Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2021-27290 (GCVE-0-2021-27290)
Vulnerability from cvelistv5 – Published: 2021-03-12 21:47 – Updated: 2024-08-03 20:48
VLAI
EPSS
Summary
ssri 5.2.2-8.0.0, fixed in 8.0.1, processes SRIs using a regular expression which is vulnerable to a denial of service. Malicious SRIs could take an extremely long time to process, leading to denial of service. This issue only affects consumers using the strict option.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
5 references
| URL | Tags |
|---|---|
| https://npmjs.com | x_refsource_MISC |
| https://www.oracle.com/security-alerts/cpuoct2021.html | x_refsource_MISC |
| https://doyensec.com/resources/Doyensec_Advisory_… | x_refsource_MISC |
| https://github.com/yetingli/SaveResults/blob/main… | x_refsource_MISC |
| https://cert-portal.siemens.com/productcert/pdf/s… | x_refsource_CONFIRM |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T20:48:16.758Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://npmjs.com"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.oracle.com/security-alerts/cpuoct2021.html"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://doyensec.com/resources/Doyensec_Advisory_ssri_redos.pdf"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/yetingli/SaveResults/blob/main/pdf/ssri-redos.pdf"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "ssri 5.2.2-8.0.0, fixed in 8.0.1, processes SRIs using a regular expression which is vulnerable to a denial of service. Malicious SRIs could take an extremely long time to process, leading to denial of service. This issue only affects consumers using the strict option."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-03-08T14:07:50.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://npmjs.com"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.oracle.com/security-alerts/cpuoct2021.html"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://doyensec.com/resources/Doyensec_Advisory_ssri_redos.pdf"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/yetingli/SaveResults/blob/main/pdf/ssri-redos.pdf"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2021-27290",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "ssri 5.2.2-8.0.0, fixed in 8.0.1, processes SRIs using a regular expression which is vulnerable to a denial of service. Malicious SRIs could take an extremely long time to process, leading to denial of service. This issue only affects consumers using the strict option."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://npmjs.com",
"refsource": "MISC",
"url": "https://npmjs.com"
},
{
"name": "https://www.oracle.com/security-alerts/cpuoct2021.html",
"refsource": "MISC",
"url": "https://www.oracle.com/security-alerts/cpuoct2021.html"
},
{
"name": "https://doyensec.com/resources/Doyensec_Advisory_ssri_redos.pdf",
"refsource": "MISC",
"url": "https://doyensec.com/resources/Doyensec_Advisory_ssri_redos.pdf"
},
{
"name": "https://github.com/yetingli/SaveResults/blob/main/pdf/ssri-redos.pdf",
"refsource": "MISC",
"url": "https://github.com/yetingli/SaveResults/blob/main/pdf/ssri-redos.pdf"
},
{
"name": "https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf",
"refsource": "CONFIRM",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2021-27290",
"datePublished": "2021-03-12T21:47:41.000Z",
"dateReserved": "2021-02-16T00:00:00.000Z",
"dateUpdated": "2024-08-03T20:48:16.758Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2021-27290",
"date": "2026-05-29",
"epss": "0.02458",
"percentile": "0.85485"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2021-27290\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2021-03-12T22:15:14.843\",\"lastModified\":\"2024-11-21T05:57:45.503\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"ssri 5.2.2-8.0.0, fixed in 8.0.1, processes SRIs using a regular expression which is vulnerable to a denial of service. Malicious SRIs could take an extremely long time to process, leading to denial of service. This issue only affects consumers using the strict option.\"},{\"lang\":\"es\",\"value\":\"ssri versi\u00f3n 5.2.2-8.0.0, corregido en versi\u00f3n 8.0.1, procesa los SRI usando una expresi\u00f3n regular que es vulnerable a una denegaci\u00f3n de servicio.\u0026#xa0;Los SRI maliciosos pueden tardar mucho en procesarse, conllevando a una denegaci\u00f3n del servicio.\u0026#xa0;Este problema solo afecta a consumidores que usan la opci\u00f3n estricta\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:N/I:N/A:P\",\"baseScore\":4.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssri_project:ssri:*:*:*:*:*:node.js:*:*\",\"versionStartIncluding\":\"5.2.2\",\"versionEndExcluding\":\"6.0.2\",\"matchCriteriaId\":\"97535BF1-C00D-4D6C-A201-26593DA55635\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ssri_project:ssri:*:*:*:*:*:node.js:*:*\",\"versionStartIncluding\":\"7.0.0\",\"versionEndExcluding\":\"8.0.1\",\"matchCriteriaId\":\"4AC74498-E825-4FA7-A724-192949C07FA8\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:graalvm:20.3.3:*:*:*:enterprise:*:*:*\",\"matchCriteriaId\":\"53B2BB06-A2F7-4603-89C3-C8500E55483A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:graalvm:21.2.0:*:*:*:enterprise:*:*:*\",\"matchCriteriaId\":\"01E88C86-8C04-4A4A-BF45-9082AA783056\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:siemens:sinec_infrastructure_network_services:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.0.1.1\",\"matchCriteriaId\":\"B0F46497-4AB0-49A7-9453-CC26837BF253\"}]}]}],\"references\":[{\"url\":\"https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://doyensec.com/resources/Doyensec_Advisory_ssri_redos.pdf\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/yetingli/SaveResults/blob/main/pdf/ssri-redos.pdf\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Third Party Advisory\"]},{\"url\":\"https://npmjs.com\",\"source\":\"cve@mitre.org\",\"tags\":[\"Product\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpuoct2021.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://doyensec.com/resources/Doyensec_Advisory_ssri_redos.pdf\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/yetingli/SaveResults/blob/main/pdf/ssri-redos.pdf\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Third Party Advisory\"]},{\"url\":\"https://npmjs.com\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Product\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpuoct2021.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]}]}}"
}
}
SUSE-SU-2021:2319-1
Vulnerability from csaf_suse - Published: 2021-07-14 14:51 - Updated: 2021-07-14 14:51Summary
Security update for nodejs14
Severity
Important
Notes
Title of the patch: Security update for nodejs14
Description of the patch: This update for nodejs14 fixes the following issues:
Update nodejs14 to 14.17.2.
Including fixes for:
- CVE-2021-22918: libuv upgrade - Out of bounds read (bsc#1187973)
- CVE-2021-27290: ssri Regular Expression Denial of Service (bsc#1187976)
- CVE-2021-23362: hosted-git-info Regular Expression Denial of Service (bsc#1187977)
- CVE-2020-7774: y18n Prototype Pollution (bsc#1184450)
Patchnames: SUSE-2021-2319,SUSE-SLE-Module-Web-Scripting-12-2021-2319
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.3 (High)
Affected products
Recommended
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-docs-14.17.2-6.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.3 (Medium)
Affected products
Recommended
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-docs-14.17.2-6.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-docs-14.17.2-6.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-docs-14.17.2-6.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
20 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for nodejs14",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for nodejs14 fixes the following issues:\n\nUpdate nodejs14 to 14.17.2.\n\nIncluding fixes for:\n\n- CVE-2021-22918: libuv upgrade - Out of bounds read (bsc#1187973)\n- CVE-2021-27290: ssri Regular Expression Denial of Service (bsc#1187976)\n- CVE-2021-23362: hosted-git-info Regular Expression Denial of Service (bsc#1187977)\n- CVE-2020-7774: y18n Prototype Pollution (bsc#1184450)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2021-2319,SUSE-SLE-Module-Web-Scripting-12-2021-2319",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_2319-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2021:2319-1",
"url": "https://www.suse.com/support/update/announcement/2021/suse-su-20212319-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2021:2319-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-July/009138.html"
},
{
"category": "self",
"summary": "SUSE Bug 1184450",
"url": "https://bugzilla.suse.com/1184450"
},
{
"category": "self",
"summary": "SUSE Bug 1187973",
"url": "https://bugzilla.suse.com/1187973"
},
{
"category": "self",
"summary": "SUSE Bug 1187976",
"url": "https://bugzilla.suse.com/1187976"
},
{
"category": "self",
"summary": "SUSE Bug 1187977",
"url": "https://bugzilla.suse.com/1187977"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-7774 page",
"url": "https://www.suse.com/security/cve/CVE-2020-7774/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-22918 page",
"url": "https://www.suse.com/security/cve/CVE-2021-22918/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-23362 page",
"url": "https://www.suse.com/security/cve/CVE-2021-23362/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-27290 page",
"url": "https://www.suse.com/security/cve/CVE-2021-27290/"
}
],
"title": "Security update for nodejs14",
"tracking": {
"current_release_date": "2021-07-14T14:51:28Z",
"generator": {
"date": "2021-07-14T14:51:28Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2021:2319-1",
"initial_release_date": "2021-07-14T14:51:28Z",
"revision_history": [
{
"date": "2021-07-14T14:51:28Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "nodejs14-14.17.2-6.12.1.aarch64",
"product": {
"name": "nodejs14-14.17.2-6.12.1.aarch64",
"product_id": "nodejs14-14.17.2-6.12.1.aarch64"
}
},
{
"category": "product_version",
"name": "nodejs14-devel-14.17.2-6.12.1.aarch64",
"product": {
"name": "nodejs14-devel-14.17.2-6.12.1.aarch64",
"product_id": "nodejs14-devel-14.17.2-6.12.1.aarch64"
}
},
{
"category": "product_version",
"name": "npm14-14.17.2-6.12.1.aarch64",
"product": {
"name": "npm14-14.17.2-6.12.1.aarch64",
"product_id": "npm14-14.17.2-6.12.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs14-14.17.2-6.12.1.i586",
"product": {
"name": "nodejs14-14.17.2-6.12.1.i586",
"product_id": "nodejs14-14.17.2-6.12.1.i586"
}
},
{
"category": "product_version",
"name": "nodejs14-devel-14.17.2-6.12.1.i586",
"product": {
"name": "nodejs14-devel-14.17.2-6.12.1.i586",
"product_id": "nodejs14-devel-14.17.2-6.12.1.i586"
}
},
{
"category": "product_version",
"name": "npm14-14.17.2-6.12.1.i586",
"product": {
"name": "npm14-14.17.2-6.12.1.i586",
"product_id": "npm14-14.17.2-6.12.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs14-docs-14.17.2-6.12.1.noarch",
"product": {
"name": "nodejs14-docs-14.17.2-6.12.1.noarch",
"product_id": "nodejs14-docs-14.17.2-6.12.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs14-14.17.2-6.12.1.ppc64le",
"product": {
"name": "nodejs14-14.17.2-6.12.1.ppc64le",
"product_id": "nodejs14-14.17.2-6.12.1.ppc64le"
}
},
{
"category": "product_version",
"name": "nodejs14-devel-14.17.2-6.12.1.ppc64le",
"product": {
"name": "nodejs14-devel-14.17.2-6.12.1.ppc64le",
"product_id": "nodejs14-devel-14.17.2-6.12.1.ppc64le"
}
},
{
"category": "product_version",
"name": "npm14-14.17.2-6.12.1.ppc64le",
"product": {
"name": "npm14-14.17.2-6.12.1.ppc64le",
"product_id": "npm14-14.17.2-6.12.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs14-14.17.2-6.12.1.s390x",
"product": {
"name": "nodejs14-14.17.2-6.12.1.s390x",
"product_id": "nodejs14-14.17.2-6.12.1.s390x"
}
},
{
"category": "product_version",
"name": "nodejs14-devel-14.17.2-6.12.1.s390x",
"product": {
"name": "nodejs14-devel-14.17.2-6.12.1.s390x",
"product_id": "nodejs14-devel-14.17.2-6.12.1.s390x"
}
},
{
"category": "product_version",
"name": "npm14-14.17.2-6.12.1.s390x",
"product": {
"name": "npm14-14.17.2-6.12.1.s390x",
"product_id": "npm14-14.17.2-6.12.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs14-14.17.2-6.12.1.x86_64",
"product": {
"name": "nodejs14-14.17.2-6.12.1.x86_64",
"product_id": "nodejs14-14.17.2-6.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "nodejs14-devel-14.17.2-6.12.1.x86_64",
"product": {
"name": "nodejs14-devel-14.17.2-6.12.1.x86_64",
"product_id": "nodejs14-devel-14.17.2-6.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "npm14-14.17.2-6.12.1.x86_64",
"product": {
"name": "npm14-14.17.2-6.12.1.x86_64",
"product_id": "npm14-14.17.2-6.12.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Web and Scripting 12",
"product": {
"name": "SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-web-scripting:12"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs14-14.17.2-6.12.1.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.aarch64"
},
"product_reference": "nodejs14-14.17.2-6.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs14-14.17.2-6.12.1.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.ppc64le"
},
"product_reference": "nodejs14-14.17.2-6.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs14-14.17.2-6.12.1.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.s390x"
},
"product_reference": "nodejs14-14.17.2-6.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs14-14.17.2-6.12.1.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.x86_64"
},
"product_reference": "nodejs14-14.17.2-6.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs14-devel-14.17.2-6.12.1.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.aarch64"
},
"product_reference": "nodejs14-devel-14.17.2-6.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs14-devel-14.17.2-6.12.1.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.ppc64le"
},
"product_reference": "nodejs14-devel-14.17.2-6.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs14-devel-14.17.2-6.12.1.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.s390x"
},
"product_reference": "nodejs14-devel-14.17.2-6.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs14-devel-14.17.2-6.12.1.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.x86_64"
},
"product_reference": "nodejs14-devel-14.17.2-6.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs14-docs-14.17.2-6.12.1.noarch as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-docs-14.17.2-6.12.1.noarch"
},
"product_reference": "nodejs14-docs-14.17.2-6.12.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm14-14.17.2-6.12.1.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.aarch64"
},
"product_reference": "npm14-14.17.2-6.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm14-14.17.2-6.12.1.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.ppc64le"
},
"product_reference": "npm14-14.17.2-6.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm14-14.17.2-6.12.1.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.s390x"
},
"product_reference": "npm14-14.17.2-6.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm14-14.17.2-6.12.1.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.x86_64"
},
"product_reference": "npm14-14.17.2-6.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-7774",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-7774"
}
],
"notes": [
{
"category": "general",
"text": "The package y18n before 3.2.2, 4.0.1 and 5.0.5, is vulnerable to Prototype Pollution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-docs-14.17.2-6.12.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-7774",
"url": "https://www.suse.com/security/cve/CVE-2020-7774"
},
{
"category": "external",
"summary": "SUSE Bug 1184450 for CVE-2020-7774",
"url": "https://bugzilla.suse.com/1184450"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-docs-14.17.2-6.12.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-docs-14.17.2-6.12.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-14T14:51:28Z",
"details": "important"
}
],
"title": "CVE-2020-7774"
},
{
"cve": "CVE-2021-22918",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-22918"
}
],
"notes": [
{
"category": "general",
"text": "Node.js before 16.4.1, 14.17.2, 12.22.2 is vulnerable to an out-of-bounds read when uv__idna_toascii() is used to convert strings to ASCII. The pointer p is read and increased without checking whether it is beyond pe, with the latter holding a pointer to the end of the buffer. This can lead to information disclosures or crashes. This function can be triggered via uv_getaddrinfo().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-docs-14.17.2-6.12.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-22918",
"url": "https://www.suse.com/security/cve/CVE-2021-22918"
},
{
"category": "external",
"summary": "SUSE Bug 1187973 for CVE-2021-22918",
"url": "https://bugzilla.suse.com/1187973"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-docs-14.17.2-6.12.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-docs-14.17.2-6.12.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-14T14:51:28Z",
"details": "moderate"
}
],
"title": "CVE-2021-22918"
},
{
"cve": "CVE-2021-23362",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-23362"
}
],
"notes": [
{
"category": "general",
"text": "The package hosted-git-info before 3.0.8 are vulnerable to Regular Expression Denial of Service (ReDoS) via regular expression shortcutMatch in the fromUrl function in index.js. The affected regular expression exhibits polynomial worst-case time complexity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-docs-14.17.2-6.12.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-23362",
"url": "https://www.suse.com/security/cve/CVE-2021-23362"
},
{
"category": "external",
"summary": "SUSE Bug 1187977 for CVE-2021-23362",
"url": "https://bugzilla.suse.com/1187977"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-docs-14.17.2-6.12.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-docs-14.17.2-6.12.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-14T14:51:28Z",
"details": "moderate"
}
],
"title": "CVE-2021-23362"
},
{
"cve": "CVE-2021-27290",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-27290"
}
],
"notes": [
{
"category": "general",
"text": "ssri 5.2.2-8.0.0, fixed in 8.0.1, processes SRIs using a regular expression which is vulnerable to a denial of service. Malicious SRIs could take an extremely long time to process, leading to denial of service. This issue only affects consumers using the strict option.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-docs-14.17.2-6.12.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-27290",
"url": "https://www.suse.com/security/cve/CVE-2021-27290"
},
{
"category": "external",
"summary": "SUSE Bug 1187976 for CVE-2021-27290",
"url": "https://bugzilla.suse.com/1187976"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-docs-14.17.2-6.12.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.17.2-6.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.17.2-6.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-docs-14.17.2-6.12.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.17.2-6.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-14T14:51:28Z",
"details": "important"
}
],
"title": "CVE-2021-27290"
}
]
}
SUSE-SU-2021:2323-1
Vulnerability from csaf_suse - Published: 2021-07-14 15:04 - Updated: 2021-07-14 15:04Summary
Security update for nodejs10
Severity
Important
Notes
Title of the patch: Security update for nodejs10
Description of the patch: This update for nodejs10 fixes the following issues:
Update nodejs10 to 10.24.1.
Including fixes for
- CVE-2021-22918: libuv upgrade - Out of bounds read (bsc#1187973)
- CVE-2021-27290: ssri Regular Expression Denial of Service (bsc#1187976)
- CVE-2021-23362: hosted-git-info Regular Expression Denial of Service (bsc#1187977)
- CVE-2020-7774: y18n Prototype Pollution (bsc#1184450)
- CVE-2021-3450: OpenSSL - CA certificate check bypass with X509_V_FLAG_X509_STRICT (bsc#1183851)
- CVE-2021-3449: OpenSSL - NULL pointer deref in signature_algorithms processing (bsc#1183852)
Patchnames: SUSE-2021-2323,SUSE-SLE-Module-Web-Scripting-12-2021-2323
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.3 (High)
Affected products
Recommended
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-docs-10.24.1-1.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.3 (Medium)
Affected products
Recommended
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-docs-10.24.1-1.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-docs-10.24.1-1.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-docs-10.24.1-1.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-docs-10.24.1-1.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.4 (High)
Affected products
Recommended
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-docs-10.24.1-1.39.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
31 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for nodejs10",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for nodejs10 fixes the following issues:\n\nUpdate nodejs10 to 10.24.1.\n\nIncluding fixes for \n\n- CVE-2021-22918: libuv upgrade - Out of bounds read (bsc#1187973)\n- CVE-2021-27290: ssri Regular Expression Denial of Service (bsc#1187976)\n- CVE-2021-23362: hosted-git-info Regular Expression Denial of Service (bsc#1187977)\n- CVE-2020-7774: y18n Prototype Pollution (bsc#1184450)\n- CVE-2021-3450: OpenSSL - CA certificate check bypass with X509_V_FLAG_X509_STRICT (bsc#1183851)\n- CVE-2021-3449: OpenSSL - NULL pointer deref in signature_algorithms processing (bsc#1183852)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2021-2323,SUSE-SLE-Module-Web-Scripting-12-2021-2323",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_2323-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2021:2323-1",
"url": "https://www.suse.com/support/update/announcement/2021/suse-su-20212323-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2021:2323-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-July/009135.html"
},
{
"category": "self",
"summary": "SUSE Bug 1183155",
"url": "https://bugzilla.suse.com/1183155"
},
{
"category": "self",
"summary": "SUSE Bug 1183851",
"url": "https://bugzilla.suse.com/1183851"
},
{
"category": "self",
"summary": "SUSE Bug 1183852",
"url": "https://bugzilla.suse.com/1183852"
},
{
"category": "self",
"summary": "SUSE Bug 1184450",
"url": "https://bugzilla.suse.com/1184450"
},
{
"category": "self",
"summary": "SUSE Bug 1187973",
"url": "https://bugzilla.suse.com/1187973"
},
{
"category": "self",
"summary": "SUSE Bug 1187976",
"url": "https://bugzilla.suse.com/1187976"
},
{
"category": "self",
"summary": "SUSE Bug 1187977",
"url": "https://bugzilla.suse.com/1187977"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-7774 page",
"url": "https://www.suse.com/security/cve/CVE-2020-7774/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-22918 page",
"url": "https://www.suse.com/security/cve/CVE-2021-22918/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-23362 page",
"url": "https://www.suse.com/security/cve/CVE-2021-23362/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-27290 page",
"url": "https://www.suse.com/security/cve/CVE-2021-27290/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3449 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3449/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3450 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3450/"
}
],
"title": "Security update for nodejs10",
"tracking": {
"current_release_date": "2021-07-14T15:04:31Z",
"generator": {
"date": "2021-07-14T15:04:31Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2021:2323-1",
"initial_release_date": "2021-07-14T15:04:31Z",
"revision_history": [
{
"date": "2021-07-14T15:04:31Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "nodejs10-10.24.1-1.39.1.aarch64",
"product": {
"name": "nodejs10-10.24.1-1.39.1.aarch64",
"product_id": "nodejs10-10.24.1-1.39.1.aarch64"
}
},
{
"category": "product_version",
"name": "nodejs10-devel-10.24.1-1.39.1.aarch64",
"product": {
"name": "nodejs10-devel-10.24.1-1.39.1.aarch64",
"product_id": "nodejs10-devel-10.24.1-1.39.1.aarch64"
}
},
{
"category": "product_version",
"name": "npm10-10.24.1-1.39.1.aarch64",
"product": {
"name": "npm10-10.24.1-1.39.1.aarch64",
"product_id": "npm10-10.24.1-1.39.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs10-10.24.1-1.39.1.i586",
"product": {
"name": "nodejs10-10.24.1-1.39.1.i586",
"product_id": "nodejs10-10.24.1-1.39.1.i586"
}
},
{
"category": "product_version",
"name": "nodejs10-devel-10.24.1-1.39.1.i586",
"product": {
"name": "nodejs10-devel-10.24.1-1.39.1.i586",
"product_id": "nodejs10-devel-10.24.1-1.39.1.i586"
}
},
{
"category": "product_version",
"name": "npm10-10.24.1-1.39.1.i586",
"product": {
"name": "npm10-10.24.1-1.39.1.i586",
"product_id": "npm10-10.24.1-1.39.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs10-docs-10.24.1-1.39.1.noarch",
"product": {
"name": "nodejs10-docs-10.24.1-1.39.1.noarch",
"product_id": "nodejs10-docs-10.24.1-1.39.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs10-10.24.1-1.39.1.ppc64le",
"product": {
"name": "nodejs10-10.24.1-1.39.1.ppc64le",
"product_id": "nodejs10-10.24.1-1.39.1.ppc64le"
}
},
{
"category": "product_version",
"name": "nodejs10-devel-10.24.1-1.39.1.ppc64le",
"product": {
"name": "nodejs10-devel-10.24.1-1.39.1.ppc64le",
"product_id": "nodejs10-devel-10.24.1-1.39.1.ppc64le"
}
},
{
"category": "product_version",
"name": "npm10-10.24.1-1.39.1.ppc64le",
"product": {
"name": "npm10-10.24.1-1.39.1.ppc64le",
"product_id": "npm10-10.24.1-1.39.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs10-10.24.1-1.39.1.s390",
"product": {
"name": "nodejs10-10.24.1-1.39.1.s390",
"product_id": "nodejs10-10.24.1-1.39.1.s390"
}
},
{
"category": "product_version",
"name": "nodejs10-devel-10.24.1-1.39.1.s390",
"product": {
"name": "nodejs10-devel-10.24.1-1.39.1.s390",
"product_id": "nodejs10-devel-10.24.1-1.39.1.s390"
}
},
{
"category": "product_version",
"name": "npm10-10.24.1-1.39.1.s390",
"product": {
"name": "npm10-10.24.1-1.39.1.s390",
"product_id": "npm10-10.24.1-1.39.1.s390"
}
}
],
"category": "architecture",
"name": "s390"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs10-10.24.1-1.39.1.s390x",
"product": {
"name": "nodejs10-10.24.1-1.39.1.s390x",
"product_id": "nodejs10-10.24.1-1.39.1.s390x"
}
},
{
"category": "product_version",
"name": "nodejs10-devel-10.24.1-1.39.1.s390x",
"product": {
"name": "nodejs10-devel-10.24.1-1.39.1.s390x",
"product_id": "nodejs10-devel-10.24.1-1.39.1.s390x"
}
},
{
"category": "product_version",
"name": "npm10-10.24.1-1.39.1.s390x",
"product": {
"name": "npm10-10.24.1-1.39.1.s390x",
"product_id": "npm10-10.24.1-1.39.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs10-10.24.1-1.39.1.x86_64",
"product": {
"name": "nodejs10-10.24.1-1.39.1.x86_64",
"product_id": "nodejs10-10.24.1-1.39.1.x86_64"
}
},
{
"category": "product_version",
"name": "nodejs10-devel-10.24.1-1.39.1.x86_64",
"product": {
"name": "nodejs10-devel-10.24.1-1.39.1.x86_64",
"product_id": "nodejs10-devel-10.24.1-1.39.1.x86_64"
}
},
{
"category": "product_version",
"name": "npm10-10.24.1-1.39.1.x86_64",
"product": {
"name": "npm10-10.24.1-1.39.1.x86_64",
"product_id": "npm10-10.24.1-1.39.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Web and Scripting 12",
"product": {
"name": "SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-web-scripting:12"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-10.24.1-1.39.1.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.aarch64"
},
"product_reference": "nodejs10-10.24.1-1.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-10.24.1-1.39.1.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.ppc64le"
},
"product_reference": "nodejs10-10.24.1-1.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-10.24.1-1.39.1.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.s390x"
},
"product_reference": "nodejs10-10.24.1-1.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-10.24.1-1.39.1.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.x86_64"
},
"product_reference": "nodejs10-10.24.1-1.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-devel-10.24.1-1.39.1.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.aarch64"
},
"product_reference": "nodejs10-devel-10.24.1-1.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-devel-10.24.1-1.39.1.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.ppc64le"
},
"product_reference": "nodejs10-devel-10.24.1-1.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-devel-10.24.1-1.39.1.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.s390x"
},
"product_reference": "nodejs10-devel-10.24.1-1.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-devel-10.24.1-1.39.1.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.x86_64"
},
"product_reference": "nodejs10-devel-10.24.1-1.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-docs-10.24.1-1.39.1.noarch as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-docs-10.24.1-1.39.1.noarch"
},
"product_reference": "nodejs10-docs-10.24.1-1.39.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm10-10.24.1-1.39.1.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.aarch64"
},
"product_reference": "npm10-10.24.1-1.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm10-10.24.1-1.39.1.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.ppc64le"
},
"product_reference": "npm10-10.24.1-1.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm10-10.24.1-1.39.1.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.s390x"
},
"product_reference": "npm10-10.24.1-1.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm10-10.24.1-1.39.1.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.x86_64"
},
"product_reference": "npm10-10.24.1-1.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-7774",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-7774"
}
],
"notes": [
{
"category": "general",
"text": "The package y18n before 3.2.2, 4.0.1 and 5.0.5, is vulnerable to Prototype Pollution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-docs-10.24.1-1.39.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-7774",
"url": "https://www.suse.com/security/cve/CVE-2020-7774"
},
{
"category": "external",
"summary": "SUSE Bug 1184450 for CVE-2020-7774",
"url": "https://bugzilla.suse.com/1184450"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-docs-10.24.1-1.39.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-docs-10.24.1-1.39.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-14T15:04:31Z",
"details": "important"
}
],
"title": "CVE-2020-7774"
},
{
"cve": "CVE-2021-22918",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-22918"
}
],
"notes": [
{
"category": "general",
"text": "Node.js before 16.4.1, 14.17.2, 12.22.2 is vulnerable to an out-of-bounds read when uv__idna_toascii() is used to convert strings to ASCII. The pointer p is read and increased without checking whether it is beyond pe, with the latter holding a pointer to the end of the buffer. This can lead to information disclosures or crashes. This function can be triggered via uv_getaddrinfo().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-docs-10.24.1-1.39.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-22918",
"url": "https://www.suse.com/security/cve/CVE-2021-22918"
},
{
"category": "external",
"summary": "SUSE Bug 1187973 for CVE-2021-22918",
"url": "https://bugzilla.suse.com/1187973"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-docs-10.24.1-1.39.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-docs-10.24.1-1.39.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-14T15:04:31Z",
"details": "moderate"
}
],
"title": "CVE-2021-22918"
},
{
"cve": "CVE-2021-23362",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-23362"
}
],
"notes": [
{
"category": "general",
"text": "The package hosted-git-info before 3.0.8 are vulnerable to Regular Expression Denial of Service (ReDoS) via regular expression shortcutMatch in the fromUrl function in index.js. The affected regular expression exhibits polynomial worst-case time complexity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-docs-10.24.1-1.39.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-23362",
"url": "https://www.suse.com/security/cve/CVE-2021-23362"
},
{
"category": "external",
"summary": "SUSE Bug 1187977 for CVE-2021-23362",
"url": "https://bugzilla.suse.com/1187977"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-docs-10.24.1-1.39.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-docs-10.24.1-1.39.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-14T15:04:31Z",
"details": "moderate"
}
],
"title": "CVE-2021-23362"
},
{
"cve": "CVE-2021-27290",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-27290"
}
],
"notes": [
{
"category": "general",
"text": "ssri 5.2.2-8.0.0, fixed in 8.0.1, processes SRIs using a regular expression which is vulnerable to a denial of service. Malicious SRIs could take an extremely long time to process, leading to denial of service. This issue only affects consumers using the strict option.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-docs-10.24.1-1.39.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-27290",
"url": "https://www.suse.com/security/cve/CVE-2021-27290"
},
{
"category": "external",
"summary": "SUSE Bug 1187976 for CVE-2021-27290",
"url": "https://bugzilla.suse.com/1187976"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-docs-10.24.1-1.39.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-docs-10.24.1-1.39.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-14T15:04:31Z",
"details": "important"
}
],
"title": "CVE-2021-27290"
},
{
"cve": "CVE-2021-3449",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3449"
}
],
"notes": [
{
"category": "general",
"text": "An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_cert extension then a NULL pointer dereference will result, leading to a crash and a denial of service attack. A server is only vulnerable if it has TLSv1.2 and renegotiation enabled (which is the default configuration). OpenSSL TLS clients are not impacted by this issue. All OpenSSL 1.1.1 versions are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted by this issue. Fixed in OpenSSL 1.1.1k (Affected 1.1.1-1.1.1j).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-docs-10.24.1-1.39.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3449",
"url": "https://www.suse.com/security/cve/CVE-2021-3449"
},
{
"category": "external",
"summary": "SUSE Bug 1183852 for CVE-2021-3449",
"url": "https://bugzilla.suse.com/1183852"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-docs-10.24.1-1.39.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-docs-10.24.1-1.39.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-14T15:04:31Z",
"details": "important"
}
],
"title": "CVE-2021-3449"
},
{
"cve": "CVE-2021-3450",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3450"
}
],
"notes": [
{
"category": "general",
"text": "The X509_V_FLAG_X509_STRICT flag enables additional security checks of the certificates present in a certificate chain. It is not set by default. Starting from OpenSSL version 1.1.1h a check to disallow certificates in the chain that have explicitly encoded elliptic curve parameters was added as an additional strict check. An error in the implementation of this check meant that the result of a previous check to confirm that certificates in the chain are valid CA certificates was overwritten. This effectively bypasses the check that non-CA certificates must not be able to issue other certificates. If a \"purpose\" has been configured then there is a subsequent opportunity for checks that the certificate is a valid CA. All of the named \"purpose\" values implemented in libcrypto perform this check. Therefore, where a purpose is set the certificate chain will still be rejected even when the strict flag has been used. A purpose is set by default in libssl client and server certificate verification routines, but it can be overridden or removed by an application. In order to be affected, an application must explicitly set the X509_V_FLAG_X509_STRICT verification flag and either not set a purpose for the certificate verification or, in the case of TLS client or server applications, override the default purpose. OpenSSL versions 1.1.1h and newer are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted by this issue. Fixed in OpenSSL 1.1.1k (Affected 1.1.1h-1.1.1j).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-docs-10.24.1-1.39.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3450",
"url": "https://www.suse.com/security/cve/CVE-2021-3450"
},
{
"category": "external",
"summary": "SUSE Bug 1183851 for CVE-2021-3450",
"url": "https://bugzilla.suse.com/1183851"
},
{
"category": "external",
"summary": "SUSE Bug 1188549 for CVE-2021-3450",
"url": "https://bugzilla.suse.com/1188549"
},
{
"category": "external",
"summary": "SUSE Bug 1225628 for CVE-2021-3450",
"url": "https://bugzilla.suse.com/1225628"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-docs-10.24.1-1.39.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.24.1-1.39.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.24.1-1.39.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-docs-10.24.1-1.39.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.24.1-1.39.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-14T15:04:31Z",
"details": "important"
}
],
"title": "CVE-2021-3450"
}
]
}
SUSE-SU-2021:2326-1
Vulnerability from csaf_suse - Published: 2021-07-14 15:07 - Updated: 2021-07-14 15:07Summary
Security update for nodejs12
Severity
Important
Notes
Title of the patch: Security update for nodejs12
Description of the patch: This update for nodejs12 fixes the following issues:
- update to 12.22.2:
- CVE-2021-22918: Out of bounds read (bsc#1187973)
- CVE-2021-23362: ssri Regular Expression Denial of Service and hosted-git-info (bsc#1187977)
- CVE-2021-27290: Regular Expression Denial of Service (bsc#1187976)
- CVE-2021-3450: OpenSSL - CA certificate check bypass with X509_V_FLAG_X509_STRICT (bsc#1183851)
- CVE-2021-3449: OpenSSL - NULL pointer deref in signature_algorithms processing (bsc#1183852)
- CVE-2020-7774: npm - Update y18n to fix Prototype-Pollution (bsc#1184450)
Patchnames: SUSE-2021-2326,SUSE-SLE-Module-Web-Scripting-12-2021-2326
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.3 (High)
