SUSE: 2023:3506-1 Critical Update: bci/golang Denial of Service Issue
suse
October 23, 2023
The container bci/golang was updated
Summary
Advisory ID: SUSE-SU-2023:4068-1 Released: Fri Oct 13 10:06:38 2023 Summary: Security update for go1.20 Type: security Severity: important Advisory ID: SUSE-RU-2023:4073-1 Released: Fri Oct 13 11:40:26 2023 Summary: Recommended update for rpm Type: recommended Severity: low Advisory ID: SUSE-RU-2023:4105-1 Released: Wed Oct 18 08:15:40 2023 Summary: Recommended update for openssl-1_1 Type: recommended
Topics Covered
References
References : 1107342 1206346 1215215 1215286 1215313 1215434 1215891 1216109
CVE-2023-39325 CVE-2023-44487 CVE-2023-4813
1206346,1216109,CVE-2023-39325,CVE-2023-44487
This update for go1.20 fixes the following issues:
- Update to go1.20.10 (bsc#1206346)
- CVE-2023-39325: Fixed a flaw that can lead to a DoS due to a rapid stream resets causing excessive work. This is also known as CVE-2023-44487. (bsc#1216109)
This update for rpm fixes the following issue:
- Enables build for all python modules (jsc#PED-68, jsc#PED-1988)
1215215
This update for openssl-1_1 fixes the following issues:
- Displays 'fips' in the version string (bsc#1215215)
1215286,1215891,CVE-2023-4813
This update for glibc fixes the following issues:
Security issue fixed:
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Container Advisory ID : SUSE-CU-2023:3506-1
Container Tags : bci/golang:1.20 , bci/golang:1.20-2.4.22 , bci/golang:oldstable , bci/golang:oldstable-2.4.22
Container Release : 4.22
Severity : important
Type : security
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!