SUSE-CU-2024:3101-1: Security update of suse/git
sle-container-updates at lists.suse.com
sle-container-updates at lists.suse.com
Thu Jul 11 07:05:05 UTC 2024
SUSE Container Update Advisory: suse/git
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2024:3101-1
Container Tags : suse/git:2.43 , suse/git:2.43-17.10 , suse/git:latest
Container Release : 17.10
Severity : moderate
Type : security
References : 1218215 1224392 1225904 1227318 1227350 CVE-2023-51385 CVE-2024-39894
-----------------------------------------------------------------
The container suse/git was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2024:2393-1
Released: Wed Jul 10 17:33:47 2024
Summary: Security update for openssh
Type: security
Severity: moderate
References: 1218215,1224392,1225904,1227318,1227350,CVE-2023-51385,CVE-2024-39894
This update for openssh fixes the following issues:
Security fixes:
- CVE-2024-39894: Fixed timing attacks against echo-off password entry (bsc#1227318).
Other fixes:
- Add obsoletes for openssh-server-config-rootlogin (bsc#1227350).
- Add #include <stdlib.h> in some files added by the ldap patch to
fix build with gcc14 (bsc#1225904).
- Remove the recommendation for openssh-server-config-rootlogin
from openssh-server (bsc#1224392).
The following package changes have been done:
- openssh-clients-9.6p1-150600.6.6.1 updated
- openssh-common-9.6p1-150600.6.6.1 updated
More information about the sle-container-updates
mailing list