Affected products
Recommended
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.2-1.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.3 (Medium)
Affected products
Recommended
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.2-1.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.2-1.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.2-1.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.2-1.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.4 (High)
Affected products
Recommended
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.2-1.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
30 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for nodejs12",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for nodejs12 fixes the following issues:\n\n- update to 12.22.2:\n- CVE-2021-22918: Out of bounds read (bsc#1187973)\n- CVE-2021-23362: ssri Regular Expression Denial of Service and hosted-git-info (bsc#1187977)\n- CVE-2021-27290: Regular Expression Denial of Service (bsc#1187976)\n- CVE-2021-3450: OpenSSL - CA certificate check bypass with X509_V_FLAG_X509_STRICT (bsc#1183851)\n- CVE-2021-3449: OpenSSL - NULL pointer deref in signature_algorithms processing (bsc#1183852)\n- CVE-2020-7774: npm - Update y18n to fix Prototype-Pollution (bsc#1184450)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2021-2326,SUSE-SLE-Module-Web-Scripting-12-2021-2326",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_2326-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2021:2326-1",
"url": "https://www.suse.com/support/update/announcement/2021/suse-su-20212326-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2021:2326-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-July/009136.html"
},
{
"category": "self",
"summary": "SUSE Bug 1183851",
"url": "https://bugzilla.suse.com/1183851"
},
{
"category": "self",
"summary": "SUSE Bug 1183852",
"url": "https://bugzilla.suse.com/1183852"
},
{
"category": "self",
"summary": "SUSE Bug 1184450",
"url": "https://bugzilla.suse.com/1184450"
},
{
"category": "self",
"summary": "SUSE Bug 1187973",
"url": "https://bugzilla.suse.com/1187973"
},
{
"category": "self",
"summary": "SUSE Bug 1187976",
"url": "https://bugzilla.suse.com/1187976"
},
{
"category": "self",
"summary": "SUSE Bug 1187977",
"url": "https://bugzilla.suse.com/1187977"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-7774 page",
"url": "https://www.suse.com/security/cve/CVE-2020-7774/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-22918 page",
"url": "https://www.suse.com/security/cve/CVE-2021-22918/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-23362 page",
"url": "https://www.suse.com/security/cve/CVE-2021-23362/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-27290 page",
"url": "https://www.suse.com/security/cve/CVE-2021-27290/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3449 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3449/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3450 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3450/"
}
],
"title": "Security update for nodejs12",
"tracking": {
"current_release_date": "2021-07-14T15:07:58Z",
"generator": {
"date": "2021-07-14T15:07:58Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2021:2326-1",
"initial_release_date": "2021-07-14T15:07:58Z",
"revision_history": [
{
"date": "2021-07-14T15:07:58Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "nodejs12-12.22.2-1.32.1.aarch64",
"product": {
"name": "nodejs12-12.22.2-1.32.1.aarch64",
"product_id": "nodejs12-12.22.2-1.32.1.aarch64"
}
},
{
"category": "product_version",
"name": "nodejs12-devel-12.22.2-1.32.1.aarch64",
"product": {
"name": "nodejs12-devel-12.22.2-1.32.1.aarch64",
"product_id": "nodejs12-devel-12.22.2-1.32.1.aarch64"
}
},
{
"category": "product_version",
"name": "npm12-12.22.2-1.32.1.aarch64",
"product": {
"name": "npm12-12.22.2-1.32.1.aarch64",
"product_id": "npm12-12.22.2-1.32.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs12-12.22.2-1.32.1.i586",
"product": {
"name": "nodejs12-12.22.2-1.32.1.i586",
"product_id": "nodejs12-12.22.2-1.32.1.i586"
}
},
{
"category": "product_version",
"name": "nodejs12-devel-12.22.2-1.32.1.i586",
"product": {
"name": "nodejs12-devel-12.22.2-1.32.1.i586",
"product_id": "nodejs12-devel-12.22.2-1.32.1.i586"
}
},
{
"category": "product_version",
"name": "npm12-12.22.2-1.32.1.i586",
"product": {
"name": "npm12-12.22.2-1.32.1.i586",
"product_id": "npm12-12.22.2-1.32.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs12-docs-12.22.2-1.32.1.noarch",
"product": {
"name": "nodejs12-docs-12.22.2-1.32.1.noarch",
"product_id": "nodejs12-docs-12.22.2-1.32.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs12-12.22.2-1.32.1.ppc64le",
"product": {
"name": "nodejs12-12.22.2-1.32.1.ppc64le",
"product_id": "nodejs12-12.22.2-1.32.1.ppc64le"
}
},
{
"category": "product_version",
"name": "nodejs12-devel-12.22.2-1.32.1.ppc64le",
"product": {
"name": "nodejs12-devel-12.22.2-1.32.1.ppc64le",
"product_id": "nodejs12-devel-12.22.2-1.32.1.ppc64le"
}
},
{
"category": "product_version",
"name": "npm12-12.22.2-1.32.1.ppc64le",
"product": {
"name": "npm12-12.22.2-1.32.1.ppc64le",
"product_id": "npm12-12.22.2-1.32.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs12-12.22.2-1.32.1.s390x",
"product": {
"name": "nodejs12-12.22.2-1.32.1.s390x",
"product_id": "nodejs12-12.22.2-1.32.1.s390x"
}
},
{
"category": "product_version",
"name": "nodejs12-devel-12.22.2-1.32.1.s390x",
"product": {
"name": "nodejs12-devel-12.22.2-1.32.1.s390x",
"product_id": "nodejs12-devel-12.22.2-1.32.1.s390x"
}
},
{
"category": "product_version",
"name": "npm12-12.22.2-1.32.1.s390x",
"product": {
"name": "npm12-12.22.2-1.32.1.s390x",
"product_id": "npm12-12.22.2-1.32.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs12-12.22.2-1.32.1.x86_64",
"product": {
"name": "nodejs12-12.22.2-1.32.1.x86_64",
"product_id": "nodejs12-12.22.2-1.32.1.x86_64"
}
},
{
"category": "product_version",
"name": "nodejs12-devel-12.22.2-1.32.1.x86_64",
"product": {
"name": "nodejs12-devel-12.22.2-1.32.1.x86_64",
"product_id": "nodejs12-devel-12.22.2-1.32.1.x86_64"
}
},
{
"category": "product_version",
"name": "npm12-12.22.2-1.32.1.x86_64",
"product": {
"name": "npm12-12.22.2-1.32.1.x86_64",
"product_id": "npm12-12.22.2-1.32.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Web and Scripting 12",
"product": {
"name": "SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-web-scripting:12"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs12-12.22.2-1.32.1.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.aarch64"
},
"product_reference": "nodejs12-12.22.2-1.32.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs12-12.22.2-1.32.1.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.ppc64le"
},
"product_reference": "nodejs12-12.22.2-1.32.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs12-12.22.2-1.32.1.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.s390x"
},
"product_reference": "nodejs12-12.22.2-1.32.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs12-12.22.2-1.32.1.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.x86_64"
},
"product_reference": "nodejs12-12.22.2-1.32.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs12-devel-12.22.2-1.32.1.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.aarch64"
},
"product_reference": "nodejs12-devel-12.22.2-1.32.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs12-devel-12.22.2-1.32.1.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.ppc64le"
},
"product_reference": "nodejs12-devel-12.22.2-1.32.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs12-devel-12.22.2-1.32.1.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.s390x"
},
"product_reference": "nodejs12-devel-12.22.2-1.32.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs12-devel-12.22.2-1.32.1.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.x86_64"
},
"product_reference": "nodejs12-devel-12.22.2-1.32.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs12-docs-12.22.2-1.32.1.noarch as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.2-1.32.1.noarch"
},
"product_reference": "nodejs12-docs-12.22.2-1.32.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm12-12.22.2-1.32.1.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.aarch64"
},
"product_reference": "npm12-12.22.2-1.32.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm12-12.22.2-1.32.1.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.ppc64le"
},
"product_reference": "npm12-12.22.2-1.32.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm12-12.22.2-1.32.1.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.s390x"
},
"product_reference": "npm12-12.22.2-1.32.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm12-12.22.2-1.32.1.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 12",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.x86_64"
},
"product_reference": "npm12-12.22.2-1.32.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 12"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-7774",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-7774"
}
],
"notes": [
{
"category": "general",
"text": "The package y18n before 3.2.2, 4.0.1 and 5.0.5, is vulnerable to Prototype Pollution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.2-1.32.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-7774",
"url": "https://www.suse.com/security/cve/CVE-2020-7774"
},
{
"category": "external",
"summary": "SUSE Bug 1184450 for CVE-2020-7774",
"url": "https://bugzilla.suse.com/1184450"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.2-1.32.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.2-1.32.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-14T15:07:58Z",
"details": "important"
}
],
"title": "CVE-2020-7774"
},
{
"cve": "CVE-2021-22918",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-22918"
}
],
"notes": [
{
"category": "general",
"text": "Node.js before 16.4.1, 14.17.2, 12.22.2 is vulnerable to an out-of-bounds read when uv__idna_toascii() is used to convert strings to ASCII. The pointer p is read and increased without checking whether it is beyond pe, with the latter holding a pointer to the end of the buffer. This can lead to information disclosures or crashes. This function can be triggered via uv_getaddrinfo().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.2-1.32.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-22918",
"url": "https://www.suse.com/security/cve/CVE-2021-22918"
},
{
"category": "external",
"summary": "SUSE Bug 1187973 for CVE-2021-22918",
"url": "https://bugzilla.suse.com/1187973"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.2-1.32.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.2-1.32.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-14T15:07:58Z",
"details": "moderate"
}
],
"title": "CVE-2021-22918"
},
{
"cve": "CVE-2021-23362",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-23362"
}
],
"notes": [
{
"category": "general",
"text": "The package hosted-git-info before 3.0.8 are vulnerable to Regular Expression Denial of Service (ReDoS) via regular expression shortcutMatch in the fromUrl function in index.js. The affected regular expression exhibits polynomial worst-case time complexity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.2-1.32.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-23362",
"url": "https://www.suse.com/security/cve/CVE-2021-23362"
},
{
"category": "external",
"summary": "SUSE Bug 1187977 for CVE-2021-23362",
"url": "https://bugzilla.suse.com/1187977"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.2-1.32.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.2-1.32.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-14T15:07:58Z",
"details": "moderate"
}
],
"title": "CVE-2021-23362"
},
{
"cve": "CVE-2021-27290",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-27290"
}
],
"notes": [
{
"category": "general",
"text": "ssri 5.2.2-8.0.0, fixed in 8.0.1, processes SRIs using a regular expression which is vulnerable to a denial of service. Malicious SRIs could take an extremely long time to process, leading to denial of service. This issue only affects consumers using the strict option.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.2-1.32.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-27290",
"url": "https://www.suse.com/security/cve/CVE-2021-27290"
},
{
"category": "external",
"summary": "SUSE Bug 1187976 for CVE-2021-27290",
"url": "https://bugzilla.suse.com/1187976"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.2-1.32.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.2-1.32.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-14T15:07:58Z",
"details": "important"
}
],
"title": "CVE-2021-27290"
},
{
"cve": "CVE-2021-3449",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3449"
}
],
"notes": [
{
"category": "general",
"text": "An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_cert extension then a NULL pointer dereference will result, leading to a crash and a denial of service attack. A server is only vulnerable if it has TLSv1.2 and renegotiation enabled (which is the default configuration). OpenSSL TLS clients are not impacted by this issue. All OpenSSL 1.1.1 versions are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted by this issue. Fixed in OpenSSL 1.1.1k (Affected 1.1.1-1.1.1j).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.2-1.32.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3449",
"url": "https://www.suse.com/security/cve/CVE-2021-3449"
},
{
"category": "external",
"summary": "SUSE Bug 1183852 for CVE-2021-3449",
"url": "https://bugzilla.suse.com/1183852"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.2-1.32.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.2-1.32.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-14T15:07:58Z",
"details": "important"
}
],
"title": "CVE-2021-3449"
},
{
"cve": "CVE-2021-3450",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3450"
}
],
"notes": [
{
"category": "general",
"text": "The X509_V_FLAG_X509_STRICT flag enables additional security checks of the certificates present in a certificate chain. It is not set by default. Starting from OpenSSL version 1.1.1h a check to disallow certificates in the chain that have explicitly encoded elliptic curve parameters was added as an additional strict check. An error in the implementation of this check meant that the result of a previous check to confirm that certificates in the chain are valid CA certificates was overwritten. This effectively bypasses the check that non-CA certificates must not be able to issue other certificates. If a \"purpose\" has been configured then there is a subsequent opportunity for checks that the certificate is a valid CA. All of the named \"purpose\" values implemented in libcrypto perform this check. Therefore, where a purpose is set the certificate chain will still be rejected even when the strict flag has been used. A purpose is set by default in libssl client and server certificate verification routines, but it can be overridden or removed by an application. In order to be affected, an application must explicitly set the X509_V_FLAG_X509_STRICT verification flag and either not set a purpose for the certificate verification or, in the case of TLS client or server applications, override the default purpose. OpenSSL versions 1.1.1h and newer are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted by this issue. Fixed in OpenSSL 1.1.1k (Affected 1.1.1h-1.1.1j).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.2-1.32.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3450",
"url": "https://www.suse.com/security/cve/CVE-2021-3450"
},
{
"category": "external",
"summary": "SUSE Bug 1183851 for CVE-2021-3450",
"url": "https://bugzilla.suse.com/1183851"
},
{
"category": "external",
"summary": "SUSE Bug 1188549 for CVE-2021-3450",
"url": "https://bugzilla.suse.com/1188549"
},
{
"category": "external",
"summary": "SUSE Bug 1225628 for CVE-2021-3450",
"url": "https://bugzilla.suse.com/1225628"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.2-1.32.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-12.22.2-1.32.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-devel-12.22.2-1.32.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 12:nodejs12-docs-12.22.2-1.32.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 12:npm12-12.22.2-1.32.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-14T15:07:58Z",
"details": "important"
}
],
"title": "CVE-2021-3450"
}
]
}
SUSE-SU-2021:2327-1
Vulnerability from csaf_suse - Published: 2021-07-14 15:08 - Updated: 2021-07-14 15:08Summary
Security update for nodejs12
Severity
Important
Notes
Title of the patch: Security update for nodejs12
Description of the patch: This update for nodejs12 fixes the following issues:
- update to 12.22.2:
- CVE-2021-22918: Out of bounds read (bsc#1187973)
- CVE-2021-23362: ssri Regular Expression Denial of Service and hosted-git-info (bsc#1187977)
- CVE-2021-27290: Regular Expression Denial of Service (bsc#1187976)
- CVE-2021-3450: OpenSSL - CA certificate check bypass with X509_V_FLAG_X509_STRICT (bsc#1183851)
- CVE-2021-3449: OpenSSL - NULL pointer deref in signature_algorithms processing (bsc#1183852)
- CVE-2020-7774: npm - Update y18n to fix Prototype-Pollution (bsc#1184450)
Patchnames: SUSE-2021-2327,SUSE-SLE-Module-Web-Scripting-15-SP2-2021-2327,SUSE-SLE-Module-Web-Scripting-15-SP3-2021-2327
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.3 (High)
Affected products
Recommended
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-docs-12.22.2-4.16.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.2-4.16.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.3 (Medium)
Affected products
Recommended
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-docs-12.22.2-4.16.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.2-4.16.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-docs-12.22.2-4.16.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.2-4.16.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-docs-12.22.2-4.16.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.2-4.16.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-docs-12.22.2-4.16.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.2-4.16.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.4 (High)
Affected products
Recommended
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-docs-12.22.2-4.16.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.2-4.16.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
30 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for nodejs12",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for nodejs12 fixes the following issues:\n\n- update to 12.22.2:\n- CVE-2021-22918: Out of bounds read (bsc#1187973)\n- CVE-2021-23362: ssri Regular Expression Denial of Service and hosted-git-info (bsc#1187977)\n- CVE-2021-27290: Regular Expression Denial of Service (bsc#1187976)\n- CVE-2021-3450: OpenSSL - CA certificate check bypass with X509_V_FLAG_X509_STRICT (bsc#1183851)\n- CVE-2021-3449: OpenSSL - NULL pointer deref in signature_algorithms processing (bsc#1183852)\n- CVE-2020-7774: npm - Update y18n to fix Prototype-Pollution (bsc#1184450)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2021-2327,SUSE-SLE-Module-Web-Scripting-15-SP2-2021-2327,SUSE-SLE-Module-Web-Scripting-15-SP3-2021-2327",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_2327-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2021:2327-1",
"url": "https://www.suse.com/support/update/announcement/2021/suse-su-20212327-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2021:2327-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-July/009139.html"
},
{
"category": "self",
"summary": "SUSE Bug 1183851",
"url": "https://bugzilla.suse.com/1183851"
},
{
"category": "self",
"summary": "SUSE Bug 1183852",
"url": "https://bugzilla.suse.com/1183852"
},
{
"category": "self",
"summary": "SUSE Bug 1184450",
"url": "https://bugzilla.suse.com/1184450"
},
{
"category": "self",
"summary": "SUSE Bug 1187973",
"url": "https://bugzilla.suse.com/1187973"
},
{
"category": "self",
"summary": "SUSE Bug 1187976",
"url": "https://bugzilla.suse.com/1187976"
},
{
"category": "self",
"summary": "SUSE Bug 1187977",
"url": "https://bugzilla.suse.com/1187977"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-7774 page",
"url": "https://www.suse.com/security/cve/CVE-2020-7774/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-22918 page",
"url": "https://www.suse.com/security/cve/CVE-2021-22918/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-23362 page",
"url": "https://www.suse.com/security/cve/CVE-2021-23362/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-27290 page",
"url": "https://www.suse.com/security/cve/CVE-2021-27290/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3449 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3449/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3450 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3450/"
}
],
"title": "Security update for nodejs12",
"tracking": {
"current_release_date": "2021-07-14T15:08:17Z",
"generator": {
"date": "2021-07-14T15:08:17Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2021:2327-1",
"initial_release_date": "2021-07-14T15:08:17Z",
"revision_history": [
{
"date": "2021-07-14T15:08:17Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "nodejs12-12.22.2-4.16.1.aarch64",
"product": {
"name": "nodejs12-12.22.2-4.16.1.aarch64",
"product_id": "nodejs12-12.22.2-4.16.1.aarch64"
}
},
{
"category": "product_version",
"name": "nodejs12-devel-12.22.2-4.16.1.aarch64",
"product": {
"name": "nodejs12-devel-12.22.2-4.16.1.aarch64",
"product_id": "nodejs12-devel-12.22.2-4.16.1.aarch64"
}
},
{
"category": "product_version",
"name": "npm12-12.22.2-4.16.1.aarch64",
"product": {
"name": "npm12-12.22.2-4.16.1.aarch64",
"product_id": "npm12-12.22.2-4.16.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs12-12.22.2-4.16.1.i586",
"product": {
"name": "nodejs12-12.22.2-4.16.1.i586",
"product_id": "nodejs12-12.22.2-4.16.1.i586"
}
},
{
"category": "product_version",
"name": "nodejs12-devel-12.22.2-4.16.1.i586",
"product": {
"name": "nodejs12-devel-12.22.2-4.16.1.i586",
"product_id": "nodejs12-devel-12.22.2-4.16.1.i586"
}
},
{
"category": "product_version",
"name": "npm12-12.22.2-4.16.1.i586",
"product": {
"name": "npm12-12.22.2-4.16.1.i586",
"product_id": "npm12-12.22.2-4.16.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs12-docs-12.22.2-4.16.1.noarch",
"product": {
"name": "nodejs12-docs-12.22.2-4.16.1.noarch",
"product_id": "nodejs12-docs-12.22.2-4.16.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs12-12.22.2-4.16.1.ppc64le",
"product": {
"name": "nodejs12-12.22.2-4.16.1.ppc64le",
"product_id": "nodejs12-12.22.2-4.16.1.ppc64le"
}
},
{
"category": "product_version",
"name": "nodejs12-devel-12.22.2-4.16.1.ppc64le",
"product": {
"name": "nodejs12-devel-12.22.2-4.16.1.ppc64le",
"product_id": "nodejs12-devel-12.22.2-4.16.1.ppc64le"
}
},
{
"category": "product_version",
"name": "npm12-12.22.2-4.16.1.ppc64le",
"product": {
"name": "npm12-12.22.2-4.16.1.ppc64le",
"product_id": "npm12-12.22.2-4.16.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs12-12.22.2-4.16.1.s390x",
"product": {
"name": "nodejs12-12.22.2-4.16.1.s390x",
"product_id": "nodejs12-12.22.2-4.16.1.s390x"
}
},
{
"category": "product_version",
"name": "nodejs12-devel-12.22.2-4.16.1.s390x",
"product": {
"name": "nodejs12-devel-12.22.2-4.16.1.s390x",
"product_id": "nodejs12-devel-12.22.2-4.16.1.s390x"
}
},
{
"category": "product_version",
"name": "npm12-12.22.2-4.16.1.s390x",
"product": {
"name": "npm12-12.22.2-4.16.1.s390x",
"product_id": "npm12-12.22.2-4.16.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs12-12.22.2-4.16.1.x86_64",
"product": {
"name": "nodejs12-12.22.2-4.16.1.x86_64",
"product_id": "nodejs12-12.22.2-4.16.1.x86_64"
}
},
{
"category": "product_version",
"name": "nodejs12-devel-12.22.2-4.16.1.x86_64",
"product": {
"name": "nodejs12-devel-12.22.2-4.16.1.x86_64",
"product_id": "nodejs12-devel-12.22.2-4.16.1.x86_64"
}
},
{
"category": "product_version",
"name": "npm12-12.22.2-4.16.1.x86_64",
"product": {
"name": "npm12-12.22.2-4.16.1.x86_64",
"product_id": "npm12-12.22.2-4.16.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product": {
"name": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-web-scripting:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
"product": {
"name": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-web-scripting:15:sp3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs12-12.22.2-4.16.1.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.aarch64"
},
"product_reference": "nodejs12-12.22.2-4.16.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs12-12.22.2-4.16.1.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.ppc64le"
},
"product_reference": "nodejs12-12.22.2-4.16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs12-12.22.2-4.16.1.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.s390x"
},
"product_reference": "nodejs12-12.22.2-4.16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs12-12.22.2-4.16.1.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.x86_64"
},
"product_reference": "nodejs12-12.22.2-4.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs12-devel-12.22.2-4.16.1.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.aarch64"
},
"product_reference": "nodejs12-devel-12.22.2-4.16.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs12-devel-12.22.2-4.16.1.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.ppc64le"
},
"product_reference": "nodejs12-devel-12.22.2-4.16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs12-devel-12.22.2-4.16.1.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.s390x"
},
"product_reference": "nodejs12-devel-12.22.2-4.16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs12-devel-12.22.2-4.16.1.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.x86_64"
},
"product_reference": "nodejs12-devel-12.22.2-4.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs12-docs-12.22.2-4.16.1.noarch as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-docs-12.22.2-4.16.1.noarch"
},
"product_reference": "nodejs12-docs-12.22.2-4.16.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm12-12.22.2-4.16.1.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.aarch64"
},
"product_reference": "npm12-12.22.2-4.16.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm12-12.22.2-4.16.1.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.ppc64le"
},
"product_reference": "npm12-12.22.2-4.16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm12-12.22.2-4.16.1.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.s390x"
},
"product_reference": "npm12-12.22.2-4.16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm12-12.22.2-4.16.1.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.x86_64"
},
"product_reference": "npm12-12.22.2-4.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs12-12.22.2-4.16.1.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.aarch64"
},
"product_reference": "nodejs12-12.22.2-4.16.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs12-12.22.2-4.16.1.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.ppc64le"
},
"product_reference": "nodejs12-12.22.2-4.16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs12-12.22.2-4.16.1.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.s390x"
},
"product_reference": "nodejs12-12.22.2-4.16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs12-12.22.2-4.16.1.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.x86_64"
},
"product_reference": "nodejs12-12.22.2-4.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs12-devel-12.22.2-4.16.1.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.aarch64"
},
"product_reference": "nodejs12-devel-12.22.2-4.16.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs12-devel-12.22.2-4.16.1.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.ppc64le"
},
"product_reference": "nodejs12-devel-12.22.2-4.16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs12-devel-12.22.2-4.16.1.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.s390x"
},
"product_reference": "nodejs12-devel-12.22.2-4.16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs12-devel-12.22.2-4.16.1.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.x86_64"
},
"product_reference": "nodejs12-devel-12.22.2-4.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs12-docs-12.22.2-4.16.1.noarch as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.2-4.16.1.noarch"
},
"product_reference": "nodejs12-docs-12.22.2-4.16.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm12-12.22.2-4.16.1.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.aarch64"
},
"product_reference": "npm12-12.22.2-4.16.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm12-12.22.2-4.16.1.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.ppc64le"
},
"product_reference": "npm12-12.22.2-4.16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm12-12.22.2-4.16.1.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.s390x"
},
"product_reference": "npm12-12.22.2-4.16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm12-12.22.2-4.16.1.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.x86_64"
},
"product_reference": "npm12-12.22.2-4.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-7774",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-7774"
}
],
"notes": [
{
"category": "general",
"text": "The package y18n before 3.2.2, 4.0.1 and 5.0.5, is vulnerable to Prototype Pollution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-docs-12.22.2-4.16.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.2-4.16.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-7774",
"url": "https://www.suse.com/security/cve/CVE-2020-7774"
},
{
"category": "external",
"summary": "SUSE Bug 1184450 for CVE-2020-7774",
"url": "https://bugzilla.suse.com/1184450"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-docs-12.22.2-4.16.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.2-4.16.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-docs-12.22.2-4.16.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.2-4.16.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-14T15:08:17Z",
"details": "important"
}
],
"title": "CVE-2020-7774"
},
{
"cve": "CVE-2021-22918",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-22918"
}
],
"notes": [
{
"category": "general",
"text": "Node.js before 16.4.1, 14.17.2, 12.22.2 is vulnerable to an out-of-bounds read when uv__idna_toascii() is used to convert strings to ASCII. The pointer p is read and increased without checking whether it is beyond pe, with the latter holding a pointer to the end of the buffer. This can lead to information disclosures or crashes. This function can be triggered via uv_getaddrinfo().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-docs-12.22.2-4.16.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.2-4.16.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-22918",
"url": "https://www.suse.com/security/cve/CVE-2021-22918"
},
{
"category": "external",
"summary": "SUSE Bug 1187973 for CVE-2021-22918",
"url": "https://bugzilla.suse.com/1187973"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-docs-12.22.2-4.16.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.2-4.16.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-docs-12.22.2-4.16.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.2-4.16.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-14T15:08:17Z",
"details": "moderate"
}
],
"title": "CVE-2021-22918"
},
{
"cve": "CVE-2021-23362",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-23362"
}
],
"notes": [
{
"category": "general",
"text": "The package hosted-git-info before 3.0.8 are vulnerable to Regular Expression Denial of Service (ReDoS) via regular expression shortcutMatch in the fromUrl function in index.js. The affected regular expression exhibits polynomial worst-case time complexity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-docs-12.22.2-4.16.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.2-4.16.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-23362",
"url": "https://www.suse.com/security/cve/CVE-2021-23362"
},
{
"category": "external",
"summary": "SUSE Bug 1187977 for CVE-2021-23362",
"url": "https://bugzilla.suse.com/1187977"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-docs-12.22.2-4.16.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.2-4.16.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-docs-12.22.2-4.16.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.2-4.16.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-14T15:08:17Z",
"details": "moderate"
}
],
"title": "CVE-2021-23362"
},
{
"cve": "CVE-2021-27290",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-27290"
}
],
"notes": [
{
"category": "general",
"text": "ssri 5.2.2-8.0.0, fixed in 8.0.1, processes SRIs using a regular expression which is vulnerable to a denial of service. Malicious SRIs could take an extremely long time to process, leading to denial of service. This issue only affects consumers using the strict option.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-docs-12.22.2-4.16.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.2-4.16.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-27290",
"url": "https://www.suse.com/security/cve/CVE-2021-27290"
},
{
"category": "external",
"summary": "SUSE Bug 1187976 for CVE-2021-27290",
"url": "https://bugzilla.suse.com/1187976"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-docs-12.22.2-4.16.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.2-4.16.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-docs-12.22.2-4.16.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.2-4.16.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-14T15:08:17Z",
"details": "important"
}
],
"title": "CVE-2021-27290"
},
{
"cve": "CVE-2021-3449",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3449"
}
],
"notes": [
{
"category": "general",
"text": "An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_cert extension then a NULL pointer dereference will result, leading to a crash and a denial of service attack. A server is only vulnerable if it has TLSv1.2 and renegotiation enabled (which is the default configuration). OpenSSL TLS clients are not impacted by this issue. All OpenSSL 1.1.1 versions are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted by this issue. Fixed in OpenSSL 1.1.1k (Affected 1.1.1-1.1.1j).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-docs-12.22.2-4.16.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.2-4.16.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3449",
"url": "https://www.suse.com/security/cve/CVE-2021-3449"
},
{
"category": "external",
"summary": "SUSE Bug 1183852 for CVE-2021-3449",
"url": "https://bugzilla.suse.com/1183852"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-docs-12.22.2-4.16.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.2-4.16.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-docs-12.22.2-4.16.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.2-4.16.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-14T15:08:17Z",
"details": "important"
}
],
"title": "CVE-2021-3449"
},
{
"cve": "CVE-2021-3450",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3450"
}
],
"notes": [
{
"category": "general",
"text": "The X509_V_FLAG_X509_STRICT flag enables additional security checks of the certificates present in a certificate chain. It is not set by default. Starting from OpenSSL version 1.1.1h a check to disallow certificates in the chain that have explicitly encoded elliptic curve parameters was added as an additional strict check. An error in the implementation of this check meant that the result of a previous check to confirm that certificates in the chain are valid CA certificates was overwritten. This effectively bypasses the check that non-CA certificates must not be able to issue other certificates. If a \"purpose\" has been configured then there is a subsequent opportunity for checks that the certificate is a valid CA. All of the named \"purpose\" values implemented in libcrypto perform this check. Therefore, where a purpose is set the certificate chain will still be rejected even when the strict flag has been used. A purpose is set by default in libssl client and server certificate verification routines, but it can be overridden or removed by an application. In order to be affected, an application must explicitly set the X509_V_FLAG_X509_STRICT verification flag and either not set a purpose for the certificate verification or, in the case of TLS client or server applications, override the default purpose. OpenSSL versions 1.1.1h and newer are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted by this issue. Fixed in OpenSSL 1.1.1k (Affected 1.1.1h-1.1.1j).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-docs-12.22.2-4.16.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.2-4.16.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3450",
"url": "https://www.suse.com/security/cve/CVE-2021-3450"
},
{
"category": "external",
"summary": "SUSE Bug 1183851 for CVE-2021-3450",
"url": "https://bugzilla.suse.com/1183851"
},
{
"category": "external",
"summary": "SUSE Bug 1188549 for CVE-2021-3450",
"url": "https://bugzilla.suse.com/1188549"
},
{
"category": "external",
"summary": "SUSE Bug 1225628 for CVE-2021-3450",
"url": "https://bugzilla.suse.com/1225628"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-docs-12.22.2-4.16.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.2-4.16.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-devel-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs12-docs-12.22.2-4.16.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-devel-12.22.2-4.16.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs12-docs-12.22.2-4.16.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm12-12.22.2-4.16.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-14T15:08:17Z",
"details": "important"
}
],
"title": "CVE-2021-3450"
}
]
}
SUSE-SU-2021:2353-1
Vulnerability from csaf_suse - Published: 2021-07-15 13:18 - Updated: 2021-07-15 13:18Summary
Security update for nodejs10
Severity
Important
Notes
Title of the patch: Security update for nodejs10
Description of the patch: This update for nodejs10 fixes the following issues:
Update nodejs10 to 10.24.1.
