SUSE-CU-2024:3457-1: Security update of suse/hpc/warewulf4-x86_64/sle-hpc-node

sle-container-updates at lists.suse.com sle-container-updates at lists.suse.com
Wed Aug 7 07:18:40 UTC 2024 

SUSE Container Update Advisory: suse/hpc/warewulf4-x86_64/sle-hpc-node
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2024:3457-1
Container Tags        : suse/hpc/warewulf4-x86_64/sle-hpc-node:15.6 , suse/hpc/warewulf4-x86_64/sle-hpc-node:15.6.17.5.14 , suse/hpc/warewulf4-x86_64/sle-hpc-node:latest
Container Release     : 17.5.14
Severity              : important
Type                  : security
References            : 1225600 1225601 1227888 1228322 1228535 1228548 CVE-2023-38417
                        CVE-2023-47210 CVE-2024-6197 CVE-2024-7264 
-----------------------------------------------------------------

The container suse/hpc/warewulf4-x86_64/sle-hpc-node was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:2779-1
Released:    Tue Aug  6 14:35:49 2024
Summary:     Recommended update for permissions
Type:        recommended
Severity:    moderate
References:  1228548

This update for permissions fixes the following issue:

* cockpit: moved setuid executable (bsc#1228548)


-----------------------------------------------------------------
Advisory ID: SUSE-SU-2024:2784-1
Released:    Tue Aug  6 14:58:38 2024
Summary:     Security update for curl
Type:        security
Severity:    important
References:  1227888,1228535,CVE-2024-6197,CVE-2024-7264
This update for curl fixes the following issues:

- CVE-2024-7264: Fixed ASN.1 date parser overread (bsc#1228535)
- CVE-2024-6197: Fixed freeing stack buffer in utf8asn1str (bsc#1227888)

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2024:2785-1
Released:    Tue Aug  6 14:59:01 2024
Summary:     Security update for kernel-firmware
Type:        security
Severity:    moderate
References:  1225600,1225601,CVE-2023-38417,CVE-2023-47210
This update for kernel-firmware fixes the following issues:

Update to version 20240728:

* amdgpu: update DMCUB to v0.0.227.0 for DCN35 and DCN351
* Revert 'iwlwifi: update ty/So/Ma firmwares for core89-58 release'
* linux-firmware: update firmware for MT7922 WiFi device
* linux-firmware: update firmware for MT7921 WiFi device
* linux-firmware: update firmware for mediatek bluetooth chip (MT7922)
* linux-firmware: update firmware for mediatek bluetooth chip (MT7921)
* iwlwifi: add gl FW for core89-58 release
* iwlwifi: update ty/So/Ma firmwares for core89-58 release
* iwlwifi: update cc/Qu/QuZ firmwares for core89-58 release
* mediatek: Update mt8195 SOF firmware and sof-tplg
* ASoC: tas2781: fix the license issue for tas781 firmware
* rtl_bt: Update RTL8852B BT USB FW to 0x048F_4008
* i915: Update Xe2LPD DMC to v2.21
* qcom: move signed x1e80100 signed firmware to the SoC subdir
* qcom: add video firmware file for vpu-3.0
* intel: avs: Add topology file for I2S Analog Devices 4567
* intel: avs: Add topology file for I2S Nuvoton 8825
* intel: avs: Add topology file for I2S Maxim 98927
* intel: avs: Add topology file for I2S Maxim 98373
* intel: avs: Add topology file for I2S Maxim 98357a
* intel: avs: Add topology file for I2S Dialog 7219
* intel: avs: Add topology file for I2S Realtek 5663
* intel: avs: Add topology file for I2S Realtek 5640
* intel: avs: Add topology file for I2S Realtek 5514
* intel: avs: Add topology file for I2S Realtek 298
* intel: avs: Add topology file for I2S Realtek 286
* intel: avs: Add topology file for I2S Realtek 274
* intel: avs: Add topology file for Digital Microphone Array
* intel: avs: Add topology file for HDMI codecs
* intel: avs: Add topology file for HDAudio codecs
* intel: avs: Update AudioDSP base firmware for APL-based platforms

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:2791-1
Released:    Tue Aug  6 16:35:06 2024
Summary:     Recommended update for various 32bit packages
Type:        recommended
Severity:    moderate
References:  1228322

This update of various packages delivers 32bit variants to allow running Wine
on SLE PackageHub 15 SP6.


The following package changes have been done:

- curl-8.6.0-150600.4.3.1 updated
- kernel-firmware-bnx2-20240728-150600.3.6.1 updated
- kernel-firmware-chelsio-20240728-150600.3.6.1 updated
- kernel-firmware-i915-20240728-150600.3.6.1 updated
- kernel-firmware-intel-20240728-150600.3.6.1 updated
- kernel-firmware-liquidio-20240728-150600.3.6.1 updated
- kernel-firmware-marvell-20240728-150600.3.6.1 updated
- kernel-firmware-mediatek-20240728-150600.3.6.1 updated
- kernel-firmware-mellanox-20240728-150600.3.6.1 updated
- kernel-firmware-network-20240728-150600.3.6.1 updated
- kernel-firmware-platform-20240728-150600.3.6.1 updated
- kernel-firmware-qlogic-20240728-150600.3.6.1 updated
- kernel-firmware-realtek-20240728-150600.3.6.1 updated
- kernel-firmware-usb-network-20240728-150600.3.6.1 updated
- libassuan0-2.5.5-150000.4.7.1 updated
- libcurl4-8.6.0-150600.4.3.1 updated
- libgpgme11-1.23.0-150600.3.2.1 updated
- permissions-20240801-150600.10.4.1 updated

More information about the sle-container-updates mailing list