Oval Definition:oval:org.opensuse.security:def:91820
Revision Date:2020-02-25Version:1
Title:Security update for nodejs10 (Important)
Description:

This update for nodejs10 fixes the following issues:

nodejs10 was updated to version 10.19.0.

Security issues fixed:

- CVE-2019-15604: Fixed a remotely triggerable assertion in the TLS server via a crafted certificate string (CVE-2019-15604, bsc#1163104). - CVE-2019-15605: Fixed an HTTP request smuggling vulnerability via malformed Transfer-Encoding header (CVE-2019-15605, bsc#1163102). - CVE-2019-15606: Fixed the white space sanitation of HTTP headers (CVE-2019-15606, bsc#1163103).
Family:unixClass:patch
Status:Reference(s):1163102
1163103
1163104
CVE-2019-15604
CVE-2019-15605
CVE-2019-15606
SUSE-SU-2020:0455-1
Platform(s):SUSE Linux Enterprise High Performance Computing 15 SP1
SUSE Linux Enterprise Module for Web Scripting 15 SP1
SUSE Linux Enterprise Server 15 SP1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
SUSE Linux Enterprise Storage 6
SUSE Manager Proxy 4.0
SUSE Manager Server 4.0
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed
  • AND Package Information
  • nodejs10-10.19.0-1.18.1 is installed
  • OR nodejs10-devel-10.19.0-1.18.1 is installed
  • OR nodejs10-docs-10.19.0-1.18.1 is installed
  • OR npm10-10.19.0-1.18.1 is installed
  • BACK