Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 25 articles for you...
100
security advisorymoderate severityout-of-boundsSUSE: 2024:3080-1 Moderate: curl Out-Of-Bounds Security Fix
* bsc#1228535 Cross-References: * CVE-2024-7264 . # Security update for curl Announcement ID: SUSE-SU-2024:3080-1 Rating: moderate References: * bsc#1228535 Cross-References: * CVE-2024-7264 CVSS scores: * CVE-2024-7264 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L * CVE-2024-7264 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP5 * openSUSE Leap 15.4 * openSUSE Leap 15.5 * openSUSE Leap Micro 5.5 * SUSE Linux Enterprise Desktop 15 SP4 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves one vulnerability can now be installed. ## Description: This update for curl fixes the following issues: * CVE-2024-7264: Fixed out-of-bounds read in ASN.1 date parser GTime2str() (bsc#1228535) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-3080=1 * openSUSE Leap Micro 5.5 zypper in -t patch openSUSE-Leap-Micro-5.5-2024-3080=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-3080=1 * SUSE Linux Enterprise High Performance Computing 15 SP4 zypper in -t patchSUSE-SLE-INSTALLER-15-SP4-2024-3080=1 * SUSE Linux Enterprise Server 15 SP4 zypper in -t patch SUSE-SLE-INSTALLER-15-SP4-2024-3080=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-INSTALLER-15-SP4-2024-3080=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-INSTALLER-15-SP4-2024-3080=1 * SUSE Linux Enterprise Desktop 15 SP4 zypper in -t patch SUSE-SLE-INSTALLER-15-SP4-2024-3080=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-INSTALLER-15-SP4-2024-3080=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-INSTALLER-15-SP4-2024-3080=1 * SUSE Linux Enterprise High Performance Computing 15 SP5 zypper in -t patch SUSE-SLE-INSTALLER-15-SP5-2024-3080=1 * SUSE Linux Enterprise Server 15 SP5 zypper in -t patch SUSE-SLE-INSTALLER-15-SP5-2024-3080=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-INSTALLER-15-SP5-2024-3080=1 * SUSE Linux Enterprise Desktop 15 SP5 zypper in -t patch SUSE-SLE-INSTALLER-15-SP5-2024-3080=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-3080=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-3080=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-3080=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-3080=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-3080=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-3080=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * libcurl-devel-8.0.1-150400.5.47.1 * libcurl4-debuginfo-8.0.1-150400.5.47.1 * curl-debugsource-8.0.1-150400.5.47.1 * curl-debuginfo-8.0.1-150400.5.47.1 * libcurl4-8.0.1-150400.5.47.1 * curl-8.0.1-150400.5.47.1 * openSUSE Leap 15.4(x86_64) * libcurl-devel-32bit-8.0.1-150400.5.47.1 * libcurl4-32bit-8.0.1-150400.5.47.1 * libcurl4-32bit-debuginfo-8.0.1-150400.5.47.1 * openSUSE Leap 15.4 (aarch64_ilp32) * libcurl-devel-64bit-8.0.1-150400.5.47.1 * libcurl4-64bit-8.0.1-150400.5.47.1 * libcurl4-64bit-debuginfo-8.0.1-150400.5.47.1 * openSUSE Leap Micro 5.5 (aarch64 s390x x86_64) * libcurl4-debuginfo-8.0.1-150400.5.47.1 * curl-debugsource-8.0.1-150400.5.47.1 * curl-debuginfo-8.0.1-150400.5.47.1 * libcurl4-8.0.1-150400.5.47.1 * curl-8.0.1-150400.5.47.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * libcurl-devel-8.0.1-150400.5.47.1 * libcurl4-debuginfo-8.0.1-150400.5.47.1 * curl-debugsource-8.0.1-150400.5.47.1 * curl-debuginfo-8.0.1-150400.5.47.1 * libcurl4-8.0.1-150400.5.47.1 * curl-8.0.1-150400.5.47.1 * openSUSE Leap 15.5 (x86_64) * libcurl-devel-32bit-8.0.1-150400.5.47.1 * libcurl4-32bit-8.0.1-150400.5.47.1 * libcurl4-32bit-debuginfo-8.0.1-150400.5.47.1 * SUSE Linux Enterprise High Performance Computing 15 SP4 (aarch64 x86_64) * libcurl4-8.0.1-150400.5.47.1 * SUSE Linux Enterprise Server 15 SP4 (aarch64 ppc64le s390x x86_64) * libcurl4-8.0.1-150400.5.47.1 * SUSE Manager Server 4.3 (ppc64le s390x x86_64) * libcurl4-8.0.1-150400.5.47.