Oval Definition:
oval:org.opensuse.security:def:69901
Revision Date
:
2021-08-05
Version
:
1
Title
:
Security update for nodejs8 (Important)
Description
:
This update for nodejs8 fixes the following issues:
- update to npm 6.14.13 - CVE-2021-27290: Fixed ssri Regular Expression Denial of Service. (bsc#1187976) - CVE-2021-23362: Fixed hosted-git-info Regular Expression Denial of Service (bsc#1187977) - CVE-2021-22884: DNS rebinding in --inspect (bsc#1182620)
Family
:
unix
Class
:
patch
Status
:
Reference(s)
:
1182620
1184450
1187976
1187977
CVE-2014-3686
CVE-2014-8602
CVE-2015-1863
CVE-2015-4141
CVE-2015-4142
CVE-2015-4143
CVE-2015-4144
CVE-2015-4145
CVE-2015-4146
CVE-2015-5310
CVE-2015-5315
CVE-2015-5316
CVE-2016-4476
CVE-2016-4477
CVE-2017-13078
CVE-2017-13079
CVE-2017-13080
CVE-2017-13081
CVE-2017-13087
CVE-2017-13088
CVE-2017-15105
CVE-2018-14526
CVE-2020-7774
CVE-2021-22884
CVE-2021-23362
CVE-2021-27290
SUSE-SU-2021:2620-1
Platform(s)
:
SUSE Linux Enterprise Module for Basesystem 15 SP2
SUSE Linux Enterprise Server 15 SP1-LTSS
Product(s)
:
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
AND
Package Information
libunbound2-1.6.8-8 is installed
OR
unbound-anchor-1.6.8-8 is installed
OR
unbound-devel-1.6.8-8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15 SP1-LTSS is installed
AND
Package Information
nodejs-common-2.0-3.2.1 is installed
OR
nodejs8-8.17.0-3.47.2 is installed
OR
nodejs8-devel-8.17.0-3.47.2 is installed
OR
nodejs8-docs-8.17.0-3.47.2 is installed
OR
npm8-8.17.0-3.47.2 is installed
BACK