SUSE-CU-2022:892-1: Security update of bci/golang

Fri May 6 07:45:00 UTC 2022

SUSE Container Update Advisory: bci/golang
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2022:892-1
Container Tags        : bci/golang:1.16 , bci/golang:1.16-16.5
Container Release     : 16.5
Severity              : important
Type                  : security
References            : 1181400 1198234 CVE-2022-24765 
-----------------------------------------------------------------

The container bci/golang was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2022:1484-1
Released:    Mon May  2 16:47:10 2022
Summary:     Security update for git
Type:        security
Severity:    important
References:  1181400,1198234,CVE-2022-24765
This update for git fixes the following issues:

- Updated to version 2.35.3:
  - CVE-2022-24765: Fixed a potential command injection via git worktree (bsc#1198234).

The following package changes have been done:

- git-core-2.35.3-150300.10.12.1 updated
- boost-license1_66_0-1.66.0-12.3.1 removed
- gpg2-2.2.27-1.2 removed
- libassuan0-2.5.1-2.14 removed
- libaugeas0-1.10.1-3.9.1 removed
- libboost_system1_66_0-1.66.0-12.3.1 removed
- libboost_thread1_66_0-1.66.0-12.3.1 removed
- libglib-2_0-0-2.62.6-150200.3.9.1 removed
- libgpgme11-1.13.1-4.3.1 removed
- libksba8-1.3.5-2.14 removed
- libmodman1-2.0.1-1.27 removed
- libnpth0-1.5-2.11 removed
- libprocps7-3.3.15-7.22.1 removed
- libprotobuf-lite20-3.9.2-4.12.1 removed
- libproxy1-0.4.15-12.41 removed
- libsigc-2_0-0-2.10.2-1.18 removed
- libsolv-tools-0.7.22-150200.12.1 removed
- libsqlite3-0-3.36.0-3.12.1 removed
- libusb-1_0-0-1.0.21-3.3.1 removed
- libyaml-cpp0_6-0.6.1-4.5.1 removed
- libzypp-17.30.0-150200.36.1 removed
- openssl-1_1-1.1.1d-11.43.1 removed
- pinentry-1.1.0-4.3.1 removed
- procps-3.3.15-7.22.1 removed
- rpm-ndb-4.14.3-150300.46.1 removed
- zypper-1.14.52-150200.30.2 removed