Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 573
Alerts This Week
Warning Icon 1 573

SUSE: 2022:2316-2 Critical: bci/php Vulnerability Fix Notification

suse
Calendar Grey September 21, 2022
Dist Suse Esm H88
The SUSE Container Advisory for bci/ruby features essential updates that rectify significant vulnerabilities and mitigate security risks.
The container bci/python was updated

Summary

Advisory ID: SUSE-SU-2022:3271-1 Released: Wed Sep 14 06:45:39 2022 Summary: Security update for perl Type: security Severity: moderate Advisory ID: SUSE-SU-2022:3305-1 Released: Mon Sep 19 11:45:57 2022 Summary: Security update for libtirpc Type: security Severity: important Advisory ID: SUSE-SU-2022:3307-1 Released: Mon Sep 19 13:26:51 2022 Summary: Security update for sqlite3 Type: security

References

References : 1047178 1189802 1195773 1201680 1201783 CVE-2017-6512 CVE-2021-36690

CVE-2021-46828 CVE-2022-35737

1047178,CVE-2017-6512

This update for perl fixes the following issues:

- CVE-2017-6512: Fixed File::Path rmtree/remove_tree race condition (bsc#1047178).

1201680,CVE-2021-46828

This update for libtirpc fixes the following issues:

- CVE-2021-46828: Fixed denial of service vulnerability with lots of connections (bsc#1201680).

1189802,1195773,1201783,CVE-2021-36690,CVE-2022-35737

This update for sqlite3 fixes the following issues:

- CVE-2022-35737: Fixed an array-bounds overflow if billions of bytes are used in a string argument to a C API (bnc#1201783).

- CVE-2021-36690: Fixed an issue with the SQLite Expert extension when a column has no collating sequence (bsc#1189802).

Severity
important
Lowest
Low
Medium
High
Critical

Container Advisory ID : SUSE-CU-2022:2316-1
Container Tags : bci/python:3 , bci/python:3.6 , bci/python:3.6-28.31
Container Release : 28.31
Severity : important
Type : security

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.