SUSE-CU-2024:802-1: Security update of suse/manager/5.0/x86_64/proxy-squid

sle-container-updates at lists.suse.com sle-container-updates at lists.suse.com
Tue Mar 5 08:04:48 UTC 2024 

SUSE Container Update Advisory: suse/manager/5.0/x86_64/proxy-squid
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2024:802-1
Container Tags        : suse/manager/5.0/x86_64/proxy-squid:5.0.0-beta1 , suse/manager/5.0/x86_64/proxy-squid:5.0.0-beta1.2.80 , suse/manager/5.0/x86_64/proxy-squid:latest
Container Release     : 2.80
Severity              : moderate
Type                  : security
References            : 1107342 1215434 1217000 1218475 1218571 1218571 1219238 1219576
                        CVE-2023-7207 CVE-2023-7207 CVE-2024-22365 CVE-2024-25062 
-----------------------------------------------------------------

The container suse/manager/5.0/x86_64/proxy-squid was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2024:136-1
Released:    Thu Jan 18 09:53:47 2024
Summary:     Security update for pam
Type:        security
Severity:    moderate
References:  1217000,1218475,CVE-2024-22365
This update for pam fixes the following issues:

- CVE-2024-22365: Fixed a local denial of service during PAM login
  due to a missing check during path manipulation (bsc#1218475).
- Check localtime_r() return value to fix crashing (bsc#1217000) 

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2024:238-1
Released:    Fri Jan 26 10:56:41 2024
Summary:     Security update for cpio
Type:        security
Severity:    moderate
References:  1218571,CVE-2023-7207
This update for cpio fixes the following issues:

- CVE-2023-7207: Fixed a path traversal issue that could lead to an
  arbitrary file write during archive extraction (bsc#1218571).

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2024:305-1
Released:    Thu Feb  1 17:33:38 2024
Summary:     Security update for cpio
Type:        security
Severity:    moderate
References:  1218571,1219238,CVE-2023-7207
This update for cpio fixes the following issues:

- Fixed cpio not extracting correctly when using --no-absolute-filenames option the security fix for CVE-2023-7207 (bsc#1218571, bsc#1219238)

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:322-1
Released:    Fri Feb  2 15:13:26 2024
Summary:     Recommended update for aaa_base
Type:        recommended
Severity:    moderate
References:  1107342,1215434
This update for aaa_base fixes the following issues:

- Set JAVA_HOME correctly (bsc#1107342, bsc#1215434)

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2024:555-1
Released:    Tue Feb 20 17:22:17 2024
Summary:     Security update for libxml2
Type:        security
Severity:    moderate
References:  1219576,CVE-2024-25062
This update for libxml2 fixes the following issues:

- CVE-2024-25062: Fixed use-after-free in XMLReader (bsc#1219576).


The following package changes have been done:

- cracklib-dict-small-2.9.11-150600.1.88 updated
- crypto-policies-20230920.570ea89-150600.1.8 added
- libldap-data-2.4.46-150600.23.4 updated
- libsemanage-conf-3.5-150600.1.47 updated
- libssh-config-0.9.8-150600.8.1 updated
- glibc-2.38-150600.5.2 updated
- libuuid1-2.39.3-150600.1.14 updated
- libsmartcols1-2.39.3-150600.1.14 updated
- libsepol2-3.5-150600.1.47 updated
- libsasl2-3-2.1.28-150600.5.1 updated
- libpcre2-8-0-10.42-150600.1.24 updated
- libnghttp2-14-1.40.0-150600.22.1 updated
- liblzma5-5.4.6-150600.1.15 updated
- libcom_err2-1.47.0-150600.2.24 updated
- libblkid1-2.39.3-150600.1.14 updated
- libselinux1-3.5-150600.1.44 updated
- libgcrypt20-1.10.3-150600.1.7 updated
- libfdisk1-2.39.3-150600.1.14 updated
- libmount1-2.39.3-150600.1.14 updated
- libxml2-2-2.10.3-150500.5.14.1 updated
- libopenssl3-3.1.4-150600.1.11 added
- libsystemd0-254.9-150600.2.4 updated
- libsemanage2-3.5-150600.1.47 updated
- login_defs-4.8.1-150600.15.43 updated
- libcrack2-2.9.11-150600.1.88 updated
- cracklib-2.9.11-150600.1.88 updated
- libopenssl-3-fips-provider-3.1.4-150600.1.11 added
- libldap-2_4-2-2.4.46-150600.23.4 updated
- krb5-1.20.1-150600.8.3 updated
- patterns-base-fips-20200124-150600.29.1 updated
- libssh4-0.9.8-150600.8.1 updated
- cpio-2.13-150400.3.6.1 updated
- libcurl4-8.0.1-150600.10.1 updated
- sles-release-15.6-150600.26.1 updated
- pam-1.3.0-150000.6.66.1 updated
- shadow-4.8.1-150600.15.43 updated
- util-linux-2.39.3-150600.1.14 updated
- aaa_base-84.87+git20180409.04c9dae-150300.10.9.1 updated
- container:sles15-image-15.0.0-44.47 updated
- libjitterentropy3-3.4.0-150000.1.9.1 removed
- libopenssl1_1-1.1.1l-150500.17.22.1 removed
- libopenssl1_1-hmac-1.1.1l-150500.17.22.1 removed

More information about the sle-container-updates mailing list