ELSA-2019-3497 - http-parser security and bug fix update
| Type: | SECURITY |
| Severity: | MODERATE |
| Release Date: | 2019-11-14 |
Description
[2.8.0-5]
- Resolves: rhbz#1686488: 'make test' fails with stringop-overflow error
[2.8.0-4]
- Resolves: rhbz#1666382: CVE-2018-12121 http-parser: nodejs: Denial of
Service with large HTTP headers [rhel-8]
[2.8.0-3]
- spec: make the check phase conditional
Related CVEs
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory |
|
| Oracle Linux 8 (aarch64) | http-parser-2.8.0-5.el8.src.rpm | 683fbd9abfcee265ac370dd14754a547 | - |
| http-parser-2.8.0-5.el8.aarch64.rpm | 89031b32698e2c7b2b28a0648c7403cd | - |
|
| Oracle Linux 8 (x86_64) | http-parser-2.8.0-5.el8.src.rpm | 683fbd9abfcee265ac370dd14754a547 | - |
| http-parser-2.8.0-5.el8.i686.rpm | aa492e26036327152bb2d3d23d1d3d77 | - |
| http-parser-2.8.0-5.el8.x86_64.rpm | 253d3d5452bf7518a95f8f609b7e94f4 | - |
This page is generated automatically and has not been checked for errors or omissions. For clarification
or corrections please contact the Oracle Linux ULN team
