SUSE: 2022:5281-2 Critical: bci/ruby Code Injection and Memory Leak
suse
December 1, 2022
The container bci/nodejs was updated
Summary
Advisory ID: SUSE-SU-2022:4254-1 Released: Mon Nov 28 12:29:21 2022 Summary: Security update for nodejs12 Type: security Severity: important Advisory ID: SUSE-RU-2022:4256-1 Released: Mon Nov 28 12:36:32 2022 Summary: Recommended update for gcc12 Type: recommended Severity: moderate Advisory ID: SUSE-SU-2022:4281-1 Released: Tue Nov 29 15:46:10 2022 Summary: Security update for python3 Type: security
Topics Covered
References
References : 1188607 1203125 1204577 1205119 CVE-2019-18348 CVE-2020-10735
CVE-2020-8492 CVE-2022-37454 CVE-2022-43548
1205119,CVE-2022-43548
This update for nodejs12 fixes the following issues:
- CVE-2022-43548: Fixed DNS rebinding in --inspect via invalid octal IP address (bsc#1205119).
This update for gcc12 fixes the following issues:
This update ship the GCC 12 compiler suite and its base libraries.
The compiler baselibraries are provided for all SUSE Linux Enterprise 15
versions and replace the same named GCC 11 ones.
The new compilers for C, C++, and Fortran are provided for SUSE Linux
Enterprise 15 SP3 and SP4, and provided in the 'Development Tools' module.
The Go, D and Ada language compiler parts are available unsupported via the
PackageHub repositories.
To use gcc12 compilers use:
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Container Advisory ID : SUSE-CU-2022:3266-1
Container Tags : bci/node:12 , bci/node:12-17.83 , bci/nodejs:12 , bci/nodejs:12-17.83
Container Release : 17.83
Severity : important
Type : security
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!