Overview

File _patchinfo of Package patchinfo.28627

<patchinfo incident="28627">
  <issue tracker="bnc" id="1208744">VUL-0: CVE-2022-25881: nodejs10,nodejs8,nodejs6,nodejs14,nodejs16,nodejs4,nodejs18,nodejs12: http-cache-semantics: Regular Expression Denial of Service (ReDoS) vulnerability</issue>
  <issue tracker="cve" id="2022-25881"/>
  <packager>adamm</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for nodejs16</summary>
  <description>This update for nodejs16 fixes the following issues:

Update to nodejs LTS version 16.20.0:

Security fixes:

 - CVE-2022-25881: Fixed ReDoS vulnerability in http-cache-semantics (bsc#1208744).

Other changes:  

 - update undici to 5.20.0
 - update c-ares to 1.19.0
 - update npm to 8.19.4
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places