SUSE Container Update Advisory: suse/sle-micro/5.2/toolbox
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2023:293-1
Container Tags        : suse/sle-micro/5.2/toolbox:11.1 , suse/sle-micro/5.2/toolbox:11.1-6.2.170 , suse/sle-micro/5.2/toolbox:latest
Container Release     : 6.2.170
Severity              : moderate
Type                  : security
References            : 1206866 1206867 1206868 1207162 1207396 CVE-2023-0049 CVE-2023-0051
                        CVE-2023-0054 CVE-2023-0288 CVE-2023-0433 
-----------------------------------------------------------------

The container suse/sle-micro/5.2/toolbox was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2023:211-1
Released:    Mon Jan 30 17:26:10 2023
Summary:     Security update for vim
Type:        security
Severity:    moderate
References:  1206866,1206867,1206868,1207162,1207396,CVE-2023-0049,CVE-2023-0051,CVE-2023-0054,CVE-2023-0288,CVE-2023-0433
This update for vim fixes the following issues:

- Updated to version 9.0.1234:
  - CVE-2023-0433: Fixed an out of bounds memory access that could
    cause a crash (bsc#1207396).
  - CVE-2023-0288: Fixed an out of bounds memory access that could
    cause a crash (bsc#1207162).
  - CVE-2023-0054: Fixed an out of bounds memory write that could
    cause a crash or memory corruption (bsc#1206868).
  - CVE-2023-0051: Fixed an out of bounds memory access that could
    cause a crash (bsc#1206867).
  - CVE-2023-0049: Fixed an out of bounds memory access that could
    cause a crash (bsc#1206866).


The following package changes have been done:

- vim-data-common-9.0.1234-150000.5.34.1 updated
- vim-9.0.1234-150000.5.34.1 updated

SUSE: 2023:293-1 suse/sle-micro/5.2/toolbox Security Update

February 8, 2023
The container suse/sle-micro/5.2/toolbox was updated

Summary

Advisory ID: SUSE-SU-2023:211-1 Released: Mon Jan 30 17:26:10 2023 Summary: Security update for vim Type: security Severity: moderate

References

References : 1206866 1206867 1206868 1207162 1207396 CVE-2023-0049 CVE-2023-0051

CVE-2023-0054 CVE-2023-0288 CVE-2023-0433

1206866,1206867,1206868,1207162,1207396,CVE-2023-0049,CVE-2023-0051,CVE-2023-0054,CVE-2023-0288,CVE-2023-0433

This update for vim fixes the following issues:

- Updated to version 9.0.1234:

- CVE-2023-0433: Fixed an out of bounds memory access that could

cause a crash (bsc#1207396).

- CVE-2023-0288: Fixed an out of bounds memory access that could

cause a crash (bsc#1207162).

- CVE-2023-0054: Fixed an out of bounds memory write that could

cause a crash or memory corruption (bsc#1206868).

- CVE-2023-0051: Fixed an out of bounds memory access that could

cause a crash (bsc#1206867).

- CVE-2023-0049: Fixed an out of bounds memory access that could

cause a crash (bsc#1206866).

The following package changes have been done:

- vim-data-common-9.0.1234-150000.5.34.1 updated

- vim-9.0.1234-150000.5.34.1 updated

Severity
Container Advisory ID : SUSE-CU-2023:293-1
Container Tags : suse/sle-micro/5.2/toolbox:11.1 , suse/sle-micro/5.2/toolbox:11.1-6.2.170 , suse/sle-micro/5.2/toolbox:latest
Container Release : 6.2.170
Severity : moderate
Type : security

Related News

5.ShakingHands Esm H320
2 - 3 min read
At The Linux Foundation's Open Source Summit North America , Linus Torvalds, the creator of Linux, discussed various topics related to Linux
30.Lock Globe Motherboard Esm H320
1 - 2 min read
The SPDX 3.0 release marks a significant milestone in software management, particularly for Linux admins, infosec professionals, internet security
11.Locks IsometricPattern Esm H320
2 - 3 min read
Open Source maintainers and developers have been warned about the continued wave of attacks aimed at project maintainers similar to those recently
28.Lock Globe Esm H320
1 - 2 min read
A resurgence of cyberattacks targeting Linux systems in Asian campaigns through the utilization of the Pupy Remote Access Trojan (RAT) has been
27.Tablet Connections Blocks Lock Esm H320
2 - 4 min read
Canonical has recently announced the Beta release of Ubuntu Linux 24.04 LTS , codenamed "Noble Numbat." This release aims to continue Ubuntu's
21.Globe RadiatingCode Esm H320
2 - 3 min read
The open-source movement has come a long way, from its origins in the 1960s and 1970s to becoming an integral part of organizations worldwide.
13.Lock StylizedMotherboard Esm H320
2 - 3 min read
The Rust-based Edera project demonstrates a unique approach to container security that addresses cloud-native computing challenges. Let's examine
8.Locks HexConnections CodeGlobe Esm H320
2 - 3 min read
Canonical has launched Ubuntu Pro for Devices , a comprehensive offering emphasizing security and compliance for IoT device deployments. This
Sign Up

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved