File _patchinfo of Package patchinfo.9924

Overview Repositories Revisions Requests Users Attributes Meta

File _patchinfo of Package patchinfo.9924

<patchinfo incident="9924">
  <issue tracker="bnc" id="1117629">VUL-0: CVE-2018-12123: nodejs4,nodejs6,nodejs8: Hostname spoofing in URL parser for javascript protocol</issue>
  <issue tracker="bnc" id="1117630">VUL-0: CVE-2018-12116: nodejs4,nodejs6,nodejs8: HTTP request splitting</issue>
  <issue tracker="bnc" id="1117627">VUL-0: CVE-2018-12122: nodejs4,nodejs6,nodejs8: "Slowloris" HTTP Denial of Service</issue>
  <issue tracker="bnc" id="1117626">VUL-0: CVE-2018-12121: nodejs4,nodejs6,nodejs8: Denial of Service with large HTTP headers</issue>
  <issue tracker="cve" id="2018-12116"/>
  <issue tracker="cve" id="2018-12121"/>
  <issue tracker="cve" id="2018-12122"/>
  <issue tracker="cve" id="2018-12123"/>
  <category>security</category>
  <rating>important</rating>
  <packager>adamm</packager>
  <description>This update for nodejs8 to version 8.15.0 fixes the following issues:

Security issues fixed:

- CVE-2018-12121: Fixed a Denial of Service with large HTTP headers (bsc#1117626)
- CVE-2018-12122: Fixed the 'Slowloris' HTTP Denial of Service (bsc#1117627)
- CVE-2018-12116: Fixed HTTP request splitting (bsc#1117630)
- CVE-2018-12123: Fixed hostname spoofing in URL parser for javascript protocol (bsc#1117629)
</description>
  <summary>Security update for nodejs8</summary>
</patchinfo>

Places

File _patchinfo of Package patchinfo.9924

Places