SUSE: 2022:2047-1 suse/sles12sp5 Security Update | LinuxSecurity.com

What Are You Looking For?

Popular Tags

Contribute
SUSE Container Update Advisory: suse/sles12sp5
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2022:2047-1
Container Tags        : suse/sles12sp5:6.5.376 , suse/sles12sp5:latest
Container Release     : 6.5.376
Severity              : moderate
Type                  : security
References            : 1181994 1188006 1197178 1198731 1199079 1200842 1201929 1202593
                        1202868 CVE-2022-35252 
-----------------------------------------------------------------

The container suse/sles12sp5 was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2022:2981-1
Released:    Thu Sep  1 12:33:06 2022
Summary:     Recommended update for util-linux
Type:        recommended
Severity:    moderate
References:  1197178,1198731,1200842
This update for util-linux fixes the following issues:

- su: Change owner and mode for pty (bsc#1200842)
- agetty: Resolve tty name even if stdin is specified (bsc#1197178)
- libmount: When moving a mount point, update all sub mount entries in utab (bsc#1198731)
- mesg: use only stat() to get the current terminal status (bsc#1200842)

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2022:3005-1
Released:    Fri Sep  2 15:02:47 2022
Summary:     Security update for curl
Type:        security
Severity:    low
References:  1202593,CVE-2022-35252
This update for curl fixes the following issues:

- CVE-2022-35252: Fixed a potential injection of control characters
  into cookies, which could be exploited by sister sites to cause a
  denial of service (bsc#1202593).

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2022:3105-1
Released:    Tue Sep  6 10:57:34 2022
Summary:     Recommended update for keyutils
Type:        recommended
Severity:    moderate
References:  1201929
This update for keyutils fixes the following issues:

- Apply default TTL to DNS records from getaddrinfo() (bsc#1201929)

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2022:3112-1
Released:    Tue Sep  6 13:09:49 2022
Summary:     Recommended update for ca-certificates-mozilla
Type:        recommended
Severity:    moderate
References:  1181994,1188006,1199079,1202868
This update for ca-certificates-mozilla fixes the following issues:

Updated to 2.56 state of Mozilla SSL root CAs (bsc#1202868)

- Added:

  - Certainly Root E1
  - Certainly Root R1
  - DigiCert SMIME ECC P384 Root G5
  - DigiCert SMIME RSA4096 Root G5
  - DigiCert TLS ECC P384 Root G5
  - DigiCert TLS RSA4096 Root G5
  - E-Tugra Global Root CA ECC v3
  - E-Tugra Global Root CA RSA v3

- Removed:

  - Hellenic Academic and Research Institutions RootCA 2011

Updated to 2.54 state of Mozilla SSL root CAs (bsc#1199079)

- Added:

  - Autoridad de Certificacion Firmaprofesional CIF A62634068
  - D-TRUST BR Root CA 1 2020
  - D-TRUST EV Root CA 1 2020
  - GlobalSign ECC Root CA R4
  - GTS Root R1
  - GTS Root R2
  - GTS Root R3
  - GTS Root R4
  - HiPKI Root CA - G1
  - ISRG Root X2
  - Telia Root CA v2
  - vTrus ECC Root CA
  - vTrus Root CA

- Removed:

  - Cybertrust Global Root
  - DST Root CA X3
  - DigiNotar PKIoverheid CA Organisatie - G2
  - GlobalSign ECC Root CA R4
  - GlobalSign Root CA R2
  - GTS Root R1
  - GTS Root R2
  - GTS Root R3
  - GTS Root R4
  

Updated to 2.50 state of the Mozilla NSS Certificate store (bsc#1188006)

- Added CAs:

  - HARICA Client ECC Root CA 2021
  - HARICA Client RSA Root CA 2021
  - HARICA TLS ECC Root CA 2021
  - HARICA TLS RSA Root CA 2021
  - TunTrust Root CA


Updated to 2.46 state of the Mozilla NSS Certificate store (bsc#1181994)

- Added new root CAs:

  - NAVER Global Root Certification Authority

- Removed old root CAs:

  - GeoTrust Global CA
  - GeoTrust Primary Certification Authority
  - GeoTrust Primary Certification Authority - G3
  - GeoTrust Universal CA
  - GeoTrust Universal CA 2
  - thawte Primary Root CA
  - thawte Primary Root CA - G2
  - thawte Primary Root CA - G3
  - VeriSign Class 3 Public Primary Certification Authority - G4
  - VeriSign Class 3 Public Primary Certification Authority - G5

The following package changes have been done:

- ca-certificates-mozilla-2.56-12.37.1 updated
- libblkid1-2.33.2-4.21.1 updated
- libcurl4-7.60.0-11.46.1 updated
- libfdisk1-2.33.2-4.21.1 updated
- libkeyutils1-1.5.9-5.3.1 updated
- libmount1-2.33.2-4.21.1 updated
- libsmartcols1-2.33.2-4.21.1 updated
- libuuid1-2.33.2-4.21.1 updated
- util-linux-2.33.2-4.21.1 updated

