SUSE-CU-2023:1985-1: Security update of suse/sle-micro/5.4/toolbox

sle-security-updates at lists.suse.com sle-security-updates at lists.suse.com
Mon Jun 19 10:37:11 UTC 2023


SUSE Container Update Advisory: suse/sle-micro/5.4/toolbox
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2023:1985-1
Container Tags        : suse/sle-micro/5.4/toolbox:12.1 , suse/sle-micro/5.4/toolbox:12.1-4.2.47 , suse/sle-micro/5.4/toolbox:latest
Container Release     : 4.2.47
Severity              : moderate
Type                  : security
References            : 1203750 1203818 1211158 CVE-2007-4559 
-----------------------------------------------------------------

The container suse/sle-micro/5.4/toolbox was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2023:2517-1
Released:    Thu Jun 15 07:09:52 2023
Summary:     Security update for python3
Type:        security
Severity:    moderate
References:  1203750,1211158,CVE-2007-4559
This update for python3 fixes the following issues:

- CVE-2007-4559: Fixed filter for tarfile.extractall (bsc#1203750).

- Fixed unittest.mock.patch.dict returns function when applied to coroutines (bsc#1211158).

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2023:2519-1
Released:    Thu Jun 15 08:25:19 2023
Summary:     Recommended update for supportutils
Type:        recommended
Severity:    moderate
References:  1203818
This update for supportutils fixes the following issues:

 - Added missed sanitation check on crash.txt (bsc#1203818)
 - Added check to _sanitize_file
 - Using variable for replement text in _sanitize_file


The following package changes have been done:

- libpython3_6m1_0-3.6.15-150300.10.48.1 updated
- python3-base-3.6.15-150300.10.48.1 updated
- supportutils-3.1.21-150300.7.35.18.1 updated


More information about the sle-security-updates mailing list