Including fixes for
- CVE-2021-22918: libuv upgrade - Out of bounds read (bsc#1187973)
- CVE-2021-27290: ssri Regular Expression Denial of Service (bsc#1187976)
- CVE-2021-23362: hosted-git-info Regular Expression Denial of Service (bsc#1187977)
- CVE-2020-7774: y18n Prototype Pollution (bsc#1184450)
- CVE-2021-3450: OpenSSL - CA certificate check bypass with X509_V_FLAG_X509_STRICT (bsc#1183851)
- CVE-2021-3449: OpenSSL - NULL pointer deref in signature_algorithms processing (bsc#1183852)
- reduce memory footprint of test-worker-stdio (bsc#1183155)
Patchnames: SUSE-2021-2353,SUSE-SLE-Module-Web-Scripting-15-SP2-2021-2353,SUSE-SLE-Product-HPC-15-2021-2353,SUSE-SLE-Product-HPC-15-SP1-ESPOS-2021-2353,SUSE-SLE-Product-HPC-15-SP1-LTSS-2021-2353,SUSE-SLE-Product-SLES-15-2021-2353,SUSE-SLE-Product-SLES-15-SP1-BCL-2021-2353,SUSE-SLE-Product-SLES-15-SP1-LTSS-2021-2353,SUSE-SLE-Product-SLES_SAP-15-2021-2353,SUSE-SLE-Product-SLES_SAP-15-SP1-2021-2353,SUSE-SLE-Product-SUSE-Manager-Proxy-4.0-2021-2353,SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.0-2021-2353,SUSE-SLE-Product-SUSE-Manager-Server-4.0-2021-2353,SUSE-Storage-6-2021-2353
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.3 (High)
Affected products
Recommended
110 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.3 (Medium)
Affected products
Recommended
110 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
110 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
110 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
110 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.4 (High)
Affected products
Recommended
110 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
31 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for nodejs10",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for nodejs10 fixes the following issues:\n\nUpdate nodejs10 to 10.24.1.\n\nIncluding fixes for \n\n- CVE-2021-22918: libuv upgrade - Out of bounds read (bsc#1187973)\n- CVE-2021-27290: ssri Regular Expression Denial of Service (bsc#1187976)\n- CVE-2021-23362: hosted-git-info Regular Expression Denial of Service (bsc#1187977)\n- CVE-2020-7774: y18n Prototype Pollution (bsc#1184450)\n- CVE-2021-3450: OpenSSL - CA certificate check bypass with X509_V_FLAG_X509_STRICT (bsc#1183851)\n- CVE-2021-3449: OpenSSL - NULL pointer deref in signature_algorithms processing (bsc#1183852)\n- reduce memory footprint of test-worker-stdio (bsc#1183155)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2021-2353,SUSE-SLE-Module-Web-Scripting-15-SP2-2021-2353,SUSE-SLE-Product-HPC-15-2021-2353,SUSE-SLE-Product-HPC-15-SP1-ESPOS-2021-2353,SUSE-SLE-Product-HPC-15-SP1-LTSS-2021-2353,SUSE-SLE-Product-SLES-15-2021-2353,SUSE-SLE-Product-SLES-15-SP1-BCL-2021-2353,SUSE-SLE-Product-SLES-15-SP1-LTSS-2021-2353,SUSE-SLE-Product-SLES_SAP-15-2021-2353,SUSE-SLE-Product-SLES_SAP-15-SP1-2021-2353,SUSE-SLE-Product-SUSE-Manager-Proxy-4.0-2021-2353,SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.0-2021-2353,SUSE-SLE-Product-SUSE-Manager-Server-4.0-2021-2353,SUSE-Storage-6-2021-2353",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_2353-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2021:2353-1",
"url": "https://www.suse.com/support/update/announcement/2021/suse-su-20212353-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2021:2353-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-July/009145.html"
},
{
"category": "self",
"summary": "SUSE Bug 1183155",
"url": "https://bugzilla.suse.com/1183155"
},
{
"category": "self",
"summary": "SUSE Bug 1183851",
"url": "https://bugzilla.suse.com/1183851"
},
{
"category": "self",
"summary": "SUSE Bug 1183852",
"url": "https://bugzilla.suse.com/1183852"
},
{
"category": "self",
"summary": "SUSE Bug 1184450",
"url": "https://bugzilla.suse.com/1184450"
},
{
"category": "self",
"summary": "SUSE Bug 1187973",
"url": "https://bugzilla.suse.com/1187973"
},
{
"category": "self",
"summary": "SUSE Bug 1187976",
"url": "https://bugzilla.suse.com/1187976"
},
{
"category": "self",
"summary": "SUSE Bug 1187977",
"url": "https://bugzilla.suse.com/1187977"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-7774 page",
"url": "https://www.suse.com/security/cve/CVE-2020-7774/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-22918 page",
"url": "https://www.suse.com/security/cve/CVE-2021-22918/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-23362 page",
"url": "https://www.suse.com/security/cve/CVE-2021-23362/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-27290 page",
"url": "https://www.suse.com/security/cve/CVE-2021-27290/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3449 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3449/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3450 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3450/"
}
],
"title": "Security update for nodejs10",
"tracking": {
"current_release_date": "2021-07-15T13:18:32Z",
"generator": {
"date": "2021-07-15T13:18:32Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2021:2353-1",
"initial_release_date": "2021-07-15T13:18:32Z",
"revision_history": [
{
"date": "2021-07-15T13:18:32Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "nodejs10-10.24.1-1.36.1.aarch64",
"product": {
"name": "nodejs10-10.24.1-1.36.1.aarch64",
"product_id": "nodejs10-10.24.1-1.36.1.aarch64"
}
},
{
"category": "product_version",
"name": "nodejs10-devel-10.24.1-1.36.1.aarch64",
"product": {
"name": "nodejs10-devel-10.24.1-1.36.1.aarch64",
"product_id": "nodejs10-devel-10.24.1-1.36.1.aarch64"
}
},
{
"category": "product_version",
"name": "npm10-10.24.1-1.36.1.aarch64",
"product": {
"name": "npm10-10.24.1-1.36.1.aarch64",
"product_id": "npm10-10.24.1-1.36.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs10-10.24.1-1.36.1.i586",
"product": {
"name": "nodejs10-10.24.1-1.36.1.i586",
"product_id": "nodejs10-10.24.1-1.36.1.i586"
}
},
{
"category": "product_version",
"name": "nodejs10-devel-10.24.1-1.36.1.i586",
"product": {
"name": "nodejs10-devel-10.24.1-1.36.1.i586",
"product_id": "nodejs10-devel-10.24.1-1.36.1.i586"
}
},
{
"category": "product_version",
"name": "npm10-10.24.1-1.36.1.i586",
"product": {
"name": "npm10-10.24.1-1.36.1.i586",
"product_id": "npm10-10.24.1-1.36.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs10-docs-10.24.1-1.36.1.noarch",
"product": {
"name": "nodejs10-docs-10.24.1-1.36.1.noarch",
"product_id": "nodejs10-docs-10.24.1-1.36.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs10-10.24.1-1.36.1.ppc64le",
"product": {
"name": "nodejs10-10.24.1-1.36.1.ppc64le",
"product_id": "nodejs10-10.24.1-1.36.1.ppc64le"
}
},
{
"category": "product_version",
"name": "nodejs10-devel-10.24.1-1.36.1.ppc64le",
"product": {
"name": "nodejs10-devel-10.24.1-1.36.1.ppc64le",
"product_id": "nodejs10-devel-10.24.1-1.36.1.ppc64le"
}
},
{
"category": "product_version",
"name": "npm10-10.24.1-1.36.1.ppc64le",
"product": {
"name": "npm10-10.24.1-1.36.1.ppc64le",
"product_id": "npm10-10.24.1-1.36.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs10-10.24.1-1.36.1.s390x",
"product": {
"name": "nodejs10-10.24.1-1.36.1.s390x",
"product_id": "nodejs10-10.24.1-1.36.1.s390x"
}
},
{
"category": "product_version",
"name": "nodejs10-devel-10.24.1-1.36.1.s390x",
"product": {
"name": "nodejs10-devel-10.24.1-1.36.1.s390x",
"product_id": "nodejs10-devel-10.24.1-1.36.1.s390x"
}
},
{
"category": "product_version",
"name": "npm10-10.24.1-1.36.1.s390x",
"product": {
"name": "npm10-10.24.1-1.36.1.s390x",
"product_id": "npm10-10.24.1-1.36.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs10-10.24.1-1.36.1.x86_64",
"product": {
"name": "nodejs10-10.24.1-1.36.1.x86_64",
"product_id": "nodejs10-10.24.1-1.36.1.x86_64"
}
},
{
"category": "product_version",
"name": "nodejs10-devel-10.24.1-1.36.1.x86_64",
"product": {
"name": "nodejs10-devel-10.24.1-1.36.1.x86_64",
"product_id": "nodejs10-devel-10.24.1-1.36.1.x86_64"
}
},
{
"category": "product_version",
"name": "npm10-10.24.1-1.36.1.x86_64",
"product": {
"name": "npm10-10.24.1-1.36.1.x86_64",
"product_id": "npm10-10.24.1-1.36.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product": {
"name": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-web-scripting:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP1-BCL",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_bcl:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP1-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Manager Proxy 4.0",
"product": {
"name": "SUSE Manager Proxy 4.0",
"product_id": "SUSE Manager Proxy 4.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-manager-proxy:4.0"
}
}
},
{
"category": "product_name",
"name": "SUSE Manager Retail Branch Server 4.0",
"product": {
"name": "SUSE Manager Retail Branch Server 4.0",
"product_id": "SUSE Manager Retail Branch Server 4.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-manager-retail-branch-server:4.0"
}
}
},
{
"category": "product_name",
"name": "SUSE Manager Server 4.0",
"product": {
"name": "SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-manager-server:4.0"
}
}
},
{
"category": "product_name",
"name": "SUSE Enterprise Storage 6",
"product": {
"name": "SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:ses:6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-10.24.1-1.36.1.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.aarch64"
},
"product_reference": "nodejs10-10.24.1-1.36.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-10.24.1-1.36.1.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.ppc64le"
},
"product_reference": "nodejs10-10.24.1-1.36.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-10.24.1-1.36.1.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.s390x"
},
"product_reference": "nodejs10-10.24.1-1.36.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-10.24.1-1.36.1.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.x86_64"
},
"product_reference": "nodejs10-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-devel-10.24.1-1.36.1.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.aarch64"
},
"product_reference": "nodejs10-devel-10.24.1-1.36.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-devel-10.24.1-1.36.1.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.ppc64le"
},
"product_reference": "nodejs10-devel-10.24.1-1.36.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-devel-10.24.1-1.36.1.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.s390x"
},
"product_reference": "nodejs10-devel-10.24.1-1.36.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-devel-10.24.1-1.36.1.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.x86_64"
},
"product_reference": "nodejs10-devel-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-docs-10.24.1-1.36.1.noarch as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-docs-10.24.1-1.36.1.noarch"
},
"product_reference": "nodejs10-docs-10.24.1-1.36.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm10-10.24.1-1.36.1.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.aarch64"
},
"product_reference": "npm10-10.24.1-1.36.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm10-10.24.1-1.36.1.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.ppc64le"
},
"product_reference": "npm10-10.24.1-1.36.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm10-10.24.1-1.36.1.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.s390x"
},
"product_reference": "npm10-10.24.1-1.36.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm10-10.24.1-1.36.1.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.x86_64"
},
"product_reference": "npm10-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-10.24.1-1.36.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.aarch64"
},
"product_reference": "nodejs10-10.24.1-1.36.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-10.24.1-1.36.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.x86_64"
},
"product_reference": "nodejs10-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-devel-10.24.1-1.36.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64"
},
"product_reference": "nodejs10-devel-10.24.1-1.36.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-devel-10.24.1-1.36.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64"
},
"product_reference": "nodejs10-devel-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-docs-10.24.1-1.36.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch"
},
"product_reference": "nodejs10-docs-10.24.1-1.36.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm10-10.24.1-1.36.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.aarch64"
},
"product_reference": "npm10-10.24.1-1.36.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm10-10.24.1-1.36.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.x86_64"
},
"product_reference": "npm10-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-10.24.1-1.36.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64"
},
"product_reference": "nodejs10-10.24.1-1.36.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-10.24.1-1.36.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64"
},
"product_reference": "nodejs10-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-devel-10.24.1-1.36.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64"
},
"product_reference": "nodejs10-devel-10.24.1-1.36.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-devel-10.24.1-1.36.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64"
},
"product_reference": "nodejs10-devel-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-docs-10.24.1-1.36.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch"
},
"product_reference": "nodejs10-docs-10.24.1-1.36.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm10-10.24.1-1.36.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.aarch64"
},
"product_reference": "npm10-10.24.1-1.36.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm10-10.24.1-1.36.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.x86_64"
},
"product_reference": "npm10-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-10.24.1-1.36.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.aarch64"
},
"product_reference": "nodejs10-10.24.1-1.36.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-10.24.1-1.36.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.x86_64"
},
"product_reference": "nodejs10-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-devel-10.24.1-1.36.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64"
},
"product_reference": "nodejs10-devel-10.24.1-1.36.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-devel-10.24.1-1.36.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64"
},
"product_reference": "nodejs10-devel-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-docs-10.24.1-1.36.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch"
},
"product_reference": "nodejs10-docs-10.24.1-1.36.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm10-10.24.1-1.36.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.aarch64"
},
"product_reference": "npm10-10.24.1-1.36.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm10-10.24.1-1.36.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.x86_64"
},
"product_reference": "npm10-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-10.24.1-1.36.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64"
},
"product_reference": "nodejs10-10.24.1-1.36.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-10.24.1-1.36.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64"
},
"product_reference": "nodejs10-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-devel-10.24.1-1.36.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64"
},
"product_reference": "nodejs10-devel-10.24.1-1.36.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-devel-10.24.1-1.36.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64"
},
"product_reference": "nodejs10-devel-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-docs-10.24.1-1.36.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch"
},
"product_reference": "nodejs10-docs-10.24.1-1.36.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm10-10.24.1-1.36.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64"
},
"product_reference": "npm10-10.24.1-1.36.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm10-10.24.1-1.36.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64"
},
"product_reference": "npm10-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-10.24.1-1.36.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64"
},
"product_reference": "nodejs10-10.24.1-1.36.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-10.24.1-1.36.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.ppc64le"
},
"product_reference": "nodejs10-10.24.1-1.36.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-10.24.1-1.36.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.s390x"
},
"product_reference": "nodejs10-10.24.1-1.36.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-10.24.1-1.36.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64"
},
"product_reference": "nodejs10-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-devel-10.24.1-1.36.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64"
},
"product_reference": "nodejs10-devel-10.24.1-1.36.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-devel-10.24.1-1.36.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le"
},
"product_reference": "nodejs10-devel-10.24.1-1.36.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-devel-10.24.1-1.36.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x"
},
"product_reference": "nodejs10-devel-10.24.1-1.36.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-devel-10.24.1-1.36.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64"
},
"product_reference": "nodejs10-devel-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-docs-10.24.1-1.36.1.noarch as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch"
},
"product_reference": "nodejs10-docs-10.24.1-1.36.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm10-10.24.1-1.36.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.aarch64"
},
"product_reference": "npm10-10.24.1-1.36.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm10-10.24.1-1.36.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.ppc64le"
},
"product_reference": "npm10-10.24.1-1.36.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm10-10.24.1-1.36.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.s390x"
},
"product_reference": "npm10-10.24.1-1.36.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm10-10.24.1-1.36.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.x86_64"
},
"product_reference": "npm10-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-10.24.1-1.36.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-1.36.1.x86_64"
},
"product_reference": "nodejs10-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-devel-10.24.1-1.36.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-1.36.1.x86_64"
},
"product_reference": "nodejs10-devel-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-docs-10.24.1-1.36.1.noarch as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-1.36.1.noarch"
},
"product_reference": "nodejs10-docs-10.24.1-1.36.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm10-10.24.1-1.36.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-1.36.1.x86_64"
},
"product_reference": "npm10-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-10.24.1-1.36.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64"
},
"product_reference": "nodejs10-10.24.1-1.36.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-10.24.1-1.36.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.ppc64le"
},
"product_reference": "nodejs10-10.24.1-1.36.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-10.24.1-1.36.1.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.s390x"
},
"product_reference": "nodejs10-10.24.1-1.36.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-10.24.1-1.36.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64"
},
"product_reference": "nodejs10-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-devel-10.24.1-1.36.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64"
},
"product_reference": "nodejs10-devel-10.24.1-1.36.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-devel-10.24.1-1.36.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le"
},
"product_reference": "nodejs10-devel-10.24.1-1.36.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-devel-10.24.1-1.36.1.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x"
},
"product_reference": "nodejs10-devel-10.24.1-1.36.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-devel-10.24.1-1.36.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64"
},
"product_reference": "nodejs10-devel-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-docs-10.24.1-1.36.1.noarch as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch"
},
"product_reference": "nodejs10-docs-10.24.1-1.36.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm10-10.24.1-1.36.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64"
},
"product_reference": "npm10-10.24.1-1.36.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm10-10.24.1-1.36.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.ppc64le"
},
"product_reference": "npm10-10.24.1-1.36.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm10-10.24.1-1.36.1.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.s390x"
},
"product_reference": "npm10-10.24.1-1.36.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm10-10.24.1-1.36.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64"
},
"product_reference": "npm10-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-10.24.1-1.36.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.ppc64le"
},
"product_reference": "nodejs10-10.24.1-1.36.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-10.24.1-1.36.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.x86_64"
},
"product_reference": "nodejs10-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-devel-10.24.1-1.36.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.ppc64le"
},
"product_reference": "nodejs10-devel-10.24.1-1.36.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-devel-10.24.1-1.36.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.x86_64"
},
"product_reference": "nodejs10-devel-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-docs-10.24.1-1.36.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-1.36.1.noarch"
},
"product_reference": "nodejs10-docs-10.24.1-1.36.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm10-10.24.1-1.36.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.ppc64le"
},
"product_reference": "npm10-10.24.1-1.36.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm10-10.24.1-1.36.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.x86_64"
},
"product_reference": "npm10-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-10.24.1-1.36.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.ppc64le"
},
"product_reference": "nodejs10-10.24.1-1.36.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-10.24.1-1.36.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.x86_64"
},
"product_reference": "nodejs10-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-devel-10.24.1-1.36.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.ppc64le"
},
"product_reference": "nodejs10-devel-10.24.1-1.36.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-devel-10.24.1-1.36.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.x86_64"
},
"product_reference": "nodejs10-devel-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-docs-10.24.1-1.36.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-1.36.1.noarch"
},
"product_reference": "nodejs10-docs-10.24.1-1.36.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm10-10.24.1-1.36.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.ppc64le"
},
"product_reference": "npm10-10.24.1-1.36.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm10-10.24.1-1.36.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.x86_64"
},
"product_reference": "npm10-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-10.24.1-1.36.1.x86_64 as component of SUSE Manager Proxy 4.0",
"product_id": "SUSE Manager Proxy 4.0:nodejs10-10.24.1-1.36.1.x86_64"
},
"product_reference": "nodejs10-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Manager Proxy 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-devel-10.24.1-1.36.1.x86_64 as component of SUSE Manager Proxy 4.0",
"product_id": "SUSE Manager Proxy 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64"
},
"product_reference": "nodejs10-devel-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Manager Proxy 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-docs-10.24.1-1.36.1.noarch as component of SUSE Manager Proxy 4.0",
"product_id": "SUSE Manager Proxy 4.0:nodejs10-docs-10.24.1-1.36.1.noarch"
},
"product_reference": "nodejs10-docs-10.24.1-1.36.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm10-10.24.1-1.36.1.x86_64 as component of SUSE Manager Proxy 4.0",
"product_id": "SUSE Manager Proxy 4.0:npm10-10.24.1-1.36.1.x86_64"
},
"product_reference": "npm10-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Manager Proxy 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-10.24.1-1.36.1.x86_64 as component of SUSE Manager Retail Branch Server 4.0",
"product_id": "SUSE Manager Retail Branch Server 4.0:nodejs10-10.24.1-1.36.1.x86_64"
},
"product_reference": "nodejs10-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Manager Retail Branch Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-devel-10.24.1-1.36.1.x86_64 as component of SUSE Manager Retail Branch Server 4.0",
"product_id": "SUSE Manager Retail Branch Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64"
},
"product_reference": "nodejs10-devel-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Manager Retail Branch Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-docs-10.24.1-1.36.1.noarch as component of SUSE Manager Retail Branch Server 4.0",
"product_id": "SUSE Manager Retail Branch Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch"
},
"product_reference": "nodejs10-docs-10.24.1-1.36.1.noarch",
"relates_to_product_reference": "SUSE Manager Retail Branch Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm10-10.24.1-1.36.1.x86_64 as component of SUSE Manager Retail Branch Server 4.0",
"product_id": "SUSE Manager Retail Branch Server 4.0:npm10-10.24.1-1.36.1.x86_64"
},
"product_reference": "npm10-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Manager Retail Branch Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-10.24.1-1.36.1.ppc64le as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.ppc64le"
},
"product_reference": "nodejs10-10.24.1-1.36.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-10.24.1-1.36.1.s390x as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.s390x"
},
"product_reference": "nodejs10-10.24.1-1.36.1.s390x",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-10.24.1-1.36.1.x86_64 as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.x86_64"
},
"product_reference": "nodejs10-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-devel-10.24.1-1.36.1.ppc64le as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.ppc64le"
},
"product_reference": "nodejs10-devel-10.24.1-1.36.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-devel-10.24.1-1.36.1.s390x as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.s390x"
},
"product_reference": "nodejs10-devel-10.24.1-1.36.1.s390x",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-devel-10.24.1-1.36.1.x86_64 as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64"
},
"product_reference": "nodejs10-devel-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-docs-10.24.1-1.36.1.noarch as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch"
},
"product_reference": "nodejs10-docs-10.24.1-1.36.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm10-10.24.1-1.36.1.ppc64le as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.ppc64le"
},
"product_reference": "npm10-10.24.1-1.36.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm10-10.24.1-1.36.1.s390x as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.s390x"
},
"product_reference": "npm10-10.24.1-1.36.1.s390x",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm10-10.24.1-1.36.1.x86_64 as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.x86_64"
},
"product_reference": "npm10-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-10.24.1-1.36.1.aarch64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.aarch64"
},
"product_reference": "nodejs10-10.24.1-1.36.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-10.24.1-1.36.1.x86_64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.x86_64"
},
"product_reference": "nodejs10-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-devel-10.24.1-1.36.1.aarch64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.aarch64"
},
"product_reference": "nodejs10-devel-10.24.1-1.36.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-devel-10.24.1-1.36.1.x86_64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.x86_64"
},
"product_reference": "nodejs10-devel-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs10-docs-10.24.1-1.36.1.noarch as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-1.36.1.noarch"
},
"product_reference": "nodejs10-docs-10.24.1-1.36.1.noarch",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm10-10.24.1-1.36.1.aarch64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.aarch64"
},
"product_reference": "npm10-10.24.1-1.36.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm10-10.24.1-1.36.1.x86_64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.x86_64"
},
"product_reference": "npm10-10.24.1-1.36.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-7774",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-7774"
}
],
"notes": [
{
"category": "general",
"text": "The package y18n before 3.2.2, 4.0.1 and 5.0.5, is vulnerable to Prototype Pollution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Proxy 4.0:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Retail Branch Server 4.0:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-7774",
"url": "https://www.suse.com/security/cve/CVE-2020-7774"
},
{
"category": "external",
"summary": "SUSE Bug 1184450 for CVE-2020-7774",
"url": "https://bugzilla.suse.com/1184450"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Proxy 4.0:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Retail Branch Server 4.0:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Proxy 4.0:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Retail Branch Server 4.0:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-15T13:18:32Z",
"details": "important"
}
],
"title": "CVE-2020-7774"
},
{
"cve": "CVE-2021-22918",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-22918"
}
],
"notes": [
{
"category": "general",
"text": "Node.js before 16.4.1, 14.17.2, 12.22.2 is vulnerable to an out-of-bounds read when uv__idna_toascii() is used to convert strings to ASCII. The pointer p is read and increased without checking whether it is beyond pe, with the latter holding a pointer to the end of the buffer. This can lead to information disclosures or crashes. This function can be triggered via uv_getaddrinfo().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Proxy 4.0:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Retail Branch Server 4.0:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-22918",
"url": "https://www.suse.com/security/cve/CVE-2021-22918"
},
{
"category": "external",
"summary": "SUSE Bug 1187973 for CVE-2021-22918",
"url": "https://bugzilla.suse.com/1187973"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Proxy 4.0:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Retail Branch Server 4.0:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Proxy 4.0:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Retail Branch Server 4.0:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-15T13:18:32Z",
"details": "moderate"
}
],
"title": "CVE-2021-22918"
},
{
"cve": "CVE-2021-23362",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-23362"
}
],
"notes": [
{
"category": "general",
"text": "The package hosted-git-info before 3.0.8 are vulnerable to Regular Expression Denial of Service (ReDoS) via regular expression shortcutMatch in the fromUrl function in index.js. The affected regular expression exhibits polynomial worst-case time complexity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Proxy 4.0:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Retail Branch Server 4.0:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-23362",
"url": "https://www.suse.com/security/cve/CVE-2021-23362"
},
{
"category": "external",
"summary": "SUSE Bug 1187977 for CVE-2021-23362",
"url": "https://bugzilla.suse.com/1187977"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Proxy 4.0:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Retail Branch Server 4.0:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Proxy 4.0:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Retail Branch Server 4.0:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-15T13:18:32Z",
"details": "moderate"
}
],
"title": "CVE-2021-23362"
},
{
"cve": "CVE-2021-27290",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-27290"
}
],
"notes": [
{
"category": "general",
"text": "ssri 5.2.2-8.0.0, fixed in 8.0.1, processes SRIs using a regular expression which is vulnerable to a denial of service. Malicious SRIs could take an extremely long time to process, leading to denial of service. This issue only affects consumers using the strict option.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Proxy 4.0:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Retail Branch Server 4.0:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-27290",
"url": "https://www.suse.com/security/cve/CVE-2021-27290"
},
{
"category": "external",
"summary": "SUSE Bug 1187976 for CVE-2021-27290",
"url": "https://bugzilla.suse.com/1187976"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Proxy 4.0:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Retail Branch Server 4.0:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Proxy 4.0:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Retail Branch Server 4.0:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-15T13:18:32Z",
"details": "important"
}
],
"title": "CVE-2021-27290"
},
{
"cve": "CVE-2021-3449",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3449"
}
],
"notes": [
{
"category": "general",
"text": "An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_cert extension then a NULL pointer dereference will result, leading to a crash and a denial of service attack. A server is only vulnerable if it has TLSv1.2 and renegotiation enabled (which is the default configuration). OpenSSL TLS clients are not impacted by this issue. All OpenSSL 1.1.1 versions are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted by this issue. Fixed in OpenSSL 1.1.1k (Affected 1.1.1-1.1.1j).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Proxy 4.0:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Retail Branch Server 4.0:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3449",
"url": "https://www.suse.com/security/cve/CVE-2021-3449"
},
{
"category": "external",
"summary": "SUSE Bug 1183852 for CVE-2021-3449",
"url": "https://bugzilla.suse.com/1183852"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Proxy 4.0:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Retail Branch Server 4.0:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Proxy 4.0:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Retail Branch Server 4.0:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-15T13:18:32Z",
"details": "important"
}
],
"title": "CVE-2021-3449"
},
{
"cve": "CVE-2021-3450",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3450"
}
],
"notes": [
{
"category": "general",
"text": "The X509_V_FLAG_X509_STRICT flag enables additional security checks of the certificates present in a certificate chain. It is not set by default. Starting from OpenSSL version 1.1.1h a check to disallow certificates in the chain that have explicitly encoded elliptic curve parameters was added as an additional strict check. An error in the implementation of this check meant that the result of a previous check to confirm that certificates in the chain are valid CA certificates was overwritten. This effectively bypasses the check that non-CA certificates must not be able to issue other certificates. If a \"purpose\" has been configured then there is a subsequent opportunity for checks that the certificate is a valid CA. All of the named \"purpose\" values implemented in libcrypto perform this check. Therefore, where a purpose is set the certificate chain will still be rejected even when the strict flag has been used. A purpose is set by default in libssl client and server certificate verification routines, but it can be overridden or removed by an application. In order to be affected, an application must explicitly set the X509_V_FLAG_X509_STRICT verification flag and either not set a purpose for the certificate verification or, in the case of TLS client or server applications, override the default purpose. OpenSSL versions 1.1.1h and newer are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted by this issue. Fixed in OpenSSL 1.1.1k (Affected 1.1.1h-1.1.1j).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Proxy 4.0:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Retail Branch Server 4.0:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3450",
"url": "https://www.suse.com/security/cve/CVE-2021-3450"
},
{
"category": "external",
"summary": "SUSE Bug 1183851 for CVE-2021-3450",
"url": "https://bugzilla.suse.com/1183851"
},
{
"category": "external",
"summary": "SUSE Bug 1188549 for CVE-2021-3450",
"url": "https://bugzilla.suse.com/1188549"
},
{
"category": "external",
"summary": "SUSE Bug 1225628 for CVE-2021-3450",
"url": "https://bugzilla.suse.com/1225628"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Proxy 4.0:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Retail Branch Server 4.0:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Enterprise Storage 6:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.aarch64",
"SUSE Enterprise Storage 6:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Proxy 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Proxy 4.0:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Retail Branch Server 4.0:npm10-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:nodejs10-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:nodejs10-devel-10.24.1-1.36.1.x86_64",
"SUSE Manager Server 4.0:nodejs10-docs-10.24.1-1.36.1.noarch",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.ppc64le",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.s390x",
"SUSE Manager Server 4.0:npm10-10.24.1-1.36.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-15T13:18:32Z",
"details": "important"
}
],
"title": "CVE-2021-3450"
}
]
}
SUSE-SU-2021:2354-1
Vulnerability from csaf_suse - Published: 2021-07-15 13:19 - Updated: 2021-07-15 13:19Summary
Security update for nodejs14
Severity
Important
Notes
Title of the patch: Security update for nodejs14
Description of the patch: This update for nodejs14 fixes the following issues:
Update nodejs14 to 14.17.2.
