SUSE-IU-2021:410-1: Security update of suse-sles-15-chost-byos-v20210304-hvm-ssd-x86_64

sle-security-updates at lists.suse.com sle-security-updates at lists.suse.com
Wed Mar 10 11:37:25 UTC 2021 

SUSE Image Update Advisory: suse-sles-15-chost-byos-v20210304-hvm-ssd-x86_64
-----------------------------------------------------------------
Image Advisory ID : SUSE-IU-2021:410-1
Image Tags        : suse-sles-15-chost-byos-v20210304-hvm-ssd-x86_64:20210304
Image Release     : 
Severity          : moderate
Type              : security
References        : 1177211 1177460 1180603 1181571 CVE-2020-26116 
-----------------------------------------------------------------

The container suse-sles-15-chost-byos-v20210304-hvm-ssd-x86_64 was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2021:293-1
Released:    Wed Feb  3 12:52:34 2021
Summary:     Recommended update for gmp
Type:        recommended
Severity:    moderate
References:  1180603
This update for gmp fixes the following issues:

- correct license statements of packages (library itself is no GPL-3.0) (bsc#1180603)

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2021:301-1
Released:    Thu Feb  4 08:46:27 2021
Summary:     Recommended update for timezone
Type:        recommended
Severity:    moderate
References:  1177460
This update for timezone fixes the following issues:

- timezone update 2021a (bsc#1177460)
  * South Sudan changes from +03 to +02 on 2021-02-01 at 00:00.

- timezone update 2021a (bsc#1177460)
  * South Sudan changes from +03 to +02 on 2021-02-01 at 00:00.

-----------------------------------------------------------------
Advisory ID: SUSE-OU-2021:339-1
Released:    Mon Feb  8 13:16:07 2021
Summary:     Optional update for pam
Type:        optional
Severity:    low
References:  
This update for pam fixes the following issues:

- Added rpm macros for this package, so that other packages can make use of it

This patch is optional to be installed - it doesn't fix any bugs.

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2021:341-1
Released:    Mon Feb  8 17:39:53 2021
Summary:     Security update for python-urllib3
Type:        security
Severity:    moderate
References:  1177211,1181571,CVE-2020-26116
This update for python-urllib3 fixes the following issues:

- CVE-2020-26116: Raise ValueError if method contains control characters and thus prevent CRLF injection into URLs (bsc#1177211).
- Skip test for RECENT_DATE (bsc#1181571).

More information about the sle-security-updates mailing list