SUSE-IU-2024:1164-1: Security update of suse/sle-micro/kvm-5.5

sle-container-updates at lists.suse.com sle-container-updates at lists.suse.com
Fri Sep 6 11:32:00 UTC 2024 

SUSE Image Update Advisory: suse/sle-micro/kvm-5.5
-----------------------------------------------------------------
Image Advisory ID : SUSE-IU-2024:1164-1
Image Tags        : suse/sle-micro/kvm-5.5:2.0.4 , suse/sle-micro/kvm-5.5:2.0.4-3.5.144 , suse/sle-micro/kvm-5.5:latest
Image Release     : 3.5.144
Severity          : moderate
Type              : security
References        : 1218297 1221479 1226414 1228091 1228398 1228847 CVE-2023-7008
-----------------------------------------------------------------

The container suse/sle-micro/kvm-5.5 was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:3146-1
Released:    Thu Sep  5 09:14:53 2024
Summary:     Recommended update for dracut
Type:        recommended
Severity:    moderate
References:  1228398,1228847
This update for dracut fixes the following issues:

- Version update with:
  * feat(systemd*) include systemd config files from /usr/lib/systemd (bsc#1228398).
  * fix(convertfs) error in conditional expressions (bsc#1228847).

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2024:3149-1
Released:    Thu Sep  5 17:05:36 2024
Summary:     Security update for systemd
Type:        security
Severity:    moderate
References:  1218297,1221479,1226414,1228091,CVE-2023-7008
This update for systemd fixes the following issues:

- CVE-2023-7008: Fixed man-in-the-middle due to unsigned name response in signed zone not refused when DNSSEC=yes (bsc#1218297)

Other fixes:
- Unit: drop ProtectClock=yes from systemd-udevd.service (bsc#1226414)
- Don't mention any rpm macros inside comments, even if escaped (bsc#1228091)
- Skip redundant dependencies specified the LSB description that references the file name of the service itself for early boot scripts (bsc#1221479).


The following package changes have been done:

- libudev1-249.17-150400.8.43.1 updated
- libsystemd0-249.17-150400.8.43.1 updated
- systemd-249.17-150400.8.43.1 updated
- udev-249.17-150400.8.43.1 updated
- systemd-sysvinit-249.17-150400.8.43.1 updated
- dracut-055+suse.392.g7930ab23-150500.3.24.2 updated
- container:suse-sle-micro-base-5.5-latest-2.0.4-5.8.70 updated

More information about the sle-container-updates mailing list