Oval Definition:oval:org.opensuse.security:def:69992
Revision Date:2021-03-02Version:1
Title:Security update for nodejs10 (Important)
Description:

This update for nodejs10 fixes the following issues:

New upstream LTS version 10.24.0:

- CVE-2021-22883: HTTP2 'unknownProtocol' cause Denial of Service by resource exhaustion (bsc#1182619) - CVE-2021-22884: DNS rebinding in --inspect (bsc#1182620) - CVE-2021-23840: OpenSSL - Integer overflow in CipherUpdate (bsc#1182333)
Family:unixClass:patch
Status:Reference(s):1182333
1182619
1182620
CVE-2011-2483
CVE-2017-13738
CVE-2017-13739
CVE-2017-13740
CVE-2017-13741
CVE-2017-13742
CVE-2017-13743
CVE-2017-13744
CVE-2018-11410
CVE-2018-11440
CVE-2018-11683
CVE-2018-11684
CVE-2018-11685
CVE-2018-12085
CVE-2021-22883
CVE-2021-22884
CVE-2021-23840
SUSE-SU-2021:0674-1
Platform(s):SUSE Linux Enterprise Module for Basesystem 15 SP2
SUSE Linux Enterprise Module for Desktop Applications 15 SP2
SUSE Linux Enterprise Server 15 SP1-LTSS
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
  • AND Package Information
  • sysvinit-tools-2.88+-1 is installed
  • OR whois-5.3.0-1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP2 is installed
  • AND Package Information
  • liblouis-data-3.11.0-1 is installed
  • OR liblouis-devel-3.11.0-1 is installed
  • OR liblouis19-3.11.0-1 is installed
  • OR python3-louis-3.11.0-1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 15 SP1-LTSS is installed
  • AND Package Information
  • nodejs10-10.24.0-1.33.2 is installed
  • OR nodejs10-devel-10.24.0-1.33.2 is installed
  • OR nodejs10-docs-10.24.0-1.33.2 is installed
  • OR npm10-10.24.0-1.33.2 is installed
  • BACK