SUSE-CU-2021:411-1: Security update of suse/sle15

sle-updates at sle-updates at
Sat Oct 16 07:13:55 UTC 2021

SUSE Container Update Advisory: suse/sle15
Container Advisory ID : SUSE-CU-2021:411-1
Container Tags        : suse/sle15:15.2 , suse/sle15:
Container Release     : 9.5.30
Severity              : important
Type                  : security
References            : 1179416 1183543 1183545 1183632 1183659 1185299 1187670 1188548
                        CVE-2021-20266 CVE-2021-20271 CVE-2021-3421 

The container suse/sle15 was updated. The following patches have been included in this update:

Advisory ID: SUSE-SU-2021:3444-1
Released:    Fri Oct 15 09:03:07 2021
Summary:     Security update for rpm
Type:        security
Severity:    important
References:  1179416,1183543,1183545,1183632,1183659,1185299,1187670,1188548,CVE-2021-20266,CVE-2021-20271,CVE-2021-3421
This update for rpm fixes the following issues:

Security issues fixed:

- CVE-2021-3421, CVE-2021-20271, CVE-2021-20266: Multiple header check improvements (bsc#1183543, bsc#1183545, bsc#1183632)
- PGP hardening changes (bsc#1185299)
- Fixed potential access of freed mem in ndb's glue code (bsc#1179416)

Maintaince issues fixed:

- Fixed zstd detection (bsc#1187670)
- Added ndb rofs support (bsc#1188548)
- Fixed deadlock when multiple rpm processes try tp acquire the database lock (bsc#1183659)

More information about the sle-updates mailing list