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * libcurl4-8.0.1-150400.5.47.1 * SUSE Linux Enterprise Desktop 15 SP4 (x86_64) * libcurl4-8.0.1-150400.5.47.1 * SUSE Manager Retail Branch Server 4.3 (x86_64) * libcurl4-8.0.1-150400.5.47.1 * SUSE Manager Proxy 4.3 (x86_64) * libcurl4-8.0.1-150400.5.47.1 * SUSE Linux Enterprise High Performance Computing 15 SP5 (aarch64 x86_64) * libcurl4-8.0.1-150400.5.47.1 * SUSE Linux Enterprise Server 15 SP5 (aarch64 ppc64le s390x x86_64) * libcurl4-8.0.1-150400.5.47.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * libcurl4-8.0.1-150400.5.47.1 * SUSE Linux EnterpriseDesktop 15 SP5 (x86_64) * libcurl4-8.0.1-150400.5.47.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * libcurl4-debuginfo-8.0.1-150400.5.47.1 * curl-debugsource-8.0.1-150400.5.47.1 * curl-debuginfo-8.0.1-150400.5.47.1 * libcurl4-8.0.1-150400.5.47.1 * curl-8.0.1-150400.5.47.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * libcurl4-debuginfo-8.0.1-150400.5.47.1 * curl-debugsource-8.0.1-150400.5.47.1 * curl-debuginfo-8.0.1-150400.5.47.1 * libcurl4-8.0.1-150400.5.47.1 * curl-8.0.1-150400.5.47.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * libcurl4-debuginfo-8.0.1-150400.5.47.1 * curl-debugsource-8.0.1-150400.5.47.1 * curl-debuginfo-8.0.1-150400.5.47.1 * libcurl4-8.0.1-150400.5.47.1 * curl-8.0.1-150400.5.47.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * libcurl4-debuginfo-8.0.1-150400.5.47.1 * curl-debugsource-8.0.1-150400.5.47.1 * curl-debuginfo-8.0.1-150400.5.47.1 * libcurl4-8.0.1-150400.5.47.1 * curl-8.0.1-150400.5.47.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * libcurl4-debuginfo-8.0.1-150400.5.47.1 * curl-debugsource-8.0.1-150400.5.47.1 * curl-debuginfo-8.0.1-150400.5.47.1 * libcurl4-8.0.1-150400.5.47.1 * curl-8.0.1-150400.5.47.1 * Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64) * libcurl-devel-8.0.1-150400.5.47.1 * libcurl4-debuginfo-8.0.1-150400.5.47.1 * curl-debugsource-8.0.1-150400.5.47.1 * curl-debuginfo-8.0.1-150400.5.47.1 * libcurl4-8.0.1-150400.5.47.1 * curl-8.0.1-150400.5.47.1 * Basesystem Module 15-SP5 (x86_64) * libcurl4-32bit-debuginfo-8.0.1-150400.5.47.1 * libcurl4-32bit-8.0.1-150400.5.47.1 ## References: * https://www.suse.com/security/cve/CVE-2024-7264.html * https://bugzilla.suse.com/show_bug.cgi?id=1228535 . A recent update addresses a vulnerability in curl categorized with moderate severity and includes detailed steps forinstallation.. curl updates, SUSE solutions, security patching, out-of-bounds fixes. . LinuxSecurity.com Team
Sep 02, 2024
SuSE
100
security advisorymoderatepatchSUSE: 2024:1151-2 Moderate: curl Memory Leak and Protocol Fix
* bsc#1221665 * bsc#1221667 Cross-References: * CVE-2024-2004 . # Security update for curl Announcement ID: SUSE-SU-2024:1151-2 Rating: moderate References: * bsc#1221665 * bsc#1221667 Cross-References: * CVE-2024-2004 * CVE-2024-2398 CVSS scores: * CVE-2024-2004 ( SUSE ): 3.