Alerts This Week
Warning Icon 1 916
Alerts This Week
Warning Icon 1 916

SUSE: 2017:2800-1 Critical: SLES 12-SP2 Docker Image Vulnerability Patch

suse
Calendar Grey October 11, 2017
Dist Suse Esm H88
New security patch issued for SLES 12-SP1 Docker container, addressing 143 vulnerabilities with critical enhancements provided.
An update that fixes 143 vulnerabilities is now available

Summary

The SUSE Linux Enterprise Server 12 SP1 container image has been updated to include security and stability fixes. The following issues related to building of the container images have been fixed: - Included krb5 package to avoid the inclusion of krb5-mini which gets selected as a dependency by the Build Service solver. (bsc#1056193) - Do not install recommended packages when building container images. (bsc#975726) A number of security issues that have been already fixed by updates released for SUSE Linux Enterprise Server 12 SP1 are now included in the base image. A package/CVE cross-reference is available below. pam: - CVE-2015-3238 libtasn1: - CVE-2015-3622 - CVE-2016-4008 expat: expat: - CVE-2012-6702 - CVE-2015-1283 - CVE-2016-0718 - CVE-2016-5300 - CVE-2016-9063 - CVE-2017-9233 libidn: - CVE-2015-2059

Topics%20covered

Topics Covered

security advisory security issue update important SUSE docker image containers

References

#1056193 #975726

Cross- CVE-2012-6702 CVE-2014-0191 CVE-2014-6271

CVE-2014-6277 CVE-2014-6278 CVE-2014-7169

CVE-2014-7187 CVE-2014-7824 CVE-2014-8964

CVE-2014-9770 CVE-2015-0245 CVE-2015-0860

CVE-2015-1283 CVE-2015-2059 CVE-2015-2325

CVE-2015-2327 CVE-2015-2328 CVE-2015-3210

CVE-2015-3217 CVE-2015-3238 CVE-2015-3622

CVE-2015-5073 CVE-2015-5276 CVE-2015-7511

CVE-2015-8380 CVE-2015-8381 CVE-2015-8382

CVE-2015-8383 CVE-2015-8384 CVE-2015-8385

CVE-2015-8386 CVE-2015-8387 CVE-2015-8388

CVE-2015-8389 CVE-2015-8390 CVE-2015-8391

CVE-2015-8392 CVE-2015-8393 CVE-2015-8394

CVE-2015-8395 CVE-2015-8806 CVE-2015-8842

CVE-2015-8853 CVE-2015-8948 CVE-2016-0634

CVE-2016-0718 CVE-2016-0787 CVE-2016-1234

...

Read the Full Advisory

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2017:2700-1
Rating: important

Topics%20covered

Topics Covered

security advisory security issue update important SUSE docker image containers

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here