RedHatRHSA-2013:1842(RHSA-2013:1842) Moderate: nodejs010-nodejs security update
0.08 Low
EPSS
Percentile
94.3%
Node.js is a software development platform for building fast and scalable
network applications in the JavaScript programming language.
A denial of service flaw was found in the way Node.js handled pipelined
HTTP requests. A remote attacker could use this flaw to send an excessive
amount of HTTP requests over a network connection, causing Node.js to use
an excessive amount of memory and possibly exit when all available memory
is exhausted. (CVE-2013-4450)
Node.js is included in Red Hat Software Collections 1.0 as a Technology
Preview. More information about Red Hat Technology Previews is available
here: https://access.redhat.com/support/offerings/techpreview/
All nodejs010-nodejs users are advised to upgrade to these updated
packages, which contain a backported patch to correct this issue.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 6 | x86_64 | nodejs010-nodejs-docs | < 0.10.5-8.el6 | nodejs010-nodejs-docs-0.10.5-8.el6.x86_64.rpm |
| RedHat | 6 | x86_64 | nodejs010-nodejs-devel | < 0.10.5-8.el6 | nodejs010-nodejs-devel-0.10.5-8.el6.x86_64.rpm |
| RedHat | 6 | x86_64 | nodejs010-nodejs | < 0.10.5-8.el6 | nodejs010-nodejs-0.10.5-8.el6.x86_64.rpm |
| RedHat | 6 | src | nodejs010-nodejs | < 0.10.5-8.el6 | nodejs010-nodejs-0.10.5-8.el6.src.rpm |
| RedHat | 6 | x86_64 | nodejs010-nodejs-debuginfo | < 0.10.5-8.el6 | nodejs010-nodejs-debuginfo-0.10.5-8.el6.x86_64.rpm |
Related
