What Are You Looking For?

Popular Tags

Sign Up
SUSE Container Update Advisory: suse/sle-micro/5.3/toolbox
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2023:2190-1
Container Tags        : suse/sle-micro/5.3/toolbox:12.1 , suse/sle-micro/5.3/toolbox:12.1-5.2.159 , suse/sle-micro/5.3/toolbox:latest
Container Release     : 5.2.159
Severity              : moderate
Type                  : security
References            : 1201627 1207534 CVE-2022-4304 
-----------------------------------------------------------------

The container suse/sle-micro/5.3/toolbox was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2023:2648-1
Released:    Tue Jun 27 09:52:35 2023
Summary:     Security update for openssl-1_1
Type:        security
Severity:    moderate
References:  1201627,1207534,CVE-2022-4304
This update for openssl-1_1 fixes the following issues:

- CVE-2022-4304: Reworked the fix for the Timing-Oracle in RSA decryption.
  The previous fix for this timing side channel turned out to cause a
  severe 2-3x performance regression in the typical use case (bsc#1207534).

- Update further expiring certificates that affect the testsuite (bsc#1201627).


The following package changes have been done:

- libopenssl1_1-hmac-1.1.1l-150400.7.42.1 updated
- libopenssl1_1-1.1.1l-150400.7.42.1 updated
- openssl-1_1-1.1.1l-150400.7.42.1 updated
- container:sles15-image-15.0.0-27.14.72 updated

SUSE: 2023:2190-1 suse/sle-micro/5.3/toolbox Security Update

June 29, 2023
The container suse/sle-micro/5.3/toolbox was updated

Summary

Advisory ID: SUSE-SU-2023:2648-1 Released: Tue Jun 27 09:52:35 2023 Summary: Security update for openssl-1_1 Type: security Severity: moderate

References

References : 1201627 1207534 CVE-2022-4304

1201627,1207534,CVE-2022-4304

This update for openssl-1_1 fixes the following issues:

- CVE-2022-4304: Reworked the fix for the Timing-Oracle in RSA decryption.

The previous fix for this timing side channel turned out to cause a

severe 2-3x performance regression in the typical use case (bsc#1207534).

- Update further expiring certificates that affect the testsuite (bsc#1201627).

The following package changes have been done:

- libopenssl1_1-hmac-1.1.1l-150400.7.42.1 updated

- libopenssl1_1-1.1.1l-150400.7.42.1 updated

- openssl-1_1-1.1.1l-150400.7.42.1 updated

- container:sles15-image-15.0.0-27.14.72 updated

Severity
Container Advisory ID : SUSE-CU-2023:2190-1
Container Tags : suse/sle-micro/5.3/toolbox:12.1 , suse/sle-micro/5.3/toolbox:12.1-5.2.159 , suse/sle-micro/5.3/toolbox:latest
Container Release : 5.2.159
Severity : moderate
Type : security

Related News

Expanded Platform Support For AMD Dynamic Boost Control Being Worked On For Linux

Sep 9, 2023

Ubuntu Core as an Immutable Linux Desktop Base

Jun 6, 2023

Microsoft's CBL-Mariner 2.0 Linux Distribution Adds Clippy

Aug 4, 2023

Important runC Privilege Escalation Flaws Fixed

May 26, 2023

News

Advisories

HOWTOs

Features

The Unseen Potential of Wake-on-LAN
Linux Vulnerabilities: The Antidote to This Linux Security Poison
Preventing Linux DDoS Attacks with Minimal Cybersecurity Knowledge
Navigating Software Scalability: A Practical Guide to Building Scalable Systems with Linux
Unlocking the Secrets of Linux Security: An Expert Analysis

About Us

Powered By

Footer Logo

Feedback