Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 728
Alerts This Week
Warning Icon 1 728

SUSE: 2023:3586-2 Critical: suse/xyz Security Fix Bulletin

suse
Calendar Grey October 28, 2023
Dist Suse Esm H88
Explore the latest SUSE Container Update Advisory, emphasizing important security updates and enhancements for suse/pcp containers to strengthen system integrity and performance.
The container suse/pcp was updated

Summary

Advisory ID: SUSE-SU-2023:4110-1 Released: Wed Oct 18 12:35:26 2023 Summary: Security update for glibc Type: security Severity: important Advisory ID: SUSE-RU-2023:4122-1 Released: Thu Oct 19 08:24:34 2023 Summary: Recommended update for openssl-1_1 Type: recommended Severity: moderate Advisory ID: SUSE-RU-2023:4153-1 Released: Fri Oct 20 19:27:58 2023 Summary: Recommended update for systemd Type: recommended

References

References : 1107342 1206480 1206684 1210557 1211427 1212101 1213915 1214052

1214460 1215215 1215286 1215313 1215434 1215891 1216123 1216174

1216378 CVE-2023-4039 CVE-2023-44487 CVE-2023-45853 CVE-2023-4813

1215286,1215891,CVE-2023-4813

This update for glibc fixes the following issues:

Security issue fixed:

- CVE-2023-4813: Fixed a potential use-after-free in gaih_inet() (bsc#1215286, BZ #28931)

Also a regression from a previous update was fixed:

- elf: Align argument of __munmap to page size (bsc#1215891, BZ #28676)

1215215

This update for openssl-1_1 fixes the following issues:

- Displays 'fips' in the version string (bsc#1215215)

1215313

This update for systemd fixes the following issues:

- Fix mismatch of nss-resolve version in Package Hub (no source code changes)

1107342,1215434

Severity
important
Lowest
Low
Medium
High
Critical

Container Advisory ID : SUSE-CU-2023:3586-1
Container Tags : suse/pcp:5 , suse/pcp:5-17.171 , suse/pcp:5.2 , suse/pcp:5.2-17.171 , suse/pcp:5.2.5 , suse/pcp:5.2.5-17.171
Container Release : 17.171
Severity : important
Type : security

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.