SUSE Container Update Advisory: 
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2024:1644-1
Container Tags        : suse/sle-micro-rancher/5.4:latest
Container Release     : 3.2.251
Severity              : important
Type                  : security
References            : 1213269 1218889 1220134 1222843 1222845 CVE-2023-3019 CVE-2023-6683
                        CVE-2024-24474 CVE-2024-3446 CVE-2024-3447 
-----------------------------------------------------------------

The container  was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2024:1394-1
Released:    Tue Apr 23 11:16:03 2024
Summary:     Security update for qemu
Type:        security
Severity:    important
References:  1213269,1218889,1220134,1222843,1222845,CVE-2023-3019,CVE-2023-6683,CVE-2024-24474,CVE-2024-3446,CVE-2024-3447
This update for qemu fixes the following issues:

 - CVE-2023-3019: Fixed heap use-after-free in e1000e_write_packet_to_guest() (bsc#1213269)
 - CVE-2023-6683: Fixed NULL pointer dereference in qemu_clipboard_request() (bsc#1218889)
 - CVE-2024-24474: Fixed integer overflow results in buffer overflow via SCSI command (bsc#1220134)
 - CVE-2024-3446: Fixed DM reentrancy issue that could lead to double free vulnerability (bsc#1222843)
 - CVE-2024-3447: Fixed heap buffer overflow in sdhci_write_dataport() (bsc#1222845)

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:1398-1
Released:    Tue Apr 23 13:58:22 2024
Summary:     Recommended update for systemd-default-settings
Type:        recommended
Severity:    moderate
References:  
This update for systemd-default-settings fixes the following issues:

- Disable pids controller limit under user instances (jsc#SLE-10123)
- Disable controllers by default (jsc#PED-2276)
- The usage of drop-ins is now the official way for configuring systemd and its various daemons on Factory/ALP, 
  hence the early drop-ins SUSE specific 'feature' has been abandoned.
- User priority '26' for SLE-Micro
- Convert more drop-ins into early ones


The following package changes have been done:

- qemu-guest-agent-6.2.0-150400.37.29.1 updated
- systemd-default-settings-branding-SLE-0.10-150300.3.7.1 updated
- systemd-default-settings-0.10-150300.3.7.1 updated