SUSE-CU-2023:2966-1: Security update of rancher/seedimage-builder
sle-updates at lists.suse.com
sle-updates at lists.suse.com
Thu Sep 14 07:03:05 UTC 2023
SUSE Container Update Advisory: rancher/seedimage-builder
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2023:2966-1
Container Tags : rancher/seedimage-builder:1.3.4 , rancher/seedimage-builder:1.3.4-2.5 , rancher/seedimage-builder:latest
Container Release : 2.5
Severity : moderate
Type : security
References : 1201519 1204844 1210004 1211418 1211419 CVE-2023-2602 CVE-2023-2603
-----------------------------------------------------------------
The container rancher/seedimage-builder was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2023:2765-1
Released: Mon Jul 3 20:28:14 2023
Summary: Security update for libcap
Type: security
Severity: moderate
References: 1211418,1211419,CVE-2023-2602,CVE-2023-2603
This update for libcap fixes the following issues:
- CVE-2023-2602: Fixed improper memory release in libcap/psx/psx.c:__wrap_pthread_create() (bsc#1211418).
- CVE-2023-2603: Fixed an integer overflow or wraparound in libcap/cap_alloc.c:_libcap_strdup() (bsc#1211419).
-----------------------------------------------------------------
Advisory ID: SUSE-RU-2023:2847-1
Released: Mon Jul 17 08:40:42 2023
Summary: Recommended update for audit
Type: recommended
Severity: moderate
References: 1210004
This update for audit fixes the following issues:
- Check for AF_UNIX unnamed sockets (bsc#1210004)
- Enable livepatching on main library on x86_64
-----------------------------------------------------------------
Advisory ID: SUSE-RU-2023:3410-1
Released: Thu Aug 24 06:56:32 2023
Summary: Recommended update for audit
Type: recommended
Severity: moderate
References: 1201519,1204844
This update for audit fixes the following issues:
- Create symbolic link from /sbin/audisp-syslog to /usr/sbin/audisp-syslog (bsc#1201519)
- Fix rules not loaded when restarting auditd.service (bsc#1204844)
The following package changes have been done:
- crypto-policies-20210917.c9d86d1-150400.1.7 updated
- libsemanage1-3.1-150400.1.65 removed
- libsepol1-3.1-150400.1.70 removed
More information about the sle-updates
mailing list