SUSE-CU-2024:3981-1: Security update of suse/sle-micro/5.5/toolbox
sle-container-updates at lists.suse.com
sle-container-updates at lists.suse.com
Thu Sep 5 07:02:40 UTC 2024
SUSE Container Update Advisory: suse/sle-micro/5.5/toolbox
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2024:3981-1
Container Tags : suse/sle-micro/5.5/toolbox:13.2 , suse/sle-micro/5.5/toolbox:13.2-3.5.30 , suse/sle-micro/5.5/toolbox:latest
Container Release : 3.5.30
Severity : moderate
Type : security
References : 1224044 1228535 CVE-2024-34397 CVE-2024-7264
-----------------------------------------------------------------
The container suse/sle-micro/5.5/toolbox was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2024:3080-1
Released: Mon Sep 2 16:43:54 2024
Summary: Security update for curl
Type: security
Severity: moderate
References: 1228535,CVE-2024-7264
This update for curl fixes the following issues:
- CVE-2024-7264: Fixed out-of-bounds read in ASN.1 date parser GTime2str() (bsc#1228535)
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2024:3086-1
Released: Tue Sep 3 08:57:32 2024
Summary: Security update for glib2
Type: security
Severity: low
References: 1224044,CVE-2024-34397
This update for glib2 fixes the following issues:
- Fixed a possible use after free regression introduced by CVE-2024-34397 patch (bsc#1224044).
The following package changes have been done:
- libcurl4-8.0.1-150400.5.47.1 updated
- libglib-2_0-0-2.70.5-150400.3.14.1 updated
- libgmodule-2_0-0-2.70.5-150400.3.14.1 updated
- container:sles15-image-15.0.0-36.14.17 updated
More information about the sle-container-updates
mailing list