RHSA-2020:4272

Description

Red Hat Security Advisory: nodejs:12 security and bug fix update

CVSS Metrics

• v3.1•HIGH•Score: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Systems

• redhat•nodejs

  < 1:12.18.4-2.module+el8.2.0+8361+192e434e

• redhat•nodejs-debuginfo

  < 1:12.18.4-2.module+el8.2.0+8361+192e434e

• redhat•nodejs-debugsource

  < 1:12.18.4-2.module+el8.2.0+8361+192e434e

• redhat•nodejs-devel

  < 1:12.18.4-2.module+el8.2.0+8361+192e434e

• redhat•nodejs-docs

  < 1:12.18.4-2.module+el8.2.0+8361+192e434e

• redhat•nodejs-full-i18n

  < 1:12.18.4-2.module+el8.2.0+8361+192e434e

• redhat•nodejs-nodemon

  < 0:1.18.3-1.module+el8.1.0+3369+37ae6a45

• redhat•nodejs-packaging

  < 0:17-3.module+el8.1.0+3369+37ae6a45

• redhat•npm

  < 1:6.14.6-1.12.18.4.2.module+el8.2.0+8361+192e434e

References (21)

• https://access.redhat.com/errata/RHSA-2020:4272
• https://access.redhat.com/security/updates/classification/#moderate
• https://bugzilla.redhat.com/show_bug.cgi?id=1856875
• https://bugzilla.redhat.com/show_bug.cgi?id=1868196
• https://bugzilla.redhat.com/show_bug.cgi?id=1879311
• https://bugzilla.redhat.com/show_bug.cgi?id=1879315
• https://bugzilla.redhat.com/show_bug.cgi?id=1883966
• https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_4272.json
• https://access.redhat.com/security/cve/CVE-2020-8116
• https://www.cve.org/CVERecord?id=CVE-2020-8116
• https://nvd.nist.gov/vuln/detail/CVE-2020-8116
• https://hackerone.com/reports/719856
• https://access.redhat.com/security/cve/CVE-2020-8201
• https://www.cve.org/CVERecord?id=CVE-2020-8201
• https://nvd.nist.gov/vuln/detail/CVE-2020-8201
• https://access.redhat.com/security/cve/CVE-2020-8252
• https://www.cve.org/CVERecord?id=CVE-2020-8252
• https://nvd.nist.gov/vuln/detail/CVE-2020-8252
• https://access.redhat.com/security/cve/CVE-2020-15095
• https://www.cve.org/CVERecord?id=CVE-2020-15095
• https://nvd.nist.gov/vuln/detail/CVE-2020-15095