SUSE-CU-2024:1200-1: Security update of suse/sles/15.6/libguestfs-tools

Sat Mar 30 08:02:07 UTC 2024

SUSE Container Update Advisory: suse/sles/15.6/libguestfs-tools
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2024:1200-1
Container Tags        : suse/sles/15.6/libguestfs-tools:1.1.1 , suse/sles/15.6/libguestfs-tools:1.1.1-150600.1.27 , suse/sles/15.6/libguestfs-tools:1.1.1.23.271
Container Release     : 23.271
Severity              : important
Type                  : security
References            : 1214691 1215377 1216296 1218232 1219666 CVE-2022-48566 CVE-2023-6597
-----------------------------------------------------------------

The container suse/sles/15.6/libguestfs-tools was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2023:4973-1
Released:    Tue Dec 26 04:44:10 2023
Summary:     Recommended update for duktape
Type:        recommended
Severity:    moderate
References:  1216296

This update of duktape fixes the following issue:

- duktape-devel is shipped to Basesystem module (bsc#1216296).

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:637-1
Released:    Tue Feb 27 10:06:55 2024
Summary:     Recommended update for duktape
Type:        recommended
Severity:    moderate
References:  
This update for duktape fixes the following issues:

- Ship libduktape206-32bit: needed by libproxy since version 0.5.

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:861-1
Released:    Wed Mar 13 09:12:30 2024
Summary:     Recommended update for aaa_base
Type:        recommended
Severity:    moderate
References:  1218232
This update for aaa_base fixes the following issues:

- Silence the output in the case of broken symlinks (bsc#1218232)

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2024:901-1
Released:    Thu Mar 14 17:49:10 2024
Summary:     Security update for python3
Type:        security
Severity:    important
References:  1214691,1219666,CVE-2022-48566,CVE-2023-6597
This update for python3 fixes the following issues:

- CVE-2023-6597: Fixed symlink bug in cleanup of tempfile.TemporaryDirectory (bsc#1219666).
- CVE-2022-48566: Make compare_digest more constant-time (bsc#1214691).

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:907-1
Released:    Fri Mar 15 08:57:38 2024
Summary:     Recommended update for audit
Type:        recommended
Severity:    moderate
References:  1215377
This update for audit fixes the following issue:

- Fix plugin termination when using systemd service units (bsc#1215377)

The following package changes have been done:

- libldap-data-2.4.46-150600.23.8 updated
- libssh-config-0.9.8-150600.8.3 updated
- glibc-2.38-150600.7.1 updated
- libgcrypt20-1.10.3-150600.1.11 updated
- libduktape206-2.6.0-150500.4.5.1 added
- libaudit1-3.0.6-150400.4.16.1 updated
- libopenssl3-3.1.4-150600.2.5 updated
- libudev1-254.9-150600.2.14 updated
- libsystemd0-254.9-150600.2.14 updated
- libopenssl-3-fips-provider-3.1.4-150600.2.5 updated
- libldap-2_4-2-2.4.46-150600.23.8 updated
- libssh4-0.9.8-150600.8.3 updated
- sles-release-15.6-150600.28.2 updated
- libgpgme11-1.23.0-150600.1.27 updated
- libpxbackend-1_0-0.5.3-150600.1.1 added
- libproxy1-0.5.3-150600.1.1 updated
- libzypp-17.31.31-150600.8.6 updated
- aaa_base-84.87+git20180409.04c9dae-150300.10.12.1 updated
- libguestfs-1.52.0-150600.1.14 updated
- libguestfs-winsupport-1.52.0-150600.1.14 updated
- libapparmor1-3.1.7-150600.3.1 updated
- libhivex0-1.3.23-150600.1.4 updated
- libjpeg8-8.2.2-150600.22.4 updated
- libjson-c5-0.16-150600.1.4 updated
- libkcapi-tools-0.13.0-150600.15.15 updated
- libnettle8-3.9.1-150600.1.35 updated
- mdadm-4.3-150600.1.14 updated
- qemu-accel-tcg-x86-8.2.1-150600.3.15 updated
- qemu-ipxe-8.2.1-150600.3.15 updated
- qemu-seabios-8.2.11.16.3_3_ga95067eb-150600.3.15 updated
- qemu-vgabios-8.2.11.16.3_3_ga95067eb-150600.3.15 updated
- libopenssl1_1-1.1.1w-150600.2.1 updated
- libhogweed6-3.9.1-150600.1.35 updated
- python3-base-3.6.15-150300.10.57.1 updated
- libpython3_6m1_0-3.6.15-150300.10.57.1 updated
- libgnutls30-3.8.3-150600.1.19 updated
- xen-libs-4.18.0_06-150600.1.13 updated
- systemd-254.9-150600.2.14 updated
- qemu-pr-helper-8.2.1-150600.3.15 updated
- qemu-img-8.2.1-150600.3.15 updated
- libvirt-libs-10.0.0-150600.5.1 updated
- glib-networking-2.78.0-150600.1.3 updated
- qemu-tools-8.2.1-150600.3.15 updated
- libsoup-3_0-0-3.4.4-150600.1.3 added
- wicked-0.6.74-150600.8.1 updated
- wicked-service-0.6.74-150600.8.1 updated
- libosinfo-1_0-0-1.11.0-150600.2.1 updated
- libosinfo-1.11.0-150600.2.1 updated
- udev-254.9-150600.2.14 updated
- dracut-059+suse.515.g83296e6f-150600.1.1 updated
- supermin-5.3.3-150600.1.5 updated
- rdma-core-49.1-150600.2.4 updated
- dracut-fips-059+suse.515.g83296e6f-150600.1.1 updated
- libibverbs1-49.1-150600.2.4 updated
- libmlx5-1-49.1-150600.2.4 updated
- libmlx4-1-49.1-150600.2.4 updated
- libmana1-49.1-150600.2.4 updated
- libefa1-49.1-150600.2.4 updated
- libibverbs-49.1-150600.2.4 updated
- librdmacm1-49.1-150600.2.4 updated
- qemu-x86-8.2.1-150600.3.15 updated
- qemu-8.2.1-150600.3.15 updated
- qemu-ovmf-x86_64-202308-150600.2.1 updated
- libguestfs0-1.52.0-150600.1.14 updated
- libguestfs-devel-1.52.0-150600.1.14 updated
- libguestfs-appliance-1.52.0-150600.1.14 updated
- guestfs-tools-1.52.0-150600.1.9 updated
- container:sles15-image-15.0.0-44.71 updated
- libsoup-2_4-1-2.74.3-150600.2.2 removed