Vulnerability Scan Report for registry.suse.com/bci/nodejs:20-36.3
Node.js 20 development container based on the SLE Base Container Image.
registry.suse.com/bci/nodejs:20-36.3
Last scanned on: June 14, 2025 13:02
Node.js 20 development container based on the SLE Base Container Image.
Last scanned on: June 14, 2025 13:02
| Package Name | Severity | Status | Description | Reference links | |
|---|---|---|---|---|---|
| libaugeas0 | LOW | fixed |
Security update for augeas Vulnerability ID: SUSE-SU-2025:1534-1 Installed Version: 1.14.1-150600.1.3 Fixed Version: 1.14.1-150600.3.3.1 This update for augeas fixes the following issues: - CVE-2025-2588: Check for NULL pointers when calling re_case_expand in function fa_expand_nocase. (bsc#1239909) |
||
| libcurl4 | MEDIUM | fixed |
Security update for curl Vulnerability ID: SUSE-SU-2024:3204-1 Installed Version: 8.6.0-150600.4.3.1 Fixed Version: 8.6.0-150600.4.6.1 This update for curl fixes the following issues: - CVE-2024-8096: OCSP stapling bypass with GnuTLS. (bsc#1230093) |
||
| libcurl4 | MEDIUM | fixed |
Security update for curl Vulnerability ID: SUSE-SU-2024:3925-1 Installed Version: 8.6.0-150600.4.3.1 Fixed Version: 8.6.0-150600.4.12.1 This update for curl fixes the following issues: - CVE-2024-9681: Fixed HSTS subdomain overwrites parent cache entry (bsc#1232528) |
||
| libcurl4 | MEDIUM | fixed |
Security update for curl Vulnerability ID: SUSE-SU-2024:4288-1 Installed Version: 8.6.0-150600.4.3.1 Fixed Version: 8.6.0-150600.4.15.1 This update for curl fixes the following issues: - CVE-2024-11053: Fixed password leak used for the first host to the followed-to host under certain circumstances (bsc#1234068) |
||
| libcurl4 | MEDIUM | fixed |
Security update for curl Vulnerability ID: SUSE-SU-2025:0369-1 Installed Version: 8.6.0-150600.4.3.1 Fixed Version: 8.6.0-150600.4.21.1 This update for curl fixes the following issues: - CVE-2025-0725: Fixed gzip integer overflow (bsc#1236590) - CVE-2025-0167: Fixed netrc and default credential leak (bsc#1236588) |
||