File _patchinfo of Package patchinfo.22395
<patchinfo incident="22395">
<issue tracker="bnc" id="1194511">VUL-0: CVE-2021-44531: nodejs10,nodejs12,nodejs14,nodejs16,nodejs: Improper handling of URI Subject Alternative Names</issue>
<issue tracker="bnc" id="1194512">VUL-0: CVE-2021-44532: nodejs10,nodejs12,nodejs14,nodejs16,nodejs: Certificate Verification Bypass via String Injection</issue>
<issue tracker="bnc" id="1194513">VUL-0: CVE-2021-44533: nodejs10,nodejs12,nodejs14,nodejs16,nodejs: Incorrect handling of certificate subject and issuer fields</issue>
<issue tracker="bnc" id="1194514">VUL-1: CVE-2022-21824: nodejs10,nodejs12,nodejs14,nodejs16,nodejs: Prototype pollution via console.table properties</issue>
<issue tracker="cve" id="2021-44531"/>
<issue tracker="cve" id="2021-44532"/>
<issue tracker="cve" id="2021-44533"/>
<issue tracker="cve" id="2022-21824"/>
<packager>adamm</packager>
<rating>moderate</rating>
<category>security</category>
<summary>Security update for nodejs12</summary>
<description>This update for nodejs12 fixes the following issues:
- CVE-2021-44531: Fixed improper handling of URI Subject Alternative Names (bsc#1194511).
- CVE-2021-44532: Fixed certificate Verification Bypass via String Injection (bsc#1194512).
- CVE-2021-44533: Fixed incorrect handling of certificate subject and issuer fields (bsc#1194513).
- CVE-2022-21824: Fixed prototype pollution via console.table properties (bsc#1194514).
</description>
</patchinfo>