Alerts This Week
Warning Icon 1 758
Alerts This Week
Warning Icon 1 758

SUSE Toolbox 5.3 Update: curl fixes and security patches

suse
Calendar Grey December 8, 2023
Dist Suse Esm H88
SUSE Container Enhancement Alert regarding toolbox involves essential security patches and rectifications for curl security loopholes.
The container suse/sle-micro/5.3/toolbox was updated

Summary

Advisory ID: SUSE-SU-2023:4659-1 Released: Wed Dec 6 13:04:57 2023 Summary: Security update for curl Type: security Severity: moderate Advisory ID: SUSE-RU-2023:4671-1 Released: Wed Dec 6 14:33:41 2023 Summary: Recommended update for man Type: recommended Severity: moderate

References

References : 1217573 1217574 CVE-2023-46218 CVE-2023-46219

1217573,1217574,CVE-2023-46218,CVE-2023-46219

This update for curl fixes the following issues:

- CVE-2023-46218: Fixed cookie mixed case PSL bypass (bsc#1217573).

- CVE-2023-46219: HSTS long file name clears contents (bsc#1217574).

This update of man fixes the following problem:

- The 'man' commands is delivered to SUSE Linux Enterprise Micro

to allow browsing man pages.

The following package changes have been done:

- groff-1.22.4-150400.5.2.1 updated

- libcurl4-8.0.1-150400.5.36.1 updated

- libpipeline1-1.4.1-150000.3.2.1 updated

- man-2.7.6-150100.8.5.1 updated

- system-group-hardware-20170617-150400.24.2.1 updated

- system-group-wheel-20170617-150400.24.2.1 updated

- system-user-man-20170617-150400.24.2.1 updated

Container Advisory ID : SUSE-CU-2023:4041-1
Container Tags : suse/sle-micro/5.3/toolbox:12.1 , suse/sle-micro/5.3/toolbox:12.1-5.2.270 , suse/sle-micro/5.3/toolbox:latest
Container Release : 5.2.270
Severity : moderate
Type : security

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here