Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 443
Alerts This Week
Warning Icon 1 443

SUSE: 2023:382-1 Important: bci/openjdk Security Update Details

suse
Calendar Grey February 17, 2023
Dist Suse Esm H88
Red Hat Container Patch Notice for ubi8/nodejs incorporates essential modifications targeting several vulnerabilities. Learn further details.
The container bci/openjdk was updated

Summary

Advisory ID: SUSE-SU-2023:429-1 Released: Wed Feb 15 17:41:22 2023 Summary: Security update for curl Type: security Severity: important Advisory ID: SUSE-RU-2023:432-1 Released: Wed Feb 15 18:48:25 2023 Summary: Recommended update for graphite2 Type: recommended Severity: moderate

References

References : 1207676 1207990 1207991 1207992 CVE-2023-23914 CVE-2023-23915

CVE-2023-23916

1207990,1207991,1207992,CVE-2023-23914,CVE-2023-23915,CVE-2023-23916

This update for curl fixes the following issues:

- CVE-2023-23914: Fixed HSTS ignored on multiple requests (bsc#1207990).

- CVE-2023-23915: Fixed HSTS amnesia with --parallel (bsc#1207991).

- CVE-2023-23916: Fixed HTTP multi-header compression denial of service (bsc#1207992).

1207676

This update for graphite2 fixes the following issue:

- Correct license string to LGPL-2.1-or-later OR MPL-2.0 OR GPL-2.0-or-later (bsc#1207676)

The following package changes have been done:

- libcurl4-7.79.1-150400.5.15.1 updated

- libgraphite2-3-1.3.11-150000.4.3.1 updated

- container:sles15-image-15.0.0-27.14.35 updated

Severity
important
Lowest
Low
Medium
High
Critical

Container Advisory ID : SUSE-CU-2023:382-1
Container Tags : bci/openjdk:11 , bci/openjdk:11-34.32
Container Release : 34.32
Severity : important
Type : security

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.