Описание
Security update for nodejs8
This update for nodejs8 fixes the following issues:
- CVE-2020-8174: Fixed multiple memory corruption in napi_get_value_string_*() (bsc#1172443).
- CVE-2020-11080: Fixed a potential denial of service when receiving unreasonably large HTTP/2 SETTINGS frames (bsc#1172442).
- CVE-2020-7598: Fixed an issue which could have tricked minimist into adding or modifying properties of Object.prototype (bsc#1166916).
This update was imported from the SUSE:SLE-15:Update update project.
Список пакетов
openSUSE Leap 15.1
Ссылки
- E-Mail link for openSUSE-SU-2020:0802-1
- SUSE Security Ratings
- SUSE Bug 1166916
- SUSE Bug 1172442
- SUSE Bug 1172443
- SUSE CVE CVE-2020-11080 page
- SUSE CVE CVE-2020-7598 page
- SUSE CVE CVE-2020-8174 page
Описание
In nghttp2 before version 1.41.0, the overly large HTTP/2 SETTINGS frame payload causes denial of service. The proof of concept attack involves a malicious client constructing a SETTINGS frame with a length of 14,400 bytes (2400 individual settings entries) over and over again. The attack causes the CPU to spike at 100%. nghttp2 v1.41.0 fixes this vulnerability. There is a workaround to this vulnerability. Implement nghttp2_on_frame_recv_callback callback, and if received frame is SETTINGS frame and the number of settings entries are large (e.g., > 32), then drop the connection.
Затронутые продукты
Ссылки
- CVE-2020-11080
- SUSE Bug 1172441
- SUSE Bug 1172442
- SUSE Bug 1181358
Описание
minimist before 1.2.2 could be tricked into adding or modifying properties of Object.prototype using a "constructor" or "__proto__" payload.
Затронутые продукты
Ссылки
- CVE-2020-7598
- SUSE Bug 1166916
Описание
napi_get_value_string_*() allows various kinds of memory corruption in node < 10.21.0, 12.18.0, and < 14.4.0.
Затронутые продукты
Ссылки
- CVE-2020-8174
- SUSE Bug 1172443