Oval Definition:oval:org.opensuse.security:def:69248
Revision Date:2021-08-05Version:1
Title:Security update for nodejs8 (Important)
Description:

This update for nodejs8 fixes the following issues:

- update to npm 6.14.13 - CVE-2021-27290: Fixed ssri Regular Expression Denial of Service. (bsc#1187976) - CVE-2021-23362: Fixed hosted-git-info Regular Expression Denial of Service. (bsc#1187977) - CVE-2020-7774: fixes y18n Prototype Pollution. (bsc#1184450)
Family:unixClass:patch
Status:Reference(s):1171252
1171254
1172524
1184450
1187976
1187977
CVE-2020-12653
CVE-2020-12654
CVE-2020-12861
CVE-2020-12862
CVE-2020-12863
CVE-2020-12864
CVE-2020-12865
CVE-2020-12866
CVE-2020-12867
CVE-2020-7774
CVE-2021-23362
CVE-2021-27290
SUSE-SU-2020:3065-1
SUSE-SU-2021:2618-1
Platform(s):SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1
SUSE Linux Enterprise Module for Live Patching 15 SP1
SUSE Linux Enterprise Module for Web Scripting 15 SP2
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Storage 7
SUSE Manager Proxy 4.1
SUSE Manager Server 4.1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-197_7-default-9-2 is installed
  • OR kernel-livepatch-SLE15-SP1_Update_2-9-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed
  • AND Package Information
  • sane-backends-1.0.31-6.3 is installed
  • OR sane-backends-32bit-1.0.31-6.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 SP2 is installed
  • AND Package Information
  • nodejs8-8.17.0-10.12.2 is installed
  • OR nodejs8-devel-8.17.0-10.12.2 is installed
  • OR nodejs8-docs-8.17.0-10.12.2 is installed
  • OR npm8-8.17.0-10.12.2 is installed
    • BACK