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N * CVE-2024-2398 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves two vulnerabilities can now be installed. ## Description: This update for curl fixes the following issues: * CVE-2024-2004: Fix the uUsage of disabled protocol logic. (bsc#1221665) * CVE-2024-2398: Fix HTTP/2 push headers memory-leak. (bsc#1221667) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-1151=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-1151=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-1151=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-1151=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -tpatch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-1151=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-1151=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2024-1151=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-1151=1 ## Package List: * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * curl-debuginfo-8.0.1-150400.5.44.1 * libcurl-devel-8.0.1-150400.5.44.1 * curl-debugsource-8.0.1-150400.5.44.1 * libcurl4-debuginfo-8.0.1-150400.5.44.1 * libcurl4-8.0.1-150400.5.44.1 * curl-8.0.1-150400.5.44.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (x86_64) * libcurl4-32bit-8.0.1-150400.5.44.1 * libcurl4-32bit-debuginfo-8.0.1-150400.5.44.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * curl-debuginfo-8.0.1-150400.5.44.1 * libcurl-devel-8.0.1-150400.5.44.1 * curl-debugsource-8.0.1-150400.5.44.1 * libcurl4-debuginfo-8.0.1-150400.5.44.1 * libcurl4-8.0.1-150400.5.44.1 * curl-8.0.1-150400.5.44.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (x86_64) * libcurl4-32bit-8.0.1-150400.5.44.1 * libcurl4-32bit-debuginfo-8.0.1-150400.5.44.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64) * curl-debuginfo-8.0.1-150400.5.44.1 * libcurl-devel-8.0.1-150400.5.44.1 * curl-debugsource-8.0.1-150400.5.44.1 * libcurl4-32bit-debuginfo-8.0.1-150400.5.44.1 * libcurl4-debuginfo-8.0.1-150400.5.44.1 * libcurl4-32bit-8.0.1-150400.5.44.1 * libcurl4-8.0.1-150400.5.44.1 * curl-8.0.1-150400.5.44.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x x86_64) * curl-debuginfo-8.0.1-150400.5.44.1 * libcurl-devel-8.0.1-150400.5.44.1 * curl-debugsource-8.0.1-150400.5.44.1 * libcurl4-debuginfo-8.0.1-150400.5.44.1 *libcurl4-8.0.1-150400.5.44.1 * curl-8.0.1-150400.5.44.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (x86_64) * libcurl4-32bit-8.0.1-150400.5.44.1 * libcurl4-32bit-debuginfo-8.0.1-150400.5.44.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * curl-debuginfo-8.0.1-150400.5.44.1 * libcurl-devel-8.0.1-150400.5.44.1 * curl-debugsource-8.0.1-150400.5.44.1 * libcurl4-debuginfo-8.0.1-150400.5.44.1 * libcurl4-8.0.1-150400.5.44.1 * curl-8.0.1-150400.5.44.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (x86_64) * libcurl4-32bit-8.0.1-150400.5.44.1 * libcurl4-32bit-debuginfo-8.0.1-150400.5.44.1 * SUSE Manager Proxy 4.3 (x86_64) * curl-debuginfo-8.0.1-150400.5.44.1 * libcurl-devel-8.0.1-150400.5.44.1 * curl-debugsource-8.0.1-150400.5.44.1 * libcurl4-32bit-debuginfo-8.0.1-150400.5.44.1 * libcurl4-debuginfo-8.0.1-150400.5.44.1 * libcurl4-32bit-8.0.1-150400.5.44.1 * libcurl4-8.0.1-150400.5.44.1 * curl-8.0.1-150400.5.44.1 * SUSE Manager Retail Branch Server 4.3 (x86_64) * curl-debuginfo-8.0.1-150400.5.44.1 * libcurl-devel-8.0.1-150400.5.44.1 * curl-debugsource-8.0.1-150400.5.44.1 * libcurl4-32bit-debuginfo-8.0.1-150400.5.44.1 * libcurl4-debuginfo-8.0.1-150400.5.44.1 * libcurl4-32bit-8.0.1-150400.5.44.1 * libcurl4-8.0.1-150400.5.44.1 * curl-8.0.1-150400.5.44.1 * SUSE Manager Server 4.3 (ppc64le s390x x86_64) * curl-debuginfo-8.0.1-150400.5.44.1 * libcurl-devel-8.0.1-150400.5.44.1 * curl-debugsource-8.0.1-150400.5.44.1 * libcurl4-debuginfo-8.0.1-150400.5.44.1 * libcurl4-8.0.1-150400.5.44.1 * curl-8.0.1-150400.5.44.1 * SUSE Manager Server 4.3 (x86_64) * libcurl4-32bit-8.0.1-150400.5.44.1 * libcurl4-32bit-debuginfo-8.0.1-150400.5.44.1 ## References: * https://www.suse.com/security/cve/CVE-2024-2004.html * https://www.suse.com/security/cve/CVE-2024-2398.html * https://bugzilla.suse.com/show_bug.cgi?id=1221665 *https://bugzilla.suse.com/show_bug.cgi?id=1221667 . This curl update addresses protocol logic and memory leak issues, enhancing security within SUSE environments.. SUSE Security Update,curl Security Advisory,protocol fix,memory leak patch. . Severity: Important. LinuxSecurity.com Team
