Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 556
Alerts This Week
Warning Icon 1 556

SUSE SLES 15 SP5: 2023:478-1 Important Update for Container Security

suse
Calendar Grey July 8, 2023
Dist Suse Esm H88
Revised SUSE image notice features urgent enhancements for openssl, cloud-init, among others, essential for container installations.
The container suse-sles-15-sp5-chost-byos-v20230704-x86_64-gen2 was updated

Summary

Advisory ID: 29171 Released: Tue Jun 20 12:29:00 2023 Summary: Security update for openssl-1_1 Type: security Severity: important Advisory ID: SUSE-RU-2023:2557-1 Released: Tue Jun 20 18:00:45 2023 Summary: Recommended update for suseconnect-ng Type: recommended Severity: moderate Advisory ID: SUSE-SU-2023:2571-1 Released: Wed Jun 21 13:26:09 2023

References

References : 1171511 1194557 1201627 1202234 1203300 1203393 1206674 1207004

1207071 1207534 1208074 1209233 1209565 1210277 1210298 1210652

1211026 1211261 1211261 1211418 1211419 1211430 1211578 1211588

1211612 1211647 1211754 1212187 1212187 1212222 1212222 1212516

1212517 1212544 1212567 1212662 CVE-2022-2084 CVE-2022-4304 CVE-2023-1786

CVE-2023-2602 CVE-2023-2603 CVE-2023-2650 CVE-2023-2828 CVE-2023-2911

1201627,1207534,1211430,CVE-2022-4304,CVE-2023-2650

This update for openssl-1_1 fixes the following issues:

- CVE-2023-2650: Fixed possible denial of service translating ASN.1 object identifiers (bsc#1211430).

- CVE-2022-4304: Reworked the fix for the Timing-Oracle in RSA decryption.

The previous fix for this timing side channel turned out to cause a

Severity
important
Lowest
Low
Medium
High
Critical

Image Advisory ID : SUSE-IU-2023:478-1
Image Tags : suse-sles-15-sp5-chost-byos-v20230704-x86_64-gen2:20230704
Image Release :
Severity : important
Type : security

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.