SUSE-CU-2022:2121-1: Security update of bci/nodejs

sle-security-updates at sle-security-updates at
Thu Sep 8 13:44:00 UTC 2022

SUSE Container Update Advisory: bci/nodejs
Container Advisory ID : SUSE-CU-2022:2121-1
Container Tags        : bci/node:12 , bci/node:12-16.177 , bci/nodejs:12 , bci/nodejs:12-16.177
Container Release     : 16.177
Severity              : moderate
Type                  : security
References            : 1193951 1198752 1200800 CVE-2020-21913 

The container bci/nodejs was updated. The following patches have been included in this update:

Advisory ID: SUSE-RU-2022:3127-1
Released:    Wed Sep  7 04:36:10 2022
Summary:     Recommended update for libtirpc
Type:        recommended
Severity:    moderate
References:  1198752,1200800
This update for libtirpc fixes the following issues:

- Exclude ipv6 addresses in client protocol version 2 code (bsc#1200800)
- Fix memory leak in params.r_addr assignement (bsc#1198752)

Advisory ID: SUSE-SU-2022:3142-1
Released:    Wed Sep  7 09:54:18 2022
Summary:     Security update for icu
Type:        security
Severity:    moderate
References:  1193951,CVE-2020-21913
This update for icu fixes the following issues:

- CVE-2020-21913: Fixed a memory safetey issue that could lead to use
  after free (bsc#1193951).

The following package changes have been done:

- libicu-suse65_1-65.1-150200.4.5.1 updated
- libicu65_1-ledata-65.1-150200.4.5.1 updated
- libtirpc-netconfig-1.2.6-150300.3.11.1 updated
- libtirpc3-1.2.6-150300.3.11.1 updated
- container:sles15-image-15.0.0-17.20.30 updated

More information about the sle-security-updates mailing list