SUSE Container Update Advisory: 
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2024:3365-1
Container Tags        : suse/sle-micro-rancher/5.2:latest
Container Release     : 7.5.383
Severity              : important
Type                  : security
References            : 1225976 1226125 1226664 1227181 916845 CVE-2013-4235 
-----------------------------------------------------------------

The container  was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2024:2648-1
Released:    Tue Jul 30 12:03:47 2024
Summary:     Security update for shadow
Type:        security
Severity:    important
References:  916845,CVE-2013-4235
This update for shadow fixes the following issues:

- CVE-2013-4235: Fixed a race condition when copying and removing directory trees (bsc#916845).

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:2664-1
Released:    Tue Jul 30 15:47:13 2024
Summary:     Recommended update for open-vm-tools
Type:        recommended
Severity:    moderate
References:  1227181
This update for open-vm-tools fixes the following issues:

- There are no new features in the open-vm-tools release (bsc#1227181).
  This is primarily a maintenance release that addresses a few critical
  problems, including:
    - A Github pull request and associated issue has been handled. Please
      see the Resolved Issues section of the Release Notes
    - A number of issues flagged by Coverity and ShellCheck have been
      addressed
    - A vmtoolsd process hang related to nested logging from an RPC Channel
      error has been fixed

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:2674-1
Released:    Wed Jul 31 06:57:02 2024
Summary:     Recommended update for wicked
Type:        recommended
Severity:    important
References:  1225976,1226125,1226664
This update for wicked fixes the following issues:

- Update to version 0.6.76
- compat-suse: warn user and create missing parent config of infiniband children
- client: fix origin in loaded xml-config with obsolete port references but missing port interface config, causing a no-carrier of master (bsc#1226125)
- ipv6: fix setup on ipv6.disable=1 kernel cmdline (bsc#1225976)
- wireless: add frequency-list in station mode (jsc#PED-8715)
- client: fix crash while hierarchy traversing due to loop in e.g. systemd-nspawn containers (bsc#1226664)
- man: add supported bonding options to ifcfg-bonding(5) man page
- arputil: Document minimal interval for getopts
- man: (re)generate man pages from md sources
- client: warn on interface wait time reached
- compat-suse: fix dummy type detection from ifname to not cause conflicts with e.g. correct vlan config on dummy0.42 interfaces
- compat-suse: fix infiniband and infiniband child type detection from ifname


The following package changes have been done:

- libvmtools0-12.4.5-150300.52.6 updated
- login_defs-4.8.1-150300.4.15.1 updated
- open-vm-tools-12.4.5-150300.52.6 updated
- shadow-4.8.1-150300.4.15.1 updated
- wicked-service-0.6.76-150300.4.35.1 updated
- wicked-0.6.76-150300.4.35.1 updated