Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2020:1575-1

Опубликовано: 09 июн. 2020
Источник: suse-cvrf

Описание

Security update for nodejs10

This update for nodejs10 fixes the following issues:

nodejs10 was updated to version 10.21.0

  • CVE-2020-8174: Fixed multiple memory corruption in napi_get_value_string_*() (bsc#1172443).
  • CVE-2020-11080: Fixed a potential denial of service when receiving unreasonably large HTTP/2 SETTINGS frames (bsc#1172442).
  • CVE-2020-10531: Fixed an integer overflow in UnicodeString:doAppend() (bsc#1166844).

npm was updated to 6.14.3

  • CVE-2020-7598: Fixed an issue which could have tricked minimist into adding or modifying properties of Object.prototype (bsc#1166916).

Список пакетов

SUSE Linux Enterprise Module for Web and Scripting 12
nodejs10-10.21.0-1.24.1
nodejs10-devel-10.21.0-1.24.1
nodejs10-docs-10.21.0-1.24.1
npm10-10.21.0-1.24.1

Ссылки

Описание

An issue was discovered in International Components for Unicode (ICU) for C/C++ through 66.1. An integer overflow, leading to a heap-based buffer overflow, exists in the UnicodeString::doAppend() function in common/unistr.cpp.

Затронутые продукты
SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.21.0-1.24.1
SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.21.0-1.24.1
SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-docs-10.21.0-1.24.1
SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.21.0-1.24.1
Ссылки

Описание

In nghttp2 before version 1.41.0, the overly large HTTP/2 SETTINGS frame payload causes denial of service. The proof of concept attack involves a malicious client constructing a SETTINGS frame with a length of 14,400 bytes (2400 individual settings entries) over and over again. The attack causes the CPU to spike at 100%. nghttp2 v1.41.0 fixes this vulnerability. There is a workaround to this vulnerability. Implement nghttp2_on_frame_recv_callback callback, and if received frame is SETTINGS frame and the number of settings entries are large (e.g., > 32), then drop the connection.

Затронутые продукты
SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.21.0-1.24.1
SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.21.0-1.24.1
SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-docs-10.21.0-1.24.1
SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.21.0-1.24.1
Ссылки

Описание

minimist before 1.2.2 could be tricked into adding or modifying properties of Object.prototype using a "constructor" or "__proto__" payload.

Затронутые продукты
SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.21.0-1.24.1
SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.21.0-1.24.1
SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-docs-10.21.0-1.24.1
SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.21.0-1.24.1
Ссылки

Описание

napi_get_value_string_*() allows various kinds of memory corruption in node < 10.21.0, 12.18.0, and < 14.4.0.

Затронутые продукты
SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-10.21.0-1.24.1
SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-devel-10.21.0-1.24.1
SUSE Linux Enterprise Module for Web and Scripting 12:nodejs10-docs-10.21.0-1.24.1
SUSE Linux Enterprise Module for Web and Scripting 12:npm10-10.21.0-1.24.1
Ссылки