<div class="container">
<h1>Security update for skopeo</h1>
<table class="table table-striped table-bordered">
<tbody>
<tr>
<th>Announcement ID:</th>
<td>SUSE-SU-2024:1497-1</td>
</tr>
<tr>
<th>Rating:</th>
<td>important</td>
</tr>
<tr>
<th>References:</th>
<td>
<ul>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1215611">bsc#1215611</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1219563">bsc#1219563</a>
</li>
</ul>
</td>
</tr>
<tr>
<th>Affected Products:</th>
<td>
<ul class="list-group">
<li class="list-group-item">Basesystem Module 15-SP5</li>
<li class="list-group-item">openSUSE Leap 15.3</li>
<li class="list-group-item">openSUSE Leap 15.5</li>
<li class="list-group-item">SUSE Enterprise Storage 7.1</li>
<li class="list-group-item">SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4</li>
<li class="list-group-item">SUSE Linux Enterprise Desktop 15 SP5</li>
<li class="list-group-item">SUSE Linux Enterprise High Performance Computing 15 SP3</li>
<li class="list-group-item">SUSE Linux Enterprise High Performance Computing 15 SP4</li>
<li class="list-group-item">SUSE Linux Enterprise High Performance Computing 15 SP5</li>
<li class="list-group-item">SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4</li>
<li class="list-group-item">SUSE Linux Enterprise High Performance Computing LTSS 15 SP3</li>
<li class="list-group-item">SUSE Linux Enterprise High Performance Computing LTSS 15 SP4</li>
<li class="list-group-item">SUSE Linux Enterprise Micro 5.5</li>
<li class="list-group-item">SUSE Linux Enterprise Real Time 15 SP5</li>
<li class="list-group-item">SUSE Linux Enterprise Server 15 SP3</li>
<li class="list-group-item">SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3</li>
<li class="list-group-item">SUSE Linux Enterprise Server 15 SP4</li>
<li class="list-group-item">SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4</li>
<li class="list-group-item">SUSE Linux Enterprise Server 15 SP5</li>
<li class="list-group-item">SUSE Linux Enterprise Server for SAP Applications 15 SP3</li>
<li class="list-group-item">SUSE Linux Enterprise Server for SAP Applications 15 SP4</li>
<li class="list-group-item">SUSE Linux Enterprise Server for SAP Applications 15 SP5</li>
<li class="list-group-item">SUSE Manager Proxy 4.3</li>
<li class="list-group-item">SUSE Manager Retail Branch Server 4.3</li>
<li class="list-group-item">SUSE Manager Server 4.3</li>
</ul>
</td>
</tr>
</tbody>
</table>
<p>An update that has two security fixes can now be installed.</p>
<h2>Description:</h2>
<p>This update for skopeo fixes the following issues:</p>
<ul>
<li>Update to version 1.14.2:</li>
<li>[release-1.14] Bump Skopeo to v1.14.2</li>
<li>
<p>[release-1.14] Bump c/image to v5.29.2, c/common to v0.57.3 (fixes bsc#1219563)</p>
</li>
<li>
<p>Update to version 1.14.1:</p>
</li>
<li>Bump to v1.14.1</li>
<li>fix(deps): update module github.com/containers/common to v0.57.2</li>
<li>fix(deps): update module github.com/containers/image/v5 to v5.29.1</li>
<li>chore(deps): update dependency containers/automation_images to v20240102</li>
<li>Fix libsubid detection</li>
<li>fix(deps): update module golang.org/x/term to v0.16.0</li>
<li>fix(deps): update golang.org/x/exp digest to 02704c9</li>
<li>chore(deps): update dependency containers/automation_images to v20231208</li>
<li>[skip-ci] Update actions/stale action to v9</li>
<li>fix(deps): update module github.com/containers/common to v0.57.1</li>
<li>fix(deps): update golang.org/x/exp digest to 6522937</li>
<li>DOCS: add Gentoo in install.md</li>
<li>DOCS: Update to add Arch Linux in install.md</li>
<li>fix(deps): update module golang.org/x/term to v0.15.0</li>
<li>
<p>Bump to v1.14.1-dev</p>
</li>
<li>
<p>Update to version 1.14.0:</p>
</li>
<li>Bump to v1.14.0</li>
<li>fix(deps): update module github.com/containers/common to v0.57.0</li>
<li>chore(deps): update dependency containers/automation_images to v20231116</li>
<li>fix(deps): update module github.com/containers/image/v5 to v5.29.0</li>
