Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2021:0107-1

Опубликовано: 13 янв. 2021
Источник: suse-cvrf

Описание

Security update for nodejs14

This update for nodejs14 fixes the following issues:

  • New upstream LTS version 14.15.4:

    • CVE-2020-8265: use-after-free in TLSWrap (High) bug in TLS implementation. When writing to a TLS enabled socket, node::StreamBase::Write calls node::TLSWrap::DoWrite with a freshly allocated WriteWrap object as first argument. If the DoWrite method does not return an error, this object is passed back to the caller as part of a StreamWriteResult structure. This may be exploited to corrupt memory leading to a Denial of Service or potentially other exploits (bsc#1180553)
    • CVE-2020-8287: HTTP Request Smuggling allow two copies of a header field in a http request. For example, two Transfer-Encoding header fields. In this case Node.js identifies the first header field and ignores the second. This can lead to HTTP Request Smuggling (https://cwe.mitre.org/data/definitions/444.html). (bsc#1180554)

  • New upstream LTS version 14.15.3:

    • deps:
      • upgrade npm to 6.14.9
      • update acorn to v8.0.4
    • http2: check write not scheduled in scope destructor
    • stream: fix regression on duplex end

Список пакетов

SUSE Linux Enterprise Module for Web and Scripting 12
nodejs14-14.15.4-6.6.1
nodejs14-devel-14.15.4-6.6.1
nodejs14-docs-14.15.4-6.6.1
npm14-14.15.4-6.6.1

Ссылки

Описание

Node.js versions before 10.23.1, 12.20.1, 14.15.4, 15.5.1 are vulnerable to a use-after-free bug in its TLS implementation. When writing to a TLS enabled socket, node::StreamBase::Write calls node::TLSWrap::DoWrite with a freshly allocated WriteWrap object as first argument. If the DoWrite method does not return an error, this object is passed back to the caller as part of a StreamWriteResult structure. This may be exploited to corrupt memory leading to a Denial of Service or potentially other exploits.

Затронутые продукты
SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.15.4-6.6.1
SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.15.4-6.6.1
SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-docs-14.15.4-6.6.1
SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.15.4-6.6.1
Ссылки

Описание

Node.js versions before 10.23.1, 12.20.1, 14.15.4, 15.5.1 allow two copies of a header field in an HTTP request (for example, two Transfer-Encoding header fields). In this case, Node.js identifies the first header field and ignores the second. This can lead to HTTP Request Smuggling.

Затронутые продукты
SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-14.15.4-6.6.1
SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-devel-14.15.4-6.6.1
SUSE Linux Enterprise Module for Web and Scripting 12:nodejs14-docs-14.15.4-6.6.1
SUSE Linux Enterprise Module for Web and Scripting 12:npm14-14.15.4-6.6.1
Ссылки