May 06, 2024
•Important
SuSE
100
security advisorysecurity issuesuse linuxSUSE: 2023:4119-1 important: curl and suse-build-key security fix
The container suse/sle15 was updated. The following patches have been included in this update:. SUSE Container Update Advisory: suse/sle15 ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:4119-1 Container Tags : bci/bci-base:15.5 , bci/bci-base:15.5.36.5.63 , suse/sle15:15.5 , suse/sle15:15.5.36.5.63 Container Release : 36.5.63 Severity : important Type : security References : 1216410 1216862 1217212 1217215 1217573 1217574 CVE-2023-46218 CVE-2023-46219 ----------------------------------------------------------------- The container suse/sle15 was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:4659-1 Released: Wed Dec 6 13:04:57 2023 Summary: Security update for curl Type: security Severity: moderate References: 1217573,1217574,CVE-2023-46218,CVE-2023-46219 This update for curl fixes the following issues: - CVE-2023-46218: Fixed cookie mixed case PSL bypass (bsc#1217573). - CVE-2023-46219: HSTS long file name clears contents (bsc#1217574). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2023:4671-1 Released: Wed Dec 6 14:33:41 2023 Summary: Recommended update for man Type: recommended Severity: moderate References: This update of man fixes the following problem: - The 'man' commands is delivered to SUSE Linux Enterprise Micro to allow browsing man pages. ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:4672-1 Released: Wed Dec 6 14:37:37 2023 Summary: Security update for suse-build-key Type: security Severity: important References: 1216410,1217215 This update for suse-build-key fixes the following issues: This update runs a import-suse-build-key script. The previous libzypp-post-script based installation is replaced with asystemd timer and service (bsc#1217215 bsc#1216410 jsc#PED-2777). - suse-build-key-import.service - suse-build-key-import.timer It imports the future SUSE Linux Enterprise 15 4096 bit RSA key primary and reserve keys. After successful import the timer is disabled. To manually import them you can also run: # rpm --import /usr/lib/rpm/gnupg/keys/gpg-pubkey-3fa1d6ce-63c9481c.asc # rpm --import /usr/lib/rpm/gnupg/keys/gpg-pubkey-d588dc46-63c939db.asc ----------------------------------------------------------------- Advisory ID: SUSE-RU-2023:4699-1 Released: Mon Dec 11 07:02:10 2023 Summary: Recommended update for gpg2 Type: recommended Severity: moderate References: 1217212 This update for gpg2 fixes the following issues: - `dirmngr-client --validate` is broken for DER-encoded files (bsc#1217212) ----------------------------------------------------------------- Advisory ID: SUSE-RU-2023:4723-1 Released: Tue Dec 12 09:57:51 2023 Summary: Recommended update for libtirpc Type: recommended Severity: moderate References: 1216862 This update for libtirpc fixes the following issue: - fix sed parsing in specfile (bsc#1216862) The following package changes have been done: - curl-8.0.1-150400.5.36.1 updated - gpg2-2.2.27-150300.3.8.1 updated - libcurl4-8.0.1-150400.5.36.1 updated - libp11-kit0-0.23.22-150500.8.3.1 updated - libtirpc-netconfig-1.3.4-150300.3.23.1 updated - libtirpc3-1.3.4-150300.3.23.1 updated - p11-kit-tools-0.23.22-150500.8.3.1 updated - p11-kit-0.23.22-150500.8.3.1 updated - suse-build-key-12.0-150000.8.37.1 updated - system-group-hardware-20170617-150400.24.2.1 updated . SUSE Container Advisory with critical updates for curl and suse-build-key addressing potential exploitation risks.. suse container update,curl security patch,suse linux advisory,important updates. . Severity: Important. LinuxSecurity.com Team
