[openSUSE-SU-2021:2875-1] Security update for nodejs12
Severity
Important
Affected Packages
13
CVEs
5
Security update for nodejs12
This update for nodejs12 fixes the following issues:
Update to 12.22.5:
- CVE-2021-3672/CVE-2021-22931: Improper handling of untypical characters in domain names (bsc#1189370, bsc#1188881)
- CVE-2021-22940: Use after free on close http2 on stream canceling (bsc#1189368)
- CVE-2021-22939: Incomplete validation of rejectUnauthorized parameter (bsc#1189369)
- CVE-2021-22930: http2: fixes use after free on close http2 on stream canceling (bsc#1188917)
- ID
- openSUSE-SU-2021:2875-1
- Severity
- important
- URL
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/HHIBOQVFGTSNZKZ3C7TDCN35RIGH22D4/
- Published
-
2021-08-30T13:55:03
(3 years ago) - Modified
-
2021-08-30T13:55:03
(3 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
- ALAS-2021-1545
- ALAS2-2024-2399
- ALPINE:CVE-2021-22930
- ALPINE:CVE-2021-22931
- ALPINE:CVE-2021-22939
- ALPINE:CVE-2021-3672
- ALSA-2021:3623
- ALSA-2021:3666
- ALSA-2022:2043
- ASA-202108-1
- ASA-202108-13
- DSA-4954-1
- ELSA-2021-3623
- ELSA-2021-3666
- ELSA-2022-2043
- FEDORA-2021-001ec24fc5
- FEDORA-2021-0a60cbb948
- FEDORA-2021-52c89b44a9
- FEDORA-2021-a48cf28c13
- FEDORA-2021-c83b66abdb
- FREEBSD:43E9FFD4-D6E0-11ED-956F-7054D21A9E2A
- FREEBSD:B092BD4F-1B16-11EC-9D9D-0022489AD614
- FREEBSD:C9387E4D-2F5F-11EC-8BE6-D4C9EF517024
- FREEBSD:F53DAB71-1B15-11EC-9D9D-0022489AD614
- GLSA-202401-02
- GLSA-202405-29
- MS:CVE-2021-22930
- MS:CVE-2021-3672
- openSUSE-SU-2021:1168-1
- openSUSE-SU-2021:1214-1
- openSUSE-SU-2021:1239-1
- openSUSE-SU-2021:1313-1
- openSUSE-SU-2021:1343-1
- openSUSE-SU-2021:2760-1
- openSUSE-SU-2021:2953-1
- openSUSE-SU-2021:3211-1
- openSUSE-SU-2021:3294-1
- RHSA-2021:3623
- RHSA-2021:3666
- RHSA-2022:2043
- RLSA-2021:3623
- RLSA-2021:3666
- RLSA-2022:2043
- SUSE-SU-2021:2690-1
- SUSE-SU-2021:2760-1
- SUSE-SU-2021:2790-1
- SUSE-SU-2021:2823-1
- SUSE-SU-2021:2824-1
- SUSE-SU-2021:2875-1
- SUSE-SU-2021:2953-1
- SUSE-SU-2021:3184-1
- SUSE-SU-2021:3211-1
- SUSE-SU-2021:3294-1
- SUSE-SU-2022:2855-1
- USN-5034-1
- USN-5034-2
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/opensuse/npm12?arch=x86_64&distro=opensuse-leap-15.3 | opensuse | npm12 | < 12.22.5-4.19.1 | opensuse-leap-15.3 | x86_64 | |
Affected | pkg:rpm/opensuse/npm12?arch=s390x&distro=opensuse-leap-15.3 | opensuse | npm12 | < 12.22.5-4.19.1 | opensuse-leap-15.3 | s390x | |
Affected | pkg:rpm/opensuse/npm12?arch=ppc64le&distro=opensuse-leap-15.3 | opensuse | npm12 | < 12.22.5-4.19.1 | opensuse-leap-15.3 | ppc64le | |
Affected | pkg:rpm/opensuse/npm12?arch=aarch64&distro=opensuse-leap-15.3 | opensuse | npm12 | < 12.22.5-4.19.1 | opensuse-leap-15.3 | aarch64 | |
Affected | pkg:rpm/opensuse/nodejs12?arch=x86_64&distro=opensuse-leap-15.3 | opensuse | nodejs12 | < 12.22.5-4.19.1 | opensuse-leap-15.3 | x86_64 | |
Affected | pkg:rpm/opensuse/nodejs12?arch=s390x&distro=opensuse-leap-15.3 | opensuse | nodejs12 | < 12.22.5-4.19.1 | opensuse-leap-15.3 | s390x | |
Affected | pkg:rpm/opensuse/nodejs12?arch=ppc64le&distro=opensuse-leap-15.3 | opensuse | nodejs12 | < 12.22.5-4.19.1 | opensuse-leap-15.3 | ppc64le | |
Affected | pkg:rpm/opensuse/nodejs12?arch=aarch64&distro=opensuse-leap-15.3 | opensuse | nodejs12 | < 12.22.5-4.19.1 | opensuse-leap-15.3 | aarch64 | |
Affected | pkg:rpm/opensuse/nodejs12-docs?arch=noarch&distro=opensuse-leap-15.3 | opensuse | nodejs12-docs | < 12.22.5-4.19.1 | opensuse-leap-15.3 | noarch | |
Affected | pkg:rpm/opensuse/nodejs12-devel?arch=x86_64&distro=opensuse-leap-15.3 | opensuse | nodejs12-devel | < 12.22.5-4.19.1 | opensuse-leap-15.3 | x86_64 | |
Affected | pkg:rpm/opensuse/nodejs12-devel?arch=s390x&distro=opensuse-leap-15.3 | opensuse | nodejs12-devel | < 12.22.5-4.19.1 | opensuse-leap-15.3 | s390x | |
Affected | pkg:rpm/opensuse/nodejs12-devel?arch=ppc64le&distro=opensuse-leap-15.3 | opensuse | nodejs12-devel | < 12.22.5-4.19.1 | opensuse-leap-15.3 | ppc64le | |
Affected | pkg:rpm/opensuse/nodejs12-devel?arch=aarch64&distro=opensuse-leap-15.3 | opensuse | nodejs12-devel | < 12.22.5-4.19.1 | opensuse-leap-15.3 | aarch64 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |