SUSE-SU-2025:0233-1
- Source
- https://www.suse.com/support/update/announcement/2025/suse-su-20250233-1/
- Import Source
- https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2025:0233-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/SUSE-SU-2025:0233-1
- Upstream
- Related
- Published
- 2025-01-24T16:05:12Z
- Modified
- 2025-05-02T04:37:30.508209Z
- Summary
- Security update for nodejs18
- Details
-
This update for nodejs18 fixes the following issues:
Update to 18.20.6:
- CVE-2025-23085: Fixed HTTP2 memory leak on premature close and ERR_PROTO (bsc#1236250)
- CVE-2025-22150: Fixed insufficiently random values used when defining the boundary for a multipart/form-data request in undici (bsc#1236258)
- References
Affected packages
SUSE:Linux Enterprise High Performance Computing 15 SP4-ESPOS
nodejs18
Package
- Name
- nodejs18
- Purl
- pkg:rpm/suse/nodejs18&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOS
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed18.20.6-150400.9.33.1
SUSE:Linux Enterprise High Performance Computing 15 SP4-LTSS
nodejs18
Package
- Name
- nodejs18
- Purl
- pkg:rpm/suse/nodejs18&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSS
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed18.20.6-150400.9.33.1
SUSE:Linux Enterprise High Performance Computing 15 SP5-ESPOS
nodejs18
Package
- Name
- nodejs18
- Purl
- pkg:rpm/suse/nodejs18&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-ESPOS
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed18.20.6-150400.9.33.1
SUSE:Linux Enterprise High Performance Computing 15 SP5-LTSS
nodejs18
Package
- Name
- nodejs18
- Purl
- pkg:rpm/suse/nodejs18&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-LTSS
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed18.20.6-150400.9.33.1
SUSE:Linux Enterprise Server 15 SP4-LTSS
nodejs18
Package
- Name
- nodejs18
- Purl
- pkg:rpm/suse/nodejs18&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSS
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed18.20.6-150400.9.33.1
SUSE:Linux Enterprise Server 15 SP5-LTSS
nodejs18
Package
- Name
- nodejs18
- Purl
- pkg:rpm/suse/nodejs18&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP5-LTSS
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed18.20.6-150400.9.33.1
SUSE:Linux Enterprise Server for SAP Applications 15 SP4
nodejs18
Package
- Name
- nodejs18
- Purl
- pkg:rpm/suse/nodejs18&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed18.20.6-150400.9.33.1
SUSE:Linux Enterprise Server for SAP Applications 15 SP5
nodejs18
Package
- Name
- nodejs18
- Purl
- pkg:rpm/suse/nodejs18&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP5
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed18.20.6-150400.9.33.1
SUSE:Manager Server 4.3
nodejs18
Package
- Name
- nodejs18
- Purl
- pkg:rpm/suse/nodejs18&distro=SUSE%20Manager%20Server%204.3
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed18.20.6-150400.9.33.1