SUSE-CU-2023:2357-1: Security update of bci/bci-micro

sle-security-updates at lists.suse.com sle-security-updates at lists.suse.com
Fri Jul 21 07:06:16 UTC 2023


SUSE Container Update Advisory: bci/bci-micro
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2023:2357-1
Container Tags        : bci/bci-micro:15.4 , bci/bci-micro:15.4.21.4
Container Release     : 21.4
Severity              : moderate
Type                  : security
References            : 1208721 1209229 1211418 1211419 1211828 CVE-2023-2602 CVE-2023-2603
-----------------------------------------------------------------

The container bci/bci-micro was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2023:2765-1
Released:    Mon Jul  3 20:28:14 2023
Summary:     Security update for libcap
Type:        security
Severity:    moderate
References:  1211418,1211419,CVE-2023-2602,CVE-2023-2603
This update for libcap fixes the following issues:

- CVE-2023-2602: Fixed improper memory release in libcap/psx/psx.c:__wrap_pthread_create() (bsc#1211418).
- CVE-2023-2603: Fixed an integer overflow or wraparound in libcap/cap_alloc.c:_libcap_strdup() (bsc#1211419).

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2023:2885-1
Released:    Wed Jul 19 16:58:43 2023
Summary:     Recommended update for glibc
Type:        recommended
Severity:    moderate
References:  1208721,1209229,1211828
This update for glibc fixes the following issues:

- getlogin_r: fix missing fallback if loginuid is unset (bsc#1209229, BZ #30235)
- Exclude static archives from preparation for live patching (bsc#1208721)
- resolv_conf: release lock on allocation failure (bsc#1211828, BZ #30527)


The following package changes have been done:

- glibc-2.31-150300.52.2 updated
- libcap2-2.63-150400.3.3.1 updated


More information about the sle-security-updates mailing list