ELSA-2019-2258 -- Oracle http-parserID: oval:org.secpod.oval:def:1504479 | Date: (C)2021-01-20 (M)2024-04-17 |
Class: PATCH | Family: unix |
[2.7.1-8] - Backport needed test fixes - Related: rhbz#1666024 - CVE-2018-7159 http-parser: nodejs: HTTP parser allowed for spaces inside Content-Length header values [rhel-7] [2.7.1-7] - Resolves: rhbz#1666024 - CVE-2018-7159 http-parser: nodejs: HTTP parser allowed for spaces inside Content-Length header values [rhel-7] [2.7.1-6] - Resolves: rhbz#1666381 - CVE-2018-12121 http-parser: nodejs: Denial of Service with large HTTP headers [rhel-7]