Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

SUSE SLE15: 2024:289-1 Moderate: SSH Key Management DoS Fix

suse
Calendar Grey January 21, 2024
Dist Suse Esm H88
SUSE issued a security notification (2024:289-1) detailing vital enhancements and fixes for the suse/sle15 image.
The container suse/sle15 was updated

Summary

Advisory ID: SUSE-SU-2024:136-1 Released: Thu Jan 18 09:53:47 2024 Summary: Security update for pam Type: security Severity: moderate Advisory ID: SUSE-RU-2024:139-1 Released: Thu Jan 18 11:33:54 2024 Summary: Recommended update for go1.21 Type: recommended Severity: moderate

Topics%20covered

Topics Covered

security advisory update DoS SUSE SSH management pam

References

References : 1212475 1217000 1218475 CVE-2024-22365

1217000,1218475,CVE-2024-22365

This update for pam fixes the following issues:

- CVE-2024-22365: Fixed a local denial of service during PAM login

due to a missing check during path manipulation (bsc#1218475).

- Check localtime_r() return value to fix crashing (bsc#1217000)

1212475

This update for go1.21 fixes the following issues:

go1.21.6 (released 2024-01-09) includes fixes to the compiler,

the runtime, and the crypto/tls, maps, and runtime/pprof

packages. (bsc#1212475)

* x/build,os/signal: TestDetectNohup and TestNohup fail on replacement darwin LUCI builders

* runtime: ReadMemStats fatal error: mappedReady and other memstats are not equal

* cmd/compile: linux/s390x: inlining bug in s390x

Container Advisory ID : SUSE-CU-2024:288-1
Container Tags : suse/sle15:15.1 , suse/sle15:15.1.6.2.866
Container Release : 6.2.866
Severity : moderate
Type : security

Topics%20covered

Topics Covered

security advisory update DoS SUSE SSH management pam

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here