SUSE 2022:892-1 Important Command Injection Fix for bci/golang Container
suse
May 6, 2022
The container bci/golang was updated
Summary
Advisory ID: SUSE-SU-2022:1484-1 Released: Mon May 2 16:47:10 2022 Summary: Security update for git Type: security Severity: important
Topics Covered
References
References : 1181400 1198234 CVE-2022-24765
1181400,1198234,CVE-2022-24765
This update for git fixes the following issues:
- Updated to version 2.35.3:
- CVE-2022-24765: Fixed a potential command injection via git worktree (bsc#1198234).
The following package changes have been done:
- git-core-2.35.3-150300.10.12.1 updated
- boost-license1_66_0-1.66.0-12.3.1 removed
- gpg2-2.2.27-1.2 removed
- libassuan0-2.5.1-2.14 removed
- libaugeas0-1.10.1-3.9.1 removed
- libboost_system1_66_0-1.66.0-12.3.1 removed
- libboost_thread1_66_0-1.66.0-12.3.1 removed
- libglib-2_0-0-2.62.6-150200.3.9.1 removed
- libgpgme11-1.13.1-4.3.1 removed
- libksba8-1.3.5-2.14 removed
- libmodman1-2.0.1-1.27 removed
- libnpth0-1.5-2.11 removed
- libprocps7-3.3.15-7.22.1 removed
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Container Advisory ID : SUSE-CU-2022:892-1
Container Tags : bci/golang:1.16 , bci/golang:1.16-16.5
Container Release : 16.5
Severity : important
Type : security
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!