[SUSE-SU-2022:1717-1] Security update for nodejs10
Severity
Important
Affected Packages
65
CVEs
9
Security update for nodejs10
This update for nodejs10 fixes the following issues:
- CVE-2021-23343: Fixed ReDoS via splitDeviceRe, splitTailRe and splitPathRe (bsc#1192153).
- CVE-2021-32803: Fixed insufficient symlink protection in node-tar allowing arbitrary file creation and overwrite (bsc#1191963).
- CVE-2021-32804: Fixed insufficient absolute path sanitization in node-tar allowing arbitrary file creation and overwrite (bsc#1191962).
- CVE-2021-3918: Fixed improper controlled modification of object prototype attributes in json-schema (bsc#1192696).
- CVE-2021-3807: Fixed regular expression denial of service (ReDoS) matching ANSI escape codes in node-ansi-regex (bsc#1192154).
- CVE-2022-21824: Fixed prototype pollution via console.table (bsc#1194514).
- CVE-2021-44906: Fixed prototype pollution in npm dependency (bsc#1198247).
- CVE-2021-44907: Fixed insuficient sanitation in npm dependency (bsc#1197283).
- CVE-2022-0235: Fixed passing of cookie data and sensitive headers to different hostnames in node-fetch-npm (bsc#1194819).
- ID
- SUSE-SU-2022:1717-1
- Severity
- important
- URL
- https://www.suse.com/support/update/announcement/2022/suse-su-20221717-1/
- Published
-
2022-05-17T15:43:16
(2 years ago) - Modified
-
2022-05-17T15:43:16
(2 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
-
ALPINE:CVE-2022-21824
-
ALSA-2021:3623
-
ALSA-2021:3666
-
ALSA-2021:5171
-
ALSA-2022:0350
-
ALSA-2022:6595
-
ALSA-2022:7830
-
ALSA-2022:9073
-
ALSA-2023:0050
-
ALSA-2023:0321
-
DSA-5170-1
-
ELSA-2021-3623
-
ELSA-2021-3666
-
ELSA-2021-5171
-
ELSA-2022-0350
-
ELSA-2022-6449
-
ELSA-2022-6595
-
ELSA-2022-7830
-
ELSA-2023-0050
-
ELSA-2023-0321
-
FEDORA-2022-0eda327cb4
-
FEDORA-2022-78090d2099
-
FREEBSD:7062BCE0-1B17-11EC-9D9D-0022489AD614
-
FREEBSD:8E150606-08C9-11ED-856E-D4C9EF517024
-
FREEBSD:972BA0E8-8B8A-11EC-B369-6C3BE5272ACD
-
GLSA-202405-29
-
MS:CVE-2022-21824
-
NPM:GHSA-3JFQ-G458-7QM9
-
NPM:GHSA-896R-F27R-55MW
-
NPM:GHSA-93Q8-GQ69-WQMW
-
NPM:GHSA-HJ48-42VR-X3V9
-
NPM:GHSA-R628-MHMH-QJHW
-
NPM:GHSA-R683-J2X4-V87G
-
NPM:GHSA-XVCH-5GV4-984H
-
openSUSE-SU-2022:0112-1
-
openSUSE-SU-2022:0113-1
-
openSUSE-SU-2022:0657-1
-
openSUSE-SU-2022:0704-1
-
openSUSE-SU-2022:0715-1
-
RHEA-2022:5139
-
RHSA-2021:3623
-
RHSA-2021:3666
-
RHSA-2021:5171
-
RHSA-2022:0350
-
RHSA-2022:6449
-
RHSA-2022:6595
-
RHSA-2022:7830
-
RHSA-2022:9073
-
RHSA-2023:0050
-
RHSA-2023:0321
-
RLEA-2022:5139
-
RLSA-2021:3623
-
