Security update for nodejs SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2015:1825-2 Final 1 1 2015-11-09T10:24:17Z current 2015-11-09T10:24:17Z 2015-11-09T10:24:17Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for nodejs nodejs was updated to version 4.2.1 to fix one security issue. This security issue was fixed: - CVE-2015-7384: HTTP Denial of Service Vulnerability (bsc#948602). Various other issues were fixed, please see the changelog. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/opensuse-updates/2015-10/msg00058.html E-Mail link for openSUSE-SU-2015:1825-2 https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE Leap 42.1 nodejs-4.2.1-10.1 nodejs-devel-4.2.1-10.1 nodejs-doc-4.2.1-4.1 nodejs-docs-4.2.1-10.1 nodejs-npm-4.2.1-10.1 nodejs-4.2.1-10.1 as a component of openSUSE Leap 42.1 nodejs-devel-4.2.1-10.1 as a component of openSUSE Leap 42.1 nodejs-doc-4.2.1-4.1 as a component of openSUSE Leap 42.1 nodejs-docs-4.2.1-10.1 as a component of openSUSE Leap 42.1 nodejs-npm-4.2.1-10.1 as a component of openSUSE Leap 42.1 Node.js 4.0.0, 4.1.0, and 4.1.1 allows remote attackers to cause a denial of service. CVE-2015-7384 openSUSE Leap 42.1:nodejs-4.2.1-10.1 openSUSE Leap 42.1:nodejs-devel-4.2.1-10.1 openSUSE Leap 42.1:nodejs-doc-4.2.1-4.1 openSUSE Leap 42.1:nodejs-docs-4.2.1-10.1 openSUSE Leap 42.1:nodejs-npm-4.2.1-10.1 moderate 5.4 AV:N/AC:H/Au:N/C:N/I:N/A:C Please Install the update. https://lists.opensuse.org/opensuse-updates/2015-10/msg00058.html https://www.suse.com/security/cve/CVE-2015-7384.html CVE-2015-7384 https://bugzilla.suse.com/948602 SUSE Bug 948602