Download
| Alert*
oval:org.secpod.oval:def:505951
Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The following packages have been upgraded to a later upstream version: rh-nodejs12-nodejs , rh-nodejs12-nodejs-nodemon . Security Fix: * nodejs-mixin-deep: prototype ... oval:org.secpod.oval:def:505902 Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The following packages have been upgraded to a later upstream version: nodejs , nodejs-nodemon . Security Fix: * nodejs-mixin-deep: prototype pollution in function m ... oval:org.secpod.oval:def:117767 Create nested values and any intermediaries using dot notation paths. oval:org.secpod.oval:def:117757 Create nested values and any intermediaries using dot notation paths. oval:org.secpod.oval:def:2004549 set-value is vulnerable to Prototype Pollution in versions lower than 3.0.1. The function mixin-deep could be tricked into adding or modifying properties of Object.prototype using any of the constructor, prototype and _proto_ payloads. oval:org.secpod.oval:def:69636 Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The following packages have been upgraded to a later upstream version: nodejs , nodejs-nodemon . Security Fix: * nodejs-mixin-deep: prototype pollution in function m ... oval:org.secpod.oval:def:4501227 Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The following packages have been upgraded to a later upstream version: nodejs , nodejs-nodemon . Security Fix: * nodejs-mixin-deep: prototype pollution in function m ... oval:org.secpod.oval:def:2500415 Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. oval:org.secpod.oval:def:1504648 The advisory is missing the security advisory description. For more information please visit the reference link |