SUSE: 2023:480-1 Important: Container Image Security Update
suse
July 8, 2023
The container sles-15-sp5-chost-byos-v20230704-arm64 was updated
Summary
Advisory ID: 29171 Released: Tue Jun 20 12:29:00 2023 Summary: Security update for openssl-1_1 Type: security Severity: important Advisory ID: SUSE-RU-2023:2557-1 Released: Tue Jun 20 18:00:45 2023 Summary: Recommended update for suseconnect-ng Type: recommended Severity: moderate Advisory ID: SUSE-SU-2023:2571-1 Released: Wed Jun 21 13:26:09 2023
References
References : 1194557 1201627 1202234 1203300 1206674 1207004 1207071 1207534
1208074 1209233 1209565 1210298 1211026 1211261 1211261 1211418
1211419 1211430 1211578 1211588 1211612 1211647 1211754 1212187
1212187 1212222 1212222 1212516 1212517 1212544 1212567 1212662
CVE-2022-4304 CVE-2023-2602 CVE-2023-2603 CVE-2023-2650 CVE-2023-2828
CVE-2023-2911
1201627,1207534,1211430,CVE-2022-4304,CVE-2023-2650
This update for openssl-1_1 fixes the following issues:
- CVE-2023-2650: Fixed possible denial of service translating ASN.1 object identifiers (bsc#1211430).
- CVE-2022-4304: Reworked the fix for the Timing-Oracle in RSA decryption.
The previous fix for this timing side channel turned out to cause a
severe 2-3x performance regression in the typical use case (bsc#1207534).
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Image Advisory ID : SUSE-IU-2023:480-1
Image Tags : sles-15-sp5-chost-byos-v20230704-arm64:20230704
Image Release :
Severity : important
Type : security
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!