Download
| Alert*
oval:org.secpod.oval:def:66538
Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Security Fix: * ICU: Integer overflow in UnicodeString::doAppend For more details about the security issue, including the impact, a CVSS score, acknowledgments, and ... oval:org.secpod.oval:def:66537 Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Security Fix: * ICU: Integer overflow in UnicodeString::doAppend For more details about the security issue, including the impact, a CVSS score, acknowledgments, and ... oval:org.secpod.oval:def:62249 icu: International Components for Unicode library ICU could be made to execute arbitrary code if it received a specially crafted string. oval:org.secpod.oval:def:66531 The International Components for Unicode library provides robust and full-featured Unicode services. Security Fix: * ICU: Integer overflow in UnicodeString::doAppend For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer ... oval:org.secpod.oval:def:503637 Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Security Fix: * ICU: Integer overflow in UnicodeString::doAppend For more details about the security issue, including the impact, a CVSS score, acknowledgments, and ... oval:org.secpod.oval:def:503635 Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Security Fix: * ICU: Integer overflow in UnicodeString::doAppend For more details about the security issue, including the impact, a CVSS score, acknowledgments, and ... oval:org.secpod.oval:def:503563 The International Components for Unicode library provides robust and full-featured Unicode services. Security Fix: * ICU: Integer overflow in UnicodeString::doAppend For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer ... oval:org.secpod.oval:def:503561 The International Components for Unicode library provides robust and full-featured Unicode services. Security Fix: * ICU: Integer overflow in UnicodeString::doAppend For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer ... oval:org.secpod.oval:def:503565 The International Components for Unicode library provides robust and full-featured Unicode services. Security Fix: * ICU: Integer overflow in UnicodeString::doAppend For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer ... oval:org.secpod.oval:def:83387 The host is installed with Node.js 10.0.0 before 10.21.0 and is prone to a heap-based buffer overflow vulnerability. A flaw is present in the application which fails to handle UnicodeString::doAppend() function in common/unistr.cpp. Successful exploitation allows an attacker to cause unspecified imp ... oval:org.secpod.oval:def:505393 Chromium is an open-source web browser, powered by WebKit . This update upgrades Chromium to version 80.0.3987.122. Security Fix: * ICU: Integer overflow in UnicodeString::doAppend * chromium-browser: Type confusion in V8 * chromium-browser: Use after free in WebAudio * chromium-browser: Use afte ... oval:org.secpod.oval:def:89050444 This update for icu fixes the following issues: - CVE-2020-10531: Fixed a potential integer overflow in UnicodeString:doAppend . oval:org.secpod.oval:def:117946 Chromium is an open-source web browser, powered by WebKit . oval:org.secpod.oval:def:117932 Chromium is an open-source web browser, powered by WebKit . oval:org.secpod.oval:def:1601122 An issue was discovered in International Components for Unicode for C/C++ through 66.1. An integer overflow, leading to a heap-based buffer overflow, exists in the UnicodeString::doAppend function in common/unistr.cpp oval:org.secpod.oval:def:1802067 An issue was discovered in International Components for Unicode for C/C++ through 66.1. An integer overflow, leading to a heap-based buffer overflow, exists in the UnicodeString::doAppend function in common/unistr.cpp. oval:org.secpod.oval:def:705410 icu: International Components for Unicode library ICU could be made to execute arbitrary code if it received a specially crafted string. oval:org.secpod.oval:def:1504120 [60.3-2] - Apply ICU-13634-Adding-integer-overflow-logic-to-ICU4C-num.patch - Apply ICU-20958-Prevent-SEGV_MAPERR-in-append.patch - Resolves: rhbz#1808238 oval:org.secpod.oval:def:2500097 The International Components for Unicode library provides robust and full-featured Unicode services. oval:org.secpod.oval:def:205469 The International Components for Unicode library provides robust and full-featured Unicode services. Security Fix: * ICU: Integer overflow in UnicodeString::doAppend For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer ... oval:org.secpod.oval:def:604793 Andre Bargull discovered an integer overflow in the International Components for Unicode library which could result in denial of service and potentially the execution of arbitrary code. oval:org.secpod.oval:def:2500058 Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. oval:org.secpod.oval:def:1700330 An issue was discovered in International Components for Unicode for C/C++ through 66.1. An integer overflow, leading to a heap-based buffer overflow, exists in the UnicodeString::doAppend function in common/unistr.cpp oval:org.secpod.oval:def:69813 Andre Bargull discovered an integer overflow in the International Components for Unicode library which could result in denial of service and potentially the execution of arbitrary code. oval:org.secpod.oval:def:1502875 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:2500109 Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. oval:org.secpod.oval:def:89000098 This update for icu fixes the following issues: - CVE-2020-10531: Fixed a potential integer overflow in UnicodeString:doAppend . oval:org.secpod.oval:def:89000651 This update for icu fixes the following issues: - CVE-2020-10531: Fixed integer overflow in UnicodeString:doAppend . oval:org.secpod.oval:def:1502845 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:89049364 This update for icu73_2 fixes the following issues: * Update to release 73.2 * CLDR extends the support for "short" Chinese sort orders to cover some additional, required characters for Level 2. This is carried over into ICU collation. * ICU has a modified character conversion table, mapping some GB ... oval:org.secpod.oval:def:1502844 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:89051037 This update for icu73_2 fixes the following issues: * Update to release 73.2 * CLDR extends the support for "short" Chinese sort orders to cover some additional, required characters for Level 2. This is carried over into ICU collation. * ICU has a modified character conversion table, mapping some GB ... oval:org.secpod.oval:def:205473 The International Components for Unicode library provides robust and full-featured Unicode services. Security Fix: * ICU: Integer overflow in UnicodeString::doAppend For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer ... oval:org.secpod.oval:def:1502855 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:89000193 This update for nodejs10 fixes the following issues: nodejs10 was updated to version 10.21.0 - CVE-2020-8174: Fixed multiple memory corruption in napi_get_value_string_* . - CVE-2020-11080: Fixed a potential denial of service when receiving unreasonably large HTTP/2 SETTINGS frames . - CVE-2020-1053 ... oval:org.secpod.oval:def:119170 Node.js is a platform built on Chromes JavaScript runtime for easily building fast, scalable network applications. Node.js uses an event-driven, non-blocking I/O model that makes it lightweight and efficient, perfect for data-intensive real-time applications that run across distributed devices. oval:org.secpod.oval:def:2106130 Oracle Solaris 11 - ( CVE-2020-10531 ) oval:org.secpod.oval:def:505061 Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The following packages have been upgraded to a later upstream version: rh-nodejs10-nodejs . Security Fix: * ICU: Integer overflow in UnicodeString::doAppend * nghtt ... oval:org.secpod.oval:def:504864 Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The following packages have been upgraded to a later upstream version: rh-nodejs12-nodejs . Security Fix: * ICU: Integer overflow in UnicodeString::doAppend * nghtt ... |