SUSE-CU-2024:463-1: Security update of bci/golang

sle-container-updates at lists.suse.com sle-container-updates at lists.suse.com
Tue Feb 6 08:03:16 UTC 2024 

SUSE Container Update Advisory: bci/golang
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2024:463-1
Container Tags        : bci/golang:1.20 , bci/golang:1.20-2.7.20 , bci/golang:oldstable , bci/golang:oldstable-2.7.20
Container Release     : 7.20
Severity              : moderate
Type                  : security
References            : 1107342 1215434 1216488 1218571 1219238 CVE-2023-7207 
-----------------------------------------------------------------

The container bci/golang was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:303-1
Released:    Thu Feb  1 15:21:30 2024
Summary:     Recommended update for gcc7
Type:        recommended
Severity:    moderate
References:  1216488
This update for gcc7 fixes the following issues:

- Avoid crash when hitting a broken pattern in the s390 backend.
- Avoid creating recursive DIE references through DW_AT_abstract_origin when using LTO.  [bsc#1216488]

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2024:305-1
Released:    Thu Feb  1 17:33:38 2024
Summary:     Security update for cpio
Type:        security
Severity:    moderate
References:  1218571,1219238,CVE-2023-7207
This update for cpio fixes the following issues:

- Fixed cpio not extracting correctly when using --no-absolute-filenames option the security fix for CVE-2023-7207 (bsc#1218571, bsc#1219238)

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:322-1
Released:    Fri Feb  2 15:13:26 2024
Summary:     Recommended update for aaa_base
Type:        recommended
Severity:    moderate
References:  1107342,1215434
This update for aaa_base fixes the following issues:

- Set JAVA_HOME correctly (bsc#1107342, bsc#1215434)


The following package changes have been done:

- cpio-2.13-150400.3.6.1 updated
- aaa_base-84.87+git20180409.04c9dae-150300.10.9.1 updated
- libasan4-7.5.0+r278197-150000.4.38.1 updated
- libcilkrts5-7.5.0+r278197-150000.4.38.1 updated
- libubsan0-7.5.0+r278197-150000.4.38.1 updated
- cpp7-7.5.0+r278197-150000.4.38.1 updated
- gcc7-7.5.0+r278197-150000.4.38.1 updated
- container:sles15-image-15.0.0-36.11.2 updated

More information about the sle-container-updates mailing list