Oval Definition:oval:org.opensuse.security:def:74171
Revision Date:2020-12-01Version:1
Title:Security update for nodejs8 (Critical)
Description:

This update for nodejs8 fixes the following issues:

- CVE-2020-8174: Fixed multiple memory corruption in napi_get_value_string_*() (bsc#1172443). - CVE-2020-11080: Fixed a potential denial of service when receiving unreasonably large HTTP/2 SETTINGS frames (bsc#1172442). - CVE-2020-7598: Fixed an issue which could have tricked minimist into adding or modifying properties of Object.prototype (bsc#1166916) - CVE-2020-15095: Fixed information leak through log files (bsc#1173937). - Explicitly add -fno-strict-aliasing to CFLAGS to fix compilation on Aarch64 with gcc10 (bsc#1172686). - Add Require for nodejs8 when intalling npm8 (bsc#1172728)
Family:unixClass:patch
Status:Reference(s):1138425
1138464
1166916
1172442
1172443
1172686
1172728
1173937
CVE-2019-11597
CVE-2020-11080
CVE-2020-15095
CVE-2020-7598
CVE-2020-8174
openSUSE-SU-2019:1795-1
SUSE-SU-2020:2800-1
Platform(s):openSUSE Leap 15.1
SUSE Linux Enterprise Module for Web Scripting 15 SP2
Product(s):
Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • ImageMagick-7.0.7.34-lp151.7.6 is installed
  • OR ImageMagick-config-7-SUSE-7.0.7.34-lp151.7.6 is installed
  • OR ImageMagick-config-7-upstream-7.0.7.34-lp151.7.6 is installed
  • OR ImageMagick-devel-7.0.7.34-lp151.7.6 is installed
  • OR ImageMagick-devel-32bit-7.0.7.34-lp151.7.6 is installed
  • OR ImageMagick-doc-7.0.7.34-lp151.7.6 is installed
  • OR ImageMagick-extra-7.0.7.34-lp151.7.6 is installed
  • OR libMagick++-7_Q16HDRI4-7.0.7.34-lp151.7.6 is installed
  • OR libMagick++-7_Q16HDRI4-32bit-7.0.7.34-lp151.7.6 is installed
  • OR libMagick++-devel-7.0.7.34-lp151.7.6 is installed
  • OR libMagick++-devel-32bit-7.0.7.34-lp151.7.6 is installed
  • OR libMagickCore-7_Q16HDRI6-7.0.7.34-lp151.7.6 is installed
  • OR libMagickCore-7_Q16HDRI6-32bit-7.0.7.34-lp151.7.6 is installed
  • OR libMagickWand-7_Q16HDRI6-7.0.7.34-lp151.7.6 is installed
  • OR libMagickWand-7_Q16HDRI6-32bit-7.0.7.34-lp151.7.6 is installed
  • OR perl-PerlMagick-7.0.7.34-lp151.7.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 SP2 is installed
  • AND Package Information
  • nodejs8-8.17.0-10.3 is installed
  • OR nodejs8-devel-8.17.0-10.3 is installed
  • OR nodejs8-docs-8.17.0-10.3 is installed
  • OR npm8-8.17.0-10.3 is installed
    • BACK