AVG-1607 log

Package nodejs-lts-erbium
Status Fixed
Severity Medium
Type denial of service
Affected 12.20.1-1
Fixed 12.21.0-1
Current 12.22.7-1 [community]
Ticket None
Created Tue Feb 23 19:34:03 2021
Issue Severity Remote Type Description
CVE-2021-22884 Medium Yes Denial of service
Node.js before versions 15.10.0, 14.16.0, 12.21.0 and 10.24.0 is vulnerable to denial of service attacks when the whitelist includes “localhost6”. When...
CVE-2021-22883 Medium Yes Denial of service
Node.js before versions 15.10.0, 14.16.0, 12.21.0 and 10.24.0 is vulnerable to denial of service attacks when too many connection attempts with an...
References
https://nodejs.org/en/blog/vulnerability/february-2021-security-releases/