Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 6 articles for you...
217
security advisorymoderatebuffer overflowOracle Linux 7 ELSA-2023-1095 Moderate: zlib Buffer Overflow Issue
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2023-1095 https://linux.oracle.com/errata/ELSA-2023-1095.html The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: x86_64: minizip-1.2.7-21.el7_9.i686.rpm minizip-1.2.7-21.el7_9.x86_64.rpm minizip-devel-1.2.7-21.el7_9.i686.rpm minizip-devel-1.2.7-21.el7_9.x86_64.rpm zlib-1.2.7-21.el7_9.i686.rpm zlib-1.2.7-21.el7_9.x86_64.rpm zlib-devel-1.2.7-21.el7_9.i686.rpm zlib-devel-1.2.7-21.el7_9.x86_64.rpm zlib-static-1.2.7-21.el7_9.i686.rpm zlib-static-1.2.7-21.el7_9.x86_64.rpm SRPMS: https://oss.oracle.com:443/ol7/SRPMS-updates//zlib-1.2.7-21.el7_9.src.rpm Related CVEs: CVE-2022-37434 Description of changes: [1.2.7-21] - Fix heap-based buffer over-read or buffer overflow in inflate in inflate.c - Resolves: CVE-2022-37434 _______________________________________________ El-errata mailing list
Mar 08, 2023
Oracle
98
security advisorysecurity impactdata integrityRed Hat 7.6: RHSA-2023-0975-01 Important zlib Compression Flaw
An update for zlib is now available for Red Hat Enterprise Linux 7.6 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: zlib security update Advisory ID: RHSA-2023:0975-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2023:0975 Issue date: 2023-02-28 CVE Names: CVE-2018-25032 ==================================================================== 1. Summary: An update for zlib is now available for Red Hat Enterprise Linux 7.6 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Server AUS (v. 7.6) - x86_64 Red Hat Enterprise Linux Server Optional AUS (v. 7.6) - x86_64 3. Description: The zlib packages provide a general-purpose lossless data compression library that is used by many different programs. Security Fix(es): * zlib: A flaw found in zlib when compressing (not decompressing) certain inputs (CVE-2018-25032) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 2067945 - CVE-2018-25032 zlib: A flaw found in zlib when compressing (not decompressing) certain inputs 6. PackageList: Red Hat Enterprise Linux Server AUS (v. 7.6): Source: zlib-1.2.7-18.el7_6.1.src.rpm x86_64: zlib-1.2.7-18.el7_6.1.i686.rpm zlib-1.2.7-18.el7_6.1.x86_64.rpm zlib-debuginfo-1.2.7-18.el7_6.1.i686.rpm zlib-debuginfo-1.2.7-18.el7_6.1.x86_64.rpm zlib-devel-1.2.7-18.el7_6.1.i686.rpm zlib-devel-1.2.7-18.el7_6.1.x86_64.rpm Red Hat Enterprise Linux Server Optional AUS (v. 7.6): x86_64: minizip-1.2.7-18.el7_6.1.i686.rpm minizip-1.2.7-18.el7_6.1.x86_64.rpm minizip-devel-1.2.7-18.el7_6.1.i686.rpm minizip-devel-1.2.7-18.el7_6.1.x86_64.rpm zlib-debuginfo-1.2.7-18.el7_6.1.i686.rpm zlib-debuginfo-1.2.7-18.el7_6.1.x86_64.rpm zlib-static-1.2.7-18.el7_6.1.i686.rpm zlib-static-1.2.7-18.el7_6.1.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2018-25032 https://access.redhat.com/security/updates/classification#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2023 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBY/3znNzjgjWX9erEAQj2Ug//eP2p5J4YcyV0r5yDQ0z4VEJU1RaUJ4Ky /gATR8hkMyLQUuaRrCh3r/MyFHFO27lbEOSIHf+3A66L4cvKraMdFw0U7gr6AxS6 LwKO1SCTcMUXGOuys8zWGu4oVspR7UwclnNN0LEB3vUe16JXX22kl6ZeyODxJtoR CbDVcr3KgvDHCW2YC8avmRUjF3RHjfOrzczZdeeYP+4T0bDz54AWf8h+ktYne8T5 EnR3A3U73RwAnnG8OK5ssSnv0PuBiazydwO8X+HZIev5NXxejzkGsAHW7OFJwQpk mzM8NEfoxi1Qo1+k0njNrjDUifJXrlWOTv4H/UMMUYYgvxbLhaOHw2ZmkQB8peA9 4NDlMCEK9p9OrNjfQgAKqHQkK5o9Q3sF36LP0fGU7a385GYRfkpbjwkzIpDv8RGC 9vCkvs1IU8HkmUAjwLAgaF8ZTVCdh4ZYWrHgeSR3IobyIwouS0sJ/N97a9G4gRVb 9gYlw2PwDuTo51Px1EswNyTlG0rtZgebOlDtB71PuCxVreE2uSh7jId9fiuHwa+D 3JZFUF8MWiEVCY2Dk/dc7CwDnLQQg7ZheX3rnLXc9RFvub/2pBOvDsl68Bm2xiXr c0XnY0QzigH6tyWvs/y6CENmmLi5zDL7Rt8s3R6yOsDLGJYpXvUmpPtJrtuk9Cc5 13K7n2+/WZI=irA/ -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Feb 28, 2023
•Important
Red Hat
100
