Oval Definition:
oval:org.opensuse.security:def:92170
Revision Date
:
2021-08-05
Version
:
1
Title
:
Security update for nodejs8 (Important)
Description
:
This update for nodejs8 fixes the following issues:
- update to npm 6.14.13 - CVE-2021-27290: Fixed ssri Regular Expression Denial of Service. (bsc#1187976) - CVE-2021-23362: Fixed hosted-git-info Regular Expression Denial of Service (bsc#1187977) - CVE-2021-22884: DNS rebinding in --inspect (bsc#1182620)
Family
:
unix
Class
:
patch
Status
:
Reference(s)
:
1182620
1184450
1187976
1187977
CVE-2020-7774
CVE-2021-22884
CVE-2021-23362
CVE-2021-27290
SUSE-SU-2021:2620-1
Platform(s)
:
SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS
Product(s)
:
Definition Synopsis
SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS is installed
AND
Package Information
nodejs-common-2.0-3.2.1 is installed
OR
nodejs8-8.17.0-3.47.2 is installed
OR
nodejs8-devel-8.17.0-3.47.2 is installed
OR
nodejs8-docs-8.17.0-3.47.2 is installed
OR
npm8-8.17.0-3.47.2 is installed
BACK