Oval Definition:oval:org.opensuse.security:def:69598
Revision Date:2021-03-02Version:1
Title:Security update for nodejs10 (Important)
Description:

This update for nodejs10 fixes the following issues:

New upstream LTS version 10.24.0:

- CVE-2021-22883: HTTP2 'unknownProtocol' cause Denial of Service by resource exhaustion (bsc#1182619) - CVE-2021-22884: DNS rebinding in --inspect (bsc#1182620) - CVE-2021-23840: OpenSSL - Integer overflow in CipherUpdate (bsc#1182333)
Family:unixClass:patch
Status:Reference(s):1125230
1182333
1182619
1182620
CVE-2009-4029
CVE-2018-15587
CVE-2021-22883
CVE-2021-22884
CVE-2021-23840
SUSE-SU-2019:1266-2
SUSE-SU-2021:0674-1
Platform(s):SUSE Linux Enterprise Module for Basesystem 15 SP2
SUSE Linux Enterprise Server 15-LTSS
SUSE Linux Enterprise Workstation Extension 15 SP1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
  • AND Package Information
  • automake-1.15.1-2 is installed
  • OR m4-1.4.18-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 15-LTSS is installed
  • AND Package Information
  • nodejs10-10.24.0-1.33.2 is installed
  • OR nodejs10-devel-10.24.0-1.33.2 is installed
  • OR nodejs10-docs-10.24.0-1.33.2 is installed
  • OR npm10-10.24.0-1.33.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND Package Information
  • evolution-3.26.6-4.3 is installed
  • OR evolution-devel-3.26.6-4.3 is installed
  • OR evolution-lang-3.26.6-4.3 is installed
  • OR evolution-plugin-bogofilter-3.26.6-4.3 is installed
  • OR evolution-plugin-pst-import-3.26.6-4.3 is installed
  • OR evolution-plugin-spamassassin-3.26.6-4.3 is installed
    • BACK