security advisorysusezlib updateSUSE: 2022:2974-1 Important Security Update for SLES12SP5 Containers
The container suse/sles12sp5 was updated. The following patches have been included in this update:. SUSE Container Update Advisory: suse/sles12sp5 ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2022:2974-1 Container Tags : suse/sles12sp5:6.5.400 , suse/sles12sp5:latest Container Release : 6.5.400 Severity : important Type : security References : 1183543 1183545 1183632 1183659 1185299 1193625 1196852 1203652 996280 CVE-2015-8985 CVE-2021-20266 CVE-2021-20271 CVE-2021-3421 ----------------------------------------------------------------- The container suse/sles12sp5 was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2022:3939-1 Released: Thu Nov 10 14:32:05 2022 Summary: Security update for rpm Type: security Severity: moderate References: 1183543,1183545,1183632,1183659,1185299,996280,CVE-2021-20266,CVE-2021-20271,CVE-2021-3421 This update for rpm fixes the following issues: - Fixed PGP parsing bugs (bsc#1185299). - Fixed various format handling bugs (bsc#996280). - CVE-2021-3421: Fixed vulnerability where unsigned headers could be injected into the rpm database (bsc#1183543). - CVE-2021-20271: Fixed vulnerability where a corrupted rpm could corrupt the rpm database (bsc#1183545). - CVE-2021-20266: Fixed missing bounds check in hdrblobInit (bsc#1183632). Bugfixes: - Fixed deadlock when multiple rpm processes tried to acquire the database lock (bsc#1183659). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2022:3942-1 Released: Thu Nov 10 15:58:47 2022 Summary: Security update for glibc Type: security Severity: moderate References: 1193625,1196852,CVE-2015-8985 This update for glibc fixes the following issues: - CVE-2015-8985: Fixed assertion failure in pop_fail_stack when executing a malformedregexp (bsc#1193625) - x86: fix stack alignment in pthread_cond_[timed]wait (bsc#1196852) - Recognize ppc64p7 arch to build for power7 ----------------------------------------------------------------- Advisory ID: SUSE-RU-2022:3962-1 Released: Mon Nov 14 07:34:23 2022 Summary: Recommended update for zlib Type: recommended Severity: important References: 1203652 This update for zlib fixes the following issues: - Fix updating strm.adler with inflate() if DFLTCC is used (bsc#1203652) The following package changes have been done: - glibc-2.22-114.22.1 updated - libz1-1.2.11-11.25.1 updated - rpm-4.11.2-16.26.1 updated . Critical security enhancement for SUSE Container suse/sles12sp4, rectifying various vulnerabilities with essential patches.. SUSE Container, Security Update, RPM Issues, GLIBC Fix, Zlib Update. . Severity: Important. LinuxSecurity.com Team
Nov 15, 2022
•Important
SuSE
98
security advisorybuffer overflowsecurity fixRed Hat Enterprise Linux 8: RHSA-2022:7106-01 Moderate Security Update
An update for zlib is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: zlib security update Advisory ID: RHSA-2022:7106-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2022:7106 Issue date: 2022-10-25 CVE Names: CVE-2022-37434 ==================================================================== 1. Summary: An update for zlib is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat CodeReady Linux Builder (v. 8) - aarch64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux BaseOS (v. 8) - aarch64, ppc64le, s390x, x86_64 3. Description: The zlib packages provide a general-purpose lossless data compression library that is used by many different programs. Security Fix(es): * zlib: a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field (CVE-2022-37434) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 2116639 - CVE-2022-37434zlib: heap-based buffer over-read and overflow in inflate() in inflate.c via a large gzip header extra field 6. Package List: Red Hat Enterprise Linux BaseOS (v. 8): Source: zlib-1.2.11-19.el8_6.src.rpm aarch64: