SUSE: 2023:2817-1 suse/sles12sp5 Security Update
Summary
Advisory ID: SUSE-SU-2023:3398-1 Released: Wed Aug 23 18:48:55 2023 Summary: Security update for krb5 Type: security Severity: important Advisory ID: SUSE-SU-2023:3405-1 Released: Wed Aug 23 19:17:49 2023 Summary: Security update for ca-certificates-mozilla Type: security Severity: important Advisory ID: SUSE-SU-2023:3471-1 Released: Tue Aug 29 10:53:48 2023 Summary: Security update for procps Type: security Severity: low
References
References : 1214054 1214248 1214290 CVE-2023-36054 CVE-2023-4016
1214054,CVE-2023-36054
This update for krb5 fixes the following issues:
- CVE-2023-36054: Fixed a DoS that could be triggered by an authenticated remote user. (bsc#1214054)
1214248
This update for ca-certificates-mozilla fixes the following issues:
- Updated to 2.62 state of Mozilla SSL root CAs (bsc#1214248)
Added:
- Atos TrustedRoot Root CA ECC G2 2020
- Atos TrustedRoot Root CA ECC TLS 2021
- Atos TrustedRoot Root CA RSA G2 2020
- Atos TrustedRoot Root CA RSA TLS 2021
- BJCA Global Root CA1
- BJCA Global Root CA2
- LAWtrust Root CA2 (4096)
- Sectigo Public Email Protection Root E46
- Sectigo Public Email Protection Root R46
- Sectigo Public Server Authentication Root E46
- Sectigo Public Server Authentication Root R46
- SSL.com Client ECC Root CA 2022
- SSL.com Client RSA Root CA 2022
- SSL.com TLS ECC Root CA 2022
- SSL.com TLS RSA Root CA 2022
Removed CAs:
- Chambers of Commerce Root
- E-Tugra Certification Authority
- E-Tugra Global Root CA ECC v3
- E-Tugra Global Root CA RSA v3
- Hongkong Post Root CA 1
1214290,CVE-2023-4016
This update for procps fixes the following issues:
- CVE-2023-4016: Fixed ps buffer overflow (bsc#1214290).
The following package changes have been done:
- ca-certificates-mozilla-2.62-12.43.1 updated
- krb5-1.12.5-40.52.1 updated
- libprocps3-3.3.9-11.27.1 updated
- procps-3.3.9-11.27.1 updated
