SUSE-CU-2024:1066-1: Security update of suse/rmt-mariadb
sle-container-updates at lists.suse.com
sle-container-updates at lists.suse.com
Wed Mar 20 10:43:47 UTC 2024
SUSE Container Update Advisory: suse/rmt-mariadb
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2024:1066-1
Container Tags : suse/mariadb:10.6 , suse/mariadb:10.6-19.14 , suse/mariadb:latest , suse/rmt-mariadb:10.6 , suse/rmt-mariadb:10.6-19.14 , suse/rmt-mariadb:latest
Container Release : 19.14
Severity : important
Type : security
References : 1176006 1188307 1203823 1214691 1215377 1217445 1217589 1218866
1219321 1219666 CVE-2022-48566 CVE-2023-6597
-----------------------------------------------------------------
The container suse/rmt-mariadb was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2024:870-1
Released: Wed Mar 13 13:05:14 2024
Summary: Security update for glibc
Type: security
Severity: moderate
References: 1217445,1217589,1218866
This update for glibc fixes the following issues:
Security issues fixed:
- qsort: harden handling of degenerated / non transient compare function (bsc#1218866)
Other issues fixed:
- getaddrinfo: translate ENOMEM to EAI_MEMORY (bsc#1217589, BZ #31163)
- aarch64: correct CFI in rawmemchr (bsc#1217445, BZ #31113)
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2024:901-1
Released: Thu Mar 14 17:49:10 2024
Summary: Security update for python3
Type: security
Severity: important
References: 1214691,1219666,CVE-2022-48566,CVE-2023-6597
This update for python3 fixes the following issues:
- CVE-2023-6597: Fixed symlink bug in cleanup of tempfile.TemporaryDirectory (bsc#1219666).
- CVE-2022-48566: Make compare_digest more constant-time (bsc#1214691).
-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:907-1
Released: Fri Mar 15 08:57:38 2024
Summary: Recommended update for audit
Type: recommended
Severity: moderate
References: 1215377
This update for audit fixes the following issue:
- Fix plugin termination when using systemd service units (bsc#1215377)
-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:914-1
Released: Mon Mar 18 06:39:03 2024
Summary: Recommended update for shadow
Type: recommended
Severity: important
References: 1176006,1188307,1203823
This update for shadow fixes the following issues:
- Fix chage date miscalculation (bsc#1176006)
- Fix passwd segfault when nsswitch.conf defines 'files compat' (bsc#1188307
- Remove pam_keyinit from PAM config files (bsc#1203823)
-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:929-1
Released: Tue Mar 19 06:36:24 2024
Summary: Recommended update for coreutils
Type: recommended
Severity: moderate
References: 1219321
This update for coreutils fixes the following issues:
- tail: fix tailing sysfs files where PAGE_SIZE > BUFSIZ (bsc#1219321)
The following package changes have been done:
- glibc-2.31-150300.68.1 updated
- libaudit1-3.0.6-150400.4.16.1 updated
- login_defs-4.8.1-150400.10.15.1 updated
- coreutils-8.32-150400.9.3.1 updated
- shadow-4.8.1-150400.10.15.1 updated
- libpython3_6m1_0-3.6.15-150300.10.57.1 updated
- python3-base-3.6.15-150300.10.57.1 updated
- container:sles15-image-15.0.0-36.11.15 updated
More information about the sle-container-updates
mailing list