[SUSE-SU-2022:1717-1] Security update for nodejs10
Severity
Important
Affected Packages
65
CVEs
9
Security update for nodejs10
This update for nodejs10 fixes the following issues:
- CVE-2021-23343: Fixed ReDoS via splitDeviceRe, splitTailRe and splitPathRe (bsc#1192153).
- CVE-2021-32803: Fixed insufficient symlink protection in node-tar allowing arbitrary file creation and overwrite (bsc#1191963).
- CVE-2021-32804: Fixed insufficient absolute path sanitization in node-tar allowing arbitrary file creation and overwrite (bsc#1191962).
- CVE-2021-3918: Fixed improper controlled modification of object prototype attributes in json-schema (bsc#1192696).
- CVE-2021-3807: Fixed regular expression denial of service (ReDoS) matching ANSI escape codes in node-ansi-regex (bsc#1192154).
- CVE-2022-21824: Fixed prototype pollution via console.table (bsc#1194514).
- CVE-2021-44906: Fixed prototype pollution in npm dependency (bsc#1198247).
- CVE-2021-44907: Fixed insuficient sanitation in npm dependency (bsc#1197283).
- CVE-2022-0235: Fixed passing of cookie data and sensitive headers to different hostnames in node-fetch-npm (bsc#1194819).
- ID
- SUSE-SU-2022:1717-1
- Severity
- important
- URL
- https://www.suse.com/support/update/announcement/2022/suse-su-20221717-1/
- Published
-
2022-05-17T15:43:16
(2 years ago) - Modified
-
2022-05-17T15:43:16
(2 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
- ALPINE:CVE-2022-21824
- ALSA-2021:3623
- ALSA-2021:3666
- ALSA-2021:5171
- ALSA-2022:0350
- ALSA-2022:6595
- ALSA-2022:7830
- ALSA-2022:9073
- ALSA-2023:0050
- ALSA-2023:0321
- DSA-5170-1
- ELSA-2021-3623
- ELSA-2021-3666
- ELSA-2021-5171
- ELSA-2022-0350
- ELSA-2022-6449
- ELSA-2022-6595
- ELSA-2022-7830
- ELSA-2023-0050
- ELSA-2023-0321
- FEDORA-2022-0eda327cb4
- FEDORA-2022-78090d2099
- FREEBSD:7062BCE0-1B17-11EC-9D9D-0022489AD614
- FREEBSD:8E150606-08C9-11ED-856E-D4C9EF517024
- FREEBSD:972BA0E8-8B8A-11EC-B369-6C3BE5272ACD
- GLSA-202405-29
- MS:CVE-2022-21824
- NPM:GHSA-3JFQ-G458-7QM9
- NPM:GHSA-896R-F27R-55MW
- NPM:GHSA-93Q8-GQ69-WQMW
- NPM:GHSA-HJ48-42VR-X3V9
- NPM:GHSA-R628-MHMH-QJHW
- NPM:GHSA-R683-J2X4-V87G
- NPM:GHSA-XVCH-5GV4-984H
- openSUSE-SU-2022:0112-1
- openSUSE-SU-2022:0113-1
- openSUSE-SU-2022:0657-1
- openSUSE-SU-2022:0704-1
- openSUSE-SU-2022:0715-1
- RHEA-2022:5139
- RHSA-2021:3623
- RHSA-2021:3666
- RHSA-2021:5171
- RHSA-2022:0350
- RHSA-2022:6449
- RHSA-2022:6595
- RHSA-2022:7830
- RHSA-2022:9073
- RHSA-2023:0050
- RHSA-2023:0321
- RLEA-2022:5139
- RLSA-2021:3623
- RLSA-2021:3666
- RLSA-2021:5171
- RLSA-2022:0350
- RLSA-2022:6449
- RLSA-2022:7830
- RLSA-2022:9073
- RLSA-2023:0050
- RLSA-2023:0321
- SUSE-SU-2022:0101-1
- SUSE-SU-2022:0112-1
- SUSE-SU-2022:0113-1
- SUSE-SU-2022:0114-1
- SUSE-SU-2022:0531-1
- SUSE-SU-2022:0563-1
- SUSE-SU-2022:0569-1
- SUSE-SU-2022:0570-1
- SUSE-SU-2022:0657-1
- SUSE-SU-2022:0704-1
- SUSE-SU-2022:0715-1
- SUSE-SU-2022:1459-1
- SUSE-SU-2022:1461-1
- SUSE-SU-2022:1462-1
- SUSE-SU-2022:1466-1
- SUSE-SU-2022:1694-1
- SUSE-SU-2022:2144-1
- SUSE-SU-2022:2146-1
- SUSE-SU-2023:2575-1
- SUSE-SU-2023:2578-1
- SUSE-SU-2023:2579-1