Including fixes for:
- CVE-2021-22918: libuv upgrade - Out of bounds read (bsc#1187973)
- CVE-2021-27290: ssri Regular Expression Denial of Service (bsc#1187976)
- CVE-2021-23362: hosted-git-info Regular Expression Denial of Service (bsc#1187977)
- CVE-2020-7774: y18n Prototype Pollution (bsc#1184450)
Patchnames: SUSE-2021-2354,SUSE-SLE-Module-Web-Scripting-15-SP2-2021-2354,SUSE-SLE-Module-Web-Scripting-15-SP3-2021-2354
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.3 (High)
Affected products
Recommended
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-docs-14.17.2-5.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-docs-14.17.2-5.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.3 (Medium)
Affected products
Recommended
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-docs-14.17.2-5.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-docs-14.17.2-5.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-docs-14.17.2-5.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-docs-14.17.2-5.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
26 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-docs-14.17.2-5.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-docs-14.17.2-5.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
20 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for nodejs14",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for nodejs14 fixes the following issues:\n\nUpdate nodejs14 to 14.17.2.\n\nIncluding fixes for:\n\n- CVE-2021-22918: libuv upgrade - Out of bounds read (bsc#1187973)\n- CVE-2021-27290: ssri Regular Expression Denial of Service (bsc#1187976)\n- CVE-2021-23362: hosted-git-info Regular Expression Denial of Service (bsc#1187977)\n- CVE-2020-7774: y18n Prototype Pollution (bsc#1184450)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2021-2354,SUSE-SLE-Module-Web-Scripting-15-SP2-2021-2354,SUSE-SLE-Module-Web-Scripting-15-SP3-2021-2354",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_2354-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2021:2354-1",
"url": "https://www.suse.com/support/update/announcement/2021/suse-su-20212354-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2021:2354-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2021-July/019612.html"
},
{
"category": "self",
"summary": "SUSE Bug 1184450",
"url": "https://bugzilla.suse.com/1184450"
},
{
"category": "self",
"summary": "SUSE Bug 1187973",
"url": "https://bugzilla.suse.com/1187973"
},
{
"category": "self",
"summary": "SUSE Bug 1187976",
"url": "https://bugzilla.suse.com/1187976"
},
{
"category": "self",
"summary": "SUSE Bug 1187977",
"url": "https://bugzilla.suse.com/1187977"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-7774 page",
"url": "https://www.suse.com/security/cve/CVE-2020-7774/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-22918 page",
"url": "https://www.suse.com/security/cve/CVE-2021-22918/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-23362 page",
"url": "https://www.suse.com/security/cve/CVE-2021-23362/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-27290 page",
"url": "https://www.suse.com/security/cve/CVE-2021-27290/"
}
],
"title": "Security update for nodejs14",
"tracking": {
"current_release_date": "2021-07-15T13:19:01Z",
"generator": {
"date": "2021-07-15T13:19:01Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2021:2354-1",
"initial_release_date": "2021-07-15T13:19:01Z",
"revision_history": [
{
"date": "2021-07-15T13:19:01Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "nodejs14-14.17.2-5.12.1.aarch64",
"product": {
"name": "nodejs14-14.17.2-5.12.1.aarch64",
"product_id": "nodejs14-14.17.2-5.12.1.aarch64"
}
},
{
"category": "product_version",
"name": "nodejs14-devel-14.17.2-5.12.1.aarch64",
"product": {
"name": "nodejs14-devel-14.17.2-5.12.1.aarch64",
"product_id": "nodejs14-devel-14.17.2-5.12.1.aarch64"
}
},
{
"category": "product_version",
"name": "npm14-14.17.2-5.12.1.aarch64",
"product": {
"name": "npm14-14.17.2-5.12.1.aarch64",
"product_id": "npm14-14.17.2-5.12.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs14-14.17.2-5.12.1.i586",
"product": {
"name": "nodejs14-14.17.2-5.12.1.i586",
"product_id": "nodejs14-14.17.2-5.12.1.i586"
}
},
{
"category": "product_version",
"name": "nodejs14-devel-14.17.2-5.12.1.i586",
"product": {
"name": "nodejs14-devel-14.17.2-5.12.1.i586",
"product_id": "nodejs14-devel-14.17.2-5.12.1.i586"
}
},
{
"category": "product_version",
"name": "npm14-14.17.2-5.12.1.i586",
"product": {
"name": "npm14-14.17.2-5.12.1.i586",
"product_id": "npm14-14.17.2-5.12.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs14-docs-14.17.2-5.12.1.noarch",
"product": {
"name": "nodejs14-docs-14.17.2-5.12.1.noarch",
"product_id": "nodejs14-docs-14.17.2-5.12.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs14-14.17.2-5.12.1.ppc64le",
"product": {
"name": "nodejs14-14.17.2-5.12.1.ppc64le",
"product_id": "nodejs14-14.17.2-5.12.1.ppc64le"
}
},
{
"category": "product_version",
"name": "nodejs14-devel-14.17.2-5.12.1.ppc64le",
"product": {
"name": "nodejs14-devel-14.17.2-5.12.1.ppc64le",
"product_id": "nodejs14-devel-14.17.2-5.12.1.ppc64le"
}
},
{
"category": "product_version",
"name": "npm14-14.17.2-5.12.1.ppc64le",
"product": {
"name": "npm14-14.17.2-5.12.1.ppc64le",
"product_id": "npm14-14.17.2-5.12.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs14-14.17.2-5.12.1.s390x",
"product": {
"name": "nodejs14-14.17.2-5.12.1.s390x",
"product_id": "nodejs14-14.17.2-5.12.1.s390x"
}
},
{
"category": "product_version",
"name": "nodejs14-devel-14.17.2-5.12.1.s390x",
"product": {
"name": "nodejs14-devel-14.17.2-5.12.1.s390x",
"product_id": "nodejs14-devel-14.17.2-5.12.1.s390x"
}
},
{
"category": "product_version",
"name": "npm14-14.17.2-5.12.1.s390x",
"product": {
"name": "npm14-14.17.2-5.12.1.s390x",
"product_id": "npm14-14.17.2-5.12.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs14-14.17.2-5.12.1.x86_64",
"product": {
"name": "nodejs14-14.17.2-5.12.1.x86_64",
"product_id": "nodejs14-14.17.2-5.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "nodejs14-devel-14.17.2-5.12.1.x86_64",
"product": {
"name": "nodejs14-devel-14.17.2-5.12.1.x86_64",
"product_id": "nodejs14-devel-14.17.2-5.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "npm14-14.17.2-5.12.1.x86_64",
"product": {
"name": "npm14-14.17.2-5.12.1.x86_64",
"product_id": "npm14-14.17.2-5.12.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product": {
"name": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-web-scripting:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
"product": {
"name": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-web-scripting:15:sp3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs14-14.17.2-5.12.1.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.aarch64"
},
"product_reference": "nodejs14-14.17.2-5.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs14-14.17.2-5.12.1.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.ppc64le"
},
"product_reference": "nodejs14-14.17.2-5.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs14-14.17.2-5.12.1.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.s390x"
},
"product_reference": "nodejs14-14.17.2-5.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs14-14.17.2-5.12.1.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.x86_64"
},
"product_reference": "nodejs14-14.17.2-5.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs14-devel-14.17.2-5.12.1.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.aarch64"
},
"product_reference": "nodejs14-devel-14.17.2-5.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs14-devel-14.17.2-5.12.1.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.ppc64le"
},
"product_reference": "nodejs14-devel-14.17.2-5.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs14-devel-14.17.2-5.12.1.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.s390x"
},
"product_reference": "nodejs14-devel-14.17.2-5.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs14-devel-14.17.2-5.12.1.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.x86_64"
},
"product_reference": "nodejs14-devel-14.17.2-5.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs14-docs-14.17.2-5.12.1.noarch as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-docs-14.17.2-5.12.1.noarch"
},
"product_reference": "nodejs14-docs-14.17.2-5.12.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm14-14.17.2-5.12.1.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.aarch64"
},
"product_reference": "npm14-14.17.2-5.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm14-14.17.2-5.12.1.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.ppc64le"
},
"product_reference": "npm14-14.17.2-5.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm14-14.17.2-5.12.1.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.s390x"
},
"product_reference": "npm14-14.17.2-5.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm14-14.17.2-5.12.1.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.x86_64"
},
"product_reference": "npm14-14.17.2-5.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs14-14.17.2-5.12.1.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.aarch64"
},
"product_reference": "nodejs14-14.17.2-5.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs14-14.17.2-5.12.1.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.ppc64le"
},
"product_reference": "nodejs14-14.17.2-5.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs14-14.17.2-5.12.1.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.s390x"
},
"product_reference": "nodejs14-14.17.2-5.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs14-14.17.2-5.12.1.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.x86_64"
},
"product_reference": "nodejs14-14.17.2-5.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs14-devel-14.17.2-5.12.1.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.aarch64"
},
"product_reference": "nodejs14-devel-14.17.2-5.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs14-devel-14.17.2-5.12.1.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.ppc64le"
},
"product_reference": "nodejs14-devel-14.17.2-5.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs14-devel-14.17.2-5.12.1.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.s390x"
},
"product_reference": "nodejs14-devel-14.17.2-5.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs14-devel-14.17.2-5.12.1.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.x86_64"
},
"product_reference": "nodejs14-devel-14.17.2-5.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs14-docs-14.17.2-5.12.1.noarch as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-docs-14.17.2-5.12.1.noarch"
},
"product_reference": "nodejs14-docs-14.17.2-5.12.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm14-14.17.2-5.12.1.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.aarch64"
},
"product_reference": "npm14-14.17.2-5.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm14-14.17.2-5.12.1.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.ppc64le"
},
"product_reference": "npm14-14.17.2-5.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm14-14.17.2-5.12.1.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.s390x"
},
"product_reference": "npm14-14.17.2-5.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm14-14.17.2-5.12.1.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP3",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.x86_64"
},
"product_reference": "npm14-14.17.2-5.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-7774",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-7774"
}
],
"notes": [
{
"category": "general",
"text": "The package y18n before 3.2.2, 4.0.1 and 5.0.5, is vulnerable to Prototype Pollution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-docs-14.17.2-5.12.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-docs-14.17.2-5.12.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-7774",
"url": "https://www.suse.com/security/cve/CVE-2020-7774"
},
{
"category": "external",
"summary": "SUSE Bug 1184450 for CVE-2020-7774",
"url": "https://bugzilla.suse.com/1184450"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-docs-14.17.2-5.12.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-docs-14.17.2-5.12.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-docs-14.17.2-5.12.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-docs-14.17.2-5.12.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-15T13:19:01Z",
"details": "important"
}
],
"title": "CVE-2020-7774"
},
{
"cve": "CVE-2021-22918",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-22918"
}
],
"notes": [
{
"category": "general",
"text": "Node.js before 16.4.1, 14.17.2, 12.22.2 is vulnerable to an out-of-bounds read when uv__idna_toascii() is used to convert strings to ASCII. The pointer p is read and increased without checking whether it is beyond pe, with the latter holding a pointer to the end of the buffer. This can lead to information disclosures or crashes. This function can be triggered via uv_getaddrinfo().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-docs-14.17.2-5.12.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-docs-14.17.2-5.12.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-22918",
"url": "https://www.suse.com/security/cve/CVE-2021-22918"
},
{
"category": "external",
"summary": "SUSE Bug 1187973 for CVE-2021-22918",
"url": "https://bugzilla.suse.com/1187973"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-docs-14.17.2-5.12.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-docs-14.17.2-5.12.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-docs-14.17.2-5.12.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-docs-14.17.2-5.12.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-15T13:19:01Z",
"details": "moderate"
}
],
"title": "CVE-2021-22918"
},
{
"cve": "CVE-2021-23362",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-23362"
}
],
"notes": [
{
"category": "general",
"text": "The package hosted-git-info before 3.0.8 are vulnerable to Regular Expression Denial of Service (ReDoS) via regular expression shortcutMatch in the fromUrl function in index.js. The affected regular expression exhibits polynomial worst-case time complexity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-docs-14.17.2-5.12.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-docs-14.17.2-5.12.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-23362",
"url": "https://www.suse.com/security/cve/CVE-2021-23362"
},
{
"category": "external",
"summary": "SUSE Bug 1187977 for CVE-2021-23362",
"url": "https://bugzilla.suse.com/1187977"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-docs-14.17.2-5.12.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-docs-14.17.2-5.12.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-docs-14.17.2-5.12.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-docs-14.17.2-5.12.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-15T13:19:01Z",
"details": "moderate"
}
],
"title": "CVE-2021-23362"
},
{
"cve": "CVE-2021-27290",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-27290"
}
],
"notes": [
{
"category": "general",
"text": "ssri 5.2.2-8.0.0, fixed in 8.0.1, processes SRIs using a regular expression which is vulnerable to a denial of service. Malicious SRIs could take an extremely long time to process, leading to denial of service. This issue only affects consumers using the strict option.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-docs-14.17.2-5.12.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-docs-14.17.2-5.12.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-27290",
"url": "https://www.suse.com/security/cve/CVE-2021-27290"
},
{
"category": "external",
"summary": "SUSE Bug 1187976 for CVE-2021-27290",
"url": "https://bugzilla.suse.com/1187976"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-docs-14.17.2-5.12.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-docs-14.17.2-5.12.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-devel-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs14-docs-14.17.2-5.12.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm14-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-devel-14.17.2-5.12.1.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:nodejs14-docs-14.17.2-5.12.1.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP3:npm14-14.17.2-5.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-07-15T13:19:01Z",
"details": "important"
}
],
"title": "CVE-2021-27290"
}
]
}
SUSE-SU-2021:2618-1
Vulnerability from csaf_suse - Published: 2021-08-05 08:28 - Updated: 2021-08-05 08:28Summary
Security update for nodejs8
Severity
Important
Notes
Title of the patch: Security update for nodejs8
Description of the patch: This update for nodejs8 fixes the following issues:
- update to npm 6.14.13
- CVE-2021-27290: Fixed ssri Regular Expression Denial of Service. (bsc#1187976)
- CVE-2021-23362: Fixed hosted-git-info Regular Expression Denial of Service. (bsc#1187977)
- CVE-2020-7774: fixes y18n Prototype Pollution. (bsc#1184450)
Patchnames: SUSE-2021-2618,SUSE-SLE-Module-Web-Scripting-15-SP2-2021-2618
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.3 (High)
Affected products
Recommended
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-docs-8.17.0-10.12.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.3 (Medium)
Affected products
Recommended
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-docs-8.17.0-10.12.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-docs-8.17.0-10.12.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
16 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for nodejs8",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for nodejs8 fixes the following issues:\n\n- update to npm 6.14.13\n- CVE-2021-27290: Fixed ssri Regular Expression Denial of Service. (bsc#1187976)\n- CVE-2021-23362: Fixed hosted-git-info Regular Expression Denial of Service. (bsc#1187977)\n- CVE-2020-7774: fixes y18n Prototype Pollution. (bsc#1184450)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2021-2618,SUSE-SLE-Module-Web-Scripting-15-SP2-2021-2618",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_2618-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2021:2618-1",
"url": "https://www.suse.com/support/update/announcement/2021/suse-su-20212618-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2021:2618-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-August/009257.html"
},
{
"category": "self",
"summary": "SUSE Bug 1184450",
"url": "https://bugzilla.suse.com/1184450"
},
{
"category": "self",
"summary": "SUSE Bug 1187976",
"url": "https://bugzilla.suse.com/1187976"
},
{
"category": "self",
"summary": "SUSE Bug 1187977",
"url": "https://bugzilla.suse.com/1187977"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-7774 page",
"url": "https://www.suse.com/security/cve/CVE-2020-7774/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-23362 page",
"url": "https://www.suse.com/security/cve/CVE-2021-23362/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-27290 page",
"url": "https://www.suse.com/security/cve/CVE-2021-27290/"
}
],
"title": "Security update for nodejs8",
"tracking": {
"current_release_date": "2021-08-05T08:28:03Z",
"generator": {
"date": "2021-08-05T08:28:03Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2021:2618-1",
"initial_release_date": "2021-08-05T08:28:03Z",
"revision_history": [
{
"date": "2021-08-05T08:28:03Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "nodejs8-8.17.0-10.12.2.aarch64",
"product": {
"name": "nodejs8-8.17.0-10.12.2.aarch64",
"product_id": "nodejs8-8.17.0-10.12.2.aarch64"
}
},
{
"category": "product_version",
"name": "nodejs8-devel-8.17.0-10.12.2.aarch64",
"product": {
"name": "nodejs8-devel-8.17.0-10.12.2.aarch64",
"product_id": "nodejs8-devel-8.17.0-10.12.2.aarch64"
}
},
{
"category": "product_version",
"name": "npm8-8.17.0-10.12.2.aarch64",
"product": {
"name": "npm8-8.17.0-10.12.2.aarch64",
"product_id": "npm8-8.17.0-10.12.2.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs8-8.17.0-10.12.2.i586",
"product": {
"name": "nodejs8-8.17.0-10.12.2.i586",
"product_id": "nodejs8-8.17.0-10.12.2.i586"
}
},
{
"category": "product_version",
"name": "nodejs8-devel-8.17.0-10.12.2.i586",
"product": {
"name": "nodejs8-devel-8.17.0-10.12.2.i586",
"product_id": "nodejs8-devel-8.17.0-10.12.2.i586"
}
},
{
"category": "product_version",
"name": "npm8-8.17.0-10.12.2.i586",
"product": {
"name": "npm8-8.17.0-10.12.2.i586",
"product_id": "npm8-8.17.0-10.12.2.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs8-docs-8.17.0-10.12.2.noarch",
"product": {
"name": "nodejs8-docs-8.17.0-10.12.2.noarch",
"product_id": "nodejs8-docs-8.17.0-10.12.2.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs8-8.17.0-10.12.2.ppc64le",
"product": {
"name": "nodejs8-8.17.0-10.12.2.ppc64le",
"product_id": "nodejs8-8.17.0-10.12.2.ppc64le"
}
},
{
"category": "product_version",
"name": "nodejs8-devel-8.17.0-10.12.2.ppc64le",
"product": {
"name": "nodejs8-devel-8.17.0-10.12.2.ppc64le",
"product_id": "nodejs8-devel-8.17.0-10.12.2.ppc64le"
}
},
{
"category": "product_version",
"name": "npm8-8.17.0-10.12.2.ppc64le",
"product": {
"name": "npm8-8.17.0-10.12.2.ppc64le",
"product_id": "npm8-8.17.0-10.12.2.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs8-8.17.0-10.12.2.s390x",
"product": {
"name": "nodejs8-8.17.0-10.12.2.s390x",
"product_id": "nodejs8-8.17.0-10.12.2.s390x"
}
},
{
"category": "product_version",
"name": "nodejs8-devel-8.17.0-10.12.2.s390x",
"product": {
"name": "nodejs8-devel-8.17.0-10.12.2.s390x",
"product_id": "nodejs8-devel-8.17.0-10.12.2.s390x"
}
},
{
"category": "product_version",
"name": "npm8-8.17.0-10.12.2.s390x",
"product": {
"name": "npm8-8.17.0-10.12.2.s390x",
"product_id": "npm8-8.17.0-10.12.2.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs8-8.17.0-10.12.2.x86_64",
"product": {
"name": "nodejs8-8.17.0-10.12.2.x86_64",
"product_id": "nodejs8-8.17.0-10.12.2.x86_64"
}
},
{
"category": "product_version",
"name": "nodejs8-devel-8.17.0-10.12.2.x86_64",
"product": {
"name": "nodejs8-devel-8.17.0-10.12.2.x86_64",
"product_id": "nodejs8-devel-8.17.0-10.12.2.x86_64"
}
},
{
"category": "product_version",
"name": "npm8-8.17.0-10.12.2.x86_64",
"product": {
"name": "npm8-8.17.0-10.12.2.x86_64",
"product_id": "npm8-8.17.0-10.12.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product": {
"name": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-web-scripting:15:sp2"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-8.17.0-10.12.2.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.aarch64"
},
"product_reference": "nodejs8-8.17.0-10.12.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-8.17.0-10.12.2.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.ppc64le"
},
"product_reference": "nodejs8-8.17.0-10.12.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-8.17.0-10.12.2.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.s390x"
},
"product_reference": "nodejs8-8.17.0-10.12.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-8.17.0-10.12.2.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.x86_64"
},
"product_reference": "nodejs8-8.17.0-10.12.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-devel-8.17.0-10.12.2.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.aarch64"
},
"product_reference": "nodejs8-devel-8.17.0-10.12.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-devel-8.17.0-10.12.2.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.ppc64le"
},
"product_reference": "nodejs8-devel-8.17.0-10.12.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-devel-8.17.0-10.12.2.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.s390x"
},
"product_reference": "nodejs8-devel-8.17.0-10.12.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-devel-8.17.0-10.12.2.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.x86_64"
},
"product_reference": "nodejs8-devel-8.17.0-10.12.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-docs-8.17.0-10.12.2.noarch as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-docs-8.17.0-10.12.2.noarch"
},
"product_reference": "nodejs8-docs-8.17.0-10.12.2.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm8-8.17.0-10.12.2.aarch64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.aarch64"
},
"product_reference": "npm8-8.17.0-10.12.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm8-8.17.0-10.12.2.ppc64le as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.ppc64le"
},
"product_reference": "npm8-8.17.0-10.12.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm8-8.17.0-10.12.2.s390x as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.s390x"
},
"product_reference": "npm8-8.17.0-10.12.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm8-8.17.0-10.12.2.x86_64 as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.x86_64"
},
"product_reference": "npm8-8.17.0-10.12.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-7774",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-7774"
}
],
"notes": [
{
"category": "general",
"text": "The package y18n before 3.2.2, 4.0.1 and 5.0.5, is vulnerable to Prototype Pollution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-docs-8.17.0-10.12.2.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-7774",
"url": "https://www.suse.com/security/cve/CVE-2020-7774"
},
{
"category": "external",
"summary": "SUSE Bug 1184450 for CVE-2020-7774",
"url": "https://bugzilla.suse.com/1184450"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-docs-8.17.0-10.12.2.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-docs-8.17.0-10.12.2.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-08-05T08:28:03Z",
"details": "important"
}
],
"title": "CVE-2020-7774"
},
{
"cve": "CVE-2021-23362",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-23362"
}
],
"notes": [
{
"category": "general",
"text": "The package hosted-git-info before 3.0.8 are vulnerable to Regular Expression Denial of Service (ReDoS) via regular expression shortcutMatch in the fromUrl function in index.js. The affected regular expression exhibits polynomial worst-case time complexity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-docs-8.17.0-10.12.2.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-23362",
"url": "https://www.suse.com/security/cve/CVE-2021-23362"
},
{
"category": "external",
"summary": "SUSE Bug 1187977 for CVE-2021-23362",
"url": "https://bugzilla.suse.com/1187977"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-docs-8.17.0-10.12.2.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-docs-8.17.0-10.12.2.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-08-05T08:28:03Z",
"details": "moderate"
}
],
"title": "CVE-2021-23362"
},
{
"cve": "CVE-2021-27290",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-27290"
}
],
"notes": [
{
"category": "general",
"text": "ssri 5.2.2-8.0.0, fixed in 8.0.1, processes SRIs using a regular expression which is vulnerable to a denial of service. Malicious SRIs could take an extremely long time to process, leading to denial of service. This issue only affects consumers using the strict option.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-docs-8.17.0-10.12.2.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-27290",
"url": "https://www.suse.com/security/cve/CVE-2021-27290"
},
{
"category": "external",
"summary": "SUSE Bug 1187976 for CVE-2021-27290",
"url": "https://bugzilla.suse.com/1187976"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-docs-8.17.0-10.12.2.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-8.17.0-10.12.2.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-devel-8.17.0-10.12.2.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs8-docs-8.17.0-10.12.2.noarch",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.aarch64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.ppc64le",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.s390x",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:npm8-8.17.0-10.12.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-08-05T08:28:03Z",
"details": "important"
}
],
"title": "CVE-2021-27290"
}
]
}
SUSE-SU-2021:2620-1
Vulnerability from csaf_suse - Published: 2021-08-05 08:36 - Updated: 2021-08-05 08:36Summary
Security update for nodejs8
Severity
Important
Notes
Title of the patch: Security update for nodejs8
Description of the patch: This update for nodejs8 fixes the following issues:
- update to npm 6.14.13
- CVE-2021-27290: Fixed ssri Regular Expression Denial of Service. (bsc#1187976)
- CVE-2021-23362: Fixed hosted-git-info Regular Expression Denial of Service (bsc#1187977)
- CVE-2021-22884: DNS rebinding in --inspect (bsc#1182620)
Patchnames: SUSE-2021-2620,SUSE-SLE-Module-Web-Scripting-15-SP2-2021-2620,SUSE-SLE-Product-HPC-15-2021-2620,SUSE-SLE-Product-HPC-15-SP1-ESPOS-2021-2620,SUSE-SLE-Product-HPC-15-SP1-LTSS-2021-2620,SUSE-SLE-Product-SLES-15-2021-2620,SUSE-SLE-Product-SLES-15-SP1-BCL-2021-2620,SUSE-SLE-Product-SLES-15-SP1-LTSS-2021-2620,SUSE-SLE-Product-SLES_SAP-15-2021-2620,SUSE-SLE-Product-SLES_SAP-15-SP1-2021-2620,SUSE-SLE-Product-SUSE-Manager-Proxy-4.0-2021-2620,SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.0-2021-2620,SUSE-SLE-Product-SUSE-Manager-Server-4.0-2021-2620,SUSE-Storage-6-2021-2620
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.3 (High)
Affected products
Recommended
111 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs8-devel-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:npm8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-devel-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-devel-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-devel-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-devel-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.8 (Medium)
Affected products
Recommended
111 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs8-devel-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:npm8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-devel-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-devel-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-devel-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-devel-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
111 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs8-devel-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:npm8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-devel-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-devel-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-devel-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-devel-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
111 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs8-devel-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:npm8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 6:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-devel-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-devel-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-BCL:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-devel-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-devel-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Proxy 4.0:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Retail Branch Server 4.0:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs-common-2.0-3.2.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:nodejs8-docs-8.17.0-3.47.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
22 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for nodejs8",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for nodejs8 fixes the following issues:\n\n- update to npm 6.14.13\n- CVE-2021-27290: Fixed ssri Regular Expression Denial of Service. (bsc#1187976)\n- CVE-2021-23362: Fixed hosted-git-info Regular Expression Denial of Service (bsc#1187977)\n- CVE-2021-22884: DNS rebinding in --inspect (bsc#1182620)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2021-2620,SUSE-SLE-Module-Web-Scripting-15-SP2-2021-2620,SUSE-SLE-Product-HPC-15-2021-2620,SUSE-SLE-Product-HPC-15-SP1-ESPOS-2021-2620,SUSE-SLE-Product-HPC-15-SP1-LTSS-2021-2620,SUSE-SLE-Product-SLES-15-2021-2620,SUSE-SLE-Product-SLES-15-SP1-BCL-2021-2620,SUSE-SLE-Product-SLES-15-SP1-LTSS-2021-2620,SUSE-SLE-Product-SLES_SAP-15-2021-2620,SUSE-SLE-Product-SLES_SAP-15-SP1-2021-2620,SUSE-SLE-Product-SUSE-Manager-Proxy-4.0-2021-2620,SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.0-2021-2620,SUSE-SLE-Product-SUSE-Manager-Server-4.0-2021-2620,SUSE-Storage-6-2021-2620",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_2620-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2021:2620-1",
