SUSE-SU-2023:3462-1: important: Security update for ca-certificates-mozilla

sle-security-updates at lists.suse.com sle-security-updates at lists.suse.com
Mon Aug 28 20:30:10 UTC 2023



# Security update for ca-certificates-mozilla

Announcement ID: SUSE-SU-2023:3462-1  
Rating: important  
References:

  * #1214248

  
Affected Products:

  * SUSE CaaS Platform 4.0
  * SUSE Linux Enterprise High Performance Computing 15 SP1
  * SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS 15-SP1
  * SUSE Linux Enterprise Server 15 SP1
  * SUSE Linux Enterprise Server 15 SP1 LTSS 15-SP1
  * SUSE Linux Enterprise Server for SAP Applications 15 SP1

  
  
An update that has one fix can now be installed.

## Description:

This update for ca-certificates-mozilla fixes the following issues:

  * Updated to 2.62 state of Mozilla SSL root CAs (bsc#1214248) Added:
  * Atos TrustedRoot Root CA ECC G2 2020
  * Atos TrustedRoot Root CA ECC TLS 2021
  * Atos TrustedRoot Root CA RSA G2 2020
  * Atos TrustedRoot Root CA RSA TLS 2021
  * BJCA Global Root CA1
  * BJCA Global Root CA2
  * LAWtrust Root CA2 (4096)
  * Sectigo Public Email Protection Root E46
  * Sectigo Public Email Protection Root R46
  * Sectigo Public Server Authentication Root E46
  * Sectigo Public Server Authentication Root R46
  * SSL.com Client ECC Root CA 2022
  * SSL.com Client RSA Root CA 2022
  * SSL.com TLS ECC Root CA 2022
  * SSL.com TLS RSA Root CA 2022 Removed CAs:
  * Chambers of Commerce Root
  * E-Tugra Certification Authority
  * E-Tugra Global Root CA ECC v3
  * E-Tugra Global Root CA RSA v3
  * Hongkong Post Root CA 1

## Patch Instructions:

To install this SUSE Important update use the SUSE recommended installation
methods like YaST online_update or "zypper patch".  
Alternatively you can run the command listed for your product:

  * SUSE Linux Enterprise Server for SAP Applications 15 SP1  
    zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP1-2023-3462=1

  * SUSE CaaS Platform 4.0  
To install this update, use the SUSE CaaS Platform 'skuba' tool. It will inform
you if it detects new updates and let you then trigger updating of the complete
cluster in a controlled way.

  * SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS 15-SP1  
    zypper in -t patch SUSE-SLE-Product-HPC-15-SP1-LTSS-2023-3462=1

  * SUSE Linux Enterprise Server 15 SP1 LTSS 15-SP1  
    zypper in -t patch SUSE-SLE-Product-SLES-15-SP1-LTSS-2023-3462=1

## Package List:

  * SUSE Linux Enterprise Server for SAP Applications 15 SP1 (noarch)
    * ca-certificates-mozilla-2.62-150000.4.41.1
  * SUSE CaaS Platform 4.0 (noarch)
    * ca-certificates-mozilla-2.62-150000.4.41.1
  * SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS 15-SP1 (noarch)
    * ca-certificates-mozilla-2.62-150000.4.41.1
  * SUSE Linux Enterprise Server 15 SP1 LTSS 15-SP1 (noarch)
    * ca-certificates-mozilla-2.62-150000.4.41.1

## References:

  * https://bugzilla.suse.com/show_bug.cgi?id=1214248

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.suse.com/pipermail/sle-security-updates/attachments/20230828/d95344ed/attachment.htm>


More information about the sle-security-updates mailing list