RLSA-2021:3666
-
RLSA-2021:5171
-
RLSA-2022:0350
-
RLSA-2022:6449
-
RLSA-2022:7830
-
RLSA-2022:9073
-
RLSA-2023:0050
-
RLSA-2023:0321
-
SUSE-SU-2022:0101-1
-
SUSE-SU-2022:0112-1
-
SUSE-SU-2022:0113-1
-
SUSE-SU-2022:0114-1
-
SUSE-SU-2022:0531-1
-
SUSE-SU-2022:0563-1
-
SUSE-SU-2022:0569-1
-
SUSE-SU-2022:0570-1
-
SUSE-SU-2022:0657-1
-
SUSE-SU-2022:0704-1
-
SUSE-SU-2022:0715-1
-
SUSE-SU-2022:1459-1
-
SUSE-SU-2022:1461-1
-
SUSE-SU-2022:1462-1
-
SUSE-SU-2022:1466-1
-
SUSE-SU-2022:1694-1
-
SUSE-SU-2022:2144-1
-
SUSE-SU-2022:2146-1
-
SUSE-SU-2023:2575-1
-
SUSE-SU-2023:2578-1
-
SUSE-SU-2023:2579-1
-
SUSE-SU-2024:0191-1
-
SUSE-SU-2024:0196-1
-
SUSE-SU-2024:0486-1
-
SUSE-SU-2024:0487-1
-
USN-5283-1
-
USN-6103-1
-
USN-6158-1
-
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/suse/npm10?arch=x86_64&distro=sles-15&sp=2 | suse |
 npm10
|
< 10.24.1-150000.1.44.1 | sles-15 | x86_64 | |
| Affected | pkg:rpm/suse/npm10?arch=x86_64&distro=sles-15&sp=1 | suse |
npm10
|
< 10.24.1-150000.1.44.1 | sles-15 | x86_64 | |
| Affected | pkg:rpm/suse/npm10?arch=x86_64&distro=sles-15 | suse |
npm10
|
< 10.24.1-150000.1.44.1 | sles-15 | x86_64 | |
| Affected | pkg:rpm/suse/npm10?arch=x86_64&distro=opensuse-leap-15.4 | suse |
npm10
|
< 10.24.1-150000.1.44.1 | opensuse-leap-15.4 | x86_64 | |
| Affected | pkg:rpm/suse/npm10?arch=x86_64&distro=opensuse-leap-15.3 | suse |
npm10
|
< 10.24.1-150000.1.44.1 | opensuse-leap-15.3 | x86_64 | |
| Affected | pkg:rpm/suse/npm10?arch=s390x&distro=sles-15&sp=2 | suse |
npm10
|
< 10.24.1-150000.1.44.1 | sles-15 | s390x | |
| Affected | pkg:rpm/suse/npm10?arch=s390x&distro=sles-15&sp=1 | suse |
npm10
|
< 10.24.1-150000.1.44.1 | sles-15 | s390x | |
| Affected | pkg:rpm/suse/npm10?arch=s390x&distro=sles-15 | suse |
npm10
|
< 10.24.1-150000.1.44.1 | sles-15 | s390x | |
| Affected | pkg:rpm/suse/npm10?arch=s390x&distro=opensuse-leap-15.4 | suse |
npm10
|
< 10.24.1-150000.1.44.1 | opensuse-leap-15.4 | s390x | |
| Affected | pkg:rpm/suse/npm10?arch=s390x&distro=opensuse-leap-15.3 | suse |
npm10
|
< 10.24.1-150000.1.44.1 | opensuse-leap-15.3 | s390x | |
| Affected | pkg:rpm/suse/npm10?arch=ppc64le&distro=sles-15&sp=2 | suse |
npm10
|
< 10.24.1-150000.1.44.1 | sles-15 | ppc64le | |
| Affected | pkg:rpm/suse/npm10?arch=ppc64le&distro=sles-15&sp=1 | suse |
npm10
|
< 10.24.1-150000.1.44.1 | sles-15 | ppc64le | |
| Affected | pkg:rpm/suse/npm10?arch=ppc64le&distro=sles-15 | suse |
npm10
|
< 10.24.1-150000.1.44.1 | sles-15 | ppc64le | |
| Affected | pkg:rpm/suse/npm10?arch=ppc64le&distro=opensuse-leap-15.4 | suse |
