SUSE-SU-2022:2855-1 -- SLES nodejs10, npm10ID: oval:org.secpod.oval:def:89046898 | Date: (C)2022-08-26 (M)2024-04-17 |
Class: PATCH | Family: unix |
This update for nodejs10 fixes the following issues: - CVE-2021-22930, CVE-2021-22940: Fixed two memory corruption issues during HTTP/2 stream cancellation . - CVE-2022-32213, CVE-2022-32214, CVE-2022-32215, CVE-2021-22960, CVE-2021-22959: Fixed multiple HTTP request smuggling issues in the underlying HTTP parser . - CVE-2022-32212: Fixed a DNS rebinding issue caused by improper IPv4 validation .
Platform: |
SUSE Linux Enterprise Server 15 |
SUSE Linux Enterprise Server 15 SP2 |
SUSE Linux Enterprise Server 15 SP1 |