Oval Definition:oval:org.opensuse.security:def:70266
Revision Date:2021-08-05Version:1
Title:Security update for nodejs8 (Important)
Description:

This update for nodejs8 fixes the following issues:

- update to npm 6.14.13 - CVE-2021-27290: Fixed ssri Regular Expression Denial of Service. (bsc#1187976) - CVE-2021-23362: Fixed hosted-git-info Regular Expression Denial of Service (bsc#1187977) - CVE-2021-22884: DNS rebinding in --inspect (bsc#1182620)
Family:unixClass:patch
Status:Reference(s):1106843
1113719
1182620
1184450
1187976
1187977
941629
CVE-2018-14404
CVE-2018-16468
CVE-2018-16470
CVE-2018-18751
CVE-2019-11068
CVE-2019-18904
CVE-2019-5419
CVE-2020-7774
CVE-2021-22884
CVE-2021-23362
CVE-2021-27290
SUSE-SU-2020:2296-1
SUSE-SU-2021:2620-1
Platform(s):SUSE Linux Enterprise Module for Basesystem 15 SP2
SUSE Linux Enterprise Module for Server Applications 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
  • AND Package Information
  • gettext-runtime-0.19.8.1-4.8 is installed
  • OR gettext-runtime-32bit-0.19.8.1-4.8 is installed
  • OR gettext-tools-0.19.8.1-4.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed
  • AND Package Information
  • rmt-server-2.5.4-1 is installed
  • OR rmt-server-config-2.5.4-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND Package Information
  • nodejs-common-2.0-3.2.1 is installed
  • OR nodejs8-8.17.0-3.47.2 is installed
  • OR nodejs8-devel-8.17.0-3.47.2 is installed
  • OR nodejs8-docs-8.17.0-3.47.2 is installed
  • OR npm8-8.17.0-3.47.2 is installed
    • BACK