RHSA-2019:1821HighCVSS 8.8

Red Hat Security Advisory: rh-nodejs8-nodejs security update

Published
July 22, 2019
Last Modified
June 27, 2026

🔗 CVE IDs covered (6)

📋 Description

CVE-2018-12116 — nodejs: HTTP request splitting CVE-2018-12121 — nodejs: Denial of Service with large HTTP headers CVE-2018-12122 — nodejs: Slowloris HTTP Denial of Service CVE-2018-12123 — nodejs: Hostname spoofing in URL parser for javascript protocol CVE-2018-20834 — nodejs-tar: Arbitrary file overwrites when extracting tarballs containing a hard-link CVE-2019-5737 — nodejs: Insufficient Slowloris fix causing DoS via server.headersTimeout bypass

🔗 References (9)