SUSE-CU-2024:3307-1: Security update of bci/rust
sle-container-updates at lists.suse.com
sle-container-updates at lists.suse.com
Wed Jul 31 11:39:20 UTC 2024
SUSE Container Update Advisory: bci/rust
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2024:3307-1
Container Tags : bci/rust:1.79 , bci/rust:1.79-1.4.8 , bci/rust:latest , bci/rust:stable , bci/rust:stable-1.4.8
Container Release : 4.8
Severity : important
Type : security
References : 1222899 1223336 1226463 1227138 CVE-2024-5535
-----------------------------------------------------------------
The container bci/rust was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2024:2635-1
Released: Tue Jul 30 09:14:09 2024
Summary: Security update for openssl-3
Type: security
Severity: important
References: 1222899,1223336,1226463,1227138,CVE-2024-5535
This update for openssl-3 fixes the following issues:
Security fixes:
- CVE-2024-5535: Fixed SSL_select_next_proto buffer overread (bsc#1227138)
Other fixes:
- Build with no-afalgeng (bsc#1226463)
- Build with enabled sm2 and sm4 support (bsc#1222899)
- Fix non-reproducibility issue (bsc#1223336)
The following package changes have been done:
- libopenssl3-3.1.4-150600.5.10.1 updated
- libopenssl-3-fips-provider-3.1.4-150600.5.10.1 updated
- container:sles15-image-15.6.0-47.11.2 updated
More information about the sle-container-updates
mailing list