Dec 13, 2023
•Important
SuSE
100
security advisorysecurity patchsuseSUSE: 2023:3178-1 Critical: suse/389-ds Security Patch Overview
The container suse/389-ds was updated. The following patches have been included in this update:. SUSE Container Update Advisory: suse/389-ds ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:3178-1 Container Tags : suse/389-ds:2.2 , suse/389-ds:2.2-15.4 , suse/389-ds:latest Container Release : 15.4 Severity : important Type : security References : 1211829 1212819 1212910 1214692 1215026 CVE-2023-38039 CVE-2023-40217 ----------------------------------------------------------------- The container suse/389-ds was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-RU-2023:3814-1 Released: Wed Sep 27 18:08:17 2023 Summary: Recommended update for glibc Type: recommended Severity: moderate References: 1211829,1212819,1212910 This update for glibc fixes the following issues: - nscd: Fix netlink cache invalidation if epoll is used (bsc#1212910, BZ #29415) - Restore lookup of IPv4 mapped addresses in files database (bsc#1212819, BZ #25457) - elf: Remove excessive p_align check on PT_LOAD segments (bsc#1211829, BZ #28688) - elf: Properly align PT_LOAD segments (bsc#1211829, BZ #28676) - ld.so: Always use MAP_COPY to map the first segment (BZ #30452) - add GB18030-2022 charmap (jsc#PED-4908, BZ #30243) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:3823-1 Released: Wed Sep 27 18:42:38 2023 Summary: Security update for curl Type: security Severity: important References: 1215026,CVE-2023-38039 This update for curl fixes the following issues: - CVE-2023-38039: Fixed possible DoS when receiving too large HTTP header. (bsc#1215026) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:3828-1 Released: Wed Sep 27 19:07:38 2023 Summary: Security update for python3 Type: security Severity: important References: 1214692,CVE-2023-40217 This update for python3 fixes the following issues: - CVE-2023-40217: Fixed TLS handshake bypass on closed sockets (bsc#1214692). The following package changes have been done: - glibc-2.31-150300.58.1 updated - libcurl4-8.0.1-150400.5.29.1 updated - python3-base-3.6.15-150300.10.51.1 updated - libpython3_6m1_0-3.6.15-150300.10.51.1 updated - python3-3.6.15-150300.10.51.1 updated - container:sles15-image-15.0.0-36.5.37 updated . Crucial security patches for SUSE container suse/389-ds addressing various vulnerabilities and improving overall robustness.. SUSE Security Update, Container Security Advisory, SUSE-389-DS Update, Curl Fix, Python3 Update. . Severity: Important. LinuxSecurity.com Team
Sep 29, 2023
•Important
SuSE
100
security advisoryDoSSUSESUSE: 2023:3159-1 Important Update for bci/dotnet-runtime With DoS Fix
