SUSE: 2022:2423-1 bci/rust Security Update
Summary
Advisory ID: SUSE-SU-2022:3451-1 Released: Wed Sep 28 09:44:15 2022 Summary: Security update for rust1.62 Type: security Severity: moderate Advisory ID: SUSE-RU-2022:3452-1 Released: Wed Sep 28 12:13:43 2022 Summary: Recommended update for glibc Type: recommended Severity: moderate
References
References : 1201942 1203431 1203433 CVE-2022-36113 CVE-2022-36114
1203431,1203433,CVE-2022-36113,CVE-2022-36114
This update for rust1.62 fixes the following issues:
- CVE-2022-36113: Fixed symlink hijack vulnerability (bsc#1203433).
- CVE-2022-36114: Fixed zip bomb vulnerability (bsc#1203431).
1201942
This update for glibc fixes the following issues:
- Reversing calculation of __x86_shared_non_temporal_threshold (bsc#1201942)
- powerpc: Optimized memcmp for power10 (jsc#PED-987)
The following package changes have been done:
- glibc-2.31-150300.41.1 updated
- glibc-devel-2.31-150300.41.1 updated
- rust1.62-1.62.1-150300.7.7.1 updated
- cargo1.62-1.62.1-150300.7.7.1 updated
- container:sles15-image-15.0.0-27.11.28 updated