"url": "https://www.suse.com/support/update/announcement/2021/suse-su-20212620-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2021:2620-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-August/009256.html"
},
{
"category": "self",
"summary": "SUSE Bug 1182620",
"url": "https://bugzilla.suse.com/1182620"
},
{
"category": "self",
"summary": "SUSE Bug 1184450",
"url": "https://bugzilla.suse.com/1184450"
},
{
"category": "self",
"summary": "SUSE Bug 1187976",
"url": "https://bugzilla.suse.com/1187976"
},
{
"category": "self",
"summary": "SUSE Bug 1187977",
"url": "https://bugzilla.suse.com/1187977"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-7774 page",
"url": "https://www.suse.com/security/cve/CVE-2020-7774/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-22884 page",
"url": "https://www.suse.com/security/cve/CVE-2021-22884/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-23362 page",
"url": "https://www.suse.com/security/cve/CVE-2021-23362/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-27290 page",
"url": "https://www.suse.com/security/cve/CVE-2021-27290/"
}
],
"title": "Security update for nodejs8",
"tracking": {
"current_release_date": "2021-08-05T08:36:27Z",
"generator": {
"date": "2021-08-05T08:36:27Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2021:2620-1",
"initial_release_date": "2021-08-05T08:36:27Z",
"revision_history": [
{
"date": "2021-08-05T08:36:27Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "nodejs8-8.17.0-3.47.2.aarch64",
"product": {
"name": "nodejs8-8.17.0-3.47.2.aarch64",
"product_id": "nodejs8-8.17.0-3.47.2.aarch64"
}
},
{
"category": "product_version",
"name": "nodejs8-devel-8.17.0-3.47.2.aarch64",
"product": {
"name": "nodejs8-devel-8.17.0-3.47.2.aarch64",
"product_id": "nodejs8-devel-8.17.0-3.47.2.aarch64"
}
},
{
"category": "product_version",
"name": "npm8-8.17.0-3.47.2.aarch64",
"product": {
"name": "npm8-8.17.0-3.47.2.aarch64",
"product_id": "npm8-8.17.0-3.47.2.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs8-8.17.0-3.47.2.i586",
"product": {
"name": "nodejs8-8.17.0-3.47.2.i586",
"product_id": "nodejs8-8.17.0-3.47.2.i586"
}
},
{
"category": "product_version",
"name": "nodejs8-devel-8.17.0-3.47.2.i586",
"product": {
"name": "nodejs8-devel-8.17.0-3.47.2.i586",
"product_id": "nodejs8-devel-8.17.0-3.47.2.i586"
}
},
{
"category": "product_version",
"name": "npm8-8.17.0-3.47.2.i586",
"product": {
"name": "npm8-8.17.0-3.47.2.i586",
"product_id": "npm8-8.17.0-3.47.2.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-common-2.0-3.2.1.noarch",
"product": {
"name": "nodejs-common-2.0-3.2.1.noarch",
"product_id": "nodejs-common-2.0-3.2.1.noarch"
}
},
{
"category": "product_version",
"name": "nodejs8-docs-8.17.0-3.47.2.noarch",
"product": {
"name": "nodejs8-docs-8.17.0-3.47.2.noarch",
"product_id": "nodejs8-docs-8.17.0-3.47.2.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs8-8.17.0-3.47.2.ppc64le",
"product": {
"name": "nodejs8-8.17.0-3.47.2.ppc64le",
"product_id": "nodejs8-8.17.0-3.47.2.ppc64le"
}
},
{
"category": "product_version",
"name": "nodejs8-devel-8.17.0-3.47.2.ppc64le",
"product": {
"name": "nodejs8-devel-8.17.0-3.47.2.ppc64le",
"product_id": "nodejs8-devel-8.17.0-3.47.2.ppc64le"
}
},
{
"category": "product_version",
"name": "npm8-8.17.0-3.47.2.ppc64le",
"product": {
"name": "npm8-8.17.0-3.47.2.ppc64le",
"product_id": "npm8-8.17.0-3.47.2.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs8-8.17.0-3.47.2.s390x",
"product": {
"name": "nodejs8-8.17.0-3.47.2.s390x",
"product_id": "nodejs8-8.17.0-3.47.2.s390x"
}
},
{
"category": "product_version",
"name": "nodejs8-devel-8.17.0-3.47.2.s390x",
"product": {
"name": "nodejs8-devel-8.17.0-3.47.2.s390x",
"product_id": "nodejs8-devel-8.17.0-3.47.2.s390x"
}
},
{
"category": "product_version",
"name": "npm8-8.17.0-3.47.2.s390x",
"product": {
"name": "npm8-8.17.0-3.47.2.s390x",
"product_id": "npm8-8.17.0-3.47.2.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs8-8.17.0-3.47.2.x86_64",
"product": {
"name": "nodejs8-8.17.0-3.47.2.x86_64",
"product_id": "nodejs8-8.17.0-3.47.2.x86_64"
}
},
{
"category": "product_version",
"name": "nodejs8-devel-8.17.0-3.47.2.x86_64",
"product": {
"name": "nodejs8-devel-8.17.0-3.47.2.x86_64",
"product_id": "nodejs8-devel-8.17.0-3.47.2.x86_64"
}
},
{
"category": "product_version",
"name": "npm8-8.17.0-3.47.2.x86_64",
"product": {
"name": "npm8-8.17.0-3.47.2.x86_64",
"product_id": "npm8-8.17.0-3.47.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product": {
"name": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-web-scripting:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP1-BCL",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_bcl:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP1-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Manager Proxy 4.0",
"product": {
"name": "SUSE Manager Proxy 4.0",
"product_id": "SUSE Manager Proxy 4.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-manager-proxy:4.0"
}
}
},
{
"category": "product_name",
"name": "SUSE Manager Retail Branch Server 4.0",
"product": {
"name": "SUSE Manager Retail Branch Server 4.0",
"product_id": "SUSE Manager Retail Branch Server 4.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-manager-retail-branch-server:4.0"
}
}
},
{
"category": "product_name",
"name": "SUSE Manager Server 4.0",
"product": {
"name": "SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-manager-server:4.0"
}
}
},
{
"category": "product_name",
"name": "SUSE Enterprise Storage 6",
"product": {
"name": "SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:ses:6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-common-2.0-3.2.1.noarch as component of SUSE Linux Enterprise Module for Web and Scripting 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs-common-2.0-3.2.1.noarch"
},
"product_reference": "nodejs-common-2.0-3.2.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Web and Scripting 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-common-2.0-3.2.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs-common-2.0-3.2.1.noarch"
},
"product_reference": "nodejs-common-2.0-3.2.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-8.17.0-3.47.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-8.17.0-3.47.2.aarch64"
},
"product_reference": "nodejs8-8.17.0-3.47.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-8.17.0-3.47.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-8.17.0-3.47.2.x86_64"
},
"product_reference": "nodejs8-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-devel-8.17.0-3.47.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-devel-8.17.0-3.47.2.aarch64"
},
"product_reference": "nodejs8-devel-8.17.0-3.47.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-devel-8.17.0-3.47.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-devel-8.17.0-3.47.2.x86_64"
},
"product_reference": "nodejs8-devel-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-docs-8.17.0-3.47.2.noarch as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-docs-8.17.0-3.47.2.noarch"
},
"product_reference": "nodejs8-docs-8.17.0-3.47.2.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm8-8.17.0-3.47.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm8-8.17.0-3.47.2.aarch64"
},
"product_reference": "npm8-8.17.0-3.47.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm8-8.17.0-3.47.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm8-8.17.0-3.47.2.x86_64"
},
"product_reference": "npm8-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-common-2.0-3.2.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs-common-2.0-3.2.1.noarch"
},
"product_reference": "nodejs-common-2.0-3.2.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-8.17.0-3.47.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-8.17.0-3.47.2.aarch64"
},
"product_reference": "nodejs8-8.17.0-3.47.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-8.17.0-3.47.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-8.17.0-3.47.2.x86_64"
},
"product_reference": "nodejs8-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-devel-8.17.0-3.47.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64"
},
"product_reference": "nodejs8-devel-8.17.0-3.47.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-devel-8.17.0-3.47.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64"
},
"product_reference": "nodejs8-devel-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-docs-8.17.0-3.47.2.noarch as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch"
},
"product_reference": "nodejs8-docs-8.17.0-3.47.2.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm8-8.17.0-3.47.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm8-8.17.0-3.47.2.aarch64"
},
"product_reference": "npm8-8.17.0-3.47.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm8-8.17.0-3.47.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:npm8-8.17.0-3.47.2.x86_64"
},
"product_reference": "npm8-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-common-2.0-3.2.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs-common-2.0-3.2.1.noarch"
},
"product_reference": "nodejs-common-2.0-3.2.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-8.17.0-3.47.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-8.17.0-3.47.2.aarch64"
},
"product_reference": "nodejs8-8.17.0-3.47.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-8.17.0-3.47.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-8.17.0-3.47.2.x86_64"
},
"product_reference": "nodejs8-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-devel-8.17.0-3.47.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-devel-8.17.0-3.47.2.aarch64"
},
"product_reference": "nodejs8-devel-8.17.0-3.47.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-devel-8.17.0-3.47.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-devel-8.17.0-3.47.2.x86_64"
},
"product_reference": "nodejs8-devel-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-docs-8.17.0-3.47.2.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-docs-8.17.0-3.47.2.noarch"
},
"product_reference": "nodejs8-docs-8.17.0-3.47.2.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm8-8.17.0-3.47.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm8-8.17.0-3.47.2.aarch64"
},
"product_reference": "npm8-8.17.0-3.47.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm8-8.17.0-3.47.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm8-8.17.0-3.47.2.x86_64"
},
"product_reference": "npm8-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-common-2.0-3.2.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs-common-2.0-3.2.1.noarch"
},
"product_reference": "nodejs-common-2.0-3.2.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-8.17.0-3.47.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.aarch64"
},
"product_reference": "nodejs8-8.17.0-3.47.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-8.17.0-3.47.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.x86_64"
},
"product_reference": "nodejs8-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-devel-8.17.0-3.47.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64"
},
"product_reference": "nodejs8-devel-8.17.0-3.47.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-devel-8.17.0-3.47.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64"
},
"product_reference": "nodejs8-devel-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-docs-8.17.0-3.47.2.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch"
},
"product_reference": "nodejs8-docs-8.17.0-3.47.2.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm8-8.17.0-3.47.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm8-8.17.0-3.47.2.aarch64"
},
"product_reference": "npm8-8.17.0-3.47.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm8-8.17.0-3.47.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm8-8.17.0-3.47.2.x86_64"
},
"product_reference": "npm8-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-common-2.0-3.2.1.noarch as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:nodejs-common-2.0-3.2.1.noarch"
},
"product_reference": "nodejs-common-2.0-3.2.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-8.17.0-3.47.2.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.aarch64"
},
"product_reference": "nodejs8-8.17.0-3.47.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-8.17.0-3.47.2.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.ppc64le"
},
"product_reference": "nodejs8-8.17.0-3.47.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-8.17.0-3.47.2.s390x as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.s390x"
},
"product_reference": "nodejs8-8.17.0-3.47.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-8.17.0-3.47.2.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.x86_64"
},
"product_reference": "nodejs8-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-devel-8.17.0-3.47.2.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64"
},
"product_reference": "nodejs8-devel-8.17.0-3.47.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-devel-8.17.0-3.47.2.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.ppc64le"
},
"product_reference": "nodejs8-devel-8.17.0-3.47.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-devel-8.17.0-3.47.2.s390x as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.s390x"
},
"product_reference": "nodejs8-devel-8.17.0-3.47.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-devel-8.17.0-3.47.2.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64"
},
"product_reference": "nodejs8-devel-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-docs-8.17.0-3.47.2.noarch as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch"
},
"product_reference": "nodejs8-docs-8.17.0-3.47.2.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm8-8.17.0-3.47.2.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.aarch64"
},
"product_reference": "npm8-8.17.0-3.47.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm8-8.17.0-3.47.2.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.ppc64le"
},
"product_reference": "npm8-8.17.0-3.47.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm8-8.17.0-3.47.2.s390x as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.s390x"
},
"product_reference": "npm8-8.17.0-3.47.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm8-8.17.0-3.47.2.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.x86_64"
},
"product_reference": "npm8-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-common-2.0-3.2.1.noarch as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs-common-2.0-3.2.1.noarch"
},
"product_reference": "nodejs-common-2.0-3.2.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-8.17.0-3.47.2.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-8.17.0-3.47.2.x86_64"
},
"product_reference": "nodejs8-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-devel-8.17.0-3.47.2.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-devel-8.17.0-3.47.2.x86_64"
},
"product_reference": "nodejs8-devel-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-docs-8.17.0-3.47.2.noarch as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-docs-8.17.0-3.47.2.noarch"
},
"product_reference": "nodejs8-docs-8.17.0-3.47.2.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm8-8.17.0-3.47.2.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL",
"product_id": "SUSE Linux Enterprise Server 15 SP1-BCL:npm8-8.17.0-3.47.2.x86_64"
},
"product_reference": "npm8-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-common-2.0-3.2.1.noarch as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs-common-2.0-3.2.1.noarch"
},
"product_reference": "nodejs-common-2.0-3.2.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-8.17.0-3.47.2.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.aarch64"
},
"product_reference": "nodejs8-8.17.0-3.47.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-8.17.0-3.47.2.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.ppc64le"
},
"product_reference": "nodejs8-8.17.0-3.47.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-8.17.0-3.47.2.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.s390x"
},
"product_reference": "nodejs8-8.17.0-3.47.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-8.17.0-3.47.2.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.x86_64"
},
"product_reference": "nodejs8-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-devel-8.17.0-3.47.2.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64"
},
"product_reference": "nodejs8-devel-8.17.0-3.47.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-devel-8.17.0-3.47.2.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.ppc64le"
},
"product_reference": "nodejs8-devel-8.17.0-3.47.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-devel-8.17.0-3.47.2.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.s390x"
},
"product_reference": "nodejs8-devel-8.17.0-3.47.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-devel-8.17.0-3.47.2.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64"
},
"product_reference": "nodejs8-devel-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-docs-8.17.0-3.47.2.noarch as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch"
},
"product_reference": "nodejs8-docs-8.17.0-3.47.2.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm8-8.17.0-3.47.2.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.aarch64"
},
"product_reference": "npm8-8.17.0-3.47.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm8-8.17.0-3.47.2.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.ppc64le"
},
"product_reference": "npm8-8.17.0-3.47.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm8-8.17.0-3.47.2.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.s390x"
},
"product_reference": "npm8-8.17.0-3.47.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm8-8.17.0-3.47.2.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.x86_64"
},
"product_reference": "npm8-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP1-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-common-2.0-3.2.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:nodejs-common-2.0-3.2.1.noarch"
},
"product_reference": "nodejs-common-2.0-3.2.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-8.17.0-3.47.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-8.17.0-3.47.2.ppc64le"
},
"product_reference": "nodejs8-8.17.0-3.47.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-8.17.0-3.47.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-8.17.0-3.47.2.x86_64"
},
"product_reference": "nodejs8-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-devel-8.17.0-3.47.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-devel-8.17.0-3.47.2.ppc64le"
},
"product_reference": "nodejs8-devel-8.17.0-3.47.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-devel-8.17.0-3.47.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-devel-8.17.0-3.47.2.x86_64"
},
"product_reference": "nodejs8-devel-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-docs-8.17.0-3.47.2.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-docs-8.17.0-3.47.2.noarch"
},
"product_reference": "nodejs8-docs-8.17.0-3.47.2.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm8-8.17.0-3.47.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:npm8-8.17.0-3.47.2.ppc64le"
},
"product_reference": "npm8-8.17.0-3.47.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm8-8.17.0-3.47.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:npm8-8.17.0-3.47.2.x86_64"
},
"product_reference": "npm8-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-common-2.0-3.2.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs-common-2.0-3.2.1.noarch"
},
"product_reference": "nodejs-common-2.0-3.2.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-8.17.0-3.47.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-8.17.0-3.47.2.ppc64le"
},
"product_reference": "nodejs8-8.17.0-3.47.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-8.17.0-3.47.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-8.17.0-3.47.2.x86_64"
},
"product_reference": "nodejs8-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-devel-8.17.0-3.47.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-devel-8.17.0-3.47.2.ppc64le"
},
"product_reference": "nodejs8-devel-8.17.0-3.47.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-devel-8.17.0-3.47.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-devel-8.17.0-3.47.2.x86_64"
},
"product_reference": "nodejs8-devel-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-docs-8.17.0-3.47.2.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-docs-8.17.0-3.47.2.noarch"
},
"product_reference": "nodejs8-docs-8.17.0-3.47.2.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm8-8.17.0-3.47.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm8-8.17.0-3.47.2.ppc64le"
},
"product_reference": "npm8-8.17.0-3.47.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm8-8.17.0-3.47.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm8-8.17.0-3.47.2.x86_64"
},
"product_reference": "npm8-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-common-2.0-3.2.1.noarch as component of SUSE Manager Proxy 4.0",
"product_id": "SUSE Manager Proxy 4.0:nodejs-common-2.0-3.2.1.noarch"
},
"product_reference": "nodejs-common-2.0-3.2.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-8.17.0-3.47.2.x86_64 as component of SUSE Manager Proxy 4.0",
"product_id": "SUSE Manager Proxy 4.0:nodejs8-8.17.0-3.47.2.x86_64"
},
"product_reference": "nodejs8-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Manager Proxy 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-devel-8.17.0-3.47.2.x86_64 as component of SUSE Manager Proxy 4.0",
"product_id": "SUSE Manager Proxy 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64"
},
"product_reference": "nodejs8-devel-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Manager Proxy 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-docs-8.17.0-3.47.2.noarch as component of SUSE Manager Proxy 4.0",
"product_id": "SUSE Manager Proxy 4.0:nodejs8-docs-8.17.0-3.47.2.noarch"
},
"product_reference": "nodejs8-docs-8.17.0-3.47.2.noarch",
"relates_to_product_reference": "SUSE Manager Proxy 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm8-8.17.0-3.47.2.x86_64 as component of SUSE Manager Proxy 4.0",
"product_id": "SUSE Manager Proxy 4.0:npm8-8.17.0-3.47.2.x86_64"
},
"product_reference": "npm8-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Manager Proxy 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-common-2.0-3.2.1.noarch as component of SUSE Manager Retail Branch Server 4.0",
"product_id": "SUSE Manager Retail Branch Server 4.0:nodejs-common-2.0-3.2.1.noarch"
},
"product_reference": "nodejs-common-2.0-3.2.1.noarch",
"relates_to_product_reference": "SUSE Manager Retail Branch Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-8.17.0-3.47.2.x86_64 as component of SUSE Manager Retail Branch Server 4.0",
"product_id": "SUSE Manager Retail Branch Server 4.0:nodejs8-8.17.0-3.47.2.x86_64"
},
"product_reference": "nodejs8-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Manager Retail Branch Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-devel-8.17.0-3.47.2.x86_64 as component of SUSE Manager Retail Branch Server 4.0",
"product_id": "SUSE Manager Retail Branch Server 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64"
},
"product_reference": "nodejs8-devel-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Manager Retail Branch Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-docs-8.17.0-3.47.2.noarch as component of SUSE Manager Retail Branch Server 4.0",
"product_id": "SUSE Manager Retail Branch Server 4.0:nodejs8-docs-8.17.0-3.47.2.noarch"
},
"product_reference": "nodejs8-docs-8.17.0-3.47.2.noarch",
"relates_to_product_reference": "SUSE Manager Retail Branch Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm8-8.17.0-3.47.2.x86_64 as component of SUSE Manager Retail Branch Server 4.0",
"product_id": "SUSE Manager Retail Branch Server 4.0:npm8-8.17.0-3.47.2.x86_64"
},
"product_reference": "npm8-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Manager Retail Branch Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-common-2.0-3.2.1.noarch as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:nodejs-common-2.0-3.2.1.noarch"
},
"product_reference": "nodejs-common-2.0-3.2.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-8.17.0-3.47.2.ppc64le as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.ppc64le"
},
"product_reference": "nodejs8-8.17.0-3.47.2.ppc64le",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-8.17.0-3.47.2.s390x as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.s390x"
},
"product_reference": "nodejs8-8.17.0-3.47.2.s390x",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-8.17.0-3.47.2.x86_64 as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.x86_64"
},
"product_reference": "nodejs8-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-devel-8.17.0-3.47.2.ppc64le as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.ppc64le"
},
"product_reference": "nodejs8-devel-8.17.0-3.47.2.ppc64le",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-devel-8.17.0-3.47.2.s390x as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.s390x"
},
"product_reference": "nodejs8-devel-8.17.0-3.47.2.s390x",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-devel-8.17.0-3.47.2.x86_64 as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64"
},
"product_reference": "nodejs8-devel-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-docs-8.17.0-3.47.2.noarch as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:nodejs8-docs-8.17.0-3.47.2.noarch"
},
"product_reference": "nodejs8-docs-8.17.0-3.47.2.noarch",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm8-8.17.0-3.47.2.ppc64le as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.ppc64le"
},
"product_reference": "npm8-8.17.0-3.47.2.ppc64le",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm8-8.17.0-3.47.2.s390x as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.s390x"
},
"product_reference": "npm8-8.17.0-3.47.2.s390x",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm8-8.17.0-3.47.2.x86_64 as component of SUSE Manager Server 4.0",
"product_id": "SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.x86_64"
},
"product_reference": "npm8-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Manager Server 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-common-2.0-3.2.1.noarch as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:nodejs-common-2.0-3.2.1.noarch"
},
"product_reference": "nodejs-common-2.0-3.2.1.noarch",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-8.17.0-3.47.2.aarch64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:nodejs8-8.17.0-3.47.2.aarch64"
},
"product_reference": "nodejs8-8.17.0-3.47.2.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-8.17.0-3.47.2.x86_64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:nodejs8-8.17.0-3.47.2.x86_64"
},
"product_reference": "nodejs8-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-devel-8.17.0-3.47.2.aarch64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:nodejs8-devel-8.17.0-3.47.2.aarch64"
},
"product_reference": "nodejs8-devel-8.17.0-3.47.2.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-devel-8.17.0-3.47.2.x86_64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:nodejs8-devel-8.17.0-3.47.2.x86_64"
},
"product_reference": "nodejs8-devel-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs8-docs-8.17.0-3.47.2.noarch as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:nodejs8-docs-8.17.0-3.47.2.noarch"
},
"product_reference": "nodejs8-docs-8.17.0-3.47.2.noarch",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm8-8.17.0-3.47.2.aarch64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:npm8-8.17.0-3.47.2.aarch64"
},
"product_reference": "npm8-8.17.0-3.47.2.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm8-8.17.0-3.47.2.x86_64 as component of SUSE Enterprise Storage 6",
"product_id": "SUSE Enterprise Storage 6:npm8-8.17.0-3.47.2.x86_64"
},
"product_reference": "npm8-8.17.0-3.47.2.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-7774",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-7774"
}
],
"notes": [
{
"category": "general",
"text": "The package y18n before 3.2.2, 4.0.1 and 5.0.5, is vulnerable to Prototype Pollution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:nodejs-common-2.0-3.2.1.noarch",
"SUSE Enterprise Storage 6:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Enterprise Storage 6:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Enterprise Storage 6:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Enterprise Storage 6:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Enterprise Storage 6:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Enterprise Storage 6:npm8-8.17.0-3.47.2.aarch64",
"SUSE Enterprise Storage 6:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:npm8-8.17.0-3.47.2.x86_64",
"SUSE Manager Proxy 4.0:nodejs-common-2.0-3.2.1.noarch",
"SUSE Manager Proxy 4.0:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Manager Proxy 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Manager Proxy 4.0:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Manager Proxy 4.0:npm8-8.17.0-3.47.2.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs-common-2.0-3.2.1.noarch",
"SUSE Manager Retail Branch Server 4.0:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Manager Retail Branch Server 4.0:npm8-8.17.0-3.47.2.x86_64",
"SUSE Manager Server 4.0:nodejs-common-2.0-3.2.1.noarch",
"SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.s390x",
"SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.s390x",
"SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Manager Server 4.0:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.s390x",
"SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-7774",
"url": "https://www.suse.com/security/cve/CVE-2020-7774"
},
{
"category": "external",
"summary": "SUSE Bug 1184450 for CVE-2020-7774",
"url": "https://bugzilla.suse.com/1184450"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:nodejs-common-2.0-3.2.1.noarch",
"SUSE Enterprise Storage 6:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Enterprise Storage 6:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Enterprise Storage 6:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Enterprise Storage 6:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Enterprise Storage 6:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Enterprise Storage 6:npm8-8.17.0-3.47.2.aarch64",
"SUSE Enterprise Storage 6:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:npm8-8.17.0-3.47.2.x86_64",
"SUSE Manager Proxy 4.0:nodejs-common-2.0-3.2.1.noarch",
"SUSE Manager Proxy 4.0:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Manager Proxy 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Manager Proxy 4.0:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Manager Proxy 4.0:npm8-8.17.0-3.47.2.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs-common-2.0-3.2.1.noarch",
"SUSE Manager Retail Branch Server 4.0:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Manager Retail Branch Server 4.0:npm8-8.17.0-3.47.2.x86_64",
"SUSE Manager Server 4.0:nodejs-common-2.0-3.2.1.noarch",
"SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.s390x",
"SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.s390x",
"SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Manager Server 4.0:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.s390x",
"SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:nodejs-common-2.0-3.2.1.noarch",
"SUSE Enterprise Storage 6:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Enterprise Storage 6:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Enterprise Storage 6:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Enterprise Storage 6:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Enterprise Storage 6:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Enterprise Storage 6:npm8-8.17.0-3.47.2.aarch64",