zlib-1.2.11-19.el8_6.aarch64.rpm zlib-debuginfo-1.2.11-19.el8_6.aarch64.rpm zlib-debugsource-1.2.11-19.el8_6.aarch64.rpm zlib-devel-1.2.11-19.el8_6.aarch64.rpm ppc64le: zlib-1.2.11-19.el8_6.ppc64le.rpm zlib-debuginfo-1.2.11-19.el8_6.ppc64le.rpm zlib-debugsource-1.2.11-19.el8_6.ppc64le.rpm zlib-devel-1.2.11-19.el8_6.ppc64le.rpm s390x: zlib-1.2.11-19.el8_6.s390x.rpm zlib-debuginfo-1.2.11-19.el8_6.s390x.rpm zlib-debugsource-1.2.11-19.el8_6.s390x.rpm zlib-devel-1.2.11-19.el8_6.s390x.rpm x86_64: zlib-1.2.11-19.el8_6.i686.rpm zlib-1.2.11-19.el8_6.x86_64.rpm zlib-debuginfo-1.2.11-19.el8_6.i686.rpm zlib-debuginfo-1.2.11-19.el8_6.x86_64.rpm zlib-debugsource-1.2.11-19.el8_6.i686.rpm zlib-debugsource-1.2.11-19.el8_6.x86_64.rpm zlib-devel-1.2.11-19.el8_6.i686.rpm zlib-devel-1.2.11-19.el8_6.x86_64.rpm Red Hat CodeReady Linux Builder (v. 8): aarch64: zlib-debuginfo-1.2.11-19.el8_6.aarch64.rpm zlib-debugsource-1.2.11-19.el8_6.aarch64.rpm zlib-static-1.2.11-19.el8_6.aarch64.rpm ppc64le: zlib-debuginfo-1.2.11-19.el8_6.ppc64le.rpm zlib-debugsource-1.2.11-19.el8_6.ppc64le.rpm zlib-static-1.2.11-19.el8_6.ppc64le.rpm s390x: zlib-debuginfo-1.2.11-19.el8_6.s390x.rpm zlib-debugsource-1.2.11-19.el8_6.s390x.rpm zlib-static-1.2.11-19.el8_6.s390x.rpm x86_64: zlib-debuginfo-1.2.11-19.el8_6.i686.rpm zlib-debuginfo-1.2.11-19.el8_6.x86_64.rpm zlib-debugsource-1.2.11-19.el8_6.i686.rpm zlib-debugsource-1.2.11-19.el8_6.x86_64.rpm zlib-static-1.2.11-19.el8_6.i686.rpm zlib-static-1.2.11-19.el8_6.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2022-37434 https://access.redhat.com/security/updates/classification/#moderate 8. Contact: TheRed Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2022 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBY1fUytzjgjWX9erEAQjpQg//SxB/cuB8zxG/HvyDLCho8Te7u2Ttip7O J9gn2MULrik6lc9wZdBuu8dPpc7dNHObP2EbPms+4wLnmF62bTmb28/J+bckEBD+ fwHYEsG3iMVzx9SC2u2T89PpqHYS5Jk5LTFqyP2gqHI6eZnKASteS5SbTx7lxifu H9VDuOcNv5cnVMBgTslR+Z2R31KclU7s9MSYyPwZIQVDveUyZyzHgSAzTKL/yQ8V XCS/W+BfilKuX2VCQzs5u9tVNti2WRLxOrS9wt5rYb3SjwuYvnFhFeQKiiDn9nmQ bvxuiqmoiOJD9eOuRdrthjL1stzNhWPrtpzi6c0R2aKp7xlZAn4SoD+dEbHg6m4q FSNswDnNM7dfb6VqOeYolsDrUk/LJOIZE9DJ6uzgXH4FKqqdmVc39wm2pnrl2RuN TPB3E3NCGdoQT1e9lLZ5muX+BIm2QgOfiVnLzjFjqp7drgbXMnmIs17w0KJ9BMD/ QeRpH0GEIk7oPvuTQUv0Ktqs3zPpDmk0d49UGcM6C9XgsNkzJkCPvYTzzbjCG28X 8EENfzRDZmEAjA/SE6lPaYIUMkfiimY922PrO7mEtnwhDJ64s/9Jzmw/IofAVzFr bmREyd4GpTiM5GhqRQTf7b5JOf2ajFzX0buYatKXyhjd2/w3K0vOH8LEg8VRxGo5 vnQX9s6/0e8=cEVQ -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Oct 25, 2022
Red Hat
100
security advisorybuffer overflowimportantSUSE: 2022:2067-1 Important: bci/python Update Addressing Security Issues
The container bci/python was updated. The following patches have been included in this update:. SUSE Container Update Advisory: bci/python ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2022:2067-1 Container Tags : bci/python:3 , bci/python:3.6 , bci/python:3.6-28.18 Container Release : 28.18 Severity : important Type : security References : 1197178 1198731 1202175 1202593 CVE-2022-35252 CVE-2022-37434 ----------------------------------------------------------------- The container bci/python was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2022:2947-1 Released: Wed Aug 31 09:16:21 2022 Summary: Security update for zlib Type: security Severity: important References: 1202175,CVE-2022-37434 This update for zlib fixes the following issues: - CVE-2022-37434: Fixed heap-based buffer over-read or buffer overflow via large gzip header extra field (bsc#1202175). