Oval Definition:
oval:org.opensuse.security:def:67210
Revision Date
:
2021-08-05
Version
:
1
Title
:
Security update for nodejs8 (Important)
Description
:
This update for nodejs8 fixes the following issues:
- update to npm 6.14.13 - CVE-2021-27290: Fixed ssri Regular Expression Denial of Service. (bsc#1187976) - CVE-2021-23362: Fixed hosted-git-info Regular Expression Denial of Service. (bsc#1187977) - CVE-2020-7774: fixes y18n Prototype Pollution. (bsc#1184450)
Family
:
unix
Class
:
patch
Status
:
Reference(s)
:
1171696
1173786
1177351
1177352
1184450
1187976
1187977
CVE-2020-1945
CVE-2020-7069
CVE-2020-7070
CVE-2020-7774
CVE-2021-23362
CVE-2021-27290
Platform(s)
:
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP3
Product(s)
:
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
AND
Package Information
ant-antlr-1.10.7-4.3 is installed
OR
ant-apache-xalan2-1.10.7-4.3 is installed
OR
ant-commons-net-1.10.7-4.3 is installed
OR
ant-imageio-1.10.7-4.3 is installed
OR
ant-jsch-1.10.7-4.3 is installed
OR
ant-junit5-1.10.7-4.3 is installed
OR
ant-testutil-1.10.7-4.3 is installed
OR
ant-xz-1.10.7-4.3 is installed
BACK