SUSE-CU-2023:221-1: Security update of suse/sle-micro/5.4/toolbox

sle-updates at lists.suse.com sle-updates at lists.suse.com
Sat Jan 28 08:35:09 UTC 2023


SUSE Container Update Advisory: suse/sle-micro/5.4/toolbox
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2023:221-1
Container Tags        : suse/sle-micro/5.4/toolbox:12.1 , suse/sle-micro/5.4/toolbox:12.1-3.2.44 , suse/sle-micro/5.4/toolbox:latest
Container Release     : 3.2.44
Severity              : moderate
Type                  : security
References            : 1204944 1205000 1207264 CVE-2022-4415 
-----------------------------------------------------------------

The container suse/sle-micro/5.4/toolbox was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2023:201-1
Released:    Fri Jan 27 15:24:15 2023
Summary:     Security update for systemd
Type:        security
Severity:    moderate
References:  1204944,1205000,1207264,CVE-2022-4415
This update for systemd fixes the following issues:

- CVE-2022-4415: Fixed an issue where users could access coredumps
  with changed uid, gid or capabilities (bsc#1205000).

Non-security fixes:

- Enabled the pstore service (jsc#PED-2663).
- Fixed an issue accessing TPM when secure boot is enabled (bsc#1204944).
- Fixed an issue where a pamd file could get accidentally overwritten
  after an update (bsc#1207264).


The following package changes have been done:

- systemd-249.14-150400.8.19.1 updated


More information about the sle-updates mailing list