SUSE: 2023:3550-1 suse/sle-micro/5.2/toolbox Security Update
Summary
Advisory ID: SUSE-RU-2023:4154-1 Released: Fri Oct 20 19:33:25 2023 Summary: Recommended update for aaa_base Type: recommended Severity: moderate Advisory ID: SUSE-SU-2023:4158-1 Released: Mon Oct 23 09:52:06 2023 Summary: Security update for suse-module-tools Type: security Severity: important
References
References : 1107342 1205767 1207853 1210335 1215434 CVE-2023-1829 CVE-2023-23559
1107342,1215434
This update for aaa_base fixes the following issues:
- Respect /etc/update-alternatives/java when setting JAVA_HOME (bsc#1215434,bsc#1107342)
1205767,1207853,1210335,CVE-2023-1829,CVE-2023-23559
This update for suse-module-tools fixes the following issues:
- Updated to version 15.3.17:
- CVE-2023-1829: Blacklisted the Linux kernel tcindex classifier
module (bsc#1210335).
- CVE-2023-23559: Blacklisted the Linux kernel RNDIS modules
(bsc#1205767, jsc#PED-5731).
- Updated to version 15.3.16:
- Fixed a build issue for s390x (bsc#1207853).
The following package changes have been done:
- aaa_base-84.87+git20180409.04c9dae-150300.10.6.2 updated
- glibc-2.31-150300.63.1 updated
- suse-module-tools-15.3.17-150300.3.22.1 updated
- container:sles15-image-15.0.0-17.20.199 updated