"SUSE Enterprise Storage 6:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:npm8-8.17.0-3.47.2.x86_64",
"SUSE Manager Proxy 4.0:nodejs-common-2.0-3.2.1.noarch",
"SUSE Manager Proxy 4.0:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Manager Proxy 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Manager Proxy 4.0:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Manager Proxy 4.0:npm8-8.17.0-3.47.2.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs-common-2.0-3.2.1.noarch",
"SUSE Manager Retail Branch Server 4.0:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Manager Retail Branch Server 4.0:npm8-8.17.0-3.47.2.x86_64",
"SUSE Manager Server 4.0:nodejs-common-2.0-3.2.1.noarch",
"SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.s390x",
"SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.s390x",
"SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Manager Server 4.0:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.s390x",
"SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-08-05T08:36:27Z",
"details": "important"
}
],
"title": "CVE-2020-7774"
},
{
"cve": "CVE-2021-22884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-22884"
}
],
"notes": [
{
"category": "general",
"text": "Node.js before 10.24.0, 12.21.0, 14.16.0, and 15.10.0 is vulnerable to DNS rebinding attacks as the whitelist includes \"localhost6\". When \"localhost6\" is not present in /etc/hosts, it is just an ordinary domain that is resolved via DNS, i.e., over network. If the attacker controls the victim\u0027s DNS server or can spoof its responses, the DNS rebinding protection can be bypassed by using the \"localhost6\" domain. As long as the attacker uses the \"localhost6\" domain, they can still apply the attack described in CVE-2018-7160.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:nodejs-common-2.0-3.2.1.noarch",
"SUSE Enterprise Storage 6:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Enterprise Storage 6:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Enterprise Storage 6:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Enterprise Storage 6:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Enterprise Storage 6:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Enterprise Storage 6:npm8-8.17.0-3.47.2.aarch64",
"SUSE Enterprise Storage 6:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:npm8-8.17.0-3.47.2.x86_64",
"SUSE Manager Proxy 4.0:nodejs-common-2.0-3.2.1.noarch",
"SUSE Manager Proxy 4.0:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Manager Proxy 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Manager Proxy 4.0:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Manager Proxy 4.0:npm8-8.17.0-3.47.2.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs-common-2.0-3.2.1.noarch",
"SUSE Manager Retail Branch Server 4.0:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Manager Retail Branch Server 4.0:npm8-8.17.0-3.47.2.x86_64",
"SUSE Manager Server 4.0:nodejs-common-2.0-3.2.1.noarch",
"SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.s390x",
"SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.s390x",
"SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Manager Server 4.0:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.s390x",
"SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-22884",
"url": "https://www.suse.com/security/cve/CVE-2021-22884"
},
{
"category": "external",
"summary": "SUSE Bug 1182620 for CVE-2021-22884",
"url": "https://bugzilla.suse.com/1182620"
},
{
"category": "external",
"summary": "SUSE Bug 1188549 for CVE-2021-22884",
"url": "https://bugzilla.suse.com/1188549"
},
{
"category": "external",
"summary": "SUSE Bug 1201328 for CVE-2021-22884",
"url": "https://bugzilla.suse.com/1201328"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:nodejs-common-2.0-3.2.1.noarch",
"SUSE Enterprise Storage 6:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Enterprise Storage 6:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Enterprise Storage 6:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Enterprise Storage 6:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Enterprise Storage 6:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Enterprise Storage 6:npm8-8.17.0-3.47.2.aarch64",
"SUSE Enterprise Storage 6:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:npm8-8.17.0-3.47.2.x86_64",
"SUSE Manager Proxy 4.0:nodejs-common-2.0-3.2.1.noarch",
"SUSE Manager Proxy 4.0:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Manager Proxy 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Manager Proxy 4.0:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Manager Proxy 4.0:npm8-8.17.0-3.47.2.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs-common-2.0-3.2.1.noarch",
"SUSE Manager Retail Branch Server 4.0:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Manager Retail Branch Server 4.0:npm8-8.17.0-3.47.2.x86_64",
"SUSE Manager Server 4.0:nodejs-common-2.0-3.2.1.noarch",
"SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.s390x",
"SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.s390x",
"SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Manager Server 4.0:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.s390x",
"SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:nodejs-common-2.0-3.2.1.noarch",
"SUSE Enterprise Storage 6:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Enterprise Storage 6:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Enterprise Storage 6:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Enterprise Storage 6:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Enterprise Storage 6:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Enterprise Storage 6:npm8-8.17.0-3.47.2.aarch64",
"SUSE Enterprise Storage 6:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:npm8-8.17.0-3.47.2.x86_64",
"SUSE Manager Proxy 4.0:nodejs-common-2.0-3.2.1.noarch",
"SUSE Manager Proxy 4.0:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Manager Proxy 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Manager Proxy 4.0:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Manager Proxy 4.0:npm8-8.17.0-3.47.2.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs-common-2.0-3.2.1.noarch",
"SUSE Manager Retail Branch Server 4.0:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Manager Retail Branch Server 4.0:npm8-8.17.0-3.47.2.x86_64",
"SUSE Manager Server 4.0:nodejs-common-2.0-3.2.1.noarch",
"SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.s390x",
"SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.s390x",
"SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Manager Server 4.0:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.s390x",
"SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-08-05T08:36:27Z",
"details": "moderate"
}
],
"title": "CVE-2021-22884"
},
{
"cve": "CVE-2021-23362",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-23362"
}
],
"notes": [
{
"category": "general",
"text": "The package hosted-git-info before 3.0.8 are vulnerable to Regular Expression Denial of Service (ReDoS) via regular expression shortcutMatch in the fromUrl function in index.js. The affected regular expression exhibits polynomial worst-case time complexity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:nodejs-common-2.0-3.2.1.noarch",
"SUSE Enterprise Storage 6:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Enterprise Storage 6:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Enterprise Storage 6:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Enterprise Storage 6:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Enterprise Storage 6:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Enterprise Storage 6:npm8-8.17.0-3.47.2.aarch64",
"SUSE Enterprise Storage 6:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:npm8-8.17.0-3.47.2.x86_64",
"SUSE Manager Proxy 4.0:nodejs-common-2.0-3.2.1.noarch",
"SUSE Manager Proxy 4.0:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Manager Proxy 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Manager Proxy 4.0:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Manager Proxy 4.0:npm8-8.17.0-3.47.2.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs-common-2.0-3.2.1.noarch",
"SUSE Manager Retail Branch Server 4.0:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Manager Retail Branch Server 4.0:npm8-8.17.0-3.47.2.x86_64",
"SUSE Manager Server 4.0:nodejs-common-2.0-3.2.1.noarch",
"SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.s390x",
"SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.s390x",
"SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Manager Server 4.0:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.s390x",
"SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-23362",
"url": "https://www.suse.com/security/cve/CVE-2021-23362"
},
{
"category": "external",
"summary": "SUSE Bug 1187977 for CVE-2021-23362",
"url": "https://bugzilla.suse.com/1187977"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:nodejs-common-2.0-3.2.1.noarch",
"SUSE Enterprise Storage 6:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Enterprise Storage 6:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Enterprise Storage 6:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Enterprise Storage 6:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Enterprise Storage 6:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Enterprise Storage 6:npm8-8.17.0-3.47.2.aarch64",
"SUSE Enterprise Storage 6:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:npm8-8.17.0-3.47.2.x86_64",
"SUSE Manager Proxy 4.0:nodejs-common-2.0-3.2.1.noarch",
"SUSE Manager Proxy 4.0:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Manager Proxy 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Manager Proxy 4.0:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Manager Proxy 4.0:npm8-8.17.0-3.47.2.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs-common-2.0-3.2.1.noarch",
"SUSE Manager Retail Branch Server 4.0:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Manager Retail Branch Server 4.0:npm8-8.17.0-3.47.2.x86_64",
"SUSE Manager Server 4.0:nodejs-common-2.0-3.2.1.noarch",
"SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.s390x",
"SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.s390x",
"SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Manager Server 4.0:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.s390x",
"SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:nodejs-common-2.0-3.2.1.noarch",
"SUSE Enterprise Storage 6:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Enterprise Storage 6:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Enterprise Storage 6:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Enterprise Storage 6:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Enterprise Storage 6:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Enterprise Storage 6:npm8-8.17.0-3.47.2.aarch64",
"SUSE Enterprise Storage 6:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:npm8-8.17.0-3.47.2.x86_64",
"SUSE Manager Proxy 4.0:nodejs-common-2.0-3.2.1.noarch",
"SUSE Manager Proxy 4.0:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Manager Proxy 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Manager Proxy 4.0:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Manager Proxy 4.0:npm8-8.17.0-3.47.2.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs-common-2.0-3.2.1.noarch",
"SUSE Manager Retail Branch Server 4.0:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Manager Retail Branch Server 4.0:npm8-8.17.0-3.47.2.x86_64",
"SUSE Manager Server 4.0:nodejs-common-2.0-3.2.1.noarch",
"SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.s390x",
"SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.s390x",
"SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Manager Server 4.0:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.s390x",
"SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-08-05T08:36:27Z",
"details": "moderate"
}
],
"title": "CVE-2021-23362"
},
{
"cve": "CVE-2021-27290",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-27290"
}
],
"notes": [
{
"category": "general",
"text": "ssri 5.2.2-8.0.0, fixed in 8.0.1, processes SRIs using a regular expression which is vulnerable to a denial of service. Malicious SRIs could take an extremely long time to process, leading to denial of service. This issue only affects consumers using the strict option.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 6:nodejs-common-2.0-3.2.1.noarch",
"SUSE Enterprise Storage 6:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Enterprise Storage 6:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Enterprise Storage 6:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Enterprise Storage 6:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Enterprise Storage 6:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Enterprise Storage 6:npm8-8.17.0-3.47.2.aarch64",
"SUSE Enterprise Storage 6:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:npm8-8.17.0-3.47.2.x86_64",
"SUSE Manager Proxy 4.0:nodejs-common-2.0-3.2.1.noarch",
"SUSE Manager Proxy 4.0:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Manager Proxy 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Manager Proxy 4.0:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Manager Proxy 4.0:npm8-8.17.0-3.47.2.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs-common-2.0-3.2.1.noarch",
"SUSE Manager Retail Branch Server 4.0:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Manager Retail Branch Server 4.0:npm8-8.17.0-3.47.2.x86_64",
"SUSE Manager Server 4.0:nodejs-common-2.0-3.2.1.noarch",
"SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.s390x",
"SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.s390x",
"SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Manager Server 4.0:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.s390x",
"SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-27290",
"url": "https://www.suse.com/security/cve/CVE-2021-27290"
},
{
"category": "external",
"summary": "SUSE Bug 1187976 for CVE-2021-27290",
"url": "https://bugzilla.suse.com/1187976"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 6:nodejs-common-2.0-3.2.1.noarch",
"SUSE Enterprise Storage 6:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Enterprise Storage 6:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Enterprise Storage 6:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Enterprise Storage 6:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Enterprise Storage 6:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Enterprise Storage 6:npm8-8.17.0-3.47.2.aarch64",
"SUSE Enterprise Storage 6:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:npm8-8.17.0-3.47.2.x86_64",
"SUSE Manager Proxy 4.0:nodejs-common-2.0-3.2.1.noarch",
"SUSE Manager Proxy 4.0:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Manager Proxy 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Manager Proxy 4.0:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Manager Proxy 4.0:npm8-8.17.0-3.47.2.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs-common-2.0-3.2.1.noarch",
"SUSE Manager Retail Branch Server 4.0:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Manager Retail Branch Server 4.0:npm8-8.17.0-3.47.2.x86_64",
"SUSE Manager Server 4.0:nodejs-common-2.0-3.2.1.noarch",
"SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.s390x",
"SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.s390x",
"SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Manager Server 4.0:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.s390x",
"SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 6:nodejs-common-2.0-3.2.1.noarch",
"SUSE Enterprise Storage 6:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Enterprise Storage 6:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Enterprise Storage 6:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Enterprise Storage 6:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Enterprise Storage 6:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Enterprise Storage 6:npm8-8.17.0-3.47.2.aarch64",
"SUSE Enterprise Storage 6:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Module for Web and Scripting 15 SP2:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-BCL:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server 15 SP1-BCL:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15 SP1-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.s390x",
"SUSE Linux Enterprise Server 15-LTSS:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP1:npm8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs-common-2.0-3.2.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:npm8-8.17.0-3.47.2.x86_64",
"SUSE Manager Proxy 4.0:nodejs-common-2.0-3.2.1.noarch",
"SUSE Manager Proxy 4.0:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Manager Proxy 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Manager Proxy 4.0:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Manager Proxy 4.0:npm8-8.17.0-3.47.2.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs-common-2.0-3.2.1.noarch",
"SUSE Manager Retail Branch Server 4.0:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Manager Retail Branch Server 4.0:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Manager Retail Branch Server 4.0:npm8-8.17.0-3.47.2.x86_64",
"SUSE Manager Server 4.0:nodejs-common-2.0-3.2.1.noarch",
"SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.ppc64le",
"SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.s390x",
"SUSE Manager Server 4.0:nodejs8-8.17.0-3.47.2.x86_64",
"SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.ppc64le",
"SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.s390x",
"SUSE Manager Server 4.0:nodejs8-devel-8.17.0-3.47.2.x86_64",
"SUSE Manager Server 4.0:nodejs8-docs-8.17.0-3.47.2.noarch",
"SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.ppc64le",
"SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.s390x",
"SUSE Manager Server 4.0:npm8-8.17.0-3.47.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-08-05T08:36:27Z",
"details": "important"
}
],
"title": "CVE-2021-27290"
}
]
}
WID-SEC-W-2022-0196
Vulnerability from csaf_certbund - Published: 2021-10-19 22:00 - Updated: 2025-01-21 23:00Summary
Oracle Java SE: Mehrere Schwachstellen
Severity
Hoch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Die Java Platform, Standard Edition (SE) ist eine Sammlung von Java-APIs (JDK) und der Java Laufzeit Umgebung (JRE).
Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Oracle Java SE ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
Betroffene Betriebssysteme: - Linux
- MacOS X
- UNIX
- Windows
In Oracle Java SE existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder lokaler Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "Hoch" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "Hoch" für die Schadenshöhe.
Affected products
Known affected
24 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM TXSeries 8.2
IBM / TXSeries
|
cpe:/a:ibm:txseries:for_multiplatforms_8.2
|
8.2 | |
|
IBM TXSeries 9.1
IBM / TXSeries
|
cpe:/a:ibm:txseries:for_multiplatforms_9.1
|
9.1 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Java SE Oracle GraalVM Enterprise Edition: 21.2.0
Oracle / Java SE
|
cpe:/a:oracle:java_se:oracle_graalvm_enterprise_edition_21.2.0
|
Oracle GraalVM Enterprise Edition: 21.2.0 | |
|
Oracle Java SE Oracle GraalVM Enterprise Edition: 20.3.3
Oracle / Java SE
|
cpe:/a:oracle:java_se:oracle_graalvm_enterprise_edition_20.3.3
|
Oracle GraalVM Enterprise Edition: 20.3.3 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
HCL BigFix
HCL
|
cpe:/a:hcltech:bigfix:-
|
— | |
|
IBM InfoSphere Information Server
IBM
|
cpe:/a:ibm:infosphere_information_server:-
|
— | |
|
Oracle Java SE 7u311
Oracle / Java SE
|
cpe:/a:oracle:java_se:7u311
|
7u311 | |
|
Kyocera Printer
Kyocera
|
cpe:/h:kyocera:printer:-
|
— | |
|
Oracle Java SE 8u301
Oracle / Java SE
|
cpe:/a:oracle:java_se:8u301
|
8u301 | |
|
Oracle Java SE 17
Oracle / Java SE
|
cpe:/a:oracle:java_se:17
|
17 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Java SE 11.0.12
Oracle / Java SE
|
cpe:/a:oracle:java_se:11.0.12
|
11.0.12 | |
|
Oracle Java SE 21.2.0
Oracle / Java SE
|
cpe:/a:oracle:java_se:21.2.0
|
21.2.0 | |
|
Amazon Corretto <8.442.06.1
Amazon / Corretto
|
<8.442.06.1 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Amazon Corretto <11.0.26.4.1
Amazon / Corretto
|
<11.0.26.4.1 | ||
|
IBM Maximo Asset Management
IBM
|
cpe:/a:ibm:maximo_asset_management:-
|
— | |
|
Broadcom Brocade SANnav <2.2.1
Broadcom / Brocade SANnav
|
<2.2.1 | ||
|
IBM MQ
IBM
|
cpe:/a:ibm:mq:-
|
— | |
|
IBM Spectrum Scale 1.1.8.0-1.1.8.4
IBM / Storage Scale
|
cpe:/a:ibm:spectrum_scale:1.1.8.0_-_1.1.8.4
|
1.1.8.0-1.1.8.4 | |
|
Xerox FreeFlow Print Server
Xerox
|
cpe:/a:xerox:freeflow_print_server:-
|
— |
In Oracle Java SE existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder lokaler Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "Hoch" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "Hoch" für die Schadenshöhe.
Affected products
Known affected
24 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM TXSeries 8.2
IBM / TXSeries
|
cpe:/a:ibm:txseries:for_multiplatforms_8.2
|
8.2 | |
|
IBM TXSeries 9.1
IBM / TXSeries
|
cpe:/a:ibm:txseries:for_multiplatforms_9.1
|
9.1 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Java SE Oracle GraalVM Enterprise Edition: 21.2.0
Oracle / Java SE
|
cpe:/a:oracle:java_se:oracle_graalvm_enterprise_edition_21.2.0
|
Oracle GraalVM Enterprise Edition: 21.2.0 | |
|
Oracle Java SE Oracle GraalVM Enterprise Edition: 20.3.3
Oracle / Java SE
|
cpe:/a:oracle:java_se:oracle_graalvm_enterprise_edition_20.3.3
|
Oracle GraalVM Enterprise Edition: 20.3.3 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
HCL BigFix
HCL
|
cpe:/a:hcltech:bigfix:-
|
— | |
|
IBM InfoSphere Information Server
IBM
|
cpe:/a:ibm:infosphere_information_server:-
|
— | |
|
Oracle Java SE 7u311
Oracle / Java SE
|
cpe:/a:oracle:java_se:7u311
|
7u311 | |
|
Kyocera Printer
Kyocera
|
cpe:/h:kyocera:printer:-
|
— | |
|
Oracle Java SE 8u301
Oracle / Java SE
|
cpe:/a:oracle:java_se:8u301
|
8u301 | |
|
Oracle Java SE 17
Oracle / Java SE
|
cpe:/a:oracle:java_se:17
|
17 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Java SE 11.0.12
Oracle / Java SE
|
cpe:/a:oracle:java_se:11.0.12
|
11.0.12 | |
|
Oracle Java SE 21.2.0
Oracle / Java SE
|
cpe:/a:oracle:java_se:21.2.0
|
21.2.0 | |
|
Amazon Corretto <8.442.06.1
Amazon / Corretto
|
<8.442.06.1 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Amazon Corretto <11.0.26.4.1
Amazon / Corretto
|
<11.0.26.4.1 | ||
|
IBM Maximo Asset Management
IBM
|
cpe:/a:ibm:maximo_asset_management:-
|
— | |
|
Broadcom Brocade SANnav <2.2.1
Broadcom / Brocade SANnav
|
<2.2.1 | ||
|
IBM MQ
IBM
|
cpe:/a:ibm:mq:-
|
— | |
|
IBM Spectrum Scale 1.1.8.0-1.1.8.4
IBM / Storage Scale
|
cpe:/a:ibm:spectrum_scale:1.1.8.0_-_1.1.8.4
|
1.1.8.0-1.1.8.4 | |
|
Xerox FreeFlow Print Server
Xerox
|
cpe:/a:xerox:freeflow_print_server:-
|
— |
In Oracle Java SE existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder lokaler Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "Hoch" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "Hoch" für die Schadenshöhe.
Affected products
Known affected
24 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM TXSeries 8.2
IBM / TXSeries
|
cpe:/a:ibm:txseries:for_multiplatforms_8.2
|
8.2 | |
|
IBM TXSeries 9.1
IBM / TXSeries
|
cpe:/a:ibm:txseries:for_multiplatforms_9.1
|
9.1 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Java SE Oracle GraalVM Enterprise Edition: 21.2.0
Oracle / Java SE
|
cpe:/a:oracle:java_se:oracle_graalvm_enterprise_edition_21.2.0
|
Oracle GraalVM Enterprise Edition: 21.2.0 | |
|
Oracle Java SE Oracle GraalVM Enterprise Edition: 20.3.3
Oracle / Java SE
|
cpe:/a:oracle:java_se:oracle_graalvm_enterprise_edition_20.3.3
|
Oracle GraalVM Enterprise Edition: 20.3.3 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
HCL BigFix
HCL
|
cpe:/a:hcltech:bigfix:-
|
— | |
|
IBM InfoSphere Information Server
IBM
|
cpe:/a:ibm:infosphere_information_server:-
|
— | |
|
Oracle Java SE 7u311
Oracle / Java SE
|
cpe:/a:oracle:java_se:7u311
|
7u311 | |
|
Kyocera Printer
Kyocera
|
cpe:/h:kyocera:printer:-
|
— | |
|
Oracle Java SE 8u301
Oracle / Java SE
|
cpe:/a:oracle:java_se:8u301
|
8u301 | |
|
Oracle Java SE 17
Oracle / Java SE
|
cpe:/a:oracle:java_se:17
|
17 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Java SE 11.0.12
Oracle / Java SE
|
cpe:/a:oracle:java_se:11.0.12
|
11.0.12 | |
|
Oracle Java SE 21.2.0
Oracle / Java SE
|
cpe:/a:oracle:java_se:21.2.0
|
21.2.0 | |
|
Amazon Corretto <8.442.06.1
Amazon / Corretto
|
<8.442.06.1 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Amazon Corretto <11.0.26.4.1
Amazon / Corretto
|
<11.0.26.4.1 | ||
|
IBM Maximo Asset Management
IBM
|
cpe:/a:ibm:maximo_asset_management:-
|
— | |
|
Broadcom Brocade SANnav <2.2.1
Broadcom / Brocade SANnav
|
<2.2.1 | ||
|
IBM MQ
IBM
|
cpe:/a:ibm:mq:-
|
— | |
|
IBM Spectrum Scale 1.1.8.0-1.1.8.4
IBM / Storage Scale
|
cpe:/a:ibm:spectrum_scale:1.1.8.0_-_1.1.8.4
|
1.1.8.0-1.1.8.4 | |
|
Xerox FreeFlow Print Server
Xerox
|
cpe:/a:xerox:freeflow_print_server:-
|
— |
In Oracle Java SE existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder lokaler Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "Hoch" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "Hoch" für die Schadenshöhe.
Affected products
Known affected
24 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM TXSeries 8.2
IBM / TXSeries
|
cpe:/a:ibm:txseries:for_multiplatforms_8.2
|
8.2 | |
|
IBM TXSeries 9.1
IBM / TXSeries
|
cpe:/a:ibm:txseries:for_multiplatforms_9.1
|
9.1 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Java SE Oracle GraalVM Enterprise Edition: 21.2.0
Oracle / Java SE
|
cpe:/a:oracle:java_se:oracle_graalvm_enterprise_edition_21.2.0
|
Oracle GraalVM Enterprise Edition: 21.2.0 | |
|
Oracle Java SE Oracle GraalVM Enterprise Edition: 20.3.3
Oracle / Java SE
|
cpe:/a:oracle:java_se:oracle_graalvm_enterprise_edition_20.3.3
|
Oracle GraalVM Enterprise Edition: 20.3.3 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
HCL BigFix
HCL
|
cpe:/a:hcltech:bigfix:-
|
— | |
|
IBM InfoSphere Information Server
IBM
|
cpe:/a:ibm:infosphere_information_server:-
|
— | |
|
Oracle Java SE 7u311
Oracle / Java SE
|
cpe:/a:oracle:java_se:7u311
|
7u311 | |
|
Kyocera Printer
Kyocera
|
cpe:/h:kyocera:printer:-
|
— | |
|
Oracle Java SE 8u301
Oracle / Java SE
|
cpe:/a:oracle:java_se:8u301
|
8u301 | |
|
Oracle Java SE 17
Oracle / Java SE
|
cpe:/a:oracle:java_se:17
|
17 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Java SE 11.0.12
Oracle / Java SE
|
cpe:/a:oracle:java_se:11.0.12
|
11.0.12 | |
|
Oracle Java SE 21.2.0
Oracle / Java SE
|
cpe:/a:oracle:java_se:21.2.0
|
21.2.0 | |
|
Amazon Corretto <8.442.06.1
Amazon / Corretto
|
<8.442.06.1 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Amazon Corretto <11.0.26.4.1
Amazon / Corretto
|
<11.0.26.4.1 | ||
|
IBM Maximo Asset Management
IBM
|
cpe:/a:ibm:maximo_asset_management:-
|
— | |
|
Broadcom Brocade SANnav <2.2.1
Broadcom / Brocade SANnav
|
<2.2.1 | ||
|
IBM MQ
IBM
|
cpe:/a:ibm:mq:-
|
— | |
|
IBM Spectrum Scale 1.1.8.0-1.1.8.4
IBM / Storage Scale
|
cpe:/a:ibm:spectrum_scale:1.1.8.0_-_1.1.8.4
|
1.1.8.0-1.1.8.4 | |
|
Xerox FreeFlow Print Server
Xerox
|
cpe:/a:xerox:freeflow_print_server:-
|
— |
In Oracle Java SE existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder lokaler Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "Hoch" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "Hoch" für die Schadenshöhe.
Affected products
Known affected
24 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM TXSeries 8.2
IBM / TXSeries
|
cpe:/a:ibm:txseries:for_multiplatforms_8.2
|
8.2 | |
|
IBM TXSeries 9.1
IBM / TXSeries
|
cpe:/a:ibm:txseries:for_multiplatforms_9.1
|
9.1 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Java SE Oracle GraalVM Enterprise Edition: 21.2.0
Oracle / Java SE
|
cpe:/a:oracle:java_se:oracle_graalvm_enterprise_edition_21.2.0
|
Oracle GraalVM Enterprise Edition: 21.2.0 | |
|
Oracle Java SE Oracle GraalVM Enterprise Edition: 20.3.3
Oracle / Java SE
|
cpe:/a:oracle:java_se:oracle_graalvm_enterprise_edition_20.3.3
|
Oracle GraalVM Enterprise Edition: 20.3.3 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
HCL BigFix
HCL
|
cpe:/a:hcltech:bigfix:-
|
— | |
|
IBM InfoSphere Information Server
IBM
|
cpe:/a:ibm:infosphere_information_server:-
|
— | |
|
Oracle Java SE 7u311
Oracle / Java SE
|
cpe:/a:oracle:java_se:7u311
|
7u311 | |
|
Kyocera Printer
Kyocera
|
cpe:/h:kyocera:printer:-
|
— | |
|
Oracle Java SE 8u301
Oracle / Java SE
|
cpe:/a:oracle:java_se:8u301
|
8u301 | |
|
Oracle Java SE 17
Oracle / Java SE
|
cpe:/a:oracle:java_se:17
|
17 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Java SE 11.0.12
Oracle / Java SE
|
cpe:/a:oracle:java_se:11.0.12
|
11.0.12 | |
|
Oracle Java SE 21.2.0
Oracle / Java SE
|
cpe:/a:oracle:java_se:21.2.0
|
21.2.0 | |
|
Amazon Corretto <8.442.06.1
Amazon / Corretto
|
<8.442.06.1 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Amazon Corretto <11.0.26.4.1
Amazon / Corretto
|
<11.0.26.4.1 | ||
|
IBM Maximo Asset Management
IBM
|
cpe:/a:ibm:maximo_asset_management:-
|
— | |
|
Broadcom Brocade SANnav <2.2.1
Broadcom / Brocade SANnav
|
<2.2.1 | ||
|
IBM MQ
IBM
|
cpe:/a:ibm:mq:-
|
— | |
|
IBM Spectrum Scale 1.1.8.0-1.1.8.4
IBM / Storage Scale
|
cpe:/a:ibm:spectrum_scale:1.1.8.0_-_1.1.8.4
|
1.1.8.0-1.1.8.4 | |
|
Xerox FreeFlow Print Server
Xerox
|
cpe:/a:xerox:freeflow_print_server:-
|
— |
In Oracle Java SE existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder lokaler Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "Hoch" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "Hoch" für die Schadenshöhe.
Affected products
Known affected
24 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM TXSeries 8.2
IBM / TXSeries
|
cpe:/a:ibm:txseries:for_multiplatforms_8.2
|
8.2 | |
|
IBM TXSeries 9.1
IBM / TXSeries
|
cpe:/a:ibm:txseries:for_multiplatforms_9.1
|
9.1 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Java SE Oracle GraalVM Enterprise Edition: 21.2.0
Oracle / Java SE
|
cpe:/a:oracle:java_se:oracle_graalvm_enterprise_edition_21.2.0
|
Oracle GraalVM Enterprise Edition: 21.2.0 | |
|
Oracle Java SE Oracle GraalVM Enterprise Edition: 20.3.3
Oracle / Java SE
|
cpe:/a:oracle:java_se:oracle_graalvm_enterprise_edition_20.3.3
|
Oracle GraalVM Enterprise Edition: 20.3.3 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
HCL BigFix
HCL
|
cpe:/a:hcltech:bigfix:-
|
— | |
|
IBM InfoSphere Information Server
IBM
|
cpe:/a:ibm:infosphere_information_server:-
|
— | |
|
Oracle Java SE 7u311
Oracle / Java SE
|
cpe:/a:oracle:java_se:7u311
|
7u311 | |
|
Kyocera Printer
Kyocera
|
cpe:/h:kyocera:printer:-
|
— | |
|
Oracle Java SE 8u301
Oracle / Java SE
|
cpe:/a:oracle:java_se:8u301
|
8u301 | |
|
Oracle Java SE 17
Oracle / Java SE
|
cpe:/a:oracle:java_se:17
|
17 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Java SE 11.0.12
Oracle / Java SE
|
cpe:/a:oracle:java_se:11.0.12
|
11.0.12 | |
|
Oracle Java SE 21.2.0
Oracle / Java SE
|
cpe:/a:oracle:java_se:21.2.0
|
21.2.0 | |
|
Amazon Corretto <8.442.06.1
Amazon / Corretto
|
<8.442.06.1 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Amazon Corretto <11.0.26.4.1
Amazon / Corretto
|
<11.0.26.4.1 | ||
|
IBM Maximo Asset Management
IBM
|
cpe:/a:ibm:maximo_asset_management:-
|
— | |
|
Broadcom Brocade SANnav <2.2.1
Broadcom / Brocade SANnav
|
<2.2.1 | ||
|
IBM MQ
IBM
|
cpe:/a:ibm:mq:-
|
— | |
|
IBM Spectrum Scale 1.1.8.0-1.1.8.4
IBM / Storage Scale
|
cpe:/a:ibm:spectrum_scale:1.1.8.0_-_1.1.8.4
|
1.1.8.0-1.1.8.4 | |
|
Xerox FreeFlow Print Server
Xerox
|
cpe:/a:xerox:freeflow_print_server:-
|
— |
In Oracle Java SE existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder lokaler Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "Hoch" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "Hoch" für die Schadenshöhe.
