VDB

openSUSE-SU-2020%3A1660-1

openSUSE-SU-2020%3A1660-1 PUBLISHED CVSS 5.5 MEDIUM

This update for nodejs10 fixes the following issues: - nodejs10 was updated to 10.22.1 LTS: - CVE-2020-8252: Fixed a buffer overflow in realpath (bsc#1176589). - CVE-2020-15095: Fixed an information leak through log files (bsc#1173937). - Explicitly add -fno-strict-aliasing to CFLAGS to fix compilation on Aarch64 with gcc10 (bsc#1172686) This update was imported from the SUSE:SLE-15:Update update project.

Risk Scores

CVSS 3.1
5.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected Products

VendorProductVersions
nodejs10
openSUSE Leap 15.2
npm10

Timeline

  • Oct 12, 2020 CVE Published
  • Apr 2, 2026 Security Advisory
Open in Interactive Console →
$ Console Community · 100/wk Open console ›