| Revision Date: | 2021-03-02 | Version: | 1 |
| Title: | Security update for nodejs10 (Important) |
| Description: |
This update for nodejs10 fixes the following issues:
New upstream LTS version 10.24.0:
- CVE-2021-22883: HTTP2 'unknownProtocol' cause Denial of Service by resource exhaustion (bsc#1182619) - CVE-2021-22884: DNS rebinding in --inspect (bsc#1182620) - CVE-2021-23840: OpenSSL - Integer overflow in CipherUpdate (bsc#1182333)
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1182333
1182619
1182620
CVE-2013-1982
CVE-2019-18898
CVE-2021-22883
CVE-2021-22884
CVE-2021-23840
SUSE-SU-2021:0674-1
|
| Platform(s): | SUSE Linux Enterprise Module for Basesystem 15 SP2
SUSE Linux Enterprise Server 15 SP1-BCL
| Product(s): | |
| Definition Synopsis |
| SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed AND Package Information
libXext-devel-1.3.3-1 is installed
OR libXext6-1.3.3-1 is installed
OR libXext6-32bit-1.3.3-1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 15 SP1-BCL is installed
AND Package Information
nodejs10-10.24.0-1.33.2 is installed
OR nodejs10-devel-10.24.0-1.33.2 is installed
OR nodejs10-docs-10.24.0-1.33.2 is installed
OR npm10-10.24.0-1.33.2 is installed
|