The container bci/dotnet-runtime was updated. The following patches have been included in this update:. SUSE Container Update Advisory: bci/dotnet-runtime ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:3159-1 Container Tags : bci/dotnet-runtime:7.0 , bci/dotnet-runtime:7.0-15.3 , bci/dotnet-runtime:7.0.11 , bci/dotnet-runtime:7.0.11-15.3 , bci/dotnet-runtime:latest Container Release : 15.3 Severity : important Type : security References : 1211829 1212819 1212910 1215026 CVE-2023-38039 ----------------------------------------------------------------- The container bci/dotnet-runtime was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-RU-2023:3814-1 Released: Wed Sep 27 18:08:17 2023 Summary: Recommended update for glibc Type: recommended Severity: moderate References: 1211829,1212819,1212910 This update for glibc fixes the following issues: - nscd: Fix netlink cache invalidation if epoll is used (bsc#1212910, BZ #29415) - Restore lookup of IPv4 mapped addresses in files database (bsc#1212819, BZ #25457) - elf: Remove excessive p_align check on PT_LOAD segments (bsc#1211829, BZ #28688) - elf: Properly align PT_LOAD segments (bsc#1211829, BZ #28676) - ld.so: Always use MAP_COPY to map the first segment (BZ #30452) - add GB18030-2022 charmap (jsc#PED-4908, BZ #30243) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:3823-1 Released: Wed Sep 27 18:42:38 2023 Summary: Security update for curl Type: security Severity: important References: 1215026,CVE-2023-38039 This update for curl fixes the following issues: - CVE-2023-38039: Fixed possible DoS when receiving too large HTTP header. (bsc#1215026) The following package changes have been done: - glibc-2.31-150300.58.1 updated - libcurl4-8.0.1-150400.5.29.1 updated -container:sles15-image-15.0.0-36.5.37 updated . SUSE enhances bci/python-runtime by implementing vital security updates and curl improvements addressing severe weaknesses.. Container Update, Dotnet Runtime, Security Patch. . Severity: Important. LinuxSecurity.com Team
Sep 28, 2023
•Important
SuSE
100
security advisoryimportantSUSESUSE: 2023:3178-2 Urgent bci/dotnet-sdk Security Patch for curl and glibc
The container bci/dotnet-sdk was updated. The following patches have been included in this update:. SUSE Container Update Advisory: bci/dotnet-sdk ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:3157-1 Container Tags : bci/dotnet-sdk:7.0 , bci/dotnet-sdk:7.0-15.3 , bci/dotnet-sdk:7.0.11 , bci/dotnet-sdk:7.0.11-15.3 , bci/dotnet-sdk:latest Container Release : 15.3 Severity : important Type : security References : 1211829 1212819 1212910 1215026 CVE-2023-38039 ----------------------------------------------------------------- The container bci/dotnet-sdk was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-RU-2023:3814-1 Released: Wed Sep 27 18:08:17 2023 Summary: Recommended update for glibc Type: recommended Severity: moderate References: 1211829,1212819,1212910 This update for glibc fixes the following issues: - nscd: Fix netlink cache invalidation if epoll is used (bsc#1212910, BZ #29415) - Restore lookup of IPv4 mapped addresses in files database (bsc#1212819, BZ #25457) - elf: Remove excessive p_align check on PT_LOAD segments (bsc#1211829, BZ #28688) - elf: Properly align PT_LOAD segments (bsc#1211829, BZ #28676) - ld.so: Always use MAP_COPY to map the first segment (BZ #30452) - add GB18030-2022 charmap (jsc#PED-4908, BZ #30243) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:3823-1 Released: Wed Sep 27 18:42:38 2023 Summary: Security update for curl Type: security Severity: important References: 1215026,CVE-2023-38039 This update for curl fixes the following issues: - CVE-2023-38039: Fixed possible DoS when receiving too large HTTP header. (bsc#1215026) The following package changes have been done: - glibc-2.31-150300.58.1 updated - libcurl4-8.0.1-150400.5.29.1 updated - container:sles15-image-15.0.0-36.5.37updated . Important SUSE Container Release: bci/nodejs Advisory includes crucial security patches and enhancements.. SUSE Container, Security Update, bci/dotnet-sdk, curl fix, glibc patch. . Severity: Important. LinuxSecurity.com Team
