SUSE-CU-2023:4044-1: Security update of suse/sles12sp5

meissner at suse.de meissner at suse.de
Fri Dec 8 08:07:02 UTC 2023


SUSE Container Update Advisory: suse/sles12sp5
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2023:4044-1
Container Tags        : suse/sles12sp5:6.5.541 , suse/sles12sp5:latest
Container Release     : 6.5.541
Severity              : moderate
Type                  : security
References            : 1217573 1217574 CVE-2023-46218 CVE-2023-46219 
-----------------------------------------------------------------

The container suse/sles12sp5 was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2023:4653-1
Released:    Wed Dec  6 11:34:32 2023
Summary:     Security update for curl
Type:        security
Severity:    moderate
References:  1217573,1217574,CVE-2023-46218,CVE-2023-46219
This update for curl fixes the following issues:

- CVE-2023-46218: Fixed cookie mixed case PSL bypass (bsc#1217573).
- CVE-2023-46219: HSTS long file name clears contents (bsc#1217574).


The following package changes have been done:

- libcurl4-8.0.1-11.80.1 updated


More information about the sle-updates mailing list