SUSE-CU-2023:2966-1: Security update of rancher/seedimage-builder

sle-security-updates at lists.suse.com sle-security-updates at lists.suse.com
Thu Sep 14 07:03:05 UTC 2023 

SUSE Container Update Advisory: rancher/seedimage-builder
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2023:2966-1
Container Tags        : rancher/seedimage-builder:1.3.4 , rancher/seedimage-builder:1.3.4-2.5 , rancher/seedimage-builder:latest
Container Release     : 2.5
Severity              : moderate
Type                  : security
References            : 1201519 1204844 1210004 1211418 1211419 CVE-2023-2602 CVE-2023-2603
-----------------------------------------------------------------

The container rancher/seedimage-builder was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2023:2765-1
Released:    Mon Jul  3 20:28:14 2023
Summary:     Security update for libcap
Type:        security
Severity:    moderate
References:  1211418,1211419,CVE-2023-2602,CVE-2023-2603
This update for libcap fixes the following issues:

- CVE-2023-2602: Fixed improper memory release in libcap/psx/psx.c:__wrap_pthread_create() (bsc#1211418).
- CVE-2023-2603: Fixed an integer overflow or wraparound in libcap/cap_alloc.c:_libcap_strdup() (bsc#1211419).

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2023:2847-1
Released:    Mon Jul 17 08:40:42 2023
Summary:     Recommended update for audit
Type:        recommended
Severity:    moderate
References:  1210004
This update for audit fixes the following issues:

- Check for AF_UNIX unnamed sockets (bsc#1210004)
- Enable livepatching on main library on x86_64

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2023:3410-1
Released:    Thu Aug 24 06:56:32 2023
Summary:     Recommended update for audit
Type:        recommended
Severity:    moderate
References:  1201519,1204844
This update for audit fixes the following issues:

- Create symbolic link from /sbin/audisp-syslog to /usr/sbin/audisp-syslog (bsc#1201519)
- Fix rules not loaded when restarting auditd.service (bsc#1204844)


The following package changes have been done:

- crypto-policies-20210917.c9d86d1-150400.1.7 updated
- libsemanage1-3.1-150400.1.65 removed
- libsepol1-3.1-150400.1.70 removed

More information about the sle-security-updates mailing list