Oval Definition:	oval:org.opensuse.security:def:70352
Revision Date: 2021-03-02 Version: 1 Title: Security update for nodejs10 (Important) Description: This update for nodejs10 fixes the following issues: New upstream LTS version 10.24.0: - CVE-2021-22883: HTTP2 'unknownProtocol' cause Denial of Service by resource exhaustion (bsc#1182619) - CVE-2021-22884: DNS rebinding in --inspect (bsc#1182620) - CVE-2021-23840: OpenSSL - Integer overflow in CipherUpdate (bsc#1182333) Family: unix Class: patch Status: Reference(s): 1172383 1172384 1172386 1172495 1172710 1174628 1182333 1182619 1182620 CVE-2020-10761 CVE-2020-13361 CVE-2020-13362 CVE-2020-13659 CVE-2020-13800 CVE-2020-14344 CVE-2021-22883 CVE-2021-22884 CVE-2021-23840 SUSE-SU-2020:2015-1 SUSE-SU-2020:2116-1 SUSE-SU-2021:0674-1 Platform(s): SUSE Linux Enterprise Module for Basesystem 15 SP2 SUSE Linux Enterprise Module for Desktop Applications 15 SP2 SUSE Linux Enterprise Server for SAP Applications 15 Product(s): Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed AND Package Information qemu-4.2.1-11.4 is installed OR qemu-tools-4.2.1-11.4 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 SP2 is installed AND Package Information libxcb-1.13-3.5 is installed OR libxcb-render0-32bit-1.13-3.5 is installed OR libxcb-shm0-32bit-1.13-3.5 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information nodejs10-10.24.0-1.33.2 is installed OR nodejs10-devel-10.24.0-1.33.2 is installed OR nodejs10-docs-10.24.0-1.33.2 is installed OR npm10-10.24.0-1.33.2 is installed
BACK