SUSE: 2023:1534-1 Critical: bci/dotnet-runtime, curl, OpenSSL Issues
suse
July 7, 2022
The container bci/dotnet-runtime was updated
Summary
Advisory ID: SUSE-SU-2022:2305-1 Released: Wed Jul 6 13:38:42 2022 Summary: Security update for curl Type: security Severity: important Advisory ID: SUSE-SU-2022:2308-1 Released: Wed Jul 6 14:15:13 2022 Summary: Security update for openssl-1_1 Type: security Severity: important
Topics Covered
References
References : 1185637 1199166 1200550 1200734 1200735 1200736 1200737 1201099
CVE-2022-1292 CVE-2022-2068 CVE-2022-2097 CVE-2022-32205 CVE-2022-32206
CVE-2022-32207 CVE-2022-32208
1200734,1200735,1200736,1200737,CVE-2022-32205,CVE-2022-32206,CVE-2022-32207,CVE-2022-32208
This update for curl fixes the following issues:
- CVE-2022-32205: Set-Cookie denial of service (bsc#1200734)
- CVE-2022-32206: HTTP compression denial of service (bsc#1200735)
- CVE-2022-32207: Unpreserved file permissions (bsc#1200736)
- CVE-2022-32208: FTP-KRB bad message verification (bsc#1200737)
1185637,1199166,1200550,1201099,CVE-2022-1292,CVE-2022-2068,CVE-2022-2097
This update for openssl-1_1 fixes the following issues:
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Container Advisory ID : SUSE-CU-2022:1423-1
Container Tags : bci/dotnet-runtime:5.0 , bci/dotnet-runtime:5.0-10.9 , bci/dotnet-runtime:5.0.17 , bci/dotnet-runtime:5.0.17-10.9
Container Release : 10.9
Severity : important
Type : security
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!