Affected products
Known affected
24 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM TXSeries 8.2
IBM / TXSeries
|
cpe:/a:ibm:txseries:for_multiplatforms_8.2
|
8.2 | |
|
IBM TXSeries 9.1
IBM / TXSeries
|
cpe:/a:ibm:txseries:for_multiplatforms_9.1
|
9.1 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Java SE Oracle GraalVM Enterprise Edition: 21.2.0
Oracle / Java SE
|
cpe:/a:oracle:java_se:oracle_graalvm_enterprise_edition_21.2.0
|
Oracle GraalVM Enterprise Edition: 21.2.0 | |
|
Oracle Java SE Oracle GraalVM Enterprise Edition: 20.3.3
Oracle / Java SE
|
cpe:/a:oracle:java_se:oracle_graalvm_enterprise_edition_20.3.3
|
Oracle GraalVM Enterprise Edition: 20.3.3 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
HCL BigFix
HCL
|
cpe:/a:hcltech:bigfix:-
|
— | |
|
IBM InfoSphere Information Server
IBM
|
cpe:/a:ibm:infosphere_information_server:-
|
— | |
|
Oracle Java SE 7u311
Oracle / Java SE
|
cpe:/a:oracle:java_se:7u311
|
7u311 | |
|
Kyocera Printer
Kyocera
|
cpe:/h:kyocera:printer:-
|
— | |
|
Oracle Java SE 8u301
Oracle / Java SE
|
cpe:/a:oracle:java_se:8u301
|
8u301 | |
|
Oracle Java SE 17
Oracle / Java SE
|
cpe:/a:oracle:java_se:17
|
17 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Java SE 11.0.12
Oracle / Java SE
|
cpe:/a:oracle:java_se:11.0.12
|
11.0.12 | |
|
Oracle Java SE 21.2.0
Oracle / Java SE
|
cpe:/a:oracle:java_se:21.2.0
|
21.2.0 | |
|
Amazon Corretto <8.442.06.1
Amazon / Corretto
|
<8.442.06.1 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Amazon Corretto <11.0.26.4.1
Amazon / Corretto
|
<11.0.26.4.1 | ||
|
IBM Maximo Asset Management
IBM
|
cpe:/a:ibm:maximo_asset_management:-
|
— | |
|
Broadcom Brocade SANnav <2.2.1
Broadcom / Brocade SANnav
|
<2.2.1 | ||
|
IBM MQ
IBM
|
cpe:/a:ibm:mq:-
|
— | |
|
IBM Spectrum Scale 1.1.8.0-1.1.8.4
IBM / Storage Scale
|
cpe:/a:ibm:spectrum_scale:1.1.8.0_-_1.1.8.4
|
1.1.8.0-1.1.8.4 | |
|
Xerox FreeFlow Print Server
Xerox
|
cpe:/a:xerox:freeflow_print_server:-
|
— |
In Oracle Java SE existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder lokaler Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "Hoch" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "Hoch" für die Schadenshöhe.
Affected products
Known affected
24 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM TXSeries 8.2
IBM / TXSeries
|
cpe:/a:ibm:txseries:for_multiplatforms_8.2
|
8.2 | |
|
IBM TXSeries 9.1
IBM / TXSeries
|
cpe:/a:ibm:txseries:for_multiplatforms_9.1
|
9.1 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Java SE Oracle GraalVM Enterprise Edition: 21.2.0
Oracle / Java SE
|
cpe:/a:oracle:java_se:oracle_graalvm_enterprise_edition_21.2.0
|
Oracle GraalVM Enterprise Edition: 21.2.0 | |
|
Oracle Java SE Oracle GraalVM Enterprise Edition: 20.3.3
Oracle / Java SE
|
cpe:/a:oracle:java_se:oracle_graalvm_enterprise_edition_20.3.3
|
Oracle GraalVM Enterprise Edition: 20.3.3 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
HCL BigFix
HCL
|
cpe:/a:hcltech:bigfix:-
|
— | |
|
IBM InfoSphere Information Server
IBM
|
cpe:/a:ibm:infosphere_information_server:-
|
— | |
|
Oracle Java SE 7u311
Oracle / Java SE
|
cpe:/a:oracle:java_se:7u311
|
7u311 | |
|
Kyocera Printer
Kyocera
|
cpe:/h:kyocera:printer:-
|
— | |
|
Oracle Java SE 8u301
Oracle / Java SE
|
cpe:/a:oracle:java_se:8u301
|
8u301 | |
|
Oracle Java SE 17
Oracle / Java SE
|
cpe:/a:oracle:java_se:17
|
17 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Java SE 11.0.12
Oracle / Java SE
|
cpe:/a:oracle:java_se:11.0.12
|
11.0.12 | |
|
Oracle Java SE 21.2.0
Oracle / Java SE
|
cpe:/a:oracle:java_se:21.2.0
|
21.2.0 | |
|
Amazon Corretto <8.442.06.1
Amazon / Corretto
|
<8.442.06.1 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Amazon Corretto <11.0.26.4.1
Amazon / Corretto
|
<11.0.26.4.1 | ||
|
IBM Maximo Asset Management
IBM
|
cpe:/a:ibm:maximo_asset_management:-
|
— | |
|
Broadcom Brocade SANnav <2.2.1
Broadcom / Brocade SANnav
|
<2.2.1 | ||
|
IBM MQ
IBM
|
cpe:/a:ibm:mq:-
|
— | |
|
IBM Spectrum Scale 1.1.8.0-1.1.8.4
IBM / Storage Scale
|
cpe:/a:ibm:spectrum_scale:1.1.8.0_-_1.1.8.4
|
1.1.8.0-1.1.8.4 | |
|
Xerox FreeFlow Print Server
Xerox
|
cpe:/a:xerox:freeflow_print_server:-
|
— |
In Oracle Java SE existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder lokaler Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "Hoch" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "Hoch" für die Schadenshöhe.
Affected products
Known affected
24 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM TXSeries 8.2
IBM / TXSeries
|
cpe:/a:ibm:txseries:for_multiplatforms_8.2
|
8.2 | |
|
IBM TXSeries 9.1
IBM / TXSeries
|
cpe:/a:ibm:txseries:for_multiplatforms_9.1
|
9.1 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Java SE Oracle GraalVM Enterprise Edition: 21.2.0
Oracle / Java SE
|
cpe:/a:oracle:java_se:oracle_graalvm_enterprise_edition_21.2.0
|
Oracle GraalVM Enterprise Edition: 21.2.0 | |
|
Oracle Java SE Oracle GraalVM Enterprise Edition: 20.3.3
Oracle / Java SE
|
cpe:/a:oracle:java_se:oracle_graalvm_enterprise_edition_20.3.3
|
Oracle GraalVM Enterprise Edition: 20.3.3 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
HCL BigFix
HCL
|
cpe:/a:hcltech:bigfix:-
|
— | |
|
IBM InfoSphere Information Server
IBM
|
cpe:/a:ibm:infosphere_information_server:-
|
— | |
|
Oracle Java SE 7u311
Oracle / Java SE
|
cpe:/a:oracle:java_se:7u311
|
7u311 | |
|
Kyocera Printer
Kyocera
|
cpe:/h:kyocera:printer:-
|
— | |
|
Oracle Java SE 8u301
Oracle / Java SE
|
cpe:/a:oracle:java_se:8u301
|
8u301 | |
|
Oracle Java SE 17
Oracle / Java SE
|
cpe:/a:oracle:java_se:17
|
17 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Java SE 11.0.12
Oracle / Java SE
|
cpe:/a:oracle:java_se:11.0.12
|
11.0.12 | |
|
Oracle Java SE 21.2.0
Oracle / Java SE
|
cpe:/a:oracle:java_se:21.2.0
|
21.2.0 | |
|
Amazon Corretto <8.442.06.1
Amazon / Corretto
|
<8.442.06.1 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Amazon Corretto <11.0.26.4.1
Amazon / Corretto
|
<11.0.26.4.1 | ||
|
IBM Maximo Asset Management
IBM
|
cpe:/a:ibm:maximo_asset_management:-
|
— | |
|
Broadcom Brocade SANnav <2.2.1
Broadcom / Brocade SANnav
|
<2.2.1 | ||
|
IBM MQ
IBM
|
cpe:/a:ibm:mq:-
|
— | |
|
IBM Spectrum Scale 1.1.8.0-1.1.8.4
IBM / Storage Scale
|
cpe:/a:ibm:spectrum_scale:1.1.8.0_-_1.1.8.4
|
1.1.8.0-1.1.8.4 | |
|
Xerox FreeFlow Print Server
Xerox
|
cpe:/a:xerox:freeflow_print_server:-
|
— |
In Oracle Java SE existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder lokaler Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "Hoch" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "Hoch" für die Schadenshöhe.
Affected products
Known affected
24 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM TXSeries 8.2
IBM / TXSeries
|
cpe:/a:ibm:txseries:for_multiplatforms_8.2
|
8.2 | |
|
IBM TXSeries 9.1
IBM / TXSeries
|
cpe:/a:ibm:txseries:for_multiplatforms_9.1
|
9.1 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Java SE Oracle GraalVM Enterprise Edition: 21.2.0
Oracle / Java SE
|
cpe:/a:oracle:java_se:oracle_graalvm_enterprise_edition_21.2.0
|
Oracle GraalVM Enterprise Edition: 21.2.0 | |
|
Oracle Java SE Oracle GraalVM Enterprise Edition: 20.3.3
Oracle / Java SE
|
cpe:/a:oracle:java_se:oracle_graalvm_enterprise_edition_20.3.3
|
Oracle GraalVM Enterprise Edition: 20.3.3 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
HCL BigFix
HCL
|
cpe:/a:hcltech:bigfix:-
|
— | |
|
IBM InfoSphere Information Server
IBM
|
cpe:/a:ibm:infosphere_information_server:-
|
— | |
|
Oracle Java SE 7u311
Oracle / Java SE
|
cpe:/a:oracle:java_se:7u311
|
7u311 | |
|
Kyocera Printer
Kyocera
|
cpe:/h:kyocera:printer:-
|
— | |
|
Oracle Java SE 8u301
Oracle / Java SE
|
cpe:/a:oracle:java_se:8u301
|
8u301 | |
|
Oracle Java SE 17
Oracle / Java SE
|
cpe:/a:oracle:java_se:17
|
17 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Java SE 11.0.12
Oracle / Java SE
|
cpe:/a:oracle:java_se:11.0.12
|
11.0.12 | |
|
Oracle Java SE 21.2.0
Oracle / Java SE
|
cpe:/a:oracle:java_se:21.2.0
|
21.2.0 | |
|
Amazon Corretto <8.442.06.1
Amazon / Corretto
|
<8.442.06.1 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Amazon Corretto <11.0.26.4.1
Amazon / Corretto
|
<11.0.26.4.1 | ||
|
IBM Maximo Asset Management
IBM
|
cpe:/a:ibm:maximo_asset_management:-
|
— | |
|
Broadcom Brocade SANnav <2.2.1
Broadcom / Brocade SANnav
|
<2.2.1 | ||
|
IBM MQ
IBM
|
cpe:/a:ibm:mq:-
|
— | |
|
IBM Spectrum Scale 1.1.8.0-1.1.8.4
IBM / Storage Scale
|
cpe:/a:ibm:spectrum_scale:1.1.8.0_-_1.1.8.4
|
1.1.8.0-1.1.8.4 | |
|
Xerox FreeFlow Print Server
Xerox
|
cpe:/a:xerox:freeflow_print_server:-
|
— |
In Oracle Java SE existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder lokaler Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "Hoch" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "Hoch" für die Schadenshöhe.
Affected products
Known affected
24 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM TXSeries 8.2
IBM / TXSeries
|
cpe:/a:ibm:txseries:for_multiplatforms_8.2
|
8.2 | |
|
IBM TXSeries 9.1
IBM / TXSeries
|
cpe:/a:ibm:txseries:for_multiplatforms_9.1
|
9.1 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Java SE Oracle GraalVM Enterprise Edition: 21.2.0
Oracle / Java SE
|
cpe:/a:oracle:java_se:oracle_graalvm_enterprise_edition_21.2.0
|
Oracle GraalVM Enterprise Edition: 21.2.0 | |
|
Oracle Java SE Oracle GraalVM Enterprise Edition: 20.3.3
Oracle / Java SE
|
cpe:/a:oracle:java_se:oracle_graalvm_enterprise_edition_20.3.3
|
Oracle GraalVM Enterprise Edition: 20.3.3 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
HCL BigFix
HCL
|
cpe:/a:hcltech:bigfix:-
|
— | |
|
IBM InfoSphere Information Server
IBM
|
cpe:/a:ibm:infosphere_information_server:-
|
— | |
|
Oracle Java SE 7u311
Oracle / Java SE
|
cpe:/a:oracle:java_se:7u311
|
7u311 | |
|
Kyocera Printer
Kyocera
|
cpe:/h:kyocera:printer:-
|
— | |
|
Oracle Java SE 8u301
Oracle / Java SE
|
cpe:/a:oracle:java_se:8u301
|
8u301 | |
|
Oracle Java SE 17
Oracle / Java SE
|
cpe:/a:oracle:java_se:17
|
17 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Java SE 11.0.12
Oracle / Java SE
|
cpe:/a:oracle:java_se:11.0.12
|
11.0.12 | |
|
Oracle Java SE 21.2.0
Oracle / Java SE
|
cpe:/a:oracle:java_se:21.2.0
|
21.2.0 | |
|
Amazon Corretto <8.442.06.1
Amazon / Corretto
|
<8.442.06.1 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Amazon Corretto <11.0.26.4.1
Amazon / Corretto
|
<11.0.26.4.1 | ||
|
IBM Maximo Asset Management
IBM
|
cpe:/a:ibm:maximo_asset_management:-
|
— | |
|
Broadcom Brocade SANnav <2.2.1
Broadcom / Brocade SANnav
|
<2.2.1 | ||
|
IBM MQ
IBM
|
cpe:/a:ibm:mq:-
|
— | |
|
IBM Spectrum Scale 1.1.8.0-1.1.8.4
IBM / Storage Scale
|
cpe:/a:ibm:spectrum_scale:1.1.8.0_-_1.1.8.4
|
1.1.8.0-1.1.8.4 | |
|
Xerox FreeFlow Print Server
Xerox
|
cpe:/a:xerox:freeflow_print_server:-
|
— |
In Oracle Java SE existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder lokaler Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "Hoch" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "Hoch" für die Schadenshöhe.
Affected products
Known affected
24 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM TXSeries 8.2
IBM / TXSeries
|
cpe:/a:ibm:txseries:for_multiplatforms_8.2
|
8.2 | |
|
IBM TXSeries 9.1
IBM / TXSeries
|
cpe:/a:ibm:txseries:for_multiplatforms_9.1
|
9.1 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Java SE Oracle GraalVM Enterprise Edition: 21.2.0
Oracle / Java SE
|
cpe:/a:oracle:java_se:oracle_graalvm_enterprise_edition_21.2.0
|
Oracle GraalVM Enterprise Edition: 21.2.0 | |
|
Oracle Java SE Oracle GraalVM Enterprise Edition: 20.3.3
Oracle / Java SE
|
cpe:/a:oracle:java_se:oracle_graalvm_enterprise_edition_20.3.3
|
Oracle GraalVM Enterprise Edition: 20.3.3 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
HCL BigFix
HCL
|
cpe:/a:hcltech:bigfix:-
|
— | |
|
IBM InfoSphere Information Server
IBM
|
cpe:/a:ibm:infosphere_information_server:-
|
— | |
|
Oracle Java SE 7u311
Oracle / Java SE
|
cpe:/a:oracle:java_se:7u311
|
7u311 | |
|
Kyocera Printer
Kyocera
|
cpe:/h:kyocera:printer:-
|
— | |
|
Oracle Java SE 8u301
Oracle / Java SE
|
cpe:/a:oracle:java_se:8u301
|
8u301 | |
|
Oracle Java SE 17
Oracle / Java SE
|
cpe:/a:oracle:java_se:17
|
17 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Java SE 11.0.12
Oracle / Java SE
|
cpe:/a:oracle:java_se:11.0.12
|
11.0.12 | |
|
Oracle Java SE 21.2.0
Oracle / Java SE
|
cpe:/a:oracle:java_se:21.2.0
|
21.2.0 | |
|
Amazon Corretto <8.442.06.1
Amazon / Corretto
|
<8.442.06.1 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Amazon Corretto <11.0.26.4.1
Amazon / Corretto
|
<11.0.26.4.1 | ||
|
IBM Maximo Asset Management
IBM
|
cpe:/a:ibm:maximo_asset_management:-
|
— | |
|
Broadcom Brocade SANnav <2.2.1
Broadcom / Brocade SANnav
|
<2.2.1 | ||
|
IBM MQ
IBM
|
cpe:/a:ibm:mq:-
|
— | |
|
IBM Spectrum Scale 1.1.8.0-1.1.8.4
IBM / Storage Scale
|
cpe:/a:ibm:spectrum_scale:1.1.8.0_-_1.1.8.4
|
1.1.8.0-1.1.8.4 | |
|
Xerox FreeFlow Print Server
Xerox
|
cpe:/a:xerox:freeflow_print_server:-
|
— |
In Oracle Java SE existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder lokaler Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "Hoch" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "Hoch" für die Schadenshöhe.
Affected products
Known affected
24 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM TXSeries 8.2
IBM / TXSeries
|
cpe:/a:ibm:txseries:for_multiplatforms_8.2
|
8.2 | |
|
IBM TXSeries 9.1
IBM / TXSeries
|
cpe:/a:ibm:txseries:for_multiplatforms_9.1
|
9.1 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Java SE Oracle GraalVM Enterprise Edition: 21.2.0
Oracle / Java SE
|
cpe:/a:oracle:java_se:oracle_graalvm_enterprise_edition_21.2.0
|
Oracle GraalVM Enterprise Edition: 21.2.0 | |
|
Oracle Java SE Oracle GraalVM Enterprise Edition: 20.3.3
Oracle / Java SE
|
cpe:/a:oracle:java_se:oracle_graalvm_enterprise_edition_20.3.3
|
Oracle GraalVM Enterprise Edition: 20.3.3 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
HCL BigFix
HCL
|
cpe:/a:hcltech:bigfix:-
|
— | |
|
IBM InfoSphere Information Server
IBM
|
cpe:/a:ibm:infosphere_information_server:-
|
— | |
|
Oracle Java SE 7u311
Oracle / Java SE
|
cpe:/a:oracle:java_se:7u311
|
7u311 | |
|
Kyocera Printer
Kyocera
|
cpe:/h:kyocera:printer:-
|
— | |
|
Oracle Java SE 8u301
Oracle / Java SE
|
cpe:/a:oracle:java_se:8u301
|
8u301 | |
|
Oracle Java SE 17
Oracle / Java SE
|
cpe:/a:oracle:java_se:17
|
17 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Java SE 11.0.12
Oracle / Java SE
|
cpe:/a:oracle:java_se:11.0.12
|
11.0.12 | |
|
Oracle Java SE 21.2.0
Oracle / Java SE
|
cpe:/a:oracle:java_se:21.2.0
|
21.2.0 | |
|
Amazon Corretto <8.442.06.1
Amazon / Corretto
|
<8.442.06.1 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Amazon Corretto <11.0.26.4.1
Amazon / Corretto
|
<11.0.26.4.1 | ||
|
IBM Maximo Asset Management
IBM
|
cpe:/a:ibm:maximo_asset_management:-
|
— | |
|
Broadcom Brocade SANnav <2.2.1
Broadcom / Brocade SANnav
|
<2.2.1 | ||
|
IBM MQ
IBM
|
cpe:/a:ibm:mq:-
|
— | |
|
IBM Spectrum Scale 1.1.8.0-1.1.8.4
IBM / Storage Scale
|
cpe:/a:ibm:spectrum_scale:1.1.8.0_-_1.1.8.4
|
1.1.8.0-1.1.8.4 | |
|
Xerox FreeFlow Print Server
Xerox
|
cpe:/a:xerox:freeflow_print_server:-
|
— |
In Oracle Java SE existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder lokaler Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "Hoch" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "Hoch" für die Schadenshöhe.
Affected products
Known affected
24 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM TXSeries 8.2
IBM / TXSeries
|
cpe:/a:ibm:txseries:for_multiplatforms_8.2
|
8.2 | |
|
IBM TXSeries 9.1
IBM / TXSeries
|
cpe:/a:ibm:txseries:for_multiplatforms_9.1
|
9.1 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Java SE Oracle GraalVM Enterprise Edition: 21.2.0
Oracle / Java SE
|
cpe:/a:oracle:java_se:oracle_graalvm_enterprise_edition_21.2.0
|
Oracle GraalVM Enterprise Edition: 21.2.0 | |
|
Oracle Java SE Oracle GraalVM Enterprise Edition: 20.3.3
Oracle / Java SE
|
cpe:/a:oracle:java_se:oracle_graalvm_enterprise_edition_20.3.3
|
Oracle GraalVM Enterprise Edition: 20.3.3 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
HCL BigFix
HCL
|
cpe:/a:hcltech:bigfix:-
|
— | |
|
IBM InfoSphere Information Server
IBM
|
cpe:/a:ibm:infosphere_information_server:-
|
— | |
|
Oracle Java SE 7u311
Oracle / Java SE
|
cpe:/a:oracle:java_se:7u311
|
7u311 | |
|
Kyocera Printer
Kyocera
|
cpe:/h:kyocera:printer:-
|
— | |
|
Oracle Java SE 8u301
Oracle / Java SE
|
cpe:/a:oracle:java_se:8u301
|
8u301 | |
|
Oracle Java SE 17
Oracle / Java SE
|
cpe:/a:oracle:java_se:17
|
17 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Java SE 11.0.12
Oracle / Java SE
|
cpe:/a:oracle:java_se:11.0.12
|
11.0.12 | |
|
Oracle Java SE 21.2.0
Oracle / Java SE
|
cpe:/a:oracle:java_se:21.2.0
|
21.2.0 | |
|
Amazon Corretto <8.442.06.1
Amazon / Corretto
|
<8.442.06.1 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Amazon Corretto <11.0.26.4.1
Amazon / Corretto
|
<11.0.26.4.1 | ||
|
IBM Maximo Asset Management
IBM
|
cpe:/a:ibm:maximo_asset_management:-
|
— | |
|
Broadcom Brocade SANnav <2.2.1
Broadcom / Brocade SANnav
|
<2.2.1 | ||
|
IBM MQ
IBM
|
cpe:/a:ibm:mq:-
|
— | |
|
IBM Spectrum Scale 1.1.8.0-1.1.8.4
IBM / Storage Scale
|
cpe:/a:ibm:spectrum_scale:1.1.8.0_-_1.1.8.4
|
1.1.8.0-1.1.8.4 | |
|
Xerox FreeFlow Print Server
Xerox
|
cpe:/a:xerox:freeflow_print_server:-
|
— |
In Oracle Java SE existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder lokaler Angreifer die Vertraulichkeit, Integrität und Verfügbarkeit gefährden. Für die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle veröffentlicht keine weiteren Details zu diesen Schwachstellen (außer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadenshöhe ausschließlich auf Basis der CVSS Impact Matrix. Der Maximalwert für diese Produkte ist "Hoch" für "Confidentiality", "Integrity" und "Availability" über alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert "Hoch" für die Schadenshöhe.
