Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

SUSE: 2023:877-1 Moderate: bci/openjdk-devel Buffer Overrun

suse
Calendar Grey March 31, 2023
Dist Suse Esm H88
The container image bci/openjdk-devel has been refreshed with updates that rectify security vulnerabilities, notably a resolution for a buffer overflow concern.
The container bci/openjdk-devel was updated

Summary

Advisory ID: SUSE-RU-2023:1662-1 Released: Wed Mar 29 10:36:23 2023 Summary: Recommended update for patterns-base Type: recommended Severity: moderate Advisory ID: SUSE-SU-2023:1688-1 Released: Wed Mar 29 18:19:10 2023 Summary: Security update for zstd Type: security Severity: moderate

Topics%20covered

Topics Covered

security advisory buffer overrun moderate severity SUSE container update bci/openjdk-devel

References

References : 1203537 1209533 CVE-2022-4899

1203537

This update for patterns-base fixes the following issues:

- change label of FIPS 140-2 to 140-3 to reflect our current certifications (bsc#1203537)

1209533,CVE-2022-4899

This update for zstd fixes the following issues:

- CVE-2022-4899: Fixed buffer overrun in util.c (bsc#1209533).

The following package changes have been done:

- libzstd1-1.5.0-150400.3.3.1 updated

- patterns-base-fips-20200124-150400.20.4.1 updated

- container:bci-openjdk-11-15.4.11-35.18 updated

Container Advisory ID : SUSE-CU-2023:877-1
Container Tags : bci/openjdk-devel:11 , bci/openjdk-devel:11-39.34
Container Release : 39.34
Severity : moderate
Type : security

Topics%20covered

Topics Covered

security advisory buffer overrun moderate severity SUSE container update bci/openjdk-devel

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here