Sep 28, 2023
•Important
SuSE
100
security advisoryimportantsystemd updateSUSE: 2023:1659-1 Important: bci/openjdk-devel Security Update
The container bci/openjdk-devel was updated. The following patches have been included in this update:. SUSE Container Update Advisory: bci/openjdk-devel ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:1659-1 Container Tags : bci/openjdk-devel:11 , bci/openjdk-devel:11-39.112 Container Release : 39.112 Severity : important Type : security References : 1203141 1207410 1211230 1211231 1211232 1211233 CVE-2023-28319 CVE-2023-28320 CVE-2023-28321 CVE-2023-28322 ----------------------------------------------------------------- The container bci/openjdk-devel was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:2224-1 Released: Wed May 17 09:53:54 2023 Summary: Security update for curl Type: security Severity: important References: 1211230,1211231,1211232,1211233,CVE-2023-28319,CVE-2023-28320,CVE-2023-28321,CVE-2023-28322 This update for curl adds the following feature: Update to version 8.0.1 (jsc#PED-2580) - CVE-2023-28319: use-after-free in SSH sha256 fingerprint check (bsc#1211230). - CVE-2023-28320: siglongjmp race condition (bsc#1211231). - CVE-2023-28321: IDN wildcard matching (bsc#1211232). - CVE-2023-28322: POST-after-PUT confusion (bsc#1211233). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2023:2240-1 Released: Wed May 17 19:56:54 2023 Summary: Recommended update for systemd Type: recommended Severity: moderate References: 1203141,1207410 This update for systemd fixes the following issues: - udev-rules: fix nvme symlink creation on namespace changes (bsc#1207410) - Optimize when hundred workers claim the same symlink with the same priority (bsc#1203141) - Add nss-resolve and systemd-network to Packagehub-Subpackages(MSC-626) ----------------------------------------------------------------- Advisory ID: SUSE-feature-2023:2269-1 Released: Mon May 22 14:50:34 2023 Summary: Feature update for javapackages-tools Type: feature Severity: moderate References: This update for javapackages-tools fixes the following issues: - Version update from 5.3.1 to 6.1.0 (jsc#SLE-23217): * Add apache-rat-plugin to skippedPlugins * Add bootstrap metadata to XMvn resolver config * Add location of java binary used by the java-1.8.0-openjdk (JRE) package so that setting JAVA_HOME will work correctly * Add lua interpreter to check and GH actions * Add Lua scripts for removing annotations * Add more tests, fix behaviour * Add separate subpackage with RPM generators * Adding ppc64le architecture support on travis-ci * Delete run_tests.py * Drop deprecated add_maven_depmap macro * Drop SCL support * Fix builddep snippet generation * Fix extra XML handling of pom_change_dep * Fix invalid in XMvn configuration * Fix provides matching * Fix running tests without coverage * Implement separate simple class name matching * Introduce common and extra subpackages * Make generated javadoc package noarch * Make scripts compatible with rpmlua * Migrate CI from TravisCI to GitHub Actions * Modularize Lua scripts * Remove dependency on Six compatibility library * Remove explicit import of Python 3 features * Remove license headers from wrapper scripts * Remove Python 3.5 from .travis.yml * Replace nose by pytest * Skip execution of various Maven plugins * Update build status badge in README.md * Update documentation * Update ivy-local-classpath * Use XMvn Javadoc MOJO by default - Remove requirement to python-six as it is not needed The following package changes have been done: - libudev1-249.16-150400.8.28.3 updated - libsystemd0-249.16-150400.8.28.3 updated - libcurl4-8.0.1-150400.5.23.1 updated - javapackages-filesystem-6.1.0-150200.3.7.1 updated -javapackages-tools-6.1.0-150200.3.7.1 updated - container:bci-openjdk-11-15.4.11-35.58 updated . Crucial patch release for SUSE's bci/openjdk-runtime image, resolving various vulnerabilities and strengthening overall security.. SUSE Security Update, bci/openjdk-devel Update, container advisory. . Severity: Important. LinuxSecurity.com Team