SUSE: 2022:2047-1 suse/sles12sp5 Security Update

September 7, 2022
The container suse/sles12sp5 was updated

Summary

Advisory ID: SUSE-RU-2022:2981-1 Released: Thu Sep 1 12:33:06 2022 Summary: Recommended update for util-linux Type: recommended Severity: moderate Advisory ID: SUSE-SU-2022:3005-1 Released: Fri Sep 2 15:02:47 2022 Summary: Security update for curl Type: security Severity: low Advisory ID: SUSE-RU-2022:3105-1 Released: Tue Sep 6 10:57:34 2022 Summary: Recommended update for keyutils Type: recommended Severity: moderate Advisory ID: SUSE-RU-2022:3112-1 Released: Tue Sep 6 13:09:49 2022 Summary: Recommended update for ca-certificates-mozilla Type: recommended Severity: moderate

References

References : 1181994 1188006 1197178 1198731 1199079 1200842 1201929 1202593

1202868 CVE-2022-35252

1197178,1198731,1200842

This update for util-linux fixes the following issues:

- su: Change owner and mode for pty (bsc#1200842)

- agetty: Resolve tty name even if stdin is specified (bsc#1197178)

- libmount: When moving a mount point, update all sub mount entries in utab (bsc#1198731)

- mesg: use only stat() to get the current terminal status (bsc#1200842)

1202593,CVE-2022-35252

This update for curl fixes the following issues:

- CVE-2022-35252: Fixed a potential injection of control characters

into cookies, which could be exploited by sister sites to cause a

denial of service (bsc#1202593).

1201929

This update for keyutils fixes the following issues:

- Apply default TTL to DNS records from getaddrinfo() (bsc#1201929)

1181994,1188006,1199079,1202868

This update for ca-certificates-mozilla fixes the following issues:

Updated to 2.56 state of Mozilla SSL root CAs (bsc#1202868)

- Added:

- Certainly Root E1

- Certainly Root R1

- DigiCert SMIME ECC P384 Root G5

- DigiCert SMIME RSA4096 Root G5

- DigiCert TLS ECC P384 Root G5

- DigiCert TLS RSA4096 Root G5

- E-Tugra Global Root CA ECC v3

- E-Tugra Global Root CA RSA v3

- Removed:

- Hellenic Academic and Research Institutions RootCA 2011

Updated to 2.54 state of Mozilla SSL root CAs (bsc#1199079)

- Added:

- Autoridad de Certificacion Firmaprofesional CIF A62634068

- D-TRUST BR Root CA 1 2020

- D-TRUST EV Root CA 1 2020

- GlobalSign ECC Root CA R4

- GTS Root R1

- GTS Root R2

- GTS Root R3

- GTS Root R4

- HiPKI Root CA - G1

- ISRG Root X2

- Telia Root CA v2

- vTrus ECC Root CA

- vTrus Root CA

- Removed:

- Cybertrust Global Root

- DST Root CA X3

- DigiNotar PKIoverheid CA Organisatie - G2

- GlobalSign ECC Root CA R4

- GlobalSign Root CA R2

- GTS Root R1

- GTS Root R2

- GTS Root R3

- GTS Root R4

Updated to 2.50 state of the Mozilla NSS Certificate store (bsc#1188006)

- Added CAs:

- HARICA Client ECC Root CA 2021

- HARICA Client RSA Root CA 2021

- HARICA TLS ECC Root CA 2021

- HARICA TLS RSA Root CA 2021

- TunTrust Root CA

Updated to 2.46 state of the Mozilla NSS Certificate store (bsc#1181994)

- Added new root CAs:

- NAVER Global Root Certification Authority

- Removed old root CAs:

- GeoTrust Global CA

- GeoTrust Primary Certification Authority

- GeoTrust Primary Certification Authority - G3

- GeoTrust Universal CA

- GeoTrust Universal CA 2

- thawte Primary Root CA

- thawte Primary Root CA - G2

- thawte Primary Root CA - G3

- VeriSign Class 3 Public Primary Certification Authority - G4

- VeriSign Class 3 Public Primary Certification Authority - G5

The following package changes have been done:

- ca-certificates-mozilla-2.56-12.37.1 updated

- libblkid1-2.33.2-4.21.1 updated

- libcurl4-7.60.0-11.46.1 updated

- libfdisk1-2.33.2-4.21.1 updated

- libkeyutils1-1.5.9-5.3.1 updated

- libmount1-2.33.2-4.21.1 updated

- libsmartcols1-2.33.2-4.21.1 updated

- libuuid1-2.33.2-4.21.1 updated

- util-linux-2.33.2-4.21.1 updated

Severity
Container Advisory ID : SUSE-CU-2022:2047-1
Container Tags : suse/sles12sp5:6.5.376 , suse/sles12sp5:latest
Container Release : 6.5.376
Severity : moderate
Type : security

News

Advisories

HOWTOs

Features

Rocky Linux Security Advisories Are Now on LinuxSecurity.com!
Official Guide on Rocky Linux & How to Install It
Business VPNs: Now More Important Than Ever
Linux Log Analysis
Does Linux Need a Firewall & How To Configure the Linux Firewall with firewall-cmd

About Us

Powered By

Footer Logo

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy. 

Learn More About Our Cookie Policy