[Forgot Password]
Login  Register Subscribe

30480

 
 

423868

 
 

252271

 
 

909

 
 

196835

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 81359 Download | Alert*

http-parser: parser for HTTP messages: development libraries and header files http-parser could be made to expose sensitive data if it received a specially crafted request.

nodejs: An open-source, cross-platform JavaScript runtime environment. Several security issues were fixed in Node.js.

This update for nodejs10 fixes the following issues: New upstream LTS version 10.24.0: - CVE-2021-22883: HTTP2 "unknownProtocol" cause Denial of Service by resource exhaustion - CVE-2021-22884: DNS rebinding in --inspect - CVE-2021-23840: OpenSSL - Integer overflow in CipherUpdate

The advisory is missing the security advisory description. For more information please visit the reference link

nodejs [1:12.21.0-1] - Resolves: RHBZ#1932315, RHBZ#1932424 - remove --debug-nghttp2 option - remove ini patch - Backport patch to use getauxval

nodejs [1:14.16.0-2] - Resolves: RHBZ#1932427 - remove --debug-nghttp2 option [1:14.16.0-1] - Resolves: RHBZ#1932317, RHBZ#1932425 - Rebase, remove ini patch [1:14.15.4-2] - Add patch for yarn crash - Resolves: RHBZ#1916465 [1:14.15.4-1] - Security rebase to 14.15.4 - https://nodejs.org/en/blog/vulnerability/january-2021-security-releases/ - Resolves: RHBZ#1916463, RHBZ#1914788 - Resolves: RHBZ#19 ...

nodejs [1:10.24.0-1] - Resolves: RHBZ#1932373, RHBZ#1932426 - Resolves CVE-2021-22883 and CVE-2021-22884 - remove -debug-nghttp2 flag - remove ini patch merged upstream

nodejs: An open-source, cross-platform JavaScript runtime environment. Several security issues were fixed in Node.js.

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The following packages have been upgraded to a later upstream version: nodejs , nodejs-nodemon . Security Fix: * nodejs-mixin-deep: prototype pollution in function mixin-deep * nodejs-set-value: prototype pollution in function set-value * nodejs-npm-user-validate ...

Two vulnerabilities were discovered in Node.js, which could result in denial of service and potentially the execution of arbitrary code or HTTP request smuggling.


Pages:      Start    4355    4356    4357    4358    4359    4360    4361    4362    4363    4364    4365    4366    4367    4368    ..   8135

© SecPod Technologies