESPOS is installed
  • AND Package Information
  • grub2-2.02-12.31 is installed
  • OR grub2-arm64-efi-2.02-12.31 is installed
  • OR grub2-i386-pc-2.02-12.31 is installed
  • OR grub2-snapper-plugin-2.02-12.31 is installed
  • OR grub2-systemd-sleep-plugin-2.02-12.31 is installed
  • OR grub2-x86_64-efi-2.02-12.31 is installed
  • OR grub2-x86_64-xen-2.02-12.31 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND nodejs6-6.16.0-11.21 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND nodejs6-6.17.1-11.30 is installed
    • BACK