<li>Add documentation and smoke tests for the new --compat-auth-file options</li>
<li>Update c/image and c/common to latest</li>
<li>fix(deps): update module github.com/containers/storage to v1.51.0</li>
<li>fix(deps): update module golang.org/x/term to v0.14.0</li>
<li>fix(deps): update module github.com/spf13/cobra to v1.8.0</li>
<li>[CI:DOCS] Update dependency golangci/golangci-lint to v1.55.2</li>
<li>[CI:DOCS] Update dependency golangci/golangci-lint to v1.55.1</li>
<li>fix(deps): update github.com/containers/common digest to 3e5caa0</li>
<li>chore(deps): update module google.golang.org/grpc to v1.57.1 [security]</li>
<li>fix(deps): update module github.com/containers/ocicrypt to v1.1.9</li>
<li>Update github.com/klauspost/compress to v1.17.2</li>
<li>chore(deps): update module github.com/docker/docker to v24.0.7+incompatible [security]</li>
<li>Fix ENTRYPOINT documentation, drop others.</li>
<li>Remove unused environment variables in Cirrus</li>
<li>[CI:DOCS] Update dependency golangci/golangci-lint to v1.55.0</li>
<li>chore(deps): update dependency containers/automation_images to v20231004</li>
<li>chore(deps): update module golang.org/x/net to v0.17.0 [security]</li>
<li>copy: Note support for <code>zstd:chunked</code></li>
<li>fix(deps): update module golang.org/x/term to v0.13.0</li>
<li>fix(deps): update module github.com/docker/distribution to v2.8.3+incompatible</li>
<li>fix(deps): update github.com/containers/common digest to 745eaa4</li>
<li>Packit: switch to @containers/packit-build team for copr failure notification comments</li>
<li>Packit: tag @lsm5 on copr build failures</li>
<li>vendor of containers/common</li>
<li>fix(deps): update module github.com/opencontainers/image-spec to v1.1.0-rc5</li>
<li>fix(deps): update module github.com/containers/common to v0.56.0</li>
<li>Cirrus: Remove multi-arch skopeo image builds</li>
<li>fix(deps): update module github.com/containers/image/v5 to v5.28.0</li>
<li>Increase the golangci-lint timeout</li>
<li>fix(deps): update module github.com/containers/storage to v1.50.2</li>
<li>fix(deps): update module github.com/containers/storage to v1.50.1</li>
<li>fix(deps): update golang.org/x/exp digest to 9212866</li>
<li>Fix a man page link</li>
<li>fix(deps): update github.com/containers/image/v5 digest to 58d5eb6</li>
<li>GHA: Closed issue/PR comment-lock test</li>
<li>fix(deps): update module github.com/containers/common to v0.55.4</li>
<li>fix(deps): update module github.com/containers/storage to v1.49.0</li>
<li>rpm: spdx compatible license field</li>
<li>chore(deps): update dependency golangci/golangci-lint to v1.54.2</li>
<li>chore(deps): update dependency containers/automation_images to v20230816</li>
<li>Packit: set eln target correctly</li>
<li>packit: Build PRs into default packit COPRs</li>
<li>DOCS: Update Go version requirement info</li>
<li>DOCS: Add information about the cross-build</li>
<li>fix(deps): update module github.com/containers/ocicrypt to v1.1.8</li>
<li>fix(deps): update module github.com/containers/common to v0.55.3</li>
<li>Update c/image after https://github.com/containers/image/pull/2070</li>
<li>chore(deps): update dependency golangci/golangci-lint to v1.54.1</li>
<li>chore(deps): update dependency containers/automation_images to v20230809</li>
<li>fix(deps): update golang.org/x/exp digest to 352e893</li>
<li>chore(deps): update dependency containers/automation_images to v20230807</li>
<li>Update to Go 1.19</li>
<li>fix(deps): update module golang.org/x/term to v0.11.0</li>
<li>Update c/image for golang.org/x/exp</li>
<li>RPM: define gobuild macro for rhel/centos stream</li>
<li>Fix handling the unexpected return value combination from IsRunningImageAllowed</li>
<li>Close the PolicyContext, as required by the API</li>
<li>Use globalOptions.getPolicyContext instead of an image-targeted SystemContext</li>
<li>Packit: remove pre-sync action</li>
<li>fix(deps): update module github.com/containers/common to v0.55.2</li>
<li>proxy: Change the imgid to uint64</li>
<li>[CI:BUILD] Packit: install golist before updating downstream spec</li>
