Oval Definition:	oval:org.opensuse.security:def:66203
Revision Date: 2020-12-01 Version: 1 Title: Security update for nodejs8 (Critical) Description: This update for nodejs8 fixes the following issues: - CVE-2020-8174: Fixed multiple memory corruption in napi_get_value_string_*() (bsc#1172443). - CVE-2020-11080: Fixed a potential denial of service when receiving unreasonably large HTTP/2 SETTINGS frames (bsc#1172442). - CVE-2020-7598: Fixed an issue which could have tricked minimist into adding or modifying properties of Object.prototype (bsc#1166916). Family: unix Class: patch Status: Reference(s): 1155419 1160471 1166916 1170441 1172442 1172443 CVE-2019-15681 CVE-2019-15690 CVE-2019-20788 CVE-2020-11080 CVE-2020-7598 CVE-2020-8174 SUSE-SU-2020:1164-1 SUSE-SU-2020:1576-1 Platform(s): SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Workstation Extension 15 SP1 Product(s): Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information nodejs8-8.17.0-3.32 is installed OR nodejs8-devel-8.17.0-3.32 is installed OR nodejs8-docs-8.17.0-3.32 is installed OR npm8-8.17.0-3.32 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information LibVNCServer-0.9.10-4.14 is installed OR libvncclient0-0.9.10-4.14 is installed
BACK