npm10
|
< 10.24.1-150000.1.44.1 | opensuse-leap-15.4 | ppc64le | |
| Affected | pkg:rpm/suse/npm10?arch=ppc64le&distro=opensuse-leap-15.3 | suse |
npm10
|
< 10.24.1-150000.1.44.1 | opensuse-leap-15.3 | ppc64le | |
| Affected | pkg:rpm/suse/npm10?arch=aarch64&distro=sles-15&sp=2 | suse |
npm10
|
< 10.24.1-150000.1.44.1 | sles-15 | aarch64 | |
| Affected | pkg:rpm/suse/npm10?arch=aarch64&distro=sles-15&sp=1 | suse |
npm10
|
< 10.24.1-150000.1.44.1 | sles-15 | aarch64 | |
| Affected | pkg:rpm/suse/npm10?arch=aarch64&distro=sles-15 | suse |
npm10
|
< 10.24.1-150000.1.44.1 | sles-15 | aarch64 | |
| Affected | pkg:rpm/suse/npm10?arch=aarch64&distro=opensuse-leap-15.4 | suse |
npm10
|
< 10.24.1-150000.1.44.1 | opensuse-leap-15.4 | aarch64 | |
| Affected | pkg:rpm/suse/npm10?arch=aarch64&distro=opensuse-leap-15.3 | suse |
npm10
|
< 10.24.1-150000.1.44.1 | opensuse-leap-15.3 | aarch64 | |
| Affected | pkg:rpm/suse/nodejs10?arch=x86_64&distro=sles-15&sp=2 | suse |
nodejs10
|
< 10.24.1-150000.1.44.1 | sles-15 | x86_64 | |
| Affected | pkg:rpm/suse/nodejs10?arch=x86_64&distro=sles-15&sp=1 | suse |
nodejs10
|
< 10.24.1-150000.1.44.1 | sles-15 | x86_64 | |
| Affected | pkg:rpm/suse/nodejs10?arch=x86_64&distro=sles-15 | suse |
nodejs10
|
< 10.24.1-150000.1.44.1 | sles-15 | x86_64 | |
| Affected | pkg:rpm/suse/nodejs10?arch=x86_64&distro=opensuse-leap-15.4 | suse |
nodejs10
|
< 10.24.1-150000.1.44.1 | opensuse-leap-15.4 | x86_64 | |
| Affected | pkg:rpm/suse/nodejs10?arch=x86_64&distro=opensuse-leap-15.3 | suse |
nodejs10
|
< 10.24.1-150000.1.44.1 | opensuse-leap-15.3 | x86_64 | |
| Affected | pkg:rpm/suse/nodejs10?arch=s390x&distro=sles-15&sp=2 | suse |
nodejs10
|
< 10.24.1-150000.1.44.1 | sles-15 | s390x | |
| Affected | pkg:rpm/suse/nodejs10?arch=s390x&distro=sles-15&sp=1 | suse |
nodejs10
|
< 10.24.1-150000.1.44.1 | sles-15 | s390x | |
| Affected | pkg:rpm/suse/nodejs10?arch=s390x&distro=sles-15 | suse |
nodejs10
|
< 10.24.1-150000.1.44.1 | sles-15 | s390x | |
| Affected | pkg:rpm/suse/nodejs10?arch=s390x&distro=opensuse-leap-15.4 | suse |
nodejs10
|
< 10.24.1-150000.1.44.1 | opensuse-leap-15.4 | s390x | |
| Affected | pkg:rpm/suse/nodejs10?arch=s390x&distro=opensuse-leap-15.3 | suse |
nodejs10
|
< 10.24.1-150000.1.44.1 | opensuse-leap-15.3 | s390x | |
| Affected | pkg:rpm/suse/nodejs10?arch=ppc64le&distro=sles-15&sp=2 | suse |
nodejs10
|
< 10.24.1-150000.1.44.1 | sles-15 | ppc64le | |
| Affected | pkg:rpm/suse/nodejs10?arch=ppc64le&distro=sles-15&sp=1 | suse |
nodejs10
|
< 10.24.1-150000.1.44.1 | sles-15 | ppc64le | |
| Affected | pkg:rpm/suse/nodejs10?arch=ppc64le&distro=sles-15 | suse |
nodejs10
|
< 10.24.1-150000.1.44.1 | sles-15 | ppc64le | |
| Affected | pkg:rpm/suse/nodejs10?arch=ppc64le&distro=opensuse-leap-15.4 | suse |
nodejs10
|
< 10.24.1-150000.1.44.1 | opensuse-leap-15.4 | ppc64le | |
| Affected | pkg:rpm/suse/nodejs10?arch=ppc64le&distro=opensuse-leap-15.3 | suse |
nodejs10
|
< 10.24.1-150000.1.44.1 | opensuse-leap-15.3 | ppc64le | |
| Affected | pkg:rpm/suse/nodejs10?arch=aarch64&distro=sles-15&sp=2 | suse |
nodejs10
|
< 10.24.1-150000.1.44.1 | sles-15 | aarch64 | |
| Affected | pkg:rpm/suse/nodejs10?arch=aarch64&distro=sles-15&sp=1 | suse |
nodejs10
|
< 10.24.1-150000.1.44.1 | sles-15 | aarch64 | |
| Affected | pkg:rpm/suse/nodejs10?arch=aarch64&distro=sles-15 | suse |
nodejs10
|
< 10.24.1-150000.1.44.1 | sles-15 | aarch64 | |
| Affected | pkg:rpm/suse/nodejs10?arch=aarch64&distro=opensuse-leap-15.4 | suse |
nodejs10
|
< 10.24.1-150000.1.44.1 | opensuse-leap-15.4 | aarch64 | |
| Affected | pkg:rpm/suse/nodejs10?arch=aarch64&distro=opensuse-leap-15.3 | suse |
nodejs10
|
< 10.24.1-150000.1.44.1 | opensuse-leap-15.3 | aarch64 | |
| Affected | pkg:rpm/suse/nodejs10-docs?arch=noarch&distro=sles-15&sp=2 | suse |
nodejs10-docs
|
< 10.24.1-150000.1.44.1 | sles-15 | noarch | |
| Affected | pkg:rpm/suse/nodejs10-docs?arch=noarch&distro=sles-15&sp=1 | suse |
nodejs10-docs
|
< 10.24.1-150000.1.44.1 | sles-15 | noarch | |
| Affected | pkg:rpm/suse/nodejs10-docs?arch=noarch&distro=sles-15 | suse |
nodejs10-docs
|
< 10.24.1-150000.1.44.1 | sles-15 | noarch | |
| Affected | pkg:rpm/suse/nodejs10-docs?arch=noarch&distro=opensuse-leap-15.4 | suse |
nodejs10-docs
|
< 10.24.1-150000.1.44.1 | opensuse-leap-15.4 | noarch | |
| Affected | pkg:rpm/suse/nodejs10-docs?arch=noarch&distro=opensuse-leap-15.3 | suse |
nodejs10-docs
|
< 10.24.1-150000.1.44.1 | opensuse-leap-15.3 | noarch | |
| Affected | pkg:rpm/suse/nodejs10-devel?arch=x86_64&distro=sles-15&sp=2 | suse |
nodejs10-devel
|
< 10.24.1-150000.1.44.1 | sles-15 | x86_64 | |
| Affected | pkg:rpm/suse/nodejs10-devel?arch=x86_64&distro=sles-15&sp=1 | suse |
nodejs10-devel
|
< 10.24.1-150000.1.44.1 | sles-15 | x86_64 | |
| Affected | pkg:rpm/suse/nodejs10-devel?arch=x86_64&distro=sles-15 | suse |
nodejs10-devel
|
< 10.24.1-150000.1.44.1 | sles-15 | x86_64 | |
| Affected | pkg:rpm/suse/nodejs10-devel?arch=x86_64&distro=opensuse-leap-15.4 | suse |
nodejs10-devel
|
< 10.24.1-150000.1.44.1 | opensuse-leap-15.4 | x86_64 | |
