SUSE: 2022:2636-1 suse/sle15 Security Update | LinuxSecurity.com

What Are You Looking For?

Popular Tags

Contribute
SUSE Container Update Advisory: suse/sle15
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2022:2636-1
Container Tags        : bci/bci-base:15.4 , bci/bci-base:15.4.27.14.5 , suse/sle15:15.4 , suse/sle15:15.4.27.14.5
Container Release     : 27.14.5
Severity              : critical
Type                  : security
References            : 1204357 1204366 1204367 CVE-2022-3515 CVE-2022-40303 CVE-2022-40304
-----------------------------------------------------------------

The container suse/sle15 was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2022:3683-1
Released:    Fri Oct 21 11:48:39 2022
Summary:     Security update for libksba
Type:        security
Severity:    critical
References:  1204357,CVE-2022-3515
This update for libksba fixes the following issues:

  - CVE-2022-3515: Fixed a possible overflow in the TLV parser (bsc#1204357).

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2022:3692-1
Released:    Fri Oct 21 16:15:07 2022
Summary:     Security update for libxml2
Type:        security
Severity:    important
References:  1204366,1204367,CVE-2022-40303,CVE-2022-40304
This update for libxml2 fixes the following issues:

  - CVE-2022-40303: Fixed integer overflows with XML_PARSE_HUGE (bsc#1204366).
  - CVE-2022-40304: Fixed dict corruption caused by entity reference cycles (bsc#1204367).


The following package changes have been done:

- libksba8-1.3.5-150000.4.3.1 updated
- libxml2-2-2.9.14-150400.5.10.1 updated

SUSE: 2022:2636-1 suse/sle15 Security Update

October 22, 2022
The container suse/sle15 was updated

Summary

Advisory ID: SUSE-SU-2022:3683-1 Released: Fri Oct 21 11:48:39 2022 Summary: Security update for libksba Type: security Severity: critical Advisory ID: SUSE-SU-2022:3692-1 Released: Fri Oct 21 16:15:07 2022 Summary: Security update for libxml2 Type: security Severity: important

References

References : 1204357 1204366 1204367 CVE-2022-3515 CVE-2022-40303 CVE-2022-40304

1204357,CVE-2022-3515

This update for libksba fixes the following issues:

- CVE-2022-3515: Fixed a possible overflow in the TLV parser (bsc#1204357).

1204366,1204367,CVE-2022-40303,CVE-2022-40304

This update for libxml2 fixes the following issues:

- CVE-2022-40303: Fixed integer overflows with XML_PARSE_HUGE (bsc#1204366).

- CVE-2022-40304: Fixed dict corruption caused by entity reference cycles (bsc#1204367).

The following package changes have been done:

- libksba8-1.3.5-150000.4.3.1 updated

- libxml2-2-2.9.14-150400.5.10.1 updated

Severity
Container Advisory ID : SUSE-CU-2022:2636-1
Container Tags : bci/bci-base:15.4 , bci/bci-base:15.4.27.14.5 , suse/sle15:15.4 , suse/sle15:15.4.27.14.5
Container Release : 27.14.5
Severity : critical
Type : security

Related News

Tails 5.11 Amnesic Incognito Live System Switches to ZRam and Linux Kernel 6.1 LTS

Iron Tiger Hackers Create Linux Version of Their Custom Malware

Linux Support Expands Cyber Spy Group's Arsenal

The Open Source Firewall – IPFire 2.27 – Core Update 173 Released: What’s New?

News

Advisories

HOWTOs

Features

Best Linux Backup Solutions to Prevent Data Loss in A Ransomware Attack
ManageEngine Vulnerability Manager Plus: How To Protect Your Enterprise from Security Vulnerabilities
High-Impact DoS, Arbitrary Code Execution, Spoofing Bugs Fixed in Thunderbird 102.9.0
A Guide to Business Cybersecurity: Common Digital Attacks and Precautions
New Linux IceFire Ransomware Variant Discovered: What You Need to Know to Secure Your Systems

About Us

Powered By

Footer Logo

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy. 

Learn More About Our Cookie Policy