openSUSE-SU-2022:0070-1

See a problem?
Import Source
https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2022:0070-1.json
JSON Data
https://api.osv.dev/v1/vulns/openSUSE-SU-2022:0070-1
Related
Published
2022-03-03T12:42:04Z
Modified
2022-03-03T12:42:04Z
Summary
Security update for nodejs-electron
Details

This update for nodejs-electron fixes the following issues:

  • Fix webpack-4 with OpenSSL 3.0

Update to version 16.0.9

  • https://github.com/electron/electron/releases/tag/v16.0.9

Update to version 16.0.8

  • https://github.com/electron/electron/releases/tag/v16.0.8

  • Add devel package with node headers (e.g. for node-gyp)

  • Update to version 16.0.7

    • https://github.com/electron/electron/releases/tag/v16.0.7
  • Update to version 15.3.3

    • https://github.com/electron/electron/releases/tag/v15.3.3
  • Update to version 13.6.3 https://github.com/electron/electron/releases/tag/v13.6.3

  • Update to version 13.6.2 https://github.com/electron/electron/releases/tag/v13.6.2

  • Fix for CVE-2021-37998
  • Fix for CVE-2021-38001
  • Fix for CVE-2021-38002
  • Fix for CVE-2021-38003

  • Do not build with H264

  • Update to version 13.6.1 https://github.com/electron/electron/releases/tag/v13.6.1

  • Fix for CVE-2021-37981
  • Fix for CVE-2021-37984
  • Fix for CVE-2021-37987
  • Fix for CVE-2021-37989
  • Fix for CVE-2021-37992
  • Fix for CVE-2021-37996

  • Update to version 13.5.1 https://github.com/electron/electron/releases/tag/v13.5.1

  • Update to version 13.5.0 https://github.com/electron/electron/releases/tag/v13.5.0

  • Fix for CVE-2021-30627
  • Fix for CVE-2021-30631
  • Fix for CVE-2021-30632
  • Fix for CVE-2021-30625
  • Fix for CVE-2021-30626
  • Fix for CVE-2021-30628
  • Fix for CVE-2021-30630
  • Fix for CVE-2021-30633

  • Version 13.4.0

  • Update to version 13.1.8

    • https://github.com/electron/electron/releases/tag/v13.1.8
  • Update to version 13.1.7

    • https://github.com/electron/electron/releases/tag/v13.1.7
  • Update to version 13.1.6

    • https://github.com/electron/electron/releases/tag/v13.1.6
    • https://github.com/electron/electron/releases/tag/v13.1.5
  • Update to version 13.1.4

    • https://github.com/electron/electron/releases/tag/v13.1.4
    • https://github.com/electron/electron/releases/tag/v13.1.3
  • Build with vaapi support

  • Install missing vkswiftshadericd.json

  • Update to version 13.1.2

    • https://github.com/electron/electron/releases/tag/v13.1.2
References

Affected packages

SUSE:Package Hub 15 SP3 / nodejs-electron

Package

Name
nodejs-electron
Purl
purl:rpm/suse/nodejs-electron&distro=SUSE%20Package%20Hub%2015%20SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
16.0.9-bp153.2.1

Ecosystem specific

{
    "binaries": [
        {
            "nodejs-electron-devel": "16.0.9-bp153.2.1",
            "nodejs-electron": "16.0.9-bp153.2.1"
        }
    ]
}

openSUSE:Leap 15.3 / nodejs-electron

Package

Name
nodejs-electron
Purl
purl:rpm/suse/nodejs-electron&distro=openSUSE%20Leap%2015.3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
16.0.9-bp153.2.1

Ecosystem specific

{
    "binaries": [
        {
            "nodejs-electron-devel": "16.0.9-bp153.2.1",
            "nodejs-electron": "16.0.9-bp153.2.1"
        }
    ]
}