SUSE SLES15 Security Update : nodejs14 (SUSE-SU-2021:3211-1)

critical Nessus Plugin ID 153621

Synopsis

The remote SUSE host is missing one or more security updates.

Description

The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:3211-1 advisory.

- nodejs: Use-after-free on close http2 on stream canceling (CVE-2021-22930)

- Node.js before 16.6.0, 14.17.4, and 12.22.4 is vulnerable to Remote Code Execution, XSS, Application crashes due to missing input validation of host names returned by Domain Name Servers in Node.js dns library which can lead to output of wrong hostnames (leading to Domain Hijacking) and injection vulnerabilities in applications using the library. (CVE-2021-22931)

- If the Node.js https API was used incorrectly and undefined was in passed for the rejectUnauthorized parameter, no error was returned and connections to servers with an expired certificate would have been accepted. (CVE-2021-22939)

- Node.js before 16.6.1, 14.17.5, and 12.22.5 is vulnerable to a use after free attack where an attacker might be able to exploit the memory corruption, to change process behavior. (CVE-2021-22940)

- c-ares: Missing input validation of host names may lead to domain hijacking (CVE-2021-3672)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Solution

Update the affected nodejs14, nodejs14-devel, nodejs14-docs and / or npm14 packages.

See Also

https://bugzilla.suse.com/1188881

https://bugzilla.suse.com/1188917

https://bugzilla.suse.com/1189368

https://bugzilla.suse.com/1189369

https://bugzilla.suse.com/1189370

http://www.nessus.org/u?70b367d4

https://www.suse.com/security/cve/CVE-2021-22930

https://www.suse.com/security/cve/CVE-2021-22931

https://www.suse.com/security/cve/CVE-2021-22939

https://www.suse.com/security/cve/CVE-2021-22940

https://www.suse.com/security/cve/CVE-2021-3672

Plugin Details

Severity: Critical

ID: 153621

File Name: suse_SU-2021-3211-1.nasl

Version: 1.3

Type: local

Agent: unix

Published: 9/24/2021

Updated: 1/26/2022

Supported Sensors: Nessus Agent

Risk Information

CVSS Score Source: CVE-2021-22931

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: High

Base Score: 7.5

Temporal Score: 5.5

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Temporal Vector: E:U/RL:OF/RC:C

CVSS v3

Risk Factor: Critical

Base Score: 9.8

Temporal Score: 8.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: E:U/RL:O/RC:C

Vulnerability Information

CPE: p-cpe:/a:novell:suse_linux:nodejs14, p-cpe:/a:novell:suse_linux:nodejs14-devel, p-cpe:/a:novell:suse_linux:nodejs14-docs, p-cpe:/a:novell:suse_linux:npm14, cpe:/o:novell:suse_linux:15

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Exploit Ease: No known exploits are available

Patch Publication Date: 9/23/2021

Vulnerability Publication Date: 8/11/2021

Reference Information

CVE: CVE-2021-3672, CVE-2021-22930, CVE-2021-22931, CVE-2021-22939, CVE-2021-22940

SuSE: SUSE-SU-2021:3211-1

IAVB: 2021-B-0050-S