Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

SUSE: 2023:1290-1 Moderate: Bci/Nodejs Security Issue Update

suse
Calendar Grey April 27, 2023
Dist Suse Esm H88
The bci/nodejs container has been refreshed to implement security fixes aimed at mitigating moderate severity vulnerabilities. More information included.
The container bci/nodejs was updated

Summary

Advisory ID: SUSE-SU-2023:2038-1 Released: Wed Apr 26 11:06:20 2023 Summary: Security update for git Type: security Severity: moderate

Topics%20covered

Topics Covered

security advisory moderate severity security patch nodejs container advisory

References

References : 1210686 CVE-2023-25652 CVE-2023-25815 CVE-2023-29007

1210686,CVE-2023-25652,CVE-2023-25815,CVE-2023-29007

This update for git fixes the following issues:

- CVE-2023-25652: Fixed partial overwrite of paths outside the working tree (bsc#1210686).

- CVE-2023-25815: Fixed malicious placemtn of crafted message (bsc#1210686).

- CVE-2023-29007: Fixed arbitrary configuration injection (bsc#1210686).

The following package changes have been done:

- git-core-2.35.3-150300.10.27.1 updated

Container Advisory ID : SUSE-CU-2023:1290-1
Container Tags : bci/node:16 , bci/node:16-15.38 , bci/nodejs:16 , bci/nodejs:16-15.38
Container Release : 15.38
Severity : moderate
Type : security

Topics%20covered

Topics Covered

security advisory moderate severity security patch nodejs container advisory

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here