Alerts This Week
Warning Icon 1 758
Alerts This Week
Warning Icon 1 758

SUSE: 2023:1653-1 Important: Curl Security Patch and Toolbox Update

suse
Calendar Grey May 25, 2023
Dist Suse Esm H88
SUSE Container Update Notification: suse/sle-micro/5.2/toolbox Security enhancements for wget and additional components introduce essential updates.
The container suse/sle-micro/5.2/toolbox was updated

Summary

Advisory ID: SUSE-SU-2023:2227-1 Released: Wed May 17 09:57:41 2023 Summary: Security update for curl Type: security Severity: important Advisory ID: SUSE-RU-2023:2237-1 Released: Wed May 17 17:10:07 2023 Summary: Recommended update for vim Type: recommended Severity: moderate Advisory ID: SUSE-RU-2023:2247-1 Released: Thu May 18 17:04:38 2023 Summary: Recommended update for libzypp, zypper

References

References : 1127591 1195633 1208329 1209406 1210870 1211144 1211231 1211232

1211233 1211339 CVE-2023-28320 CVE-2023-28321 CVE-2023-28322

1211231,1211232,1211233,1211339,CVE-2023-28320,CVE-2023-28321,CVE-2023-28322

This update for curl fixes the following issues:

- CVE-2023-28320: Fixed siglongjmp race condition (bsc#1211231).

- CVE-2023-28321: Fixed IDN wildcard matching (bsc#1211232).

- CVE-2023-28322: Fixed POST-after-PUT confusion (bsc#1211233).

1211144

This update for vim fixes the following issues:

* Make xxd conflict with the previous vim packages to avoid a file conflict during migration (bsc#1211144)

1127591,1195633,1208329,1209406,1210870

This update for libzypp, zypper fixes the following issues:

Severity
important
Lowest
Low
Medium
High
Critical

Container Advisory ID : SUSE-CU-2023:1653-1
Container Tags : suse/sle-micro/5.2/toolbox:12.1 , suse/sle-micro/5.2/toolbox:12.1-6.2.218 , suse/sle-micro/5.2/toolbox:latest
Container Release : 6.2.218
Severity : important
Type : security

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here