1. Home
  2. Security Advisories
  3. SUSE
  4. SUSE-SU-2020:0455-1

[SUSE-SU-2020:0455-1] Security update for nodejs10

Severity Important
Affected Packages 13
CVEs 3
Info Packages References Vulnerabilities

Security update for nodejs10

This update for nodejs10 fixes the following issues:

nodejs10 was updated to version 10.19.0.

Security issues fixed:

  • CVE-2019-15604: Fixed a remotely triggerable assertion in the TLS server via a crafted certificate string (CVE-2019-15604, bsc#1163104).
  • CVE-2019-15605: Fixed an HTTP request smuggling vulnerability via malformed Transfer-Encoding header (CVE-2019-15605, bsc#1163102).
  • CVE-2019-15606: Fixed the white space sanitation of HTTP headers (CVE-2019-15606, bsc#1163103).
Package Affected Version
pkg:rpm/suse/npm10?arch=x86_64&distro=sles-15 < 10.19.0-1.18.1
pkg:rpm/suse/npm10?arch=s390x&distro=sles-15 < 10.19.0-1.18.1
pkg:rpm/suse/npm10?arch=ppc64le&distro=sles-15 < 10.19.0-1.18.1
pkg:rpm/suse/npm10?arch=aarch64&distro=sles-15 < 10.19.0-1.18.1
pkg:rpm/suse/nodejs10?arch=x86_64&distro=sles-15 < 10.19.0-1.18.1
pkg:rpm/suse/nodejs10?arch=s390x&distro=sles-15 < 10.19.0-1.18.1
pkg:rpm/suse/nodejs10?arch=ppc64le&distro=sles-15 < 10.19.0-1.18.1
pkg:rpm/suse/nodejs10?arch=aarch64&distro=sles-15 < 10.19.0-1.18.1
pkg:rpm/suse/nodejs10-docs?arch=noarch&distro=sles-15 < 10.19.0-1.18.1
pkg:rpm/suse/nodejs10-devel?arch=x86_64&distro=sles-15 < 10.19.0-1.18.1
pkg:rpm/suse/nodejs10-devel?arch=s390x&distro=sles-15 < 10.19.0-1.18.1
pkg:rpm/suse/nodejs10-devel?arch=ppc64le&distro=sles-15 < 10.19.0-1.18.1
pkg:rpm/suse/nodejs10-devel?arch=aarch64&distro=sles-15 < 10.19.0-1.18.1
ID
SUSE-SU-2020:0455-1
Severity
important
URL
https://www.suse.com/support/update/announcement/2020/suse-su-20200455-1/
Published
2020-02-25T09:56:23
(4 years ago)
Modified
2020-02-25T09:56:23
(4 years ago)
Rights
Copyright 2024 SUSE LLC. All rights reserved.
Other Advisories
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:rpm/suse/npm10?arch=x86_64&distro=sles-15 suse npm10 < 10.19.0-1.18.1 sles-15 x86_64
Affected pkg:rpm/suse/npm10?arch=s390x&distro=sles-15 suse npm10 < 10.19.0-1.18.1 sles-15 s390x
Affected pkg:rpm/suse/npm10?arch=ppc64le&distro=sles-15 suse npm10 < 10.19.0-1.18.1 sles-15 ppc64le
Affected pkg:rpm/suse/npm10?arch=aarch64&distro=sles-15 suse npm10 < 10.19.0-1.18.1 sles-15 aarch64
Affected pkg:rpm/suse/nodejs10?arch=x86_64&distro=sles-15 suse nodejs10 < 10.19.0-1.18.1 sles-15 x86_64
Affected pkg:rpm/suse/nodejs10?arch=s390x&distro=sles-15 suse nodejs10 < 10.19.0-1.18.1 sles-15 s390x
Affected pkg:rpm/suse/nodejs10?arch=ppc64le&distro=sles-15 suse nodejs10 < 10.19.0-1.18.1 sles-15 ppc64le
Affected pkg:rpm/suse/nodejs10?arch=aarch64&distro=sles-15 suse nodejs10 < 10.19.0-1.18.1 sles-15 aarch64
Affected pkg:rpm/suse/nodejs10-docs?arch=noarch&distro=sles-15 suse nodejs10-docs < 10.19.0-1.18.1 sles-15 noarch
Affected pkg:rpm/suse/nodejs10-devel?arch=x86_64&distro=sles-15 suse nodejs10-devel < 10.19.0-1.18.1 sles-15 x86_64
Affected pkg:rpm/suse/nodejs10-devel?arch=s390x&distro=sles-15 suse nodejs10-devel < 10.19.0-1.18.1 sles-15 s390x
Affected pkg:rpm/suse/nodejs10-devel?arch=ppc64le&distro=sles-15 suse nodejs10-devel < 10.19.0-1.18.1 sles-15 ppc64le
Affected pkg:rpm/suse/nodejs10-devel?arch=aarch64&distro=sles-15 suse nodejs10-devel < 10.19.0-1.18.1 sles-15 aarch64
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date