SUSE: 2022:599-1 suse/sles12sp5 Security Update | LinuxSecurity.com
SUSE Container Update Advisory: suse/sles12sp5
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2022:599-1
Container Tags        : suse/sles12sp5:6.5.315 , suse/sles12sp5:latest
Container Release     : 6.5.315
Severity              : important
Type                  : security
References            : 1180225 1190984 1191502 1193841 1195529 1195899 1198062 CVE-2022-1271
-----------------------------------------------------------------

The container suse/sles12sp5 was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2022:1160-1
Released:    Tue Apr 12 14:49:18 2022
Summary:     Security update for xz
Type:        security
Severity:    important
References:  1198062,CVE-2022-1271
This update for xz fixes the following issues:

- CVE-2022-1271: Fixed an incorrect escaping of malicious filenames (ZDI-CAN-16587). (bsc#1198062)

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2022:1169-1
Released:    Tue Apr 12 18:19:42 2022
Summary:     Recommended update for systemd
Type:        recommended
Severity:    moderate
References:  1180225,1190984,1191502,1193841,1195529,1195899
This update for systemd fixes the following issues:

- Core: make sure we always free the list of changes
- Install: correctly report symlink creations
- Core: make sure we generate a nicer error when a linked unit is attempted to be enabled
- Install: unify checking whether operations may be applied to a unit file in a new function
- Install: fix errno handling
- Allow 'edit' and 'cat' on unloaded units
- Don't open /var journals in volatile mode when runtime_journal==NULL
- udev: handle duplicate device ID (bsc#1195529)
- man: tweak description of auto/noauto (bsc#1191502)
- systemd-coredump: allow setting external core size to infinity (bsc#1195899 jsc#SLE-23869 jsc#SLE-23871)
- systemctl: exit with 1 if no unit files found (bsc#1193841)
- umount: show correct error message
- core/umount: fix unitialized fields in MountPoint
- umount: Add more asserts and remove some unused arguments, fix memory leak
- mount-util: fix fd_is_mount_point() when both the parent and directory are network fs (bsc#1190984)
- busctl: add a timestamp to the output of the busctl monitor command (bsc#1180225 jsc#SLE-21861)


The following package changes have been done:

- liblzma5-5.0.5-6.7.1 updated
- libsystemd0-228-157.38.4 updated
- libudev1-228-157.38.4 updated

SUSE: 2022:599-1 suse/sles12sp5 Security Update

April 14, 2022
The container suse/sles12sp5 was updated

Summary

Advisory ID: SUSE-SU-2022:1160-1 Released: Tue Apr 12 14:49:18 2022 Summary: Security update for xz Type: security Severity: important Advisory ID: SUSE-RU-2022:1169-1 Released: Tue Apr 12 18:19:42 2022 Summary: Recommended update for systemd Type: recommended Severity: moderate

References

References : 1180225 1190984 1191502 1193841 1195529 1195899 1198062 CVE-2022-1271

1198062,CVE-2022-1271

This update for xz fixes the following issues:

- CVE-2022-1271: Fixed an incorrect escaping of malicious filenames (ZDI-CAN-16587). (bsc#1198062)

1180225,1190984,1191502,1193841,1195529,1195899

This update for systemd fixes the following issues:

- Core: make sure we always free the list of changes

- Install: correctly report symlink creations

- Core: make sure we generate a nicer error when a linked unit is attempted to be enabled

- Install: unify checking whether operations may be applied to a unit file in a new function

- Install: fix errno handling

- Allow 'edit' and 'cat' on unloaded units

- Don't open /var journals in volatile mode when runtime_journal==NULL

- udev: handle duplicate device ID (bsc#1195529)

- man: tweak description of auto/noauto (bsc#1191502)

- systemd-coredump: allow setting external core size to infinity (bsc#1195899 jsc#SLE-23869 jsc#SLE-23871)

- systemctl: exit with 1 if no unit files found (bsc#1193841)

- umount: show correct error message

- core/umount: fix unitialized fields in MountPoint

- umount: Add more asserts and remove some unused arguments, fix memory leak

- mount-util: fix fd_is_mount_point() when both the parent and directory are network fs (bsc#1190984)

- busctl: add a timestamp to the output of the busctl monitor command (bsc#1180225 jsc#SLE-21861)

The following package changes have been done:

- liblzma5-5.0.5-6.7.1 updated

- libsystemd0-228-157.38.4 updated

- libudev1-228-157.38.4 updated

Severity
Container Advisory ID : SUSE-CU-2022:599-1
Container Tags : suse/sles12sp5:6.5.315 , suse/sles12sp5:latest
Container Release : 6.5.315
Severity : important
Type : security

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.