| Affected | pkg:rpm/suse/nodejs10-devel?arch=x86_64&distro=opensuse-leap-15.3 | suse |
nodejs10-devel
|
< 10.24.1-150000.1.44.1 | opensuse-leap-15.3 | x86_64 | |
| Affected | pkg:rpm/suse/nodejs10-devel?arch=s390x&distro=sles-15&sp=2 | suse |
nodejs10-devel
|
< 10.24.1-150000.1.44.1 | sles-15 | s390x | |
| Affected | pkg:rpm/suse/nodejs10-devel?arch=s390x&distro=sles-15&sp=1 | suse |
nodejs10-devel
|
< 10.24.1-150000.1.44.1 | sles-15 | s390x | |
| Affected | pkg:rpm/suse/nodejs10-devel?arch=s390x&distro=sles-15 | suse |
nodejs10-devel
|
< 10.24.1-150000.1.44.1 | sles-15 | s390x | |
| Affected | pkg:rpm/suse/nodejs10-devel?arch=s390x&distro=opensuse-leap-15.4 | suse |
nodejs10-devel
|
< 10.24.1-150000.1.44.1 | opensuse-leap-15.4 | s390x | |
| Affected | pkg:rpm/suse/nodejs10-devel?arch=s390x&distro=opensuse-leap-15.3 | suse |
nodejs10-devel
|
< 10.24.1-150000.1.44.1 | opensuse-leap-15.3 | s390x | |
| Affected | pkg:rpm/suse/nodejs10-devel?arch=ppc64le&distro=sles-15&sp=2 | suse |
nodejs10-devel
|
< 10.24.1-150000.1.44.1 | sles-15 | ppc64le | |
| Affected | pkg:rpm/suse/nodejs10-devel?arch=ppc64le&distro=sles-15&sp=1 | suse |
nodejs10-devel
|
< 10.24.1-150000.1.44.1 | sles-15 | ppc64le | |
| Affected | pkg:rpm/suse/nodejs10-devel?arch=ppc64le&distro=sles-15 | suse |
nodejs10-devel
|
< 10.24.1-150000.1.44.1 | sles-15 | ppc64le | |
| Affected | pkg:rpm/suse/nodejs10-devel?arch=ppc64le&distro=opensuse-leap-15.4 | suse |
nodejs10-devel
|
< 10.24.1-150000.1.44.1 | opensuse-leap-15.4 | ppc64le | |
| Affected | pkg:rpm/suse/nodejs10-devel?arch=ppc64le&distro=opensuse-leap-15.3 | suse |
nodejs10-devel
|
< 10.24.1-150000.1.44.1 | opensuse-leap-15.3 | ppc64le | |
| Affected | pkg:rpm/suse/nodejs10-devel?arch=aarch64&distro=sles-15&sp=2 | suse |
nodejs10-devel
|
< 10.24.1-150000.1.44.1 | sles-15 | aarch64 | |
| Affected | pkg:rpm/suse/nodejs10-devel?arch=aarch64&distro=sles-15&sp=1 | suse |
nodejs10-devel
|
< 10.24.1-150000.1.44.1 | sles-15 | aarch64 | |
| Affected | pkg:rpm/suse/nodejs10-devel?arch=aarch64&distro=sles-15 | suse |
nodejs10-devel
|
< 10.24.1-150000.1.44.1 | sles-15 | aarch64 | |
| Affected | pkg:rpm/suse/nodejs10-devel?arch=aarch64&distro=opensuse-leap-15.4 | suse |
nodejs10-devel
|
< 10.24.1-150000.1.44.1 | opensuse-leap-15.4 | aarch64 | |
| Affected | pkg:rpm/suse/nodejs10-devel?arch=aarch64&distro=opensuse-leap-15.3 | suse |
nodejs10-devel
|
< 10.24.1-150000.1.44.1 | opensuse-leap-15.3 | aarch64 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |