AVG-1606 log

Package nodejs-lts-fermium
Status Fixed
Severity Medium
Type denial of service
Affected 14.15.4-1
Fixed 14.16.0-1
Current 14.18.1-1 [community]
Ticket None
Created Tue Feb 23 19:33:24 2021
Issue Severity Remote Type Description
CVE-2021-22884 Medium Yes Denial of service
Node.js before versions 15.10.0, 14.16.0, 12.21.0 and 10.24.0 is vulnerable to denial of service attacks when the whitelist includes “localhost6”. When...
CVE-2021-22883 Medium Yes Denial of service
Node.js before versions 15.10.0, 14.16.0, 12.21.0 and 10.24.0 is vulnerable to denial of service attacks when too many connection attempts with an...
References
https://nodejs.org/en/blog/vulnerability/february-2021-security-releases/