Affected products
Known affected
24 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM TXSeries 8.2
IBM / TXSeries
|
cpe:/a:ibm:txseries:for_multiplatforms_8.2
|
8.2 | |
|
IBM TXSeries 9.1
IBM / TXSeries
|
cpe:/a:ibm:txseries:for_multiplatforms_9.1
|
9.1 | |
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Java SE Oracle GraalVM Enterprise Edition: 21.2.0
Oracle / Java SE
|
cpe:/a:oracle:java_se:oracle_graalvm_enterprise_edition_21.2.0
|
Oracle GraalVM Enterprise Edition: 21.2.0 | |
|
Oracle Java SE Oracle GraalVM Enterprise Edition: 20.3.3
Oracle / Java SE
|
cpe:/a:oracle:java_se:oracle_graalvm_enterprise_edition_20.3.3
|
Oracle GraalVM Enterprise Edition: 20.3.3 | |
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
HCL BigFix
HCL
|
cpe:/a:hcltech:bigfix:-
|
— | |
|
IBM InfoSphere Information Server
IBM
|
cpe:/a:ibm:infosphere_information_server:-
|
— | |
|
Oracle Java SE 7u311
Oracle / Java SE
|
cpe:/a:oracle:java_se:7u311
|
7u311 | |
|
Kyocera Printer
Kyocera
|
cpe:/h:kyocera:printer:-
|
— | |
|
Oracle Java SE 8u301
Oracle / Java SE
|
cpe:/a:oracle:java_se:8u301
|
8u301 | |
|
Oracle Java SE 17
Oracle / Java SE
|
cpe:/a:oracle:java_se:17
|
17 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Java SE 11.0.12
Oracle / Java SE
|
cpe:/a:oracle:java_se:11.0.12
|
11.0.12 | |
|
Oracle Java SE 21.2.0
Oracle / Java SE
|
cpe:/a:oracle:java_se:21.2.0
|
21.2.0 | |
|
Amazon Corretto <8.442.06.1
Amazon / Corretto
|
<8.442.06.1 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Amazon Corretto <11.0.26.4.1
Amazon / Corretto
|
<11.0.26.4.1 | ||
|
IBM Maximo Asset Management
IBM
|
cpe:/a:ibm:maximo_asset_management:-
|
— | |
|
Broadcom Brocade SANnav <2.2.1
Broadcom / Brocade SANnav
|
<2.2.1 | ||
|
IBM MQ
IBM
|
cpe:/a:ibm:mq:-
|
— | |
|
IBM Spectrum Scale 1.1.8.0-1.1.8.4
IBM / Storage Scale
|
cpe:/a:ibm:spectrum_scale:1.1.8.0_-_1.1.8.4
|
1.1.8.0-1.1.8.4 | |
|
Xerox FreeFlow Print Server
Xerox
|
cpe:/a:xerox:freeflow_print_server:-
|
— |
References
57 references
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Die Java Platform, Standard Edition (SE) ist eine Sammlung von Java-APIs (JDK) und der Java Laufzeit Umgebung (JRE).",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Oracle Java SE ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux\n- MacOS X\n- UNIX\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2022-0196 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2021/wid-sec-w-2022-0196.json"
},
{
"category": "self",
"summary": "WID-SEC-2022-0196 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-0196"
},
{
"category": "external",
"summary": "Oracle Critical Patch Update Advisory - October 2021 - Appendix Oracle Java SE vom 2021-10-19",
"url": "https://www.oracle.com/security-alerts/cpuoct2021.html#AppendixJAVA"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2021:3885 vom 2021-10-20",
"url": "https://access.redhat.com/errata/RHSA-2021:3885"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2021:3884 vom 2021-10-20",
"url": "https://access.redhat.com/errata/RHSA-2021:3884"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2021:3893 vom 2021-10-20",
"url": "https://access.redhat.com/errata/RHSA-2021:3893"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2021:3886 vom 2021-10-20",
"url": "https://access.redhat.com/errata/RHSA-2021:3886"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2021:3889 vom 2021-10-20",
"url": "https://access.redhat.com/errata/RHSA-2021:3889"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2021-3889 vom 2021-10-20",
"url": "https://linux.oracle.com/errata/ELSA-2021-3889.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2021-3891 vom 2021-10-20",
"url": "https://linux.oracle.com/errata/ELSA-2021-3891.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2021-3892 vom 2021-10-21",
"url": "https://linux.oracle.com/errata/ELSA-2021-3892.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2021-3893 vom 2021-10-20",
"url": "https://linux.oracle.com/errata/ELSA-2021-3893.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2021:3887 vom 2021-10-20",
"url": "https://access.redhat.com/errata/RHSA-2021:3887"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2021:3891 vom 2021-10-20",
"url": "https://access.redhat.com/errata/RHSA-2021:3891"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2021:3892 vom 2021-10-20",
"url": "https://access.redhat.com/errata/RHSA-2021:3892"
},
{
"category": "external",
"summary": "XEROX Security Advisory XRX21-018 vom 2021-11-03",
"url": "https://securitydocs.business.xerox.com/wp-content/uploads/2021/11/XRX21-018_FFPSv2_Win10_SecurityBulletin_Nov2021.pdf"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2021-1718 vom 2021-11-04",
"url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1718.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2021:5030 vom 2021-12-08",
"url": "https://access.redhat.com/errata/RHSA-2021:5030"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2022:14876-1 vom 2022-01-18",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2022-January/010022.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2022:0107-1 vom 2022-01-18",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2022-January/010011.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2022:0108-1 vom 2022-01-18",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2022-January/010012.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2022:14875-1 vom 2022-01-18",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2022-January/010014.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2022:0166-1 vom 2022-01-24",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2022-January/010052.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2022:0310 vom 2022-01-27",
"url": "https://access.redhat.com/errata/RHSA-2022:0310"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2022:0345 vom 2022-02-01",
"url": "https://access.redhat.com/errata/RHSA-2022:0345"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6552314 vom 2022-02-04",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-multiple-vulnerabilities-in-ibm-java-sdk-october-2021-affects-ibm-infosphere-information-server-cve-2021-35578-cve-2021-35564/"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2022:0970 vom 2022-03-21",
"url": "https://access.redhat.com/errata/RHSA-2022:0970"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2022:0968 vom 2022-03-21",
"url": "https://access.redhat.com/errata/RHSA-2022:0968"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2022:0969 vom 2022-03-21",
"url": "https://access.redhat.com/errata/RHSA-2022:0969"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6566227 vom 2022-05-11",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-ibm-sdk-java-technology-edition-security-update-october-2021-2/"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2022:4957 vom 2022-06-09",
"url": "https://access.redhat.com/errata/RHSA-2022:4957"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2022:4959 vom 2022-06-09",
"url": "https://access.redhat.com/errata/RHSA-2022:4959"
},
{
"category": "external",
"summary": "HCL Article KB0099493 vom 2022-07-21",
"url": "https://support.hcltechsw.com/csm?id=kb_article\u0026sysparm_article=KB0099493"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2022:2540-1 vom 2022-07-23",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2022-July/011646.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2022:2539-1 vom 2022-07-23",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2022-July/011645.html"
},
{
"category": "external",
"summary": "Brocade Security Advisory BSA-2022-1688 vom 2022-08-03",
"url": "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2022-1688"
},
{
"category": "external",
"summary": "Brocade Security Advisory BSA-2022-1689 vom 2022-08-03",
"url": "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2022-1689"
},
{
"category": "external",
"summary": "Brocade Security Advisory BSA-2022-1690 vom 2022-08-03",
"url": "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2022-1690"
},
{
"category": "external",
"summary": "Brocade Security Advisory BSA-2022-1691 vom 2022-08-03",
"url": "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2022-1691"
},
{
"category": "external",
"summary": "Brocade Security Advisory BSA-2022-1692 vom 2022-08-03",
"url": "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2022-1692"
},
{
"category": "external",
"summary": "Brocade Security Advisory BSA-2022-1693 vom 2022-08-03",
"url": "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2022-1693"
},
{
"category": "external",
"summary": "Brocade Security Advisory BSA-2022-1694 vom 2022-08-03",
"url": "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2022-1694"
},
{
"category": "external",
"summary": "Brocade Security Advisory BSA-2022-1738 vom 2022-08-03",
"url": "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2022-1738"
},
{
"category": "external",
"summary": "Brocade Security Advisory BSA-2022-2026 vom 2022-08-03",
"url": "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2022-2026"
},
{
"category": "external",
"summary": "Brocade Security Advisory BSA-2022-2025 vom 2022-08-03",
"url": "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2022-2025"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2022:2650-1 vom 2022-08-03",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2022-August/011760.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2022:5837 vom 2022-08-03",
"url": "https://access.redhat.com/errata/RHSA-2022:5837"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6621599 vom 2022-09-21",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-ibm-maximo-asset-management-is-vulnerable-to-authentication-bypass-cve-2022-40616/"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6824773 vom 2022-09-29",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-txseries-for-multiplatforms-is-vulnerable-to-a-denial-of-service-exposure-due-to-ibm-sdk-java-technology-edition/"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6825125 vom 2022-10-01",
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-ibm-mq-is-affected-by-multiple-vulnerabilities-in-ibm-runtime-environment-java-technology-edition-version-8/"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6987741 vom 2023-05-02",
"url": "https://www.ibm.com/support/pages/node/6987741"
},
{
"category": "external",
"summary": "Kyocera Firmwareneuheiten im Juni 2023 vom 2023-07-03",
"url": "https://kyocommunity.kyocera.de/lexicon/index.php"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALASCORRETTO8-2024-012 vom 2024-05-30",
"url": "https://alas.aws.amazon.com/AL2/ALASCORRETTO8-2024-012.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALASJAVA-OPENJDK11-2024-009 vom 2024-05-30",
"url": "https://alas.aws.amazon.com/AL2/ALASJAVA-OPENJDK11-2024-009.html"
},
{
"category": "external",
"summary": "Gentoo Linux Security Advisory GLSA-202409-26 vom 2024-09-28",
"url": "https://security.gentoo.org/glsa/202409-26"
},
{
"category": "external",
"summary": "Change Log for Amazon Corretto 11 vom 2025-01-21",
"url": "https://github.com/corretto/corretto-11/blob/ece67a968d57210c69d3b9153576613846c1cacf/CHANGELOG.md"
},
{
"category": "external",
"summary": "Change Log for Amazon Corretto 8 vom 2025-01-21",
"url": "https://github.com/corretto/corretto-8/blob/14eb6b297ac476ca5734706b40903e5a69ecd74a/CHANGELOG.md"
}
],
"source_lang": "en-US",
"title": "Oracle Java SE: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-01-21T23:00:00.000+00:00",
"generator": {
"date": "2025-01-22T09:47:42.778+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.10"
}
},
"id": "WID-SEC-W-2022-0196",
"initial_release_date": "2021-10-19T22:00:00.000+00:00",
"revision_history": [
{
"date": "2021-10-19T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2021-10-20T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2021-11-02T23:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von XEROX aufgenommen"
},
{
"date": "2021-11-04T23:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2021-12-08T23:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2022-01-18T23:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2022-01-24T23:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2022-01-27T23:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2022-02-01T23:00:00.000+00:00",
"number": "9",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2022-02-03T23:00:00.000+00:00",
"number": "10",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2022-03-20T23:00:00.000+00:00",
"number": "11",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2022-05-10T22:00:00.000+00:00",
"number": "12",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2022-06-08T22:00:00.000+00:00",
"number": "13",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2022-07-21T22:00:00.000+00:00",
"number": "14",
"summary": "Neue Updates von HCL aufgenommen"
},
{
"date": "2022-07-24T22:00:00.000+00:00",
"number": "15",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2022-08-02T22:00:00.000+00:00",
"number": "16",
"summary": "Neue Updates von BROCADE aufgenommen"
},
{
"date": "2022-08-03T22:00:00.000+00:00",
"number": "17",
"summary": "Neue Updates von SUSE und Red Hat aufgenommen"
},
{
"date": "2022-09-20T22:00:00.000+00:00",
"number": "18",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2022-09-28T22:00:00.000+00:00",
"number": "19",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2022-10-03T22:00:00.000+00:00",
"number": "20",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2023-05-02T22:00:00.000+00:00",
"number": "21",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2023-07-02T22:00:00.000+00:00",
"number": "22",
"summary": "Neue Updates aufgenommen"
},
{
"date": "2024-05-30T22:00:00.000+00:00",
"number": "23",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2024-09-29T22:00:00.000+00:00",
"number": "24",
"summary": "Neue Updates von Gentoo aufgenommen"
},
{
"date": "2025-01-21T23:00:00.000+00:00",
"number": "25",
"summary": "Neue Updates aufgenommen"
}
],
"status": "final",
"version": "25"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c11.0.26.4.1",
"product": {
"name": "Amazon Corretto \u003c11.0.26.4.1",
"product_id": "T040500"
}
},
{
"category": "product_version",
"name": "11.0.26.4.1",
"product": {
"name": "Amazon Corretto 11.0.26.4.1",
"product_id": "T040500-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:amazon:corretto:11.0.26.4.1"
}
}
},
{
"category": "product_version_range",
"name": "\u003c8.442.06.1",
"product": {
"name": "Amazon Corretto \u003c8.442.06.1",
"product_id": "T040501"
}
},
{
"category": "product_version",
"name": "8.442.06.1",
"product": {
"name": "Amazon Corretto 8.442.06.1",
"product_id": "T040501-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:amazon:corretto:8.442.06.1"
}
}
}
],
"category": "product_name",
"name": "Corretto"
},
{
"category": "product_name",
"name": "Amazon Linux 2",
"product": {
"name": "Amazon Linux 2",
"product_id": "398363",
"product_identification_helper": {
"cpe": "cpe:/o:amazon:linux_2:-"
}
}
}
],
"category": "vendor",
"name": "Amazon"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c2.2.1",
"product": {
"name": "Broadcom Brocade SANnav \u003c2.2.1",
"product_id": "T024158"
}
},
{
"category": "product_version",
"name": "2.2.1",
"product": {
"name": "Broadcom Brocade SANnav 2.2.1",
"product_id": "T024158-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:broadcom:brocade_sannav:2.2.1"
}
}
}
],
"category": "product_name",
"name": "Brocade SANnav"
}
],
"category": "vendor",
"name": "Broadcom"
},
{
"branches": [
{
"category": "product_name",
"name": "Gentoo Linux",
"product": {
"name": "Gentoo Linux",
"product_id": "T012167",
"product_identification_helper": {
"cpe": "cpe:/o:gentoo:linux:-"
}
}
}
],
"category": "vendor",
"name": "Gentoo"
},
{
"branches": [
{
"category": "product_name",
"name": "HCL BigFix",
"product": {
"name": "HCL BigFix",
"product_id": "T017494",
"product_identification_helper": {
"cpe": "cpe:/a:hcltech:bigfix:-"
}
}
}
],
"category": "vendor",
"name": "HCL"
},
{
"branches": [
{
"category": "product_name",
"name": "IBM InfoSphere Information Server",
"product": {
"name": "IBM InfoSphere Information Server",
"product_id": "T019995",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:infosphere_information_server:-"
}
}
},
{
"category": "product_name",
"name": "IBM MQ",
"product": {
"name": "IBM MQ",
"product_id": "T021398",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:mq:-"
}
}
},
{
"category": "product_name",
"name": "IBM Maximo Asset Management",
"product": {
"name": "IBM Maximo Asset Management",
"product_id": "T024664",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:maximo_asset_management:-"
}
}
},
{
"branches": [
{
"category": "product_version",
"name": "1.1.8.0-1.1.8.4",
"product": {
"name": "IBM Spectrum Scale 1.1.8.0-1.1.8.4",
"product_id": "T027575",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:spectrum_scale:1.1.8.0_-_1.1.8.4"
}
}
}
],
"category": "product_name",
"name": "Storage Scale"
},
{
"branches": [
{
"category": "product_version",
"name": "9.1",
"product": {
"name": "IBM TXSeries 9.1",
"product_id": "T015903",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:txseries:for_multiplatforms_9.1"
}
}
},
{
"category": "product_version",
"name": "8.2",
"product": {
"name": "IBM TXSeries 8.2",
"product_id": "T015904",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:txseries:for_multiplatforms_8.2"
}
}
}
],
"category": "product_name",
"name": "TXSeries"
}
],
"category": "vendor",
"name": "IBM"
},
{
"branches": [
{
"category": "product_name",
"name": "Kyocera Printer",
"product": {
"name": "Kyocera Printer",
"product_id": "T015471",
"product_identification_helper": {
"cpe": "cpe:/h:kyocera:printer:-"
}
}
}
],
"category": "vendor",
"name": "Kyocera"
},
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "21.2.0",
"product": {
"name": "Oracle Java SE 21.2.0",
"product_id": "T020712",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:java_se:21.2.0"
}
}
},
{
"category": "product_version",
"name": "11.0.12",
"product": {
"name": "Oracle Java SE 11.0.12",
"product_id": "T020713",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:java_se:11.0.12"
}
}
},
{
"category": "product_version",
"name": "Oracle GraalVM Enterprise Edition: 20.3.3",
"product": {
"name": "Oracle Java SE Oracle GraalVM Enterprise Edition: 20.3.3",
"product_id": "T020748",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:java_se:oracle_graalvm_enterprise_edition_20.3.3"
}
}
},
{
"category": "product_version",
"name": "Oracle GraalVM Enterprise Edition: 21.2.0",
"product": {
"name": "Oracle Java SE Oracle GraalVM Enterprise Edition: 21.2.0",
"product_id": "T020749",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:java_se:oracle_graalvm_enterprise_edition_21.2.0"
}
}
},
{
"category": "product_version",
"name": "17",
"product": {
"name": "Oracle Java SE 17",
"product_id": "T020750",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:java_se:17"
}
}
},
{
"category": "product_version",
"name": "8u301",
"product": {
"name": "Oracle Java SE 8u301",
"product_id": "T020752",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:java_se:8u301"
}
}
},
{
"category": "product_version",
"name": "7u311",
"product": {
"name": "Oracle Java SE 7u311",
"product_id": "T020753",
"product_identification_helper": {
"cpe": "cpe:/a:oracle:java_se:7u311"
}
}
}
],
"category": "product_name",
"name": "Java SE"
},
{
"category": "product_name",
"name": "Oracle Linux",
"product": {
"name": "Oracle Linux",
"product_id": "T004914",
"product_identification_helper": {
"cpe": "cpe:/o:oracle:linux:-"
}
}
}
],
"category": "vendor",
"name": "Oracle"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
}
],
"category": "vendor",
"name": "Red Hat"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
},
{
"branches": [
{
"category": "product_name",
"name": "Xerox FreeFlow Print Server",
"product": {
"name": "Xerox FreeFlow Print Server",
"product_id": "T010509",
"product_identification_helper": {
"cpe": "cpe:/a:xerox:freeflow_print_server:-"
}
}
}
],
"category": "vendor",
"name": "Xerox"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-27290",
"notes": [
{
"category": "description",
"text": "In Oracle Java SE existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder lokaler Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"Hoch\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"Hoch\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T015904",
"T015903",
"67646",
"T020749",
"T020748",
"T012167",
"T004914",
"T017494",
"T019995",
"T020753",
"T015471",
"T020752",
"T020750",
"T002207",
"T020713",
"T020712",
"T040501",
"398363",
"T040500",
"T024664",
"T024158",
"T021398",
"T027575",
"T010509"
]
},
"release_date": "2021-10-19T22:00:00.000+00:00",
"title": "CVE-2021-27290"
},
{
"cve": "CVE-2021-3517",
"notes": [
{
"category": "description",
"text": "In Oracle Java SE existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder lokaler Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"Hoch\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"Hoch\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T015904",
"T015903",
"67646",
"T020749",
"T020748",
"T012167",
"T004914",
"T017494",
"T019995",
"T020753",
"T015471",
"T020752",
"T020750",
"T002207",
"T020713",
"T020712",
"T040501",
"398363",
"T040500",
"T024664",
"T024158",
"T021398",
"T027575",
"T010509"
]
},
"release_date": "2021-10-19T22:00:00.000+00:00",
"title": "CVE-2021-3517"
},
{
"cve": "CVE-2021-3522",
"notes": [
{
"category": "description",
"text": "In Oracle Java SE existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder lokaler Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"Hoch\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"Hoch\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T015904",
"T015903",
"67646",
"T020749",
"T020748",
"T012167",
"T004914",
"T017494",
"T019995",
"T020753",
"T015471",
"T020752",
"T020750",
"T002207",
"T020713",
"T020712",
"T040501",
"398363",
"T040500",
"T024664",
"T024158",
"T021398",
"T027575",
"T010509"
]
},
"release_date": "2021-10-19T22:00:00.000+00:00",
"title": "CVE-2021-3522"
},
{
"cve": "CVE-2021-35550",
"notes": [
{
"category": "description",
"text": "In Oracle Java SE existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder lokaler Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"Hoch\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"Hoch\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T015904",
"T015903",
"67646",
"T020749",
"T020748",
"T012167",
"T004914",
"T017494",
"T019995",
"T020753",
"T015471",
"T020752",
"T020750",
"T002207",
"T020713",
"T020712",
"T040501",
"398363",
"T040500",
"T024664",
"T024158",
"T021398",
"T027575",
"T010509"
]
},
"release_date": "2021-10-19T22:00:00.000+00:00",
"title": "CVE-2021-35550"
},
{
"cve": "CVE-2021-35556",
"notes": [
{
"category": "description",
"text": "In Oracle Java SE existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder lokaler Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"Hoch\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"Hoch\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T015904",
"T015903",
"67646",
"T020749",
"T020748",
"T012167",
"T004914",
"T017494",
"T019995",
"T020753",
"T015471",
"T020752",
"T020750",
"T002207",
"T020713",
"T020712",
"T040501",
"398363",
"T040500",
"T024664",
"T024158",
"T021398",
"T027575",
"T010509"
]
},
"release_date": "2021-10-19T22:00:00.000+00:00",
"title": "CVE-2021-35556"
},
{
"cve": "CVE-2021-35559",
"notes": [
{
"category": "description",
"text": "In Oracle Java SE existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder lokaler Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"Hoch\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"Hoch\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T015904",
"T015903",
"67646",
"T020749",
"T020748",
"T012167",
"T004914",
"T017494",
"T019995",
"T020753",
"T015471",
"T020752",
"T020750",
"T002207",
"T020713",
"T020712",
"T040501",
"398363",
"T040500",
"T024664",
"T024158",
"T021398",
"T027575",
"T010509"
]
},
"release_date": "2021-10-19T22:00:00.000+00:00",
"title": "CVE-2021-35559"
},
{
"cve": "CVE-2021-35560",
"notes": [
{
"category": "description",
"text": "In Oracle Java SE existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder lokaler Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"Hoch\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"Hoch\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T015904",
"T015903",
"67646",
"T020749",
"T020748",
"T012167",
"T004914",
"T017494",
"T019995",
"T020753",
"T015471",
"T020752",
"T020750",
"T002207",
"T020713",
"T020712",
"T040501",
"398363",
"T040500",
"T024664",
"T024158",
"T021398",
"T027575",
"T010509"
]
},
"release_date": "2021-10-19T22:00:00.000+00:00",
"title": "CVE-2021-35560"
},
{
"cve": "CVE-2021-35561",
"notes": [
{
"category": "description",
"text": "In Oracle Java SE existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder lokaler Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"Hoch\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"Hoch\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T015904",
"T015903",
"67646",
"T020749",
"T020748",
"T012167",
"T004914",
"T017494",
"T019995",
"T020753",
"T015471",
"T020752",
"T020750",
"T002207",
"T020713",
"T020712",
"T040501",
"398363",
"T040500",
"T024664",
"T024158",
"T021398",
"T027575",
"T010509"
]
},
"release_date": "2021-10-19T22:00:00.000+00:00",
"title": "CVE-2021-35561"
},
{
"cve": "CVE-2021-35564",
"notes": [
{
"category": "description",
"text": "In Oracle Java SE existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder lokaler Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"Hoch\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"Hoch\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T015904",
"T015903",
"67646",
"T020749",
"T020748",
"T012167",
"T004914",
"T017494",
"T019995",
"T020753",
"T015471",
"T020752",
"T020750",
"T002207",
"T020713",
"T020712",
"T040501",
"398363",
"T040500",
"T024664",
"T024158",
"T021398",
"T027575",
"T010509"
]
},
"release_date": "2021-10-19T22:00:00.000+00:00",
"title": "CVE-2021-35564"
},
{
"cve": "CVE-2021-35565",
"notes": [
{
"category": "description",
"text": "In Oracle Java SE existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder lokaler Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"Hoch\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"Hoch\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T015904",
"T015903",
"67646",
"T020749",
"T020748",
"T012167",
"T004914",
"T017494",
"T019995",
"T020753",
"T015471",
"T020752",
"T020750",
"T002207",
"T020713",
"T020712",
"T040501",
"398363",
"T040500",
"T024664",
"T024158",
"T021398",
"T027575",
"T010509"
]
},
"release_date": "2021-10-19T22:00:00.000+00:00",
"title": "CVE-2021-35565"
},
{
"cve": "CVE-2021-35567",
"notes": [
{
"category": "description",
"text": "In Oracle Java SE existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder lokaler Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"Hoch\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"Hoch\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T015904",
"T015903",
"67646",
"T020749",
"T020748",
"T012167",
"T004914",
"T017494",
"T019995",
"T020753",
"T015471",
"T020752",
"T020750",
"T002207",
"T020713",
"T020712",
"T040501",
"398363",
"T040500",
"T024664",
"T024158",
"T021398",
"T027575",
"T010509"
]
},
"release_date": "2021-10-19T22:00:00.000+00:00",
"title": "CVE-2021-35567"
},
{
"cve": "CVE-2021-35578",
"notes": [
{
"category": "description",
"text": "In Oracle Java SE existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder lokaler Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"Hoch\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"Hoch\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T015904",
"T015903",
"67646",
"T020749",
"T020748",
"T012167",
"T004914",
"T017494",
"T019995",
"T020753",
"T015471",
"T020752",
"T020750",
"T002207",
"T020713",
"T020712",
"T040501",
"398363",
"T040500",
"T024664",
"T024158",
"T021398",
"T027575",
"T010509"
]
},
"release_date": "2021-10-19T22:00:00.000+00:00",
"title": "CVE-2021-35578"
},
{
"cve": "CVE-2021-35586",
"notes": [
{
"category": "description",
"text": "In Oracle Java SE existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder lokaler Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"Hoch\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"Hoch\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T015904",
"T015903",
"67646",
"T020749",
"T020748",
"T012167",
"T004914",
"T017494",
"T019995",
"T020753",
"T015471",
"T020752",
"T020750",
"T002207",
"T020713",
"T020712",
"T040501",
"398363",
"T040500",
"T024664",
"T024158",
"T021398",
"T027575",
"T010509"
]
},
"release_date": "2021-10-19T22:00:00.000+00:00",
"title": "CVE-2021-35586"
},
{
"cve": "CVE-2021-35588",
"notes": [
{
"category": "description",
"text": "In Oracle Java SE existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder lokaler Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"Hoch\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"Hoch\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T015904",
"T015903",
"67646",
"T020749",
"T020748",
"T012167",
"T004914",
"T017494",
"T019995",
"T020753",
"T015471",
"T020752",
"T020750",
"T002207",
"T020713",
"T020712",
"T040501",
"398363",
"T040500",
"T024664",
"T024158",
"T021398",
"T027575",
"T010509"
]
},
"release_date": "2021-10-19T22:00:00.000+00:00",
"title": "CVE-2021-35588"
},
{
"cve": "CVE-2021-35603",
"notes": [
{
"category": "description",
"text": "In Oracle Java SE existieren mehrere Schwachstellen. Durch Ausnutzung dieser Schwachstellen kann ein entfernter, anonymer oder lokaler Angreifer die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit gef\u00e4hrden. F\u00fcr die Ausnutzung einiger dieser Schwachstellen ist keine Benutzerinteraktion notwendig. Oracle ver\u00f6ffentlicht keine weiteren Details zu diesen Schwachstellen (au\u00dfer der Information in der Risiko Matrix im Oracle Advisory zum Critical Patch Update, siehe Link unten in diesem Advisory). Aufgrund der knappen Informationslage erfolgt die Bewertung der Schadensh\u00f6he ausschlie\u00dflich auf Basis der CVSS Impact Matrix. Der Maximalwert f\u00fcr diese Produkte ist \"Hoch\" f\u00fcr \"Confidentiality\", \"Integrity\" und \"Availability\" \u00fcber alle Schwachstellen aggregiert und bewirkt damit eine Bewertung mit dem Wert \"Hoch\" f\u00fcr die Schadensh\u00f6he."
}
],
"product_status": {
"known_affected": [
"T015904",
"T015903",
"67646",
"T020749",
"T020748",
"T012167",
"T004914",
"T017494",
"T019995",
"T020753",
"T015471",
"T020752",
"T020750",
"T002207",
"T020713",
"T020712",
"T040501",
"398363",
"T040500",
"T024664",
"T024158",
"T021398",
"T027575",
"T010509"
]
},
"release_date": "2021-10-19T22:00:00.000+00:00",
"title": "CVE-2021-35603"
}
]
}
WID-SEC-W-2023-0856
Vulnerability from csaf_certbund - Published: 2022-05-31 22:00 - Updated: 2023-04-04 22:00Summary
IBM QRadar SIEM: Mehrere Schwachstellen
Severity
Hoch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: IBM QRadar Security Information and Event Management (SIEM) bietet Unterstützung bei der Erkennung und Priorisierung von Sicherheitsbedrohungen im Unternehmen.
Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in IBM QRadar SIEM ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
Betroffene Betriebssysteme: - Linux
In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitslücken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitslücken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitslücken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitslücken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitslücken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitslücken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitslücken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitslücken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitslücken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitslücken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitslücken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitslücken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitslücken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitslücken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitslücken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitslücken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitslücken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitslücken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitslücken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitslücken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitslücken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitslücken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitslücken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitslücken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitslücken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitslücken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitslücken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitslücken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitslücken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrität und Verfügbarkeit zu gefährden.
References
4 references
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "IBM QRadar Security Information and Event Management (SIEM) bietet Unterst\u00fctzung bei der Erkennung und Priorisierung von Sicherheitsbedrohungen im Unternehmen.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in IBM QRadar SIEM ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2023-0856 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2023-0856.json"
},
{
"category": "self",
"summary": "WID-SEC-2023-0856 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-0856"
},
{
"category": "external",
"summary": "IBM Security Bulletin 6980799 vom 2023-04-04",
"url": "https://www.ibm.com/support/pages/node/6980799"
},
{
"category": "external",
"summary": "IBM Security Bulletin vom 2022-05-31",
"url": "https://www.ibm.com/support/pages/node/6590981"
}
],
"source_lang": "en-US",
"title": "IBM QRadar SIEM: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2023-04-04T22:00:00.000+00:00",
"generator": {
"date": "2024-08-15T17:48:07.215+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.5"
}
},
"id": "WID-SEC-W-2023-0856",
"initial_release_date": "2022-05-31T22:00:00.000+00:00",
"revision_history": [
{
"date": "2022-05-31T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2023-04-04T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von IBM aufgenommen"
}
],
"status": "final",
"version": "2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "IBM QRadar SIEM \u003c 3.0.1",
"product": {
"name": "IBM QRadar SIEM \u003c 3.0.1",
"product_id": "T023376",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:qradar_siem:3.0.1"
}
}
}
],
"category": "vendor",
"name": "IBM"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-11655",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitsl\u00fccken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden."
}
],
"release_date": "2022-05-31T22:00:00.000+00:00",
"title": "CVE-2020-11655"
},
{
"cve": "CVE-2020-11656",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitsl\u00fccken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden."
}
],
"release_date": "2022-05-31T22:00:00.000+00:00",
"title": "CVE-2020-11656"
},
{
"cve": "CVE-2020-13434",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitsl\u00fccken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden."
}
],
"release_date": "2022-05-31T22:00:00.000+00:00",
"title": "CVE-2020-13434"
},
{
"cve": "CVE-2020-13435",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitsl\u00fccken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden."
}
],
"release_date": "2022-05-31T22:00:00.000+00:00",
"title": "CVE-2020-13435"
},
{
"cve": "CVE-2020-13630",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitsl\u00fccken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden."
}
],
"release_date": "2022-05-31T22:00:00.000+00:00",
"title": "CVE-2020-13630"
},
{
"cve": "CVE-2020-13631",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitsl\u00fccken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden."
}
],
"release_date": "2022-05-31T22:00:00.000+00:00",
"title": "CVE-2020-13631"
},
{
"cve": "CVE-2020-13632",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitsl\u00fccken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden."
}
],
"release_date": "2022-05-31T22:00:00.000+00:00",
"title": "CVE-2020-13632"
},
{
"cve": "CVE-2020-15168",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitsl\u00fccken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden."
}
],
"release_date": "2022-05-31T22:00:00.000+00:00",
"title": "CVE-2020-15168"
},
{
"cve": "CVE-2020-15358",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitsl\u00fccken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden."
}
],
"release_date": "2022-05-31T22:00:00.000+00:00",
"title": "CVE-2020-15358"
},
{
"cve": "CVE-2020-28469",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitsl\u00fccken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden."
}
],
"release_date": "2022-05-31T22:00:00.000+00:00",
"title": "CVE-2020-28469"
},
{
"cve": "CVE-2020-7788",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitsl\u00fccken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden."
}
],
"release_date": "2022-05-31T22:00:00.000+00:00",
"title": "CVE-2020-7788"
},
{
"cve": "CVE-2020-9327",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitsl\u00fccken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden."
}
],
"release_date": "2022-05-31T22:00:00.000+00:00",
"title": "CVE-2020-9327"
},
{
"cve": "CVE-2021-22918",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitsl\u00fccken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden."
}
],
"release_date": "2022-05-31T22:00:00.000+00:00",
"title": "CVE-2021-22918"
},
{
"cve": "CVE-2021-22930",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitsl\u00fccken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden."
}
],
"release_date": "2022-05-31T22:00:00.000+00:00",
"title": "CVE-2021-22930"
},
{
"cve": "CVE-2021-22931",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitsl\u00fccken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden."
}
],
"release_date": "2022-05-31T22:00:00.000+00:00",
"title": "CVE-2021-22931"
},
{
"cve": "CVE-2021-22939",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitsl\u00fccken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden."
}
],
"release_date": "2022-05-31T22:00:00.000+00:00",
"title": "CVE-2021-22939"
},
{
"cve": "CVE-2021-22940",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitsl\u00fccken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden."
}
],
"release_date": "2022-05-31T22:00:00.000+00:00",
"title": "CVE-2021-22940"
},
{
"cve": "CVE-2021-23343",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitsl\u00fccken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden."
}
],
"release_date": "2022-05-31T22:00:00.000+00:00",
"title": "CVE-2021-23343"
},
{
"cve": "CVE-2021-23362",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitsl\u00fccken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden."
}
],
"release_date": "2022-05-31T22:00:00.000+00:00",
"title": "CVE-2021-23362"
},
{
"cve": "CVE-2021-27290",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitsl\u00fccken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden."
}
],
"release_date": "2022-05-31T22:00:00.000+00:00",
"title": "CVE-2021-27290"
},
{
"cve": "CVE-2021-32803",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitsl\u00fccken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden."
}
],
"release_date": "2022-05-31T22:00:00.000+00:00",
"title": "CVE-2021-32803"
},
{
"cve": "CVE-2021-32804",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitsl\u00fccken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden."
}
],
"release_date": "2022-05-31T22:00:00.000+00:00",
"title": "CVE-2021-32804"
},
{
"cve": "CVE-2021-33502",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitsl\u00fccken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden."
}
],
"release_date": "2022-05-31T22:00:00.000+00:00",
"title": "CVE-2021-33502"
},
{
"cve": "CVE-2021-3672",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitsl\u00fccken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden."
}
],
"release_date": "2022-05-31T22:00:00.000+00:00",
"title": "CVE-2021-3672"
},
{
"cve": "CVE-2021-37701",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitsl\u00fccken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden."
}
],
"release_date": "2022-05-31T22:00:00.000+00:00",
"title": "CVE-2021-37701"
},
{
"cve": "CVE-2021-37712",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitsl\u00fccken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden."
}
],
"release_date": "2022-05-31T22:00:00.000+00:00",
"title": "CVE-2021-37712"
},
{
"cve": "CVE-2021-37713",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitsl\u00fccken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden."
}
],
"release_date": "2022-05-31T22:00:00.000+00:00",
"title": "CVE-2021-37713"
},
{
"cve": "CVE-2021-3807",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitsl\u00fccken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden."
}
],
"release_date": "2022-05-31T22:00:00.000+00:00",
"title": "CVE-2021-3807"
},
{
"cve": "CVE-2021-3918",
"notes": [
{
"category": "description",
"text": "In IBM QRadar SIEM existieren mehrere Schwachstellen im Zusammenhang mit bekannten Sicherheitsl\u00fccken in den Komponenten Node.js und SQLite. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Integrit\u00e4t und Verf\u00fcgbarkeit zu gef\u00e4hrden."
}
],
"release_date": "2022-05-31T22:00:00.000+00:00",
"title": "CVE-2021-3918"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…