Security update for nodejs8 (important)

2020-01-15T06:10:46
ID OPENSUSE-SU-2020:0059-1
Type suse
Reporter Suse
Modified 2020-01-15T06:10:46

Description

This update for nodejs8 to version 8.17.0 fixes the following issues:

Security issues fixed:

  • CVE-2019-16777, CVE-2019-16776, CVE-2019-16775: Updated npm to 6.13.4, fixing an arbitrary path overwrite and access via "bin" field (bsc#1159352).

This update was imported from the SUSE:SLE-15:Update update project.