- SUSE-SU-2024:0191-1
- SUSE-SU-2024:0196-1
- SUSE-SU-2024:0486-1
- SUSE-SU-2024:0487-1
- USN-5283-1
- USN-6103-1
- USN-6158-1
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/suse/npm10?arch=x86_64&distro=sles-15&sp=2 | suse | npm10 | < 10.24.1-150000.1.44.1 | sles-15 | x86_64 | |
Affected | pkg:rpm/suse/npm10?arch=x86_64&distro=sles-15&sp=1 | suse | npm10 | < 10.24.1-150000.1.44.1 | sles-15 | x86_64 | |
Affected | pkg:rpm/suse/npm10?arch=x86_64&distro=sles-15 | suse | npm10 | < 10.24.1-150000.1.44.1 | sles-15 | x86_64 | |
Affected | pkg:rpm/suse/npm10?arch=x86_64&distro=opensuse-leap-15.4 | suse | npm10 | < 10.24.1-150000.1.44.1 | opensuse-leap-15.4 | x86_64 | |
Affected | pkg:rpm/suse/npm10?arch=x86_64&distro=opensuse-leap-15.3 | suse | npm10 | < 10.24.1-150000.1.44.1 | opensuse-leap-15.3 | x86_64 | |
Affected | pkg:rpm/suse/npm10?arch=s390x&distro=sles-15&sp=2 | suse | npm10 | < 10.24.1-150000.1.44.1 | sles-15 | s390x | |
Affected | pkg:rpm/suse/npm10?arch=s390x&distro=sles-15&sp=1 | suse | npm10 | < 10.24.1-150000.1.44.1 | sles-15 | s390x | |
Affected | pkg:rpm/suse/npm10?arch=s390x&distro=sles-15 | suse | npm10 | < 10.24.1-150000.1.44.1 | sles-15 | s390x | |
Affected | pkg:rpm/suse/npm10?arch=s390x&distro=opensuse-leap-15.4 | suse | npm10 | < 10.24.1-150000.1.44.1 | opensuse-leap-15.4 | s390x | |
Affected | pkg:rpm/suse/npm10?arch=s390x&distro=opensuse-leap-15.3 | suse | npm10 | < 10.24.1-150000.1.44.1 | opensuse-leap-15.3 | s390x | |
Affected | pkg:rpm/suse/npm10?arch=ppc64le&distro=sles-15&sp=2 | suse | npm10 | < 10.24.1-150000.1.44.1 | sles-15 | ppc64le | |
Affected | pkg:rpm/suse/npm10?arch=ppc64le&distro=sles-15&sp=1 | suse | npm10 | < 10.24.1-150000.1.44.1 | sles-15 | ppc64le | |
Affected | pkg:rpm/suse/npm10?arch=ppc64le&distro=sles-15 | suse | npm10 | < 10.24.1-150000.1.44.1 | sles-15 | ppc64le | |
Affected | pkg:rpm/suse/npm10?arch=ppc64le&distro=opensuse-leap-15.4 | suse | npm10 | < 10.24.1-150000.1.44.1 | opensuse-leap-15.4 | ppc64le | |
Affected | pkg:rpm/suse/npm10?arch=ppc64le&distro=opensuse-leap-15.3 | suse | npm10 | < 10.24.1-150000.1.44.1 | opensuse-leap-15.3 | ppc64le | |
Affected | pkg:rpm/suse/npm10?arch=aarch64&distro=sles-15&sp=2 | suse | npm10 | < 10.24.1-150000.1.44.1 | sles-15 | aarch64 | |
Affected | pkg:rpm/suse/npm10?arch=aarch64&distro=sles-15&sp=1 | suse | npm10 | < 10.24.1-150000.1.44.1 | sles-15 | aarch64 | |
Affected | pkg:rpm/suse/npm10?arch=aarch64&distro=sles-15 | suse | npm10 | < 10.24.1-150000.1.44.1 | sles-15 | aarch64 | |
Affected | pkg:rpm/suse/npm10?arch=aarch64&distro=opensuse-leap-15.4 | suse | npm10 | < 10.24.1-150000.1.44.1 | opensuse-leap-15.4 | aarch64 | |
Affected | pkg:rpm/suse/npm10?arch=aarch64&distro=opensuse-leap-15.3 | suse | npm10 | < 10.24.1-150000.1.44.1 | opensuse-leap-15.3 | aarch64 | |
Affected | pkg:rpm/suse/nodejs10?arch=x86_64&distro=sles-15&sp=2 | suse | nodejs10 | < 10.24.1-150000.1.44.1 | sles-15 | x86_64 | |
Affected | pkg:rpm/suse/nodejs10?arch=x86_64&distro=sles-15&sp=1 | suse | nodejs10 | < 10.24.1-150000.1.44.1 | sles-15 | x86_64 | |
Affected | pkg:rpm/suse/nodejs10?arch=x86_64&distro=sles-15 | suse | nodejs10 | < 10.24.1-150000.1.44.1 | sles-15 | x86_64 | |
Affected | pkg:rpm/suse/nodejs10?arch=x86_64&distro=opensuse-leap-15.4 | suse | nodejs10 | < 10.24.1-150000.1.44.1 | opensuse-leap-15.4 | x86_64 | |
Affected | pkg:rpm/suse/nodejs10?arch=x86_64&distro=opensuse-leap-15.3 | suse | nodejs10 | < 10.24.1-150000.1.44.1 | opensuse-leap-15.3 | x86_64 | |
Affected | pkg:rpm/suse/nodejs10?arch=s390x&distro=sles-15&sp=2 | suse | nodejs10 | < 10.24.1-150000.1.44.1 | sles-15 | s390x | |
Affected | pkg:rpm/suse/nodejs10?arch=s390x&distro=sles-15&sp=1 | suse | nodejs10 | < 10.24.1-150000.1.44.1 | sles-15 | s390x | |
Affected | pkg:rpm/suse/nodejs10?arch=s390x&distro=sles-15 | suse | nodejs10 | < 10.24.1-150000.1.44.1 | sles-15 | s390x | |
Affected | pkg:rpm/suse/nodejs10?arch=s390x&distro=opensuse-leap-15.4 | suse | nodejs10 | < 10.24.1-150000.1.44.1 | opensuse-leap-15.4 | s390x | |
Affected | pkg:rpm/suse/nodejs10?arch=s390x&distro=opensuse-leap-15.3 | suse | nodejs10 | < 10.24.1-150000.1.44.1 | opensuse-leap-15.3 | s390x | |
Affected | pkg:rpm/suse/nodejs10?arch=ppc64le&distro=sles-15&sp=2 | suse | nodejs10 | < 10.24.1-150000.1.44.1 | sles-15 | ppc64le | |
Affected | pkg:rpm/suse/nodejs10?arch=ppc64le&distro=sles-15&sp=1 | suse | nodejs10 | < 10.24.1-150000.1.44.1 | sles-15 | ppc64le | |
Affected | pkg:rpm/suse/nodejs10?arch=ppc64le&distro=sles-15 | suse | nodejs10 | < 10.24.1-150000.1.44.1 | sles-15 | ppc64le | |
Affected | pkg:rpm/suse/nodejs10?arch=ppc64le&distro=opensuse-leap-15.4 | suse | nodejs10 | < 10.24.1-150000.1.44.1 | opensuse-leap-15.4 | ppc64le | |
Affected | pkg:rpm/suse/nodejs10?arch=ppc64le&distro=opensuse-leap-15.3 | suse | nodejs10 | < 10.24.1-150000.1.44.1 | opensuse-leap-15.3 | ppc64le | |
Affected | pkg:rpm/suse/nodejs10?arch=aarch64&distro=sles-15&sp=2 | suse | nodejs10 | < 10.24.1-150000.1.44.1 | sles-15 | aarch64 | |
Affected | pkg:rpm/suse/nodejs10?arch=aarch64&distro=sles-15&sp=1 | suse | nodejs10 | < 10.24.1-150000.1.44.1 | sles-15 | aarch64 | |
Affected | pkg:rpm/suse/nodejs10?arch=aarch64&distro=sles-15 | suse | nodejs10 | < 10.24.1-150000.1.44.1 | sles-15 | aarch64 | |
Affected | pkg:rpm/suse/nodejs10?arch=aarch64&distro=opensuse-leap-15.4 | suse | nodejs10 | < 10.24.1-150000.1.44.1 | opensuse-leap-15.4 | aarch64 | |
Affected | pkg:rpm/suse/nodejs10?arch=aarch64&distro=opensuse-leap-15.3 | suse | nodejs10 | < 10.24.1-150000.1.44.1 | opensuse-leap-15.3 | aarch64 | |
Affected | pkg:rpm/suse/nodejs10-docs?arch=noarch&distro=sles-15&sp=2 | suse | nodejs10-docs | < 10.24.1-150000.1.44.1 | sles-15 | noarch | |
Affected | pkg:rpm/suse/nodejs10-docs?arch=noarch&distro=sles-15&sp=1 | suse | nodejs10-docs | < 10.24.1-150000.1.44.1 | sles-15 | noarch | |
Affected | pkg:rpm/suse/nodejs10-docs?arch=noarch&distro=sles-15 | suse | nodejs10-docs | < 10.24.1-150000.1.44.1 | sles-15 | noarch | |
Affected | pkg:rpm/suse/nodejs10-docs?arch=noarch&distro=opensuse-leap-15.4 | suse | nodejs10-docs | < 10.24.1-150000.1.44.1 | opensuse-leap-15.4 | noarch | |
Affected | pkg:rpm/suse/nodejs10-docs?arch=noarch&distro=opensuse-leap-15.3 | suse | nodejs10-docs | < 10.24.1-150000.1.44.1 | opensuse-leap-15.3 | noarch | |
