SUSE: 2023:184-2 Critical: BCI/OpenJDK Security Enhancement
suse
January 21, 2023
The container bci/openjdk-devel was updated
Summary
Advisory ID: SUSE-SU-2023:110-1 Released: Fri Jan 20 10:18:16 2023 Summary: Security update for git Type: security Severity: important Advisory ID: SUSE-SU-2023:119-1 Released: Fri Jan 20 10:28:07 2023 Summary: Security update for mozilla-nss Type: security Severity: important
References
References : 1204272 1207032 1207033 1207038 CVE-2022-23491 CVE-2022-23521
CVE-2022-3479 CVE-2022-41903
1207032,1207033,CVE-2022-23521,CVE-2022-41903
This update for git fixes the following issues:
- CVE-2022-41903: Fixed a heap overflow in the 'git archive' and
'git log --format' commands (bsc#1207033).
- CVE-2022-23521: Fixed an integer overflow that could be triggered
when parsing a gitattributes file (bsc#1207032).
1204272,1207038,CVE-2022-23491,CVE-2022-3479
This update for mozilla-nss fixes the following issues:
- CVE-2022-3479: Fixed a potential crash that could be triggered when
a server requested a client authentication certificate, but the
client had no certificates stored (bsc#1204272).
- Updated to version 3.79.3 (bsc#1207038):
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Container Advisory ID : SUSE-CU-2023:183-1
Container Tags : bci/openjdk-devel:11 , bci/openjdk-devel:11-38.41
Container Release : 38.41
Severity : important
Type : security
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!