9 matches found
RHEL 6 / 7 : rh-nodejs6-nodejs-tough-cookie (RHSA-2017:2913)
The remote Redhat Enterprise Linux 6 / 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2017:2913 advisory. Tough-Cookie is a Node.js module that offers RFC6265 Cookies and Cookie Jar. The following packages have been upgraded to a later upstream versio...
RHEL 6 / 7 : rh-nodejs4-nodejs-tough-cookie (RHSA-2017:2912)
The remote Redhat Enterprise Linux 6 / 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2017:2912 advisory. Tough-Cookie is a Node.js module that offers RFC6265 Cookies and Cookie Jar. The following packages have been upgraded to a later upstre...
RHEL 7 : Red Hat Mobile Application Platform 4.6.0 (RHSA-2018:1263)
Red Hat Mobile Application Platform 4.6.0 release - RPMs Red Hat Mobile Application Platform RHMAP 4.6 is delivered as a set of container images. In addition to the images, several components are delivered as RPMs : OpenShift templates used to deploy an RHMAP Core and MBaaS The fh-system-dump-too...
Moderate: Red Hat Security Advisory: Red Hat Mobile Application Platform 4.6.0 release - RPMs
Red Hat Mobile Application Platform 4.6.0 release - RPMs Red Hat Mobile Application Platform RHMAP 4.6 is delivered as a set of container images. In addition to the images, several components are delivered as RPMs: OpenShift templates used to deploy an RHMAP Core and MBaaS The fh-system-dump-tool...
Moderate: Red Hat Security Advisory: Red Hat Mobile Application Platform 4.6.0 Release - Container Images
Red Hat Mobile Application Platform 4.6.0 Release - Container Images Red Hat Mobile Application Platform RHMAP 4.6.0 consists of three main components: Core - development and management of apps occurs in the RHMAP Core, which can be installed either in an on-premise installation of OpenShift...
Moderate: Red Hat Security Advisory: rh-nodejs6-nodejs-tough-cookie security update
An update for rh-nodejs6-nodejs-tough-cookie is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...
Moderate: Red Hat Security Advisory: rh-nodejs4-nodejs-tough-cookie security update
An update for rh-nodejs4-nodejs-tough-cookie is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...
CVE-2017-15010
A ReDoS regular expression denial of service flaw was found in the tough-cookie module before 2.3.3 for Node.js. An attacker that is able to make an HTTP request using a specially crafted cookie may cause the application to consume an excessive amount of CPU...
CVE-2017-15010
CVE-2017-15010 affects the Node.js tough-cookie module prior to version 2.3.3. It is a ReDoS vulnerability where processing a specially crafted HTTP Cookie header can cause high CPU usage. Vendors/adv advisories recommend upgrading to 2.3.3 or newer (e.g., 2.3.3+; Fedora/RH advisories mention 2.3...