Oval Definition:	oval:org.opensuse.security:def:69267
Revision Date: 2021-02-26 Version: 1 Title: Security update for nodejs12 (Important) Description: This update for nodejs12 fixes the following issues: New upstream LTS version 12.21.0: - CVE-2021-22883: HTTP2 'unknownProtocol' cause Denial of Service by resource exhaustion (bsc#1182619) - CVE-2021-22884: DNS rebinding in --inspect (bsc#1182620) - CVE-2021-23840: OpenSSL - Integer overflow in CipherUpdate (bsc#1182333) Family: unix Class: patch Status: Reference(s): 1144502 1171746 1172140 1172410 1172437 1182333 1182619 1182620 CVE-2018-1000199 CVE-2019-15666 CVE-2020-10749 CVE-2020-10757 CVE-2020-13233 CVE-2021-22883 CVE-2021-22884 CVE-2021-23840 SUSE-SU-2020:1957-1 SUSE-SU-2021:0651-1 Platform(s): SUSE Linux Enterprise High Performance Computing 15 SP2 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Public Cloud 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SP2 SUSE Linux Enterprise Server 15 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SP2 SUSE Linux Enterprise Storage 7 SUSE Manager Proxy 4.1 SUSE Manager Server 4.1 Product(s): Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_4-default-11-2 is installed OR kernel-livepatch-SLE15-SP1_Update_1-11-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed AND cni-plugins-0.8.6-3.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 SP2 is installed AND Package Information nodejs12-12.21.0-4.13.2 is installed OR nodejs12-devel-12.21.0-4.13.2 is installed OR nodejs12-docs-12.21.0-4.13.2 is installed OR npm12-12.21.0-4.13.2 is installed
BACK