SUSE-CU-2024:4389-1: Security update of suse/manager/5.0/x86_64/proxy-httpd

Wed Sep 18 12:12:58 UTC 2024

SUSE Container Update Advisory: suse/manager/5.0/x86_64/proxy-httpd
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2024:4389-1
Container Tags        : suse/manager/5.0/x86_64/proxy-httpd:5.0.1 , suse/manager/5.0/x86_64/proxy-httpd:5.0.1.7.5.2 , suse/manager/5.0/x86_64/proxy-httpd:latest
Container Release     : 7.5.2
Severity              : moderate
Type                  : security
References            : 1146701 1211899 1217248 1219450 1219645 1223312 1223988 1224004
                        1224209 1225619 1225960 1226313 1226439 1226461 1226491 1226728
                        1226917 1227133 1227406 1227526 1227599 1228036 1228101 1228198
                        1228286 1228545 1229339 1229855 1229930 1229931 1229932 CVE-2024-45490
                        CVE-2024-45491 CVE-2024-45492 
-----------------------------------------------------------------

The container suse/manager/5.0/x86_64/proxy-httpd was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2024:3216-1
Released:    Thu Sep 12 13:05:20 2024
Summary:     Security update for expat
Type:        security
Severity:    moderate
References:  1229930,1229931,1229932,CVE-2024-45490,CVE-2024-45491,CVE-2024-45492
This update for expat fixes the following issues:

- CVE-2024-45492: integer overflow in function nextScaffoldPart. (bsc#1229932)
- CVE-2024-45491: integer overflow in dtdCopy. (bsc#1229931)
- CVE-2024-45490: negative length for XML_ParseBuffer not rejected. (bsc#1229930)

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:3263-1
Released:    Tue Sep 17 07:38:48 2024
Summary:     Recommended update for python3-dmidecode
Type:        recommended
Severity:    moderate
References:  1229855
This update for python3-dmidecode fixes the following issues:

- python3-dmidecode was updated to version 3.12.3 (bsc#1229855):

  * Added support for SMBIOS3.3.0

-----------------------------------------------------------------
Advisory ID: SUSE-Manager-5.0-2024-3265
Released:    Tue Sep 17 09:41:47 2024
Summary:     Maintenance update for SUSE Manager 5.0: Server, Proxy and Retail Branch Server
Type:        recommended
Severity:    moderate
References:  1146701,1211899,1217248,1219450,1219645,1223312,1223988,1224004,1224209,1225619,1225960,1226313,1226439,1226461,1226491,1226728,1226917,1227133,1227406,1227526,1227599,1228036,1228101,1228198,1228286,1228545,1229339
Maintenance update for SUSE Manager 5.0: Server, Proxy and Retail Branch Server
This is a codestream only update

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:3290-1
Released:    Tue Sep 17 15:24:09 2024
Summary:     Recommended update for python-netaddr
Type:        recommended
Severity:    moderate
References:  
This update for python-netaddr fixes the following issue:

New python packages:
 - python311-netaddr

The following package changes have been done:

- libexpat1-2.4.4-150400.3.22.1 updated
- release-notes-susemanager-proxy-5.0.1-150600.11.7.1 updated
- libmodulemd2-2.13.0-150400.3.3.3 updated
- typelib-1_0-Modulemd-2_0-2.13.0-150400.3.3.3 updated
- python3-libmodulemd-2.13.0-150400.3.3.3 updated
- python3-dmidecode-3.12.3-150400.21.2 updated
- python3-rhnlib-5.0.4-150600.4.3.5 updated
- spacewalk-backend-5.0.9-150600.4.3.33 updated
- python3-spacewalk-client-tools-5.0.7-150600.4.3.31 updated
- spacewalk-client-tools-5.0.7-150600.4.3.31 updated