SUSE-IU-2024:1201-1: Security update of suse/sl-micro/6.0/baremetal-os-container

sle-container-updates at lists.suse.com sle-container-updates at lists.suse.com
Thu Sep 12 15:23:34 UTC 2024 

SUSE Image Update Advisory: suse/sl-micro/6.0/baremetal-os-container
-----------------------------------------------------------------
Image Advisory ID : SUSE-IU-2024:1201-1
Image Tags        : suse/sl-micro/6.0/baremetal-os-container:2.1.2 , suse/sl-micro/6.0/baremetal-os-container:2.1.2-3.57 , suse/sl-micro/6.0/baremetal-os-container:latest
Image Release     : 3.57
Severity          : important
Type              : security
References        : 1210717 1215405 1224282 1225984 1227930 1228247 1229132 CVE-2024-34459
-----------------------------------------------------------------

The container suse/sl-micro/6.0/baremetal-os-container was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: 43
Released:    Wed Sep 11 13:37:26 2024
Summary:     Security update for selinux-policy
Type:        security
Severity:    important
References:  1210717,1215405,1225984,1227930,1228247,1229132
This update for selinux-policy fixes the following issues:

Update to version 20230523+git25.ad22dd7f:

* Backport wtmpdb label change to have the same wtmpdb label
  as in SL Micro 6.1 (bsc#1229132)
* Add auth_rw_wtmpdb_login_records to domains using auth_manage_login_records
* Add auth_rw_wtmpdb_login_records to modules
* Allow xdm_t to read-write to wtmpdb (bsc#1225984)
* Introduce types for wtmpdb and rw interface
* Introduce wtmp_file_type attribute
* Revert 'Add policy for wtmpdb (bsc#1210717)'

Update to version 20230523+git18.f44daf8a:

* Provide type for sysstat lock files (bsc#1228247)

Update to version 20230523+git16.0849f54c:

* allow firewalld access to /dev/random and write HW acceleration logs
  (bsc#1215405, bsc#1227930)

-----------------------------------------------------------------
Advisory ID: 45
Released:    Wed Sep 11 13:41:31 2024
Summary:     Security update for libxml2
Type:        security
Severity:    moderate
References:  1224282,CVE-2024-34459
This update for libxml2 fixes the following issues:

- CVE-2024-34459: Fixed buffer over-read in (bsc#1224282)


The following package changes have been done:

- libexpat1-2.5.0-3.1 updated
- libxml2-2-2.11.6-3.1 updated
- SL-Micro-release-6.0-24.15 updated
- selinux-policy-20230523+git25.ad22dd7f-1.1 updated
- selinux-policy-targeted-20230523+git25.ad22dd7f-1.1 updated
- container:SL-Micro-base-container-2.1.2-3.34 updated

More information about the sle-container-updates mailing list