openSUSE 15 Security Update : nodejs14 (openSUSE-SU-2021:3211-1)

critical Nessus Plugin ID 153597

Language:

Synopsis

The remote SUSE host is missing one or more security updates.

Description

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:3211-1 advisory.

- nodejs: Use-after-free on close http2 on stream canceling (CVE-2021-22930)

- Node.js before 16.6.0, 14.17.4, and 12.22.4 is vulnerable to Remote Code Execution, XSS, Application crashes due to missing input validation of host names returned by Domain Name Servers in Node.js dns library which can lead to output of wrong hostnames (leading to Domain Hijacking) and injection vulnerabilities in applications using the library. (CVE-2021-22931)

- If the Node.js https API was used incorrectly and undefined was in passed for the rejectUnauthorized parameter, no error was returned and connections to servers with an expired certificate would have been accepted. (CVE-2021-22939)

- Node.js before 16.6.1, 14.17.5, and 12.22.5 is vulnerable to a use after free attack where an attacker might be able to exploit the memory corruption, to change process behavior. (CVE-2021-22940)

- c-ares: Missing input validation of host names may lead to domain hijacking (CVE-2021-3672)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Solution

Update the affected nodejs14, nodejs14-devel and / or npm14 packages.

See Also

https://bugzilla.suse.com/1188881

https://bugzilla.suse.com/1188917

https://bugzilla.suse.com/1189368

https://bugzilla.suse.com/1189369

https://bugzilla.suse.com/1189370

http://www.nessus.org/u?1fdd2344

https://www.suse.com/security/cve/CVE-2021-22930

https://www.suse.com/security/cve/CVE-2021-22931

https://www.suse.com/security/cve/CVE-2021-22939

https://www.suse.com/security/cve/CVE-2021-22940

https://www.suse.com/security/cve/CVE-2021-3672

Plugin Details

Severity: Critical

ID: 153597

File Name: openSUSE-2021-3211.nasl

Version: 1.4

Type: local

Agent: unix

Published: 9/24/2021

Updated: 11/29/2023

Supported Sensors: Continuous Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: High

Base Score: 7.5

Temporal Score: 5.9

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS Score Source: CVE-2021-22931

CVSS v3

Risk Factor: Critical

Base Score: 9.8

Temporal Score: 8.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C

Vulnerability Information

CPE: cpe:/o:novell:opensuse:15.3, p-cpe:/a:novell:opensuse:nodejs14, p-cpe:/a:novell:opensuse:npm14, p-cpe:/a:novell:opensuse:nodejs14-devel

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 9/23/2021

Vulnerability Publication Date: 8/11/2021

Reference Information

CVE: CVE-2021-22930, CVE-2021-22931, CVE-2021-22939, CVE-2021-22940, CVE-2021-3672

IAVB: 2021-B-0050-S