[ELSA-2021-3623] nodejs:12 security and bug fix update
Severity
Important
Affected Packages
7
CVEs
8
nodejs
[1:12.22.5-1]
- Resolves CVE-2021-22930, CVE-2021-22931, CVE-2021-22939, CVE-2021-22940,
- CVE-2021-23343, CVE-2021-32803, CVE-2021-32804, CVE-2021-3672
- Resolves RHBZ#1951621 (make FIPS always available)
- Resolves: RHBZ#1988595, RHBZ#1993992, RHBZ#1993989, RHBZ#1993093
- Resolves: RHBZ#1994025, RHBZ#1994403, RHBZ#1994407, RHBZ#1994399
- Resolves: RHBZ#1993927 (make FIPS always available)
[1:12.22.3-3]
- Resolves CVE-2021-23362 CVE-2021-27290
- Resolves: RHBZ#1991584, RHBZ#1991578
- Add missing CVE trackers
Package | Affected Version |
---|---|
pkg:rpm/oraclelinux/npm?distro=oraclelinux-8.4 | < 6.14.14-1.12.22.5.1.module+el8.4.0+20308+065a70e3 |
pkg:rpm/oraclelinux/nodejs?distro=oraclelinux-8.4 | < 12.22.5-1.module+el8.4.0+20308+065a70e3 |
pkg:rpm/oraclelinux/nodejs-packaging?distro=oraclelinux-8.1 | < 17-3.module+el8.1.0+5393+aaf413e3 |
pkg:rpm/oraclelinux/nodejs-nodemon?distro=oraclelinux-8.4 | < 2.0.3-1.module+el8.4.0+20281+eb64e322 |
pkg:rpm/oraclelinux/nodejs-full-i18n?distro=oraclelinux-8.4 | < 12.22.5-1.module+el8.4.0+20308+065a70e3 |
pkg:rpm/oraclelinux/nodejs-docs?distro=oraclelinux-8.4 | < 12.22.5-1.module+el8.4.0+20308+065a70e3 |
pkg:rpm/oraclelinux/nodejs-devel?distro=oraclelinux-8.4 | < 12.22.5-1.module+el8.4.0+20308+065a70e3 |
- ID
- ELSA-2021-3623
- Severity
- important
- URL
- https://linux.oracle.com/errata/ELSA-2021-3623.html
- Published
-
2021-09-22T00:00:00
(3 years ago) - Modified
-
2021-09-22T00:00:00
(3 years ago) - Rights
- Copyright 2021 Oracle, Inc.
- Other Advisories
-
- ALAS-2021-1545
- ALAS2-2024-2399
- ALPINE:CVE-2021-22930
- ALPINE:CVE-2021-22931
- ALPINE:CVE-2021-22939
- ALPINE:CVE-2021-3672
- ALSA-2021:3623
- ALSA-2021:3666
- ALSA-2022:2043
- ASA-202108-1
- ASA-202108-13
- DSA-4954-1
- ELSA-2021-3666
- ELSA-2022-2043
- FEDORA-2021-001ec24fc5
- FEDORA-2021-0a60cbb948
- FEDORA-2021-52c89b44a9
- FEDORA-2021-a48cf28c13
- FEDORA-2021-c83b66abdb
- FREEBSD:43E9FFD4-D6E0-11ED-956F-7054D21A9E2A
- FREEBSD:7062BCE0-1B17-11EC-9D9D-0022489AD614
- FREEBSD:B092BD4F-1B16-11EC-9D9D-0022489AD614
- FREEBSD:C9387E4D-2F5F-11EC-8BE6-D4C9EF517024
- FREEBSD:F53DAB71-1B15-11EC-9D9D-0022489AD614
- GLSA-202401-02
- GLSA-202405-29
- MS:CVE-2021-22930
- MS:CVE-2021-3672
- NPM:GHSA-3JFQ-G458-7QM9
- NPM:GHSA-HJ48-42VR-X3V9
- NPM:GHSA-R628-MHMH-QJHW
- openSUSE-SU-2021:1168-1
- openSUSE-SU-2021:1214-1
- openSUSE-SU-2021:1239-1
- openSUSE-SU-2021:1313-1
- openSUSE-SU-2021:1343-1
- openSUSE-SU-2021:2760-1
- openSUSE-SU-2021:2875-1
- openSUSE-SU-2021:2953-1
