| Revision Date: | 2019-03-29 | Version: | 1 |
| Title: | Security update for nodejs6 (Moderate) |
| Description: |
This update for nodejs6 to version 6.17.0 fixes the following issues:
Security issues fixed:
- CVE-2019-5739: Fixed a potentially attack vector which could lead to Denial of Service when HTTP connection are kept active (bsc#1127533). - CVE-2019-5737: Fixed a potentially attack vector which could lead to Denial of Service when HTTP connection are kept active (bsc#1127532). - CVE-2019-1559: Fixed OpenSSL 0-byte Record Padding Oracle which under certain circumstances a TLS server can be forced to respond differently to a client and lead to the decryption of the data (bsc#1127080).
Release Notes: https://nodejs.org/en/blog/release/v6.17.0/
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1127080
1127532
1127533
CVE-2019-1559
CVE-2019-5737
CVE-2019-5739
SUSE-SU-2019:0818-1
|
| Platform(s): | SUSE OpenStack Cloud 7
| Product(s): | |
| Definition Synopsis |
| SUSE OpenStack Cloud 7 is installed AND nodejs6-6.17.0-11.24.1 is installed
|