SUSE-CU-2020:82-1: Recommended update of suse/sles12sp4

sle-updates at lists.suse.com sle-updates at lists.suse.com
Sat Mar 7 01:35:47 MST 2020


SUSE Container Update Advisory: suse/sles12sp4
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2020:82-1
Container Tags        : suse/sles12sp4:26.148 , suse/sles12sp4:latest
Container Release     : 26.148
Severity              : moderate
Type                  : recommended
References            : 1123886 1160594 1160764 1161779 1163922 CVE-2020-8013 
-----------------------------------------------------------------

The container suse/sles12sp4 was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2020:603-1
Released:    Fri Mar  6 11:00:57 2020
Summary:     Recommended update for permissions
Type:        recommended
Severity:    moderate
References:  1123886,1160594,1160764,1161779,1163922,CVE-2020-8013
This update for permissions fixes the following issues:

- CVE-2020-8013: Fixed an improper check which could have allowed the 
  setting of unintented setuid bits (bsc#1163922).
- Fixed handling of relative directory symlinks in chkstat.
- Whitelisted postgres sticky directories (bsc#1123886).
- Fixed regression where chkstat broke when /proc was not available
  (bsc#1160764, bsc#1160594)
- Fixed capability handling when doing multiple permission changes
  at once (bsc#1161779)



More information about the sle-updates mailing list