VDB
RHSA-2017%3A0002
RHSA-2017%3A0002
PUBLISHED
CVSS 7.400000095367432 HIGH
Red Hat Security Advisory: rh-nodejs4-nodejs and rh-nodejs4-http-parser security update
Risk Scores
CVSS 3.0
7.400000095367432
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat:rhel_software_collections:2::el7 | rh-nodejs4-nodejs-devel | 0, 0 |
| Red Hat:rhel_software_collections:2::el7 | rh-nodejs4-http-parser | 0, 0 |
| Red Hat:rhel_software_collections:2::el6 | rh-nodejs4-nodejs | 0, 0 |
| Red Hat:rhel_software_collections:2::el6 | rh-nodejs4-http-parser-debuginfo | 0, 0 |
| Red Hat:rhel_software_collections:2::el7 | rh-nodejs4-nodejs-debuginfo | 0, 0 |
| Red Hat:rhel_software_collections:2::el6 | rh-nodejs4-nodejs-debuginfo | 0, 0 |
| Red Hat:rhel_software_collections:2::el6 | rh-nodejs4-nodejs-docs | 0, 0 |
| Red Hat:rhel_software_collections:2::el6 | rh-nodejs4-http-parser-devel | 0, 0 |
| Red Hat:rhel_software_collections:2::el7 | rh-nodejs4-http-parser-devel | 0, 0 |
| Red Hat:rhel_software_collections:2::el7 | rh-nodejs4-http-parser-debuginfo | 0, 0 |
| Red Hat:rhel_software_collections:2::el7 | rh-nodejs4-nodejs | 0, 0 |
| Red Hat:rhel_software_collections:2::el6 | rh-nodejs4-http-parser | 0, 0 |
| Red Hat:rhel_software_collections:2::el6 | rh-nodejs4-nodejs-devel | 0, 0 |
| Red Hat:rhel_software_collections:2::el7 | rh-nodejs4-nodejs-docs | 0, 0 |
Exploit Intelligence
- pouriam23/CVE-2016-5180 (github-poc-repo)
- pouriam23/CVE-2016-5180 (github-poc-repo)
- pouriam23/CVE-2016-5180-docker- (github-poc-repo)
- pouriam23/CVE-2016-5180-docker- (github-poc-repo)
- pouriam23/final-CVE-2016-5180 (github-poc-repo)
- pouriam23/final-CVE-2016-5180 (github-poc-repo)
- pouriam23/final-CVE-2016-5180 (github-poc)
- pouriam23/final-CVE-2016-5180 (github-poc)
- pouriam23/CVE-2016-5180-docker- (github-poc)
- pouriam23/CVE-2016-5180-docker- (github-poc)
…and 2 more exploits
Timeline
- Jan 2, 2017 CVE Published
- Mar 13, 2026 CVE Updated
- Apr 30, 2026 Distribution Patch
- Apr 30, 2026 Distribution Patch
- Apr 30, 2026 Security Advisory
- Apr 30, 2026 Security Advisory
- Apr 30, 2026 Security Advisory
- Apr 30, 2026 Security Advisory
- Apr 30, 2026 Security Advisory
References
- https://access.redhat.com/errata/RHSA-2017:0002 advisory
- https://access.redhat.com/security/updates/classification/#important article
- https://bugzilla.redhat.com/show_bug.cgi?id=1335449 report
- https://bugzilla.redhat.com/show_bug.cgi?id=1346910 report
- https://bugzilla.redhat.com/show_bug.cgi?id=1379921 report
- https://bugzilla.redhat.com/show_bug.cgi?id=1380463 report
- https://bugzilla.redhat.com/show_bug.cgi?id=1388097 report
- https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_0002.json advisory
- https://access.redhat.com/security/cve/CVE-2016-1669 report
- https://www.cve.org/CVERecord?id=CVE-2016-1669 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2016-1669 advisory
- http://googlechromereleases.blogspot.com/2016/05/stable-channel-update.html article
- https://access.redhat.com/security/cve/CVE-2016-5180 report
- https://www.cve.org/CVERecord?id=CVE-2016-5180 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2016-5180 advisory
- https://c-ares.haxx.se/adv_20160929.html article
- https://access.redhat.com/security/cve/CVE-2016-5325 report
- https://www.cve.org/CVERecord?id=CVE-2016-5325 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2016-5325 advisory
- https://nodejs.org/en/blog/vulnerability/september-2016-security-releases/ article
…and 3 more