Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 538
Alerts This Week
Warning Icon 1 538

SUSE: 2023:2218-1 Moderate: Container Update for suse/sle15-sp4

suse
Calendar Grey July 5, 2023
Dist Suse Esm H88
SUSE Container Update Bulletin for suse/sle15 delivers critical security fixes and enhancements that address multiple concerns.
The container suse/sle15 was updated

Summary

Advisory ID: SUSE-RU-2023:2742-1 Released: Fri Jun 30 11:40:56 2023 Summary: Recommended update for autoyast2, libzypp, yast2-pkg-bindings, yast2-update, zypper Type: recommended Severity: moderate Advisory ID: SUSE-SU-2023:2765-1 Released: Mon Jul 3 20:28:14 2023 Summary: Security update for libcap Type: security Severity: moderate Advisory ID: SUSE-RU-2023:2772-1 Released: Tue Jul 4 09:54:23 2023

References

References : 1202234 1209565 1211261 1211261 1211418 1211419 1212187 1212187

1212222 1212222 CVE-2023-2602 CVE-2023-2603

1202234,1209565,1211261,1212187,1212222

This update for yast2-pkg-bindings fixes the following issues:

libzypp was updated to version 17.31.14 (22):

- Curl: trim all custom headers (bsc#1212187)

HTTP/2 RFC 9113 forbids fields ending with a space. So we make

sure all custom headers are trimmed. This also includes headers returned by URL-Resolver plugins.

- build: honor libproxy.pc's includedir (bsc#1212222)

zypper was updated to version 1.14.61:

- targetos: Add an error note if XPath:/product/register/target

is not defined in /etc/products.d/baseproduct (bsc#1211261)

- targetos: Update help and man page (bsc#1211261)

yast2-pkg-bindings, autoyast:

Container Advisory ID : SUSE-CU-2023:2216-1
Container Tags : bci/bci-base:15.4 , bci/bci-base:15.4.27.14.75 , suse/sle15:15.4 , suse/sle15:15.4.27.14.75
Container Release : 27.14.75
Severity : moderate
Type : security

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.