SUSE Container Update Advisory: suse/sles12sp4
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2022:596-1
Container Tags        : suse/sles12sp4:26.439 , suse/sles12sp4:latest
Container Release     : 26.439
Severity              : important
Type                  : security
References            : 1171962 1180225 1188018 1188063 1188291 1189480 1190984 1191399
                        1193841 1195899 1198062 CVE-2022-1271 
-----------------------------------------------------------------

The container suse/sles12sp4 was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2022:1160-1
Released:    Tue Apr 12 14:49:18 2022
Summary:     Security update for xz
Type:        security
Severity:    important
References:  1198062,CVE-2022-1271
This update for xz fixes the following issues:

- CVE-2022-1271: Fixed an incorrect escaping of malicious filenames (ZDI-CAN-16587). (bsc#1198062)

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2022:1171-1
Released:    Tue Apr 12 18:20:34 2022
Summary:     Recommended update for systemd
Type:        recommended
Severity:    moderate
References:  1171962,1180225,1188018,1188063,1188291,1189480,1190984,1191399,1193841,1195899
This update for systemd fixes the following issues:

- systemd-coredump: allow setting external core size to infinity (bsc#1195899 jsc#SLE-23869 jsc#SLE-23871)
- systemctl: exit with 1 if no unit files found (bsc#1193841)
- umount: show correct error message
- core/umount: fix unitialized fields in MountPoint in dm_list_get()
- umount: Add more asserts and remove some unused arguments, fix memory leak
- mount-util: fix fd_is_mount_point() when both the parent and directory are network fs (bsc#1190984)
- busctl: add a timestamp to the output of the busctl monitor command (bsc#1180225 jsc#SLE-21861)
- sysctl: configure kernel parameters in the order they occur in each sysctl configuration files (bsc#1191399)
- manager: reexecute on SIGRTMIN+25, user instances only
- logind: terminate cleanly on SIGTERM/SIGINT (bsc#1188018)
- units: make fsck/grows/makefs/makeswap units conflict against shutdown.target
- Make sure the versions of both udev and systemd packages are always the same (bsc#1189480)
- Avoid the error message when udev is updated due to udev being
  already active when the sockets are started again (bsc#1188291)
- Allow systemd sysusers config files to be overriden during system installation (bsc#1171962).
- While at it, add a comment to explain why we don't use
  %sysusers_create in %pre and why it should be safe in %post.


The following package changes have been done:

- base-container-licenses-3.0-1.278 updated
- container-suseconnect-2.0.0-1.169 updated
- liblzma5-5.0.5-6.7.1 updated
- libsystemd0-228-150.101.3 updated
- libudev1-228-150.101.3 updated

SUSE: 2022:596-1 suse/sles12sp4 Security Update

April 14, 2022
The container suse/sles12sp4 was updated

Summary

Advisory ID: SUSE-SU-2022:1160-1 Released: Tue Apr 12 14:49:18 2022 Summary: Security update for xz Type: security Severity: important Advisory ID: SUSE-RU-2022:1171-1 Released: Tue Apr 12 18:20:34 2022 Summary: Recommended update for systemd Type: recommended Severity: moderate

References

References : 1171962 1180225 1188018 1188063 1188291 1189480 1190984 1191399

1193841 1195899 1198062 CVE-2022-1271

1198062,CVE-2022-1271

This update for xz fixes the following issues:

- CVE-2022-1271: Fixed an incorrect escaping of malicious filenames (ZDI-CAN-16587). (bsc#1198062)

1171962,1180225,1188018,1188063,1188291,1189480,1190984,1191399,1193841,1195899

This update for systemd fixes the following issues:

- systemd-coredump: allow setting external core size to infinity (bsc#1195899 jsc#SLE-23869 jsc#SLE-23871)

- systemctl: exit with 1 if no unit files found (bsc#1193841)

- umount: show correct error message

- core/umount: fix unitialized fields in MountPoint in dm_list_get()

- umount: Add more asserts and remove some unused arguments, fix memory leak

- mount-util: fix fd_is_mount_point() when both the parent and directory are network fs (bsc#1190984)

- busctl: add a timestamp to the output of the busctl monitor command (bsc#1180225 jsc#SLE-21861)

- sysctl: configure kernel parameters in the order they occur in each sysctl configuration files (bsc#1191399)

- manager: reexecute on SIGRTMIN+25, user instances only

- logind: terminate cleanly on SIGTERM/SIGINT (bsc#1188018)

- units: make fsck/grows/makefs/makeswap units conflict against shutdown.target

- Make sure the versions of both udev and systemd packages are always the same (bsc#1189480)

- Avoid the error message when udev is updated due to udev being

already active when the sockets are started again (bsc#1188291)

- Allow systemd sysusers config files to be overriden during system installation (bsc#1171962).

- While at it, add a comment to explain why we don't use

%sysusers_create in %pre and why it should be safe in %post.

The following package changes have been done:

- base-container-licenses-3.0-1.278 updated

- container-suseconnect-2.0.0-1.169 updated

- liblzma5-5.0.5-6.7.1 updated

- libsystemd0-228-150.101.3 updated

- libudev1-228-150.101.3 updated

Severity
Container Advisory ID : SUSE-CU-2022:596-1
Container Tags : suse/sles12sp4:26.439 , suse/sles12sp4:latest
Container Release : 26.439
Severity : important
Type : security

Related News

19.Laptop Bed Esm H320
2 - 3 min read
AlmaLinux 9.4 beta has been released and provides compelling reasons to consider it for desktop usage. While AlmaLinux is primarily known as a
32.Lock Code Circular Esm H320
2 - 3 min read
Linux admins and security practitioners face significant challenges in keeping their Linux systems secure amidst the constant threat of kernel bugs.
1.Penguin Landscape Esm H320
2 - 3 min read
A significant security threat, known as the Spectre v2 exploit, has been observed targeting Linux systems running on modern Intel processors. Let's
10.FingerPrint Locks Esm H320
2 - 3 min read
The recent release of I2P 2.5.0 , an anonymous P2P network that protects against online censorship, surveillance, and monitoring, has brought a slew
24.Key Code Esm H320
2 - 3 min read
The Akira ransomware group has extorted approximately $42 million from over 250 victims since January 1, 2024. The group initially focused on
5.ShakingHands Esm H320
2 - 3 min read
At The Linux Foundation's Open Source Summit North America , Linus Torvalds, the creator of Linux, discussed various topics related to Linux
30.Lock Globe Motherboard Esm H320
1 - 2 min read
The SPDX 3.0 release marks a significant milestone in software management, particularly for Linux admins, infosec professionals, internet security
11.Locks IsometricPattern Esm H320
2 - 3 min read
Open Source maintainers and developers have been warned about the continued wave of attacks aimed at project maintainers similar to those recently
Sign Up

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved