Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

SUSE Container Update: Security Advisory for Curl and Sqlite3

suse
Calendar Grey December 29, 2022
Dist Suse Esm H88
Security patch available for SUSE Containers: enhancements for wget and postgresql address moderate vulnerabilities with key improvements.

Summary

Advisory ID: SUSE-SU-2022:4628-1 Released: Wed Dec 28 09:23:13 2022 Summary: Security update for sqlite3 Type: security Severity: moderate Advisory ID: SUSE-SU-2022:4633-1 Released: Wed Dec 28 09:32:15 2022 Summary: Security update for curl Type: security Severity: moderate

Topics%20covered

Topics Covered

security advisory moderate severity suse curl sqlite3

References

References : 1206309 1206337 CVE-2022-43552 CVE-2022-46908

1206337,CVE-2022-46908

This update for sqlite3 fixes the following issues:

- CVE-2022-46908: Properly implement the azProhibitedFunctions protection mechanism,

when relying on --safe for execution of an untrusted CLI script (bsc#1206337).

1206309,CVE-2022-43552

This update for curl fixes the following issues:

- CVE-2022-43552: HTTP Proxy deny use-after-free (bsc#1206309).

The following package changes have been done:

- libcurl4-7.66.0-150200.4.45.1 updated

- libsqlite3-0-3.39.3-150000.3.20.1 updated

Container Advisory ID : SUSE-CU-2022:3474-1
Container Tags : suse/sle15:15.2 , suse/sle15:15.2.9.5.248
Container Release : 9.5.248
Severity : moderate
Type : security

Topics%20covered

Topics Covered

security advisory moderate severity suse curl sqlite3

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here