<li>Update module golang.org/x/term to v0.10.0</li>
<li>Bump to v1.14.0-dev</li>
<li>
<p>Bump to v1.13.0</p>
</li>
<li>
<p>Bump go version to 1.21 (bsc#1215611)</p>
</li>
<li>
<p>Update to version 1.13.2:</p>
</li>
<li>[release-1.13] Bump to v1.13.2</li>
<li>[release-1.31] Bump c/common v0.55.3</li>
<li>Packit: remove pre-sync action</li>
<li>
<p>[release-1.13] Bump to v1.13.2-dev</p>
</li>
<li>
<p>Update to version 1.13.1:</p>
</li>
<li>[release-1.13] Bump to v1.13.1</li>
<li>[release-1.13] Bump c/common to v0.55.2</li>
<li>[release-1.13 backport] [CI:BUILD] Packit: install golist before updating downstream spec</li>
<li>
<p>[release-1.13] Bump to v1.13.1-dev</p>
</li>
<li>
<p>Update to version 1.13.0:</p>
</li>
<li>Bump to v1.13.0</li>
<li>proxy: Policy verification of OCI Image before pulling</li>
<li>Update module github.com/opencontainers/image-spec to v1.1.0-rc4</li>
<li>Update module github.com/containers/common to v0.55.1</li>
<li>Update module github.com/containers/common to v0.54.0</li>
<li>Update module github.com/containers/image/v5 to v5.26.0</li>
<li>[CI:BUILD] RPM: fix ELN builds</li>
<li>Update module github.com/containers/storage to v1.47.0</li>
<li>Packit: easier to read distro conditionals</li>
<li>Update dependency golangci/golangci-lint to v1.53.3</li>
<li>Help Renovate manage the golangci-lint version</li>
<li>Minor: Cleanup renovate configuration</li>
<li>Update dependency containers/automation_images to v20230614</li>
<li>Update module golang.org/x/term to v0.9.0</li>
<li>[CI:BUILD] Packit: add jobs for downstream Fedora package builds</li>
<li>Update module github.com/sirupsen/logrus to v1.9.3</li>
<li>Update dependency containers/automation_images to v20230601</li>
<li>Update golang.org/x/exp digest to 2e198f4</li>
<li>Update github.com/containers/image/v5 digest to e14c1c5</li>
<li>Update module github.com/stretchr/testify to v1.8.4</li>
<li>Update module github.com/stretchr/testify to v1.8.3</li>
<li>Update dependency containers/automation_images to v20230517</li>
<li>Update module github.com/sirupsen/logrus to v1.9.2</li>
<li>Update module github.com/docker/distribution to v2.8.2+incompatible</li>
<li>Trigger an update of the ostree_ext container image</li>
<li>Update c/image with https://github.com/containers/image/pull/1944</li>
<li>Update module github.com/containers/common to v0.53.0</li>
<li>Update module golang.org/x/term to v0.8.0</li>
<li>Update dependency containers/automation_images to v20230426</li>
<li>Update golang.org/x/exp digest to 47ecfdc</li>
<li>Emphasize the semantics of --preserve-digests a tiny bit</li>
<li>Improve the static build documentation a tiny bit</li>
<li>Bump to v1.12.1-dev</li>
</ul>
<h2>Patch Instructions:</h2>
<p>
To install this SUSE update use the SUSE recommended
installation methods like YaST online_update or "zypper patch".<br/>
Alternatively you can run the command listed for your product:
</p>
<ul class="list-group">
<li class="list-group-item">
openSUSE Leap 15.3
<br/>
<code>zypper in -t patch SUSE-2024-1497=1</code>
</li>
<li class="list-group-item">
openSUSE Leap 15.5
<br/>
<code>zypper in -t patch openSUSE-SLE-15.5-2024-1497=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise Micro 5.5
<br/>
<code>zypper in -t patch SUSE-SLE-Micro-5.5-2024-1497=1</code>
</li>
<li class="list-group-item">
Basesystem Module 15-SP5
<br/>
<code>zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-1497=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise High Performance Computing LTSS 15 SP3
<br/>
<code>zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-1497=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
<br/>
<code>zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-1497=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
<br/>
<code>zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-1497=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
<br/>
<code>zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-1497=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3
