SUSE-CU-2024:879-1: Security update of suse/sles12sp5
sle-container-updates at lists.suse.com
sle-container-updates at lists.suse.com
Mon Mar 11 15:24:33 UTC 2024
SUSE Container Update Advisory: suse/sles12sp5
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2024:879-1
Container Tags : suse/sles12sp5:6.5.572 , suse/sles12sp5:latest
Container Release : 6.5.572
Severity : moderate
Type : security
References : 1218571 1219238 1219243 CVE-2023-7207 CVE-2024-0727
-----------------------------------------------------------------
The container suse/sles12sp5 was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2024:814-1
Released: Fri Mar 8 09:31:47 2024
Summary: Security update for openssl-1_0_0
Type: security
Severity: moderate
References: 1219243,CVE-2024-0727
This update for openssl-1_0_0 fixes the following issues:
- CVE-2024-0727: Denial of service when processing a maliciously formatted PKCS12 file (bsc#1219243).
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2024:825-1
Released: Mon Mar 11 14:14:35 2024
Summary: Security update for cpio
Type: security
Severity: moderate
References: 1218571,1219238,CVE-2023-7207
This update for cpio fixes the following issues:
- Fixed cpio not extracting correctly when using --no-absolute-filenames option the security fix for CVE-2023-7207 (bsc#1218571, bsc#1219238)
The following package changes have been done:
- cpio-2.11-36.21.1 updated
- libopenssl1_0_0-1.0.2p-3.90.1 updated
- openssl-1_0_0-1.0.2p-3.90.1 updated
More information about the sle-container-updates
mailing list