SUSE-CU-2024:668-1: Security update of bci/dotnet-runtime
sle-container-updates at lists.suse.com
sle-container-updates at lists.suse.com
Thu Feb 22 12:18:58 UTC 2024
SUSE Container Update Advisory: bci/dotnet-runtime
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2024:668-1
Container Tags : bci/dotnet-runtime:7.0 , bci/dotnet-runtime:7.0-25.3 , bci/dotnet-runtime:7.0.16 , bci/dotnet-runtime:7.0.16-25.3
Container Release : 25.3
Severity : moderate
Type : security
References : 1219243 1219576 CVE-2024-0727 CVE-2024-25062
-----------------------------------------------------------------
The container bci/dotnet-runtime was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2024:549-1
Released: Tue Feb 20 17:05:52 2024
Summary: Security update for openssl-1_1
Type: security
Severity: moderate
References: 1219243,CVE-2024-0727
This update for openssl-1_1 fixes the following issues:
- CVE-2024-0727: Denial of service when processing a maliciously formatted PKCS12 file (bsc#1219243).
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2024:555-1
Released: Tue Feb 20 17:22:17 2024
Summary: Security update for libxml2
Type: security
Severity: moderate
References: 1219576,CVE-2024-25062
This update for libxml2 fixes the following issues:
- CVE-2024-25062: Fixed use-after-free in XMLReader (bsc#1219576).
The following package changes have been done:
- libxml2-2-2.10.3-150500.5.14.1 updated
- libopenssl1_1-1.1.1l-150500.17.25.1 updated
- libopenssl1_1-hmac-1.1.1l-150500.17.25.1 updated
- container:sles15-image-15.0.0-36.11.5 updated
More information about the sle-container-updates
mailing list