Alerts This Week
Warning Icon 1 758
Alerts This Week
Warning Icon 1 758

SUSE: 2021:89-3 Critical: Security Patches for suse/sles15sp2

suse
Calendar Grey March 30, 2021
Dist Suse Esm H88
The security patch for SUSE/SLES12SP5 addresses urgent vulnerabilities, enhancing the nghttp2 service alongside zlib performance flaws.
The container suse/sles12sp5 was updated

Summary

Advisory ID: SUSE-RU-2021:796-1 Released: Tue Mar 16 10:28:14 2021 Summary: Recommended update for zlib Type: recommended Severity: moderate Advisory ID: SUSE-SU-2021:932-1 Released: Wed Mar 24 12:13:01 2021 Summary: Security update for nghttp2 Type: security Severity: important

References

References : 1082318 1088639 1112438 1125689 1134616 1146182 1146184 1176201

1181358 962914 964140 966514 CVE-2016-1544 CVE-2018-1000168 CVE-2019-9511

CVE-2019-9513 CVE-2020-11080

1176201

This update for zlib fixes the following issues:

- Fixed hw compression on z15 (bsc#1176201)

1082318,1088639,1112438,1125689,1134616,1146182,1146184,1181358,962914,964140,966514,CVE-2016-1544,CVE-2018-1000168,CVE-2019-9511,CVE-2019-9513,CVE-2020-11080

This update for nghttp2 fixes the following issues:

Security issues fixed:

- CVE-2020-11080: HTTP/2 Large Settings Frame DoS (bsc#1181358).

- CVE-2019-9513: Fixed HTTP/2 implementation that is vulnerable to resource loops, potentially leading to a denial of service (bsc#1146184).

Severity
important
Lowest
Low
Medium
High
Critical

Container Advisory ID : SUSE-CU-2021:84-1
Container Tags : suse/sles12sp5:6.5.151 , suse/sles12sp5:latest
Container Release : 6.5.151
Severity : important
Type : security

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here