Oval Definition:	oval:org.opensuse.security:def:69280
Revision Date: 2022-01-14 Version: 1 Title: Security update for nodejs12 (Moderate) (in QA) Description: This update for nodejs12 fixes the following issues: - CVE-2021-44531: Fixed improper handling of URI Subject Alternative Names (bsc#1194511). - CVE-2021-44532: Fixed certificate Verification Bypass via String Injection (bsc#1194512). - CVE-2021-44533: Fixed incorrect handling of certificate subject and issuer fields (bsc#1194513). - CVE-2022-21824: Fixed prototype pollution via console.table properties (bsc#1194514). This patch is currently in QA and not yet available for download. Family: unix Class: patch Status: Reference(s): 1111622 1174186 1174247 1194511 1194512 1194513 1194514 CVE-2018-18074 CVE-2020-14331 CVE-2020-15780 CVE-2021-44531 CVE-2021-44532 CVE-2021-44533 CVE-2022-21824 SUSE-SU-2019:1487-1 SUSE-SU-2020:2515-1 Platform(s): SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SP3 SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Manager Proxy 4.2 SUSE Manager Server 4.2 Product(s): Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 SP3 is installed AND Package Information nodejs12-12.22.9-4.25.1 is installed OR nodejs12-devel-12.22.9-4.25.1 is installed OR nodejs12-docs-12.22.9-4.25.1 is installed OR npm12-12.22.9-4.25.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_40-default-4-2 is installed OR kernel-livepatch-SLE15-SP1_Update_11-4-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND Package Information python-requests-2.20.1-6.3 is installed OR python2-requests-2.20.1-6.3 is installed
BACK