SUSE-CU-2022:2502-1: Recommended update of suse/sle15
sle-updates at lists.suse.com
sle-updates at lists.suse.com
Sat Oct 8 10:05:30 UTC 2022
SUSE Container Update Advisory: suse/sle15
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2022:2502-1
Container Tags : bci/bci-base:15.4 , bci/bci-base:15.4.27.11.29 , suse/sle15:15.4 , suse/sle15:15.4.27.11.29
Container Release : 27.11.29
Severity : moderate
Type : recommended
References : 1182983 1190700 1191020 1202117
-----------------------------------------------------------------
The container suse/sle15 was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: SUSE-RU-2022:3551-1
Released: Fri Oct 7 17:03:55 2022
Summary: Recommended update for libgcrypt
Type: recommended
Severity: moderate
References: 1182983,1190700,1191020,1202117
This update for libgcrypt fixes the following issues:
- FIPS: Fixed gpg/gpg2 gets out of core handler in FIPS mode while
typing Tab key to Auto-Completion. [bsc#1182983]
- FIPS: Ported libgcrypt to use jitterentropy [bsc#1202117, jsc#SLE-24941]
* Enable the jitter based entropy generator by default in random.conf
* Update the internal jitterentropy to version 3.4.0
- FIPS: Get most of the entropy from rndjent_poll [bsc#1202117]
- FIPS: Check keylength in gcry_fips_indicator_kdf() [bsc#1190700]
* Consider approved keylength greater or equal to 112 bits.
- FIPS: Zeroize buffer and digest in check_binary_integrity() [bsc#1191020]
The following package changes have been done:
- libgcrypt20-hmac-1.9.4-150400.6.5.1 updated
- libgcrypt20-1.9.4-150400.6.5.1 updated
More information about the sle-updates
mailing list