Oval Definition:oval:org.opensuse.security:def:70543
Revision Date:2021-03-02Version:1
Title:Security update for nodejs10 (Important)
Description:

This update for nodejs10 fixes the following issues:

New upstream LTS version 10.24.0:

- CVE-2021-22883: HTTP2 'unknownProtocol' cause Denial of Service by resource exhaustion (bsc#1182619) - CVE-2021-22884: DNS rebinding in --inspect (bsc#1182620) - CVE-2021-23840: OpenSSL - Integer overflow in CipherUpdate (bsc#1182333)
Family:unixClass:patch
Status:Reference(s):1172186
1173026
1173027
1182333
1182619
1182620
CVE-2020-8165
CVE-2020-8169
CVE-2020-8177
CVE-2021-22883
CVE-2021-22884
CVE-2021-23840
SUSE-SU-2021:0674-1
Platform(s):SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
  • AND Package Information
  • curl-7.66.0-4.3 is installed
  • OR curl-mini-7.66.0-4.3 is installed
  • OR libcurl-devel-32bit-7.66.0-4.3 is installed
  • OR libcurl-mini-devel-7.66.0-4.3 is installed
  • OR libcurl4-mini-7.66.0-4.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed
  • AND Package Information
  • nodejs10-10.24.0-1.33.2 is installed
  • OR nodejs10-devel-10.24.0-1.33.2 is installed
  • OR nodejs10-docs-10.24.0-1.33.2 is installed
  • OR npm10-10.24.0-1.33.2 is installed
  • BACK