- openSUSE-SU-2021:3211-1
- openSUSE-SU-2021:3294-1
- openSUSE-SU-2022:0657-1
- openSUSE-SU-2022:0704-1
- openSUSE-SU-2022:0715-1
- RHSA-2021:3623
- RHSA-2021:3666
- RHSA-2022:2043
- RLSA-2021:3623
- RLSA-2021:3666
- RLSA-2022:2043
- SUSE-SU-2021:2690-1
- SUSE-SU-2021:2760-1
- SUSE-SU-2021:2790-1
- SUSE-SU-2021:2823-1
- SUSE-SU-2021:2824-1
- SUSE-SU-2021:2875-1
- SUSE-SU-2021:2953-1
- SUSE-SU-2021:3184-1
- SUSE-SU-2021:3211-1
- SUSE-SU-2021:3294-1
- SUSE-SU-2022:0531-1
- SUSE-SU-2022:0563-1
- SUSE-SU-2022:0569-1
- SUSE-SU-2022:0570-1
- SUSE-SU-2022:0657-1
- SUSE-SU-2022:0704-1
- SUSE-SU-2022:0715-1
- SUSE-SU-2022:1717-1
- SUSE-SU-2022:2855-1
- USN-5034-1
- USN-5034-2
- USN-5283-1
Source | # ID | Name | URL |
---|---|---|---|
elsa | ELSA-2021-3623 | https://linux.oracle.com/errata/ELSA-2021-3623.html | |
CVE | CVE-2021-3672 | https://linux.oracle.com/cve/CVE-2021-3672.html | |
CVE | CVE-2021-22930 | https://linux.oracle.com/cve/CVE-2021-22930.html | |
CVE | CVE-2021-22931 | https://linux.oracle.com/cve/CVE-2021-22931.html | |
CVE | CVE-2021-22939 | https://linux.oracle.com/cve/CVE-2021-22939.html | |
CVE | CVE-2021-22940 | https://linux.oracle.com/cve/CVE-2021-22940.html | |
CVE | CVE-2021-32803 | https://linux.oracle.com/cve/CVE-2021-32803.html | |
CVE | CVE-2021-32804 | https://linux.oracle.com/cve/CVE-2021-32804.html | |
CVE | CVE-2021-23343 | https://linux.oracle.com/cve/CVE-2021-23343.html |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/oraclelinux/npm?distro=oraclelinux-8.4 | oraclelinux | npm | < 6.14.14-1.12.22.5.1.module+el8.4.0+20308+065a70e3 | oraclelinux-8.4 | ||
Affected | pkg:rpm/oraclelinux/nodejs?distro=oraclelinux-8.4 | oraclelinux | nodejs | < 12.22.5-1.module+el8.4.0+20308+065a70e3 | oraclelinux-8.4 | ||
Affected | pkg:rpm/oraclelinux/nodejs-packaging?distro=oraclelinux-8.1 | oraclelinux | nodejs-packaging | < 17-3.module+el8.1.0+5393+aaf413e3 | oraclelinux-8.1 | ||
Affected | pkg:rpm/oraclelinux/nodejs-nodemon?distro=oraclelinux-8.4 | oraclelinux | nodejs-nodemon | < 2.0.3-1.module+el8.4.0+20281+eb64e322 | oraclelinux-8.4 | ||
Affected | pkg:rpm/oraclelinux/nodejs-full-i18n?distro=oraclelinux-8.4 | oraclelinux | nodejs-full-i18n | < 12.22.5-1.module+el8.4.0+20308+065a70e3 | oraclelinux-8.4 | ||
Affected | pkg:rpm/oraclelinux/nodejs-docs?distro=oraclelinux-8.4 | oraclelinux | nodejs-docs | < 12.22.5-1.module+el8.4.0+20308+065a70e3 | oraclelinux-8.4 | ||
Affected | pkg:rpm/oraclelinux/nodejs-devel?distro=oraclelinux-8.4 | oraclelinux | nodejs-devel | < 12.22.5-1.module+el8.4.0+20308+065a70e3 | oraclelinux-8.4 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |