SUSE Container Update Advisory: 
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2023:765-1
Container Tags        : suse/sle-micro-rancher/5.2:latest
Container Release     : 7.5.108
Severity              : important
Type                  : security
References            : 1180207 1185000 1193880 1197653 1198038 1202364 1205808 CVE-2020-14394
                        CVE-2021-3507 CVE-2021-3929 CVE-2022-0216 CVE-2022-1050 CVE-2022-4144
-----------------------------------------------------------------

The container  was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2023:840-1
Released:    Tue Mar 21 09:54:03 2023
Summary:     Security update for qemu
Type:        security
Severity:    important
References:  1180207,1185000,1193880,1197653,1198038,1202364,1205808,CVE-2020-14394,CVE-2021-3507,CVE-2021-3929,CVE-2022-0216,CVE-2022-1050,CVE-2022-4144
This update for qemu fixes the following issues:
  
- CVE-2022-4144: Fixed unsafe address translation can lead to out-of-bounds read in qxl_phys2virt (bsc#1205808).
- CVE-2021-3507: Fixed heap buffer overflow in DMA read data transfers in fdc (bsc#1185000).
- CVE-2020-14394: Fixed infinite loop in xhci_ring_chain_length() (bsc#1180207).
- CVE-2022-0216: Fixed a use-after-free in lsi_do_msgout function in hw/scsi/lsi53c895a.c (bsc#1198038).
- CVE-2022-1050: Fixed a use-after-free issue in pvrdma_exec_cmd() in pvrdma (bsc#1197653).
- CVE-2021-3929: Fixed a DMA reentrancy issue leads to use-after-free in nvme (bsc#1193880).

The following non-security bugs were fixed:

- Fix bsc#1202364.


The following package changes have been done:

- qemu-guest-agent-5.2.0-150300.121.2 updated