SUSE Container Update Advisory: suse/389-ds
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2024:980-1
Container Tags        : suse/389-ds:2.2 , suse/389-ds:2.2-20.34 , suse/389-ds:latest
Container Release     : 20.34
Severity              : important
Type                  : security
References            : 1214691 1215377 1217445 1217589 1218866 1219666 1219836 CVE-2022-48566
                        CVE-2023-6597 CVE-2024-1062 
-----------------------------------------------------------------

The container suse/389-ds was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2024:870-1
Released:    Wed Mar 13 13:05:14 2024
Summary:     Security update for glibc
Type:        security
Severity:    moderate
References:  1217445,1217589,1218866
This update for glibc fixes the following issues:

Security issues fixed:

- qsort: harden handling of degenerated / non transient compare function (bsc#1218866)

Other issues fixed:

- getaddrinfo: translate ENOMEM to EAI_MEMORY (bsc#1217589, BZ #31163)
- aarch64: correct CFI in rawmemchr (bsc#1217445, BZ #31113)

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2024:901-1
Released:    Thu Mar 14 17:49:10 2024
Summary:     Security update for python3
Type:        security
Severity:    important
References:  1214691,1219666,CVE-2022-48566,CVE-2023-6597
This update for python3 fixes the following issues:

- CVE-2023-6597: Fixed symlink bug in cleanup of tempfile.TemporaryDirectory (bsc#1219666).
- CVE-2022-48566: Make compare_digest more constant-time (bsc#1214691).

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:907-1
Released:    Fri Mar 15 08:57:38 2024
Summary:     Recommended update for audit
Type:        recommended
Severity:    moderate
References:  1215377
This update for audit fixes the following issue:

- Fix plugin termination when using systemd service units (bsc#1215377)

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2024:908-1
Released:    Fri Mar 15 10:20:21 2024
Summary:     Security update for 389-ds
Type:        security
Severity:    moderate
References:  1219836,CVE-2024-1062
This update for 389-ds fixes the following issues:

- CVE-2024-1062: Fixed possible denial of service when audit logging is enabled (bsc#1219836).


The following package changes have been done:

- glibc-2.31-150300.68.1 updated
- libaudit1-3.0.6-150400.4.16.1 updated
- python3-base-3.6.15-150300.10.57.1 updated
- libpython3_6m1_0-3.6.15-150300.10.57.1 updated
- python3-3.6.15-150300.10.57.1 updated
- libsvrcore0-2.2.8~git65.347aae6-150500.3.17.1 updated
- lib389-2.2.8~git65.347aae6-150500.3.17.1 updated
- 389-ds-2.2.8~git65.347aae6-150500.3.17.1 updated
- container:sles15-image-15.0.0-36.11.13 updated