May 30, 2023
•Important
SuSE
100
security advisorysecurity updateimportantSUSE: 2023:1651-1 Critical: Security Update for Toolbox Released
The container suse/sle-micro/5.1/toolbox was updated. The following patches have been included in this update:. SUSE Container Update Advisory: suse/sle-micro/5.1/toolbox ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2023:1651-1 Container Tags : suse/sle-micro/5.1/toolbox:12.1 , suse/sle-micro/5.1/toolbox:12.1-2.2.396 , suse/sle-micro/5.1/toolbox:latest Container Release : 2.2.396 Severity : important Type : security References : 1127591 1195633 1208329 1209406 1210870 1211144 1211231 1211232 1211233 1211339 CVE-2023-28320 CVE-2023-28321 CVE-2023-28322 ----------------------------------------------------------------- The container suse/sle-micro/5.1/toolbox was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2023:2227-1 Released: Wed May 17 09:57:41 2023 Summary: Security update for curl Type: security Severity: important References: 1211231,1211232,1211233,1211339,CVE-2023-28320,CVE-2023-28321,CVE-2023-28322 This update for curl fixes the following issues: - CVE-2023-28320: Fixed siglongjmp race condition (bsc#1211231). - CVE-2023-28321: Fixed IDN wildcard matching (bsc#1211232). - CVE-2023-28322: Fixed POST-after-PUT confusion (bsc#1211233). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2023:2237-1 Released: Wed May 17 17:10:07 2023 Summary: Recommended update for vim Type: recommended Severity: moderate References: 1211144 This update for vim fixes the following issues: * Make xxd conflict with the previous vim packages to avoid a file conflict during migration (bsc#1211144) ----------------------------------------------------------------- Advisory ID: SUSE-RU-2023:2247-1 Released: Thu May 18 17:04:38 2023 Summary: Recommended update for libzypp, zypper Type: recommended Severity: moderate References: 1127591,1195633,1208329,1209406,1210870 This update for libzypp, zypper fixes the following issues: - Installing local RPM packages fails if /usr/bin/find is not installed (bsc#1195633) - multicurl: propagate ssl settings stored in repo url (bsc#1127591) - MediaCurl: Fix endless loop if wrong credentials are stored in credentials.cat (bsc#1210870) - zypp.conf: Introduce 'download.connect_timeout' [60 sec.] (bsc#1208329) - Teach MediaNetwork to retry on HTTP2 errors. - Fix selecting installed patterns from picklist (bsc#1209406) - man: better explanation of --priority The following package changes have been done: - libcurl4-7.66.0-150200.4.57.1 updated - libsolv-tools-0.7.24-150200.18.1 updated - libzypp-17.31.11-150200.61.1 updated - vim-data-common-9.0.1443-150000.5.43.1 updated - vim-9.0.1443-150000.5.43.1 updated - xxd-9.0.1443-150000.5.43.1 updated - zypper-1.14.60-150200.51.1 updated - container:sles15-image-15.0.0-17.20.140 updated . Crucial patches released for suse/sle-micro/5.1/toolbox resolving significant vulnerabilities in bash, nano, and additional packages.. SUSE Toolbox Update, Security Fix, Container Security Update. . Severity: Important. LinuxSecurity.com Team
May 25, 2023
•Important
SuSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!