AVG-1604 - log back

AVG-1604 edited at 10 Mar 2021 08:10:54
Advisory qualified
- Yes
+ No
AVG-1604 edited at 23 Feb 2021 23:11:13
Status
- Vulnerable
+ Fixed
Fixed
+ 15.10.0-1
AVG-1604 edited at 23 Feb 2021 19:32:22
Issues
+ CVE-2021-22883
- CVE-2021-23840
+ CVE-2021-22884
Status
- Not affected
+ Vulnerable
Severity
- Low
+ Medium
Advisory qualified
- No
+ Yes
Notes
- nodejs is built with the --shared-openssl configuration option to use the system OpenSSL library.
AVG-1604 edited at 23 Feb 2021 19:31:29
Issues
- CVE-2021-22883
- CVE-2021-22884
CVE-2021-23840
Status
- Vulnerable
+ Not affected
Severity
- Medium
+ Low
Advisory qualified
- Yes
+ No
Notes
+ nodejs is built with the --shared-openssl configuration option to use the system OpenSSL library.
AVG-1604 edited at 23 Feb 2021 19:25:10
Severity
- Low
+ Medium
AVG-1604 created at 23 Feb 2021 19:18:56
Packages
+ nodejs
Issues
+ CVE-2021-22883
+ CVE-2021-22884
+ CVE-2021-23840
Status
+ Vulnerable
Severity
+ Low
Affected
+ 15.9.0-1
Fixed
Ticket
Advisory qualified
+ Yes
References
+ https://nodejs.org/en/blog/vulnerability/february-2021-security-releases/
Notes