<br/>
<code>zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-1497=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
<br/>
<code>zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-1497=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise Server for SAP Applications 15 SP3
<br/>
<code>zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-1497=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise Server for SAP Applications 15 SP4
<br/>
<code>zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-1497=1</code>
</li>
<li class="list-group-item">
SUSE Manager Proxy 4.3
<br/>
<code>zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-1497=1</code>
</li>
<li class="list-group-item">
SUSE Manager Retail Branch Server 4.3
<br/>
<code>zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.3-2024-1497=1</code>
</li>
<li class="list-group-item">
SUSE Manager Server 4.3
<br/>
<code>zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-1497=1</code>
</li>
<li class="list-group-item">
SUSE Enterprise Storage 7.1
<br/>
<code>zypper in -t patch SUSE-Storage-7.1-2024-1497=1</code>
</li>
</ul>
<h2>Package List:</h2>
<ul>
<li>
openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 i586)
<ul>
<li>skopeo-debuginfo-1.14.2-150300.11.8.1</li>
<li>skopeo-1.14.2-150300.11.8.1</li>
</ul>
</li>
<li>
openSUSE Leap 15.3 (noarch)
<ul>
<li>skopeo-zsh-completion-1.14.2-150300.11.8.1</li>
<li>skopeo-bash-completion-1.14.2-150300.11.8.1</li>
<li>skopeo-fish-completion-1.14.2-150300.11.8.1</li>
</ul>
</li>
<li>
openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64)
<ul>
<li>skopeo-debuginfo-1.14.2-150300.11.8.1</li>
<li>skopeo-1.14.2-150300.11.8.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Micro 5.5 (aarch64 s390x x86_64)
<ul>
<li>skopeo-debuginfo-1.14.2-150300.11.8.1</li>
<li>skopeo-1.14.2-150300.11.8.1</li>
</ul>
</li>
<li>
Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64)
<ul>
<li>skopeo-debuginfo-1.14.2-150300.11.8.1</li>
<li>skopeo-1.14.2-150300.11.8.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64)
<ul>
<li>skopeo-debuginfo-1.14.2-150300.11.8.1</li>
<li>skopeo-1.14.2-150300.11.8.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64)
<ul>
<li>skopeo-debuginfo-1.14.2-150300.11.8.1</li>
<li>skopeo-1.14.2-150300.11.8.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64)
<ul>
<li>skopeo-debuginfo-1.14.2-150300.11.8.1</li>
<li>skopeo-1.14.2-150300.11.8.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64)
<ul>
<li>skopeo-debuginfo-1.14.2-150300.11.8.1</li>
<li>skopeo-1.14.2-150300.11.8.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x x86_64)
<ul>
<li>skopeo-debuginfo-1.14.2-150300.11.8.1</li>
<li>skopeo-1.14.2-150300.11.8.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x x86_64)
<ul>
<li>skopeo-debuginfo-1.14.2-150300.11.8.1</li>
<li>skopeo-1.14.2-150300.11.8.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64)
<ul>
<li>skopeo-debuginfo-1.14.2-150300.11.8.1</li>
<li>skopeo-1.14.2-150300.11.8.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64)
<ul>
<li>skopeo-debuginfo-1.14.2-150300.11.8.1</li>
<li>skopeo-1.14.2-150300.11.8.1</li>
</ul>
</li>
<li>
SUSE Manager Proxy 4.3 (x86_64)
<ul>
<li>skopeo-debuginfo-1.14.2-150300.11.8.1</li>
<li>skopeo-1.14.2-150300.11.8.1</li>
</ul>
</li>
<li>
SUSE Manager Retail Branch Server 4.3 (x86_64)
<ul>
<li>skopeo-debuginfo-1.14.2-150300.11.8.1</li>
<li>skopeo-1.14.2-150300.11.8.1</li>
</ul>
</li>
<li>
SUSE Manager Server 4.3 (ppc64le s390x x86_64)
<ul>
<li>skopeo-debuginfo-1.14.2-150300.11.8.1</li>
<li>skopeo-1.14.2-150300.11.8.1</li>
</ul>
</li>
<li>
SUSE Enterprise Storage 7.1 (aarch64 x86_64)
<ul>
<li>skopeo-debuginfo-1.14.2-150300.11.8.1</li>
<li>skopeo-1.14.2-150300.11.8.1</li>
</ul>
</li>
</ul>
<h2>References:</h2>
<ul>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1215611">https://bugzilla.suse.com/show_bug.cgi?id=1215611</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1219563">https://bugzilla.suse.com/show_bug.cgi?id=1219563</a>
</li>
</ul>
</div>