Oval Definition:	oval:org.opensuse.security:def:69275
Revision Date: 2021-09-23 Version: 1 Title: Security update for nodejs14 (Important) Description: This update for nodejs14 fixes the following issues: - CVE-2021-3672: Fixed missing input validation on hostnames (bsc#1188881). - CVE-2021-22931: Fixed improper handling of untypical characters in domain names (bsc#1189370). - CVE-2021-22940: Use after free on close http2 on stream canceling (bsc#1189368) - CVE-2021-22939: Incomplete validation of rejectUnauthorized parameter (bsc#1189369) - CVE-2021-22930: Fixed use after free on close http2 on stream canceling (bsc#1188917). Family: unix Class: patch Status: Reference(s): 1055014 1058115 1061843 1065600 1065729 1066382 1077428 1112178 1131277 1134760 1140683 1163592 1167030 1168468 1170415 1170446 1170630 1171558 1171675 1172538 1172873 1173100 1173432 1173659 1173661 1173663 1173869 1173942 1173963 1174186 1174247 1174748 1175306 1175520 1175721 1176354 1176381 1176382 1176400 1176485 1176560 1176713 1176723 1176855 1176907 1176946 1176983 1177027 1177086 1177101 1177258 1177271 1177281 1177340 1177410 1177411 1177470 1177511 1177513 1177685 1177687 1177703 1177719 1177724 1177725 1177740 1177749 1177750 1177753 1177754 1177755 1177766 1177819 1177820 1177855 1177856 1177861 1178003 1178027 1178123 1178166 1178182 1178185 1178187 1178188 1178202 1178234 1178330 1178393 1178589 1178591 1178622 1178686 1178700 1178765 1178782 1178838 1178878 1188881 1188917 1189368 1189369 1189370 927455 CVE-2019-0155 CVE-2019-14895 CVE-2019-14901 CVE-2019-16746 CVE-2019-19447 CVE-2019-9458 CVE-2020-0430 CVE-2020-11668 CVE-2020-12351 CVE-2020-12352 CVE-2020-14331 CVE-2020-14351 CVE-2020-15780 CVE-2020-16120 CVE-2020-25212 CVE-2020-25285 CVE-2020-25645 CVE-2020-25656 CVE-2020-25668 CVE-2020-25669 CVE-2020-25704 CVE-2020-25705 CVE-2020-8694 CVE-2021-22930 CVE-2021-22931 CVE-2021-22939 CVE-2021-22940 CVE-2021-3672 SUSE-SU-2020:2505-1 SUSE-SU-2020:3484-1 SUSE-SU-2021:3211-1 Platform(s): SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Public Cloud 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SP3 SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Manager Proxy 4.2 SUSE Manager Server 4.2 Product(s): Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_21-default-8-2 is installed OR kernel-livepatch-SLE15-SP1_Update_6-8-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed AND Package Information kernel-azure-4.12.14-8.52 is installed OR kernel-azure-base-4.12.14-8.52 is installed OR kernel-azure-devel-4.12.14-8.52 is installed OR kernel-devel-azure-4.12.14-8.52 is installed OR kernel-source-azure-4.12.14-8.52 is installed OR kernel-syms-azure-4.12.14-8.52 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 SP3 is installed AND Package Information nodejs14-14.17.5-5.15.5 is installed OR nodejs14-devel-14.17.5-5.15.5 is installed OR nodejs14-docs-14.17.5-5.15.5 is installed OR npm14-14.17.5-5.15.5 is installed
BACK