Oval Definition:	oval:org.opensuse.security:def:69273
Revision Date: 2021-08-30 Version: 1 Title: Security update for nodejs12 (Important) Description: This update for nodejs12 fixes the following issues: Update to 12.22.5: - CVE-2021-3672/CVE-2021-22931: Improper handling of untypical characters in domain names (bsc#1189370, bsc#1188881) - CVE-2021-22940: Use after free on close http2 on stream canceling (bsc#1189368) - CVE-2021-22939: Incomplete validation of rejectUnauthorized parameter (bsc#1189369) - CVE-2021-22930: http2: fixes use after free on close http2 on stream canceling (bsc#1188917) Family: unix Class: patch Status: Reference(s): 1051510 1065729 1071995 1085030 1111666 1112178 1113956 1114279 1144333 1148868 1150660 1151927 1152107 1152624 1158983 1159058 1161016 1162002 1162063 1163309 1166985 1167104 1168081 1168959 1169194 1169514 1169771 1169795 1170011 1170442 1170592 1170617 1170618 1171124 1171424 1171529 1171530 1171558 1171732 1171739 1171743 1171753 1171759 1171835 1171841 1171868 1171904 1172177 1172182 1172184 1172186 1172247 1172257 1172344 1172458 1172484 1172537 1172538 1172687 1172719 1172759 1172775 1172781 1172782 1172783 1172871 1172872 1172999 1173060 1173074 1173146 1173265 1173280 1173284 1173351 1173428 1173514 1173567 1173573 1173659 1173746 1173818 1173820 1173825 1173826 1173833 1173838 1173839 1173845 1173857 1174113 1174115 1174122 1174123 1174186 1174187 1174296 1174343 1174356 1174409 1174438 1174462 1174543 1188881 1188917 1189368 1189369 1189370 CVE-2019-16746 CVE-2019-16770 CVE-2019-20810 CVE-2019-20908 CVE-2019-5418 CVE-2019-5419 CVE-2019-5420 CVE-2020-0305 CVE-2020-10766 CVE-2020-10767 CVE-2020-10768 CVE-2020-10769 CVE-2020-10773 CVE-2020-10781 CVE-2020-11076 CVE-2020-11077 CVE-2020-12771 CVE-2020-12888 CVE-2020-13974 CVE-2020-14416 CVE-2020-15169 CVE-2020-15393 CVE-2020-15780 CVE-2020-5247 CVE-2020-5249 CVE-2020-5267 CVE-2020-8164 CVE-2020-8165 CVE-2020-8166 CVE-2020-8167 CVE-2020-8184 CVE-2020-8185 CVE-2021-22930 CVE-2021-22931 CVE-2021-22939 CVE-2021-22940 CVE-2021-3672 SUSE-SU-2020:3160-1 SUSE-SU-2021:2875-1 Platform(s): SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Public Cloud 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SP3 SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Manager Proxy 4.2 SUSE Manager Server 4.2 Product(s): Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed AND Package Information rmt-server-2.6.5-3.18 is installed OR rmt-server-pubcloud-2.6.5-3.18 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.48 is installed OR kernel-default-livepatch-4.12.14-197.48 is installed OR kernel-default-livepatch-devel-4.12.14-197.48 is installed OR kernel-livepatch-4_12_14-197_48-default-1-3.3 is installed OR kernel-livepatch-SLE15-SP1_Update_13-1-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 SP3 is installed AND Package Information nodejs12-12.22.5-4.19.1 is installed OR nodejs12-devel-12.22.5-4.19.1 is installed OR nodejs12-docs-12.22.5-4.19.1 is installed OR npm12-12.22.5-4.19.1 is installed
BACK