[SUSE-SU-2022:0570-1] Security update for nodejs10
Severity
Important
CVEs
6
Security update for nodejs10
This update for nodejs10 fixes the following issues:
- CVE-2021-23343: Fixed ReDoS via splitDeviceRe, splitTailRe and splitPathRe (bsc#1192153).
- CVE-2021-32803: Fixed insufficient symlink protection in node-tar allowing arbitrary file creation and overwrite (bsc#1191963).
- CVE-2021-32804: Fixed insufficient absolute path sanitization in node-tar allowing arbitrary file creation and overwrite (bsc#1191962).
- CVE-2021-3918: Fixed improper controlled modification of object prototype attributes in json-schema (bsc#1192696).
- CVE-2021-3807: Fixed regular expression denial of service (ReDoS) matching ANSI escape codes in node-ansi-regex (bsc#1192154).
- CVE-2022-21824: Fixed prototype pollution via console.table (bsc#1194514).
- ID
- SUSE-SU-2022:0570-1
- Severity
- important
- URL
- https://www.suse.com/support/update/announcement/2022/suse-su-20220570-1/
- Published
-
2022-02-24T09:35:40
(2 years ago) - Modified
-
2022-02-24T09:35:40
(2 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
-
ALPINE:CVE-2022-21824
-
ALSA-2021:3623
-
ALSA-2021:3666
-
ALSA-2021:5171
-
ALSA-2022:0350
-
ALSA-2022:6595
-
ALSA-2022:7830
-
ALSA-2022:9073
-
DSA-5170-1
-
ELSA-2021-3623
-
ELSA-2021-3666
-
ELSA-2021-5171
-
ELSA-2022-0350
-
ELSA-2022-6449
-
ELSA-2022-6595
-
ELSA-2022-7830
-
FEDORA-2022-0eda327cb4
-
FEDORA-2022-78090d2099
-
FREEBSD:7062BCE0-1B17-11EC-9D9D-0022489AD614
-
FREEBSD:8E150606-08C9-11ED-856E-D4C9EF517024
-
FREEBSD:972BA0E8-8B8A-11EC-B369-6C3BE5272ACD
-
GLSA-202405-29
-
MS:CVE-2022-21824
-
NPM:GHSA-3JFQ-G458-7QM9
-
NPM:GHSA-896R-F27R-55MW
-
NPM:GHSA-93Q8-GQ69-WQMW
-
NPM:GHSA-HJ48-42VR-X3V9
-
NPM:GHSA-R628-MHMH-QJHW
-
openSUSE-SU-2022:0112-1
-
openSUSE-SU-2022:0113-1
-
openSUSE-SU-2022:0657-1
-
openSUSE-SU-2022:0704-1
-
openSUSE-SU-2022:0715-1
-
RHEA-2022:5139
-
RHSA-2021:3623
-
RHSA-2021:3666
-
RHSA-2021:5171
-
RHSA-2022:0350
-
RHSA-2022:6449
-
RHSA-2022:6595
-
RHSA-2022:7830
-
RHSA-2022:9073
-
RLEA-2022:5139
-
RLSA-2021:3623
-
RLSA-2021:3666
-
RLSA-2021:5171
-
RLSA-2022:0350
-
RLSA-2022:6449
-
RLSA-2022:7830
-
RLSA-2022:9073
-
SUSE-SU-2022:0101-1
-
SUSE-SU-2022:0112-1
-
SUSE-SU-2022:0113-1
-
SUSE-SU-2022:0114-1
-
SUSE-SU-2022:0531-1
-
SUSE-SU-2022:0563-1
-
SUSE-SU-2022:0569-1
-
SUSE-SU-2022:0657-1
-
SUSE-SU-2022:0704-1
-
SUSE-SU-2022:0715-1
-
SUSE-SU-2022:1717-1
-
SUSE-SU-2023:2575-1
-
SUSE-SU-2023:2578-1
-
SUSE-SU-2023:2579-1
-
SUSE-SU-2024:0191-1
-
SUSE-SU-2024:0196-1
-
SUSE-SU-2024:0486-1
-
SUSE-SU-2024:0487-1
-
USN-5283-1
-
USN-6103-1
-
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |