Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
SUSE:SLE-15-SP1:Update
patchinfo.20874
_patchinfo
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File _patchinfo of Package patchinfo.20874
<patchinfo incident="20874"> <issue tracker="cve" id="2021-22939"/> <issue tracker="cve" id="2021-22931"/> <issue tracker="cve" id="2021-22930"/> <issue tracker="cve" id="2021-3672"/> <issue tracker="bnc" id="1189369">VUL-0: CVE-2021-22939: nodejs10,nodejs12,nodejs14,nodejs: Incomplete validation of rejectUnauthorized parameter</issue> <issue tracker="bnc" id="1188881">VUL-0: CVE-2021-3672: c-ares,libcares2: Missing input validation on hostnames</issue> <issue tracker="bnc" id="1189370">VUL-0: CVE-2021-22931: nodejs10,nodejs12,nodejs14,nodejs: cares upgrade - Improper handling of untypical characters in domain names</issue> <issue tracker="bnc" id="1188917">VUL-0: CVE-2021-22930: nodejs10,nodejs12,nodejs14,nodejs: Use after free on close http2 on stream canceling</issue> <packager>adamm</packager> <rating>moderate</rating> <category>security</category> <summary>Security update for nodejs10</summary> <description>This update for nodejs10 fixes the following issues: - CVE-2021-3672: Fixed missing input validation on hostnames (bsc#1188881). - CVE-2021-22930: Fixed use after free on close http2 on stream canceling (bsc#1188917). - CVE-2021-22939: Fixed incomplete validation of rejectUnauthorized parameter (bsc#1189369). - CVE-2021-22931: Fixed improper handling of untypical characters in domain names (bsc#1189370). </description> </patchinfo>
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor