SUSE: 2022:2711-1 suse/sles12sp4 Security Update | LinuxSecurity.com

What Are You Looking For?

Popular Tags

Sign Up
SUSE Container Update Advisory: suse/sles12sp4
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2022:2711-1
Container Tags        : suse/sles12sp4:26.518 , suse/sles12sp4:latest
Container Release     : 26.518
Severity              : important
Type                  : security
References            : 1201978 1204366 1204367 CVE-2016-3709 CVE-2022-40303 CVE-2022-40304
-----------------------------------------------------------------

The container suse/sles12sp4 was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2022:3717-1
Released:    Tue Oct 25 10:17:36 2022
Summary:     Security update for libxml2
Type:        security
Severity:    important
References:  1201978,1204366,1204367,CVE-2016-3709,CVE-2022-40303,CVE-2022-40304
This update for libxml2 fixes the following issues:

  - CVE-2016-3709: Fixed possible XSS vulnerability (bsc#1201978).    
  - CVE-2022-40303: Fixed integer overflows with XML_PARSE_HUGE (bsc#1204366).    
  - CVE-2022-40304: Fixed dict corruption caused by entity reference cycles (bsc#1204367).


The following package changes have been done:

- base-container-licenses-3.0-1.320 updated
- container-suseconnect-2.0.0-1.206 updated
- libxml2-2-2.9.4-46.59.2 updated

SUSE: 2022:2711-1 suse/sles12sp4 Security Update

October 26, 2022
The container suse/sles12sp4 was updated

Summary

Advisory ID: SUSE-SU-2022:3717-1 Released: Tue Oct 25 10:17:36 2022 Summary: Security update for libxml2 Type: security Severity: important

References

References : 1201978 1204366 1204367 CVE-2016-3709 CVE-2022-40303 CVE-2022-40304

1201978,1204366,1204367,CVE-2016-3709,CVE-2022-40303,CVE-2022-40304

This update for libxml2 fixes the following issues:

- CVE-2016-3709: Fixed possible XSS vulnerability (bsc#1201978).

- CVE-2022-40303: Fixed integer overflows with XML_PARSE_HUGE (bsc#1204366).

- CVE-2022-40304: Fixed dict corruption caused by entity reference cycles (bsc#1204367).

The following package changes have been done:

- base-container-licenses-3.0-1.320 updated

- container-suseconnect-2.0.0-1.206 updated

- libxml2-2-2.9.4-46.59.2 updated

Severity
Container Advisory ID : SUSE-CU-2022:2711-1
Container Tags : suse/sles12sp4:26.518 , suse/sles12sp4:latest
Container Release : 26.518
Severity : important
Type : security

Related News

GitHub Publishes RSA SSH Host Keys by Mistake, Issues Update

Tails 5.11 Amnesic Incognito Live System Switches to ZRam and Linux Kernel 6.1 LTS

Iron Tiger Hackers Create Linux Version of Their Custom Malware

Linux Support Expands Cyber Spy Group's Arsenal

News

Advisories

HOWTOs

Features

Interview with Guardian Digital CEO Dave Wreski: Open Source Utilization in Email Security Solutions & More
Verifying Linux Server Security: What Every Admin Needs to Know
What Linux, Windows & Mac OS Users Need to Know About VPNs
Complete Guide to Vulnerability Basics
How To Get Live Updates on Critical Linux Security Advisories

About Us

Powered By

Footer Logo

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy. 

Learn More About Our Cookie Policy