Oval Definition:oval:org.opensuse.security:def:69793
Revision Date:2021-03-02Version:1
Title:Security update for nodejs10 (Important)
Description:

This update for nodejs10 fixes the following issues:

New upstream LTS version 10.24.0:

- CVE-2021-22883: HTTP2 'unknownProtocol' cause Denial of Service by resource exhaustion (bsc#1182619) - CVE-2021-22884: DNS rebinding in --inspect (bsc#1182620) - CVE-2021-23840: OpenSSL - Integer overflow in CipherUpdate (bsc#1182333)
Family:unixClass:patch
Status:Reference(s):1182333
1182619
1182620
CVE-2013-1982
CVE-2019-18898
CVE-2021-22883
CVE-2021-22884
CVE-2021-23840
SUSE-SU-2021:0674-1
Platform(s):SUSE Linux Enterprise Module for Basesystem 15 SP2
SUSE Linux Enterprise Server 15 SP1-BCL
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
  • AND Package Information
  • libXext-devel-1.3.3-1 is installed
  • OR libXext6-1.3.3-1 is installed
  • OR libXext6-32bit-1.3.3-1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 15 SP1-BCL is installed
  • AND Package Information
  • nodejs10-10.24.0-1.33.2 is installed
  • OR nodejs10-devel-10.24.0-1.33.2 is installed
  • OR nodejs10-docs-10.24.0-1.33.2 is installed
  • OR npm10-10.24.0-1.33.2 is installed
  • BACK