Malicious code in azure-iot-device-update (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 092a7f8fff3a4ffff2843f5123ed1648065db564827c61a0229ded806ee28c3c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

openSUSE Security Update : nodejs (openSUSE-2016-715)

This update for nodejs to version 4.4.5 fixes the several issues. These security issues introduced by the bundled openssl were fixed by going to version 1.0.2h : - CVE-2016-2107: The AES-NI implementation in OpenSSL did not consider memory allocation during a certain padding check, which allowed...