SUSE-CU-2023:1582-1: Security update of suse/registry

sle-security-updates at sle-security-updates at
Tue May 16 07:08:02 UTC 2023

SUSE Container Update Advisory: suse/registry
Container Advisory ID : SUSE-CU-2023:1582-1
Container Tags        : suse/registry:2.8 , suse/registry:2.8-9.7 , suse/registry:latest
Container Release     : 9.7
Severity              : important
Type                  : security
References            : 1206513 1207705 CVE-2023-2253 

The container suse/registry was updated. The following patches have been included in this update:

Advisory ID: SUSE-RU-2023:2133-1
Released:    Tue May  9 13:37:10 2023
Summary:     Recommended update for zlib
Type:        recommended
Severity:    moderate
References:  1206513
This update for zlib fixes the following issues:

- Add DFLTCC support for using inflate() with a small window (bsc#1206513)

Advisory ID: SUSE-SU-2023:2154-1
Released:    Tue May  9 18:25:20 2023
Summary:     Security update for distribution
Type:        security
Severity:    important
References:  1207705,CVE-2023-2253
This update for distribution fixes the following issues:

- CVE-2023-2253: Fixed possible DoS via a crafted malicious /v2/_catalog API endpoint request (bsc#1207705).

The following package changes have been done:

- distribution-registry-2.8.1-150400.9.18.1 updated
- libz1-1.2.11-150000.3.42.1 updated

More information about the sle-security-updates mailing list