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2022:2977-1 Released: Thu Sep 1 12:30:19 2022 Summary: Recommended update for util-linux Type: recommended Severity: moderate References: 1197178,1198731 This update for util-linux fixes the following issues: - agetty: Resolve tty name even if stdin is specified (bsc#1197178) - libmount: When moving a mount point, update all sub mount entries in utab (bsc#1198731) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2022:3003-1 Released: Fri Sep 2 15:01:44 2022 Summary: Security update for curl Type: security Severity: low References: 1202593,CVE-2022-35252 This update for curl fixes the following issues: - CVE-2022-35252: Fixed a potential injection of control characters into cookies, which could be exploited by sister sites to cause a denial of service(bsc#1202593). The following package changes have been done: - libuuid1-2.37.2-150400.8.3.1 updated - libsmartcols1-2.37.2-150400.8.3.1 updated - libblkid1-2.37.2-150400.8.3.1 updated - libfdisk1-2.37.2-150400.8.3.1 updated - libz1-1.2.11-150000.3.33.1 updated - libmount1-2.37.2-150400.8.3.1 updated - libcurl4-7.79.1-150400.5.6.1 updated - util-linux-2.37.2-150400.8.3.1 updated - curl-7.79.1-150400.5.6.1 updated - container:sles15-image-15.0.0-27.11.18 updated . Keep informed about the latest SUSE's bci/python container revisions focusing on vital security concerns and critical updates.. Container Security Updates, bci/python Patches, SUSE Advisories. . Severity: Important. LinuxSecurity.com Team
Sep 07, 2022
•Important
SuSE
100
security advisorybuffer overflowimportantSUSE: 2022:2062-1 Important: bci/nodejs Security Update
The container bci/nodejs was updated. The following patches have been included in this update:. SUSE Container Update Advisory: bci/nodejs ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2022:2062-1 Container Tags : bci/node:16 , bci/node:16-9.20 , bci/node:latest , bci/nodejs:16 , bci/nodejs:16-9.20 , bci/nodejs:latest Container Release : 9.20 Severity : important Type : security References : 1197178 1198731 1202175 1202593 CVE-2022-35252 CVE-2022-37434 ----------------------------------------------------------------- The container bci/nodejs was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2022:2947-1 Released: Wed Aug 31 09:16:21 2022 Summary: Security update for zlib Type: security Severity: important References: 1202175,CVE-2022-37434 This update for zlib fixes the following issues: - CVE-2022-37434: Fixed heap-based buffer over-read or buffer overflow via large gzip header extra field (bsc#1202175). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2022:2977-1 Released: Thu Sep 1 12:30:19 2022 Summary: Recommended update for util-linux Type: recommended Severity: moderate References: 1197178,1198731 This update for util-linux fixes the following issues: - agetty: Resolve tty name even if stdin is specified (bsc#1197178) - libmount: When moving a mount point, update all sub mount entries in utab (bsc#1198731) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2022:3003-1 Released: Fri Sep 2 15:01:44 2022 Summary: Security update for curl Type: security Severity: low References: 1202593,CVE-2022-35252 This update for curl fixes the following issues: - CVE-2022-35252: Fixed a potential injection of control characters into cookies, which could be exploited by sistersites to cause a denial of service (bsc#1202593). The following package changes have been done: - libuuid1-2.37.2-150400.8.3.1 updated - libsmartcols1-2.37.2-150400.8.3.1 updated - libblkid1-2.37.2-150400.8.3.1 updated - libfdisk1-2.37.2-150400.8.3.1 updated - libz1-1.2.11-150000.3.33.1 updated - libmount1-2.37.2-150400.8.3.1 updated - libcurl4-7.79.1-150400.5.6.1 updated - util-linux-2.37.2-150400.8.3.1 updated - container:sles15-image-15.0.0-27.11.18 updated . Enhancements to bci/nodejs feature critical security fixes that tackle buffer overflow as well as various other weaknesses.. bci/nodejs Update, Security Patches, Buffer Overflow Fix, Curl Security Fix, Zlib Update. . Severity: Important. LinuxSecurity.com Team
Sep 07, 2022
•Important
SuSE
100
security advisoryimportantpatch managementSUSE: 2022:2034-1 Important: bci/dotnet-sdk Security Fixes Overview
The container bci/dotnet-sdk was updated. The following patches have been included in this update:. SUSE Container Update Advisory: bci/dotnet-sdk ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2022:2034-1 Container Tags : bci/dotnet-sdk:6.0 , bci/dotnet-sdk:6.0-22.17 , bci/dotnet-sdk:6.0.8 , bci/dotnet-sdk:6.0.8-22.17 , bci/dotnet-sdk:latest Container Release : 22.17 Severity : important Type : security References : 1197178 1198731 1202175 1202593 CVE-2022-35252 CVE-2022-37434 ----------------------------------------------------------------- The container bci/dotnet-sdk was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2022:2947-1 Released: Wed Aug 31 09:16:21 2022 Summary: Security update for zlib Type: security Severity: important References: 1202175,CVE-2022-37434 This update for zlib fixes the following issues: - CVE-2022-37434: Fixed heap-based buffer over-read or buffer overflow via large gzip header extra field (bsc#1202175). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2022:2977-1 Released: Thu Sep 1 12:30:19 2022 Summary: Recommended update for util-linux Type: recommended Severity: moderate References: 1197178,1198731 This update for util-linux fixes the following issues: - agetty: Resolve tty name even if stdin is specified (bsc#1197178) - libmount: When moving a mount point, update all sub mount entries in utab (bsc#1198731) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2022:3003-1 Released: Fri Sep 2 15:01:44 2022 Summary: Security update for curl Type: security Severity: low References: 1202593,CVE-2022-35252 This update for curl fixes the following issues: - CVE-2022-35252: Fixed a potential injection of control characters into cookies, whichcould be exploited by sister sites to cause a denial of service (bsc#1202593). The following package changes have been done: - libuuid1-2.37.2-150400.8.3.1 updated - libsmartcols1-2.37.2-150400.8.3.1 updated - libblkid1-2.37.2-150400.8.3.1 updated - libfdisk1-2.37.2-150400.8.3.1 updated - libz1-1.2.11-150000.3.33.1 updated - libmount1-2.37.2-150400.8.3.1 updated - libcurl4-7.79.1-150400.5.6.1 updated - util-linux-2.37.2-150400.8.3.1 updated - container:sles15-image-15.0.0-27.11.18 updated . The SUSE Container Security Advisory for bci/python brings essential security enhancements and patches, tackling identified vulnerabilities.. bci/dotnet-sdk update, SUSE security patch, container advisory. . Severity: Important. LinuxSecurity.com Team
Sep 06, 2022
•Important
SuSE
100
security advisorybuffer overflowimportantSUSE: 2022:2003-1 Important: bci/golang Buffer Overflow Issue
The container bci/golang was updated. The following patches have been included in this update:. SUSE Container Update Advisory: bci/golang ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2022:2003-1 Container Tags : bci/golang:1.19 , bci/golang:1.19-2.13 , bci/golang:latest Container Release : 2.13 Severity : important Type : security References : 1202175 CVE-2022-37434 ----------------------------------------------------------------- The container bci/golang was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2022:2947-1 Released: Wed Aug 31 09:16:21 2022 Summary: Security update for zlib Type: security Severity: important References: 1202175,CVE-2022-37434 This update for zlib fixes the following issues: - CVE-2022-37434: Fixed heap-based buffer over-read or buffer overflow via large gzip header extra field (bsc#1202175). The following package changes have been done: - libz1-1.2.11-150000.3.33.1 updated - container:sles15-image-15.0.0-27.11.15 updated . SUSE Container Rollout for bci/golang encompasses crucial security enhancements and evaluations. Keep abreast of significant container modifications.. SUSE Container Update,bci/golang Security Patch,Buffer Overflow Fix,Container Security Advisory. . Severity: Important. LinuxSecurity.com Team
Sep 01, 2022
•Important
SuSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!