What Are You Looking For?

Sign Up
SUSE Container Update Advisory: bci/nodejs
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2023:3565-1
Container Tags        : bci/node:18 , bci/node:18-11.25 , bci/node:latest , bci/nodejs:18 , bci/nodejs:18-11.25 , bci/nodejs:latest
Container Release     : 11.25
Severity              : important
Type                  : security
References            : 1216123 1216174 1216378 CVE-2023-44487 CVE-2023-45853 
-----------------------------------------------------------------

The container bci/nodejs was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2023:4200-1
Released:    Wed Oct 25 12:04:29 2023
Summary:     Security update for nghttp2
Type:        security
Severity:    important
References:  1216123,1216174,CVE-2023-44487
This update for nghttp2 fixes the following issues:

- CVE-2023-44487: Fixed HTTP/2 Rapid Reset attack. (bsc#1216174)

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2023:4215-1
Released:    Thu Oct 26 12:19:25 2023
Summary:     Security update for zlib
Type:        security
Severity:    moderate
References:  1216378,CVE-2023-45853
This update for zlib fixes the following issues:

- CVE-2023-45853: Fixed an integer overflow that would lead to a
  buffer overflow in the minizip subcomponent (bsc#1216378).


The following package changes have been done:

- libz1-1.2.13-150500.4.3.1 updated
- libnghttp2-14-1.40.0-150200.12.1 updated
- container:sles15-image-15.0.0-36.5.50 updated

SUSE: 2023:3565-1 bci/nodejs Security Update

October 27, 2023
The container bci/nodejs was updated

Summary

Advisory ID: SUSE-SU-2023:4200-1 Released: Wed Oct 25 12:04:29 2023 Summary: Security update for nghttp2 Type: security Severity: important Advisory ID: SUSE-SU-2023:4215-1 Released: Thu Oct 26 12:19:25 2023 Summary: Security update for zlib Type: security Severity: moderate

References

References : 1216123 1216174 1216378 CVE-2023-44487 CVE-2023-45853

1216123,1216174,CVE-2023-44487

This update for nghttp2 fixes the following issues:

- CVE-2023-44487: Fixed HTTP/2 Rapid Reset attack. (bsc#1216174)

1216378,CVE-2023-45853

This update for zlib fixes the following issues:

- CVE-2023-45853: Fixed an integer overflow that would lead to a

buffer overflow in the minizip subcomponent (bsc#1216378).

The following package changes have been done:

- libz1-1.2.13-150500.4.3.1 updated

- libnghttp2-14-1.40.0-150200.12.1 updated

- container:sles15-image-15.0.0-36.5.50 updated

Severity
Container Advisory ID : SUSE-CU-2023:3565-1
Container Tags : bci/node:18 , bci/node:18-11.25 , bci/node:latest , bci/nodejs:18 , bci/nodejs:18-11.25 , bci/nodejs:latest
Container Release : 11.25
Severity : important
Type : security

Related News

Nitrux 3.2.0 Linux Distro Released with Enhanced Security and New Features

Nov 28, 2023

Linux 6.7 Introduces "make hardening.config" To Help Build A Hardened Kernel

Nov 5, 2023

Linux 6.6 Brings New Scheduler, File Sharing and Security

Nov 2, 2023

Ubuntu Linux 23.10 Is Adding an Important New Security Feature

Oct 11, 2023

News

Advisories

HOWTOs

Features

Unlocking the Future of Authentication: Passkeys vs. Passwords
Empowering MSPs with Straightforward Linux Device Management
A Complete Guide to Torrenting Safely in 2024
Cloud Security Basics for Small Businesses
Scanning and Defending Networks with Nmap

About Us

Powered By

Footer Logo