SUSE-CU-2023:1955-1: Security update of suse/sle-micro/5.2/toolbox

sle-security-updates at sle-security-updates at
Fri Jun 16 07:08:00 UTC 2023

SUSE Container Update Advisory: suse/sle-micro/5.2/toolbox
Container Advisory ID : SUSE-CU-2023:1955-1
Container Tags        : suse/sle-micro/5.2/toolbox:12.1 , suse/sle-micro/5.2/toolbox:12.1-6.2.233 , suse/sle-micro/5.2/toolbox:latest
Container Release     : 6.2.233
Severity              : moderate
Type                  : security
References            : 1203750 1203818 1211158 CVE-2007-4559 

The container suse/sle-micro/5.2/toolbox was updated. The following patches have been included in this update:

Advisory ID: SUSE-SU-2023:2517-1
Released:    Thu Jun 15 07:09:52 2023
Summary:     Security update for python3
Type:        security
Severity:    moderate
References:  1203750,1211158,CVE-2007-4559
This update for python3 fixes the following issues:

- CVE-2007-4559: Fixed filter for tarfile.extractall (bsc#1203750).

- Fixed unittest.mock.patch.dict returns function when applied to coroutines (bsc#1211158).

Advisory ID: SUSE-RU-2023:2519-1
Released:    Thu Jun 15 08:25:19 2023
Summary:     Recommended update for supportutils
Type:        recommended
Severity:    moderate
References:  1203818
This update for supportutils fixes the following issues:

 - Added missed sanitation check on crash.txt (bsc#1203818)
 - Added check to _sanitize_file
 - Using variable for replement text in _sanitize_file

The following package changes have been done:

- libpython3_6m1_0-3.6.15-150300.10.48.1 updated
- python3-base-3.6.15-150300.10.48.1 updated
- supportutils-3.1.21-150300. updated

More information about the sle-security-updates mailing list