Affected | pkg:rpm/suse/nodejs10-devel?arch=x86_64&distro=sles-15&sp=2 | suse | nodejs10-devel | < 10.24.1-150000.1.44.1 | sles-15 | x86_64 | |
Affected | pkg:rpm/suse/nodejs10-devel?arch=x86_64&distro=sles-15&sp=1 | suse | nodejs10-devel | < 10.24.1-150000.1.44.1 | sles-15 | x86_64 | |
Affected | pkg:rpm/suse/nodejs10-devel?arch=x86_64&distro=sles-15 | suse | nodejs10-devel | < 10.24.1-150000.1.44.1 | sles-15 | x86_64 | |
Affected | pkg:rpm/suse/nodejs10-devel?arch=x86_64&distro=opensuse-leap-15.4 | suse | nodejs10-devel | < 10.24.1-150000.1.44.1 | opensuse-leap-15.4 | x86_64 | |
Affected | pkg:rpm/suse/nodejs10-devel?arch=x86_64&distro=opensuse-leap-15.3 | suse | nodejs10-devel | < 10.24.1-150000.1.44.1 | opensuse-leap-15.3 | x86_64 | |
Affected | pkg:rpm/suse/nodejs10-devel?arch=s390x&distro=sles-15&sp=2 | suse | nodejs10-devel | < 10.24.1-150000.1.44.1 | sles-15 | s390x | |
Affected | pkg:rpm/suse/nodejs10-devel?arch=s390x&distro=sles-15&sp=1 | suse | nodejs10-devel | < 10.24.1-150000.1.44.1 | sles-15 | s390x | |
Affected | pkg:rpm/suse/nodejs10-devel?arch=s390x&distro=sles-15 | suse | nodejs10-devel | < 10.24.1-150000.1.44.1 | sles-15 | s390x | |
Affected | pkg:rpm/suse/nodejs10-devel?arch=s390x&distro=opensuse-leap-15.4 | suse | nodejs10-devel | < 10.24.1-150000.1.44.1 | opensuse-leap-15.4 | s390x | |
Affected | pkg:rpm/suse/nodejs10-devel?arch=s390x&distro=opensuse-leap-15.3 | suse | nodejs10-devel | < 10.24.1-150000.1.44.1 | opensuse-leap-15.3 | s390x | |
Affected | pkg:rpm/suse/nodejs10-devel?arch=ppc64le&distro=sles-15&sp=2 | suse | nodejs10-devel | < 10.24.1-150000.1.44.1 | sles-15 | ppc64le | |
Affected | pkg:rpm/suse/nodejs10-devel?arch=ppc64le&distro=sles-15&sp=1 | suse | nodejs10-devel | < 10.24.1-150000.1.44.1 | sles-15 | ppc64le | |
Affected | pkg:rpm/suse/nodejs10-devel?arch=ppc64le&distro=sles-15 | suse | nodejs10-devel | < 10.24.1-150000.1.44.1 | sles-15 | ppc64le | |
Affected | pkg:rpm/suse/nodejs10-devel?arch=ppc64le&distro=opensuse-leap-15.4 | suse | nodejs10-devel | < 10.24.1-150000.1.44.1 | opensuse-leap-15.4 | ppc64le | |
Affected | pkg:rpm/suse/nodejs10-devel?arch=ppc64le&distro=opensuse-leap-15.3 | suse | nodejs10-devel | < 10.24.1-150000.1.44.1 | opensuse-leap-15.3 | ppc64le | |
Affected | pkg:rpm/suse/nodejs10-devel?arch=aarch64&distro=sles-15&sp=2 | suse | nodejs10-devel | < 10.24.1-150000.1.44.1 | sles-15 | aarch64 | |
Affected | pkg:rpm/suse/nodejs10-devel?arch=aarch64&distro=sles-15&sp=1 | suse | nodejs10-devel | < 10.24.1-150000.1.44.1 | sles-15 | aarch64 | |
Affected | pkg:rpm/suse/nodejs10-devel?arch=aarch64&distro=sles-15 | suse | nodejs10-devel | < 10.24.1-150000.1.44.1 | sles-15 | aarch64 | |
Affected | pkg:rpm/suse/nodejs10-devel?arch=aarch64&distro=opensuse-leap-15.4 | suse | nodejs10-devel | < 10.24.1-150000.1.44.1 | opensuse-leap-15.4 | aarch64 | |
Affected | pkg:rpm/suse/nodejs10-devel?arch=aarch64&distro=opensuse-leap-15.3 | suse | nodejs10-devel | < 10.24.1-150000.1.44.1 | opensuse-leap-15.3 | aarch64 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |