SUSE Container Update Advisory: ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2022:3012-1 Container Tags : suse/sle-micro-rancher/5.3:latest Container Release : 7.2.40 Severity : important Type : security References : 1193566 1199856 1202344 1202627 1203699 1204179 1204968 1204986 CVE-2022-3821 CVE-2022-43995 ----------------------------------------------------------------- The container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2022:3999-1 Released: Tue Nov 15 17:08:04 2022 Summary: Security update for systemd Type: security Severity: moderate References: 1204179,1204968,CVE-2022-3821 This update for systemd fixes the following issues: - CVE-2022-3821: Fixed buffer overrun in format_timespan() function (bsc#1204968). - Import commit 0cd50eedcc0692c1f907b24424215f8db7d3b428 * 0469b9f2bc pstore: do not try to load all known pstore modules * ad05f54439 pstore: Run after modules are loaded * ccad817445 core: Add trigger limit for path units * 281d818fe3 core/mount: also add default before dependency for automount mount units * ffe5b4afa8 logind: fix crash in logind on user-specified message string - Document udev naming scheme (bsc#1204179) - Make 'sle15-sp3' net naming scheme still available for backward compatibility reason ----------------------------------------------------------------- Advisory ID: SUSE-SU-2022:4001-1 Released: Tue Nov 15 17:08:52 2022 Summary: Security update for sudo Type: security Severity: important References: 1204986,CVE-2022-43995 This update for sudo fixes the following issues: - CVE-2022-43995: Fixed a potential heap-based buffer over-read when entering a password of seven characters or fewer and using the crypt() password backend (bsc#1204986). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2022:4006-1 Released: Wed Nov 16 08:25:00 2022 Summary: Recommended update for kernel-firmware Type: recommended Severity: important References: 1203699 This update for kernel-firmware fixes the following issues: - Update firmware for CS35L41 codecs (bsc#1203699) ----------------------------------------------------------------- Advisory ID: SUSE-RU-2022:4019-1 Released: Wed Nov 16 15:44:20 2022 Summary: Recommended update for apparmor Type: recommended Severity: low References: 1202344 This update for apparmor fixes the following issues: - profiles: permit php-fpm pid files directly under run/ (bsc#1202344) ----------------------------------------------------------------- Advisory ID: SUSE-RU-2022:4020-1 Released: Wed Nov 16 15:45:13 2022 Summary: Recommended update for nfs-utils Type: recommended Severity: moderate References: 1199856,1202627 This update for nfs-utils fixes the following issues: - Fix nfsdcltrack bug that affected non-x86 archs (bsc#1202627) - Ensure sysctl setting work (bsc#1199856) ----------------------------------------------------------------- Advisory ID: SUSE-RU-2022:4021-1 Released: Wed Nov 16 15:46:09 2022 Summary: Recommended update for mdadm Type: recommended Severity: low References: 1193566 This update for mdadm fixes the following issues: - Add EXTRAVERSION as make argument on build (jsc#SLE-24761, bsc#1193566) The following package changes have been done: - apparmor-parser-3.0.4-150400.5.3.1 updated - kernel-firmware-bnx2-20220509-150400.4.13.1 updated - kernel-firmware-chelsio-20220509-150400.4.13.1 updated - kernel-firmware-i915-20220509-150400.4.13.1 updated - kernel-firmware-intel-20220509-150400.4.13.1 updated - kernel-firmware-iwlwifi-20220509-150400.4.13.1 updated - kernel-firmware-liquidio-20220509-150400.4.13.1 updated - kernel-firmware-marvell-20220509-150400.4.13.1 updated - kernel-firmware-mediatek-20220509-150400.4.13.1 updated - kernel-firmware-mellanox-20220509-150400.4.13.1 updated - kernel-firmware-network-20220509-150400.4.13.1 updated - kernel-firmware-platform-20220509-150400.4.13.1 updated - kernel-firmware-qlogic-20220509-150400.4.13.1 updated - kernel-firmware-realtek-20220509-150400.4.13.1 updated - kernel-firmware-usb-network-20220509-150400.4.13.1 updated - libapparmor1-3.0.4-150400.5.3.1 updated - libsystemd0-249.12-150400.8.13.1 updated - libudev1-249.12-150400.8.13.1 updated - mdadm-4.1-150300.24.21.1 updated - nfs-client-2.1.1-150100.10.27.1 updated - sudo-1.9.9-150400.4.6.1 updated - systemd-sysvinit-249.12-150400.8.13.1 updated - systemd-249.12-150400.8.13.1 updated - udev-249.12-150400.8.13.1 updated