SUSE-CU-2023:52-1: Security update of bci/bci-busybox
sle-updates at lists.suse.com
sle-updates at lists.suse.com
Sat Jan 7 09:22:45 UTC 2023
SUSE Container Update Advisory: bci/bci-busybox
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2023:52-1
Container Tags : bci/bci-busybox:15.4 , bci/bci-busybox:15.4.13.4 , bci/bci-busybox:latest
Container Release : 13.4
Severity : important
Type : security
References : 1206212 1206622
-----------------------------------------------------------------
The container bci/bci-busybox was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2023:37-1
Released: Fri Jan 6 15:35:49 2023
Summary: Security update for ca-certificates-mozilla
Type: security
Severity: important
References: 1206212,1206622
This update for ca-certificates-mozilla fixes the following issues:
- Updated to 2.60 state of Mozilla SSL root CAs (bsc#1206622)
Removed CAs:
- Global Chambersign Root
- EC-ACC
- Network Solutions Certificate Authority
- Staat der Nederlanden EV Root CA
- SwissSign Platinum CA - G2
Added CAs:
- DIGITALSIGN GLOBAL ROOT ECDSA CA
- DIGITALSIGN GLOBAL ROOT RSA CA
- Security Communication ECC RootCA1
- Security Communication RootCA3
Changed trust:
- TrustCor certificates only trusted up to Nov 30 (bsc#1206212)
- Removed CAs (bsc#1206212) as most code does not handle 'valid before nov 30 2022'
and it is not clear how many certs were issued for SSL middleware by TrustCor:
- TrustCor RootCert CA-1
- TrustCor RootCert CA-2
- TrustCor ECA-1
The following package changes have been done:
- ca-certificates-mozilla-prebuilt-2.60-150200.27.1 updated
More information about the sle-updates
mailing list