SUSE-CU-2025:5003-1: Security update of bci/nodejs
sle-container-updates at lists.suse.com
sle-container-updates at lists.suse.com
Tue Jul 8 10:12:28 UTC 2025
SUSE Container Update Advisory: bci/nodejs
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2025:5003-1
Container Tags : bci/node:22 , bci/node:22.15.1 , bci/node:22.15.1-9.13 , bci/node:latest , bci/nodejs:22 , bci/nodejs:22.15.1 , bci/nodejs:22.15.1-9.13 , bci/nodejs:latest
Container Release : 9.13
Severity : moderate
Type : security
References : 1240366 CVE-2025-27587
-----------------------------------------------------------------
The container bci/nodejs was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2025:2236-1
Released: Mon Jul 7 14:58:53 2025
Summary: Security update for openssl-3
Type: security
Severity: moderate
References: 1240366,CVE-2025-27587
This update for openssl-3 fixes the following issues:
- CVE-2025-27587: Fixed Minerva side channel vulnerability in P-384 (bsc#1240366).
- Backport mdless cms signing support [jsc#PED-12895]
The following package changes have been done:
- libopenssl3-3.2.3-150700.5.10.1 updated
- libopenssl-3-fips-provider-3.2.3-150700.5.10.1 updated
- container:registry.suse.com-bci-bci-base-15.7-f2b1cfe0af5829ac28493242a7a9b6b5b578979851467643d1bf5c5b4ca69b32-0 updated
More information about the sle-container-updates
mailing list