SUSE-CU-2022:3137-1: Recommended update of bci/dotnet-aspnet

Fri Nov 25 08:36:24 UTC 2022

SUSE Container Update Advisory: bci/dotnet-aspnet
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2022:3137-1
Container Tags        : bci/dotnet-aspnet:5.0 , bci/dotnet-aspnet:5.0-27.55 , bci/dotnet-aspnet:5.0.17 , bci/dotnet-aspnet:5.0.17-27.55
Container Release     : 27.55
Severity              : moderate
Type                  : recommended
References            : 1190651 1202750 
-----------------------------------------------------------------

The container bci/dotnet-aspnet was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2022:4198-1
Released:    Wed Nov 23 13:15:04 2022
Summary:     Recommended update for rpm
Type:        recommended
Severity:    moderate
References:  1202750
This update for rpm fixes the following issues:

- Strip critical bit in signature subpackage parsing
- No longer deadlock DNF after pubkey import (bsc#1202750)

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2022:4212-1
Released:    Thu Nov 24 15:53:48 2022
Summary:     Recommended update for openssl-1_1
Type:        recommended
Severity:    moderate
References:  1190651
This update for openssl-1_1 fixes the following issues:

- FIPS: Mark PBKDF2 with key shorter than 112 bits as non-approved (bsc#1190651)
- FIPS: Consider RSA siggen/sigver with PKCS1 padding also approved (bsc#1190651)
- FIPS: Return the correct indicator for a given EC group order bits (bsc#1190651)

The following package changes have been done:

- libopenssl1_1-1.1.1l-150400.7.16.1 updated
- libopenssl1_1-hmac-1.1.1l-150400.7.16.1 updated
- rpm-ndb-4.14.3-150300.52.1 updated
- container:sles15-image-15.0.0-27.14.20 updated