SUSE Container Update Advisory: ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2024:4016-1 Container Tags : suse/sle-micro-rancher/5.4:latest Container Release : 3.2.320 Severity : moderate Type : security References : 1218297 1221479 1226414 1228091 1228847 CVE-2023-7008 ----------------------------------------------------------------- The container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-RU-2024:3145-1 Released: Thu Sep 5 09:09:27 2024 Summary: Recommended update for dracut Type: recommended Severity: moderate References: 1228847 This update for dracut fixes the following issue: - Version update * fix(convertfs): error in conditional expressions (bsc#1228847). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2024:3149-1 Released: Thu Sep 5 17:05:36 2024 Summary: Security update for systemd Type: security Severity: moderate References: 1218297,1221479,1226414,1228091,CVE-2023-7008 This update for systemd fixes the following issues: - CVE-2023-7008: Fixed man-in-the-middle due to unsigned name response in signed zone not refused when DNSSEC=yes (bsc#1218297) Other fixes: - Unit: drop ProtectClock=yes from systemd-udevd.service (bsc#1226414) - Don't mention any rpm macros inside comments, even if escaped (bsc#1228091) - Skip redundant dependencies specified the LSB description that references the file name of the service itself for early boot scripts (bsc#1221479). The following package changes have been done: - dracut-mkinitrd-deprecated-055+suse.359.geb85610b-150400.3.37.2 updated - dracut-055+suse.359.geb85610b-150400.3.37.2 updated - libsystemd0-249.17-150400.8.43.1 updated - libudev1-249.17-150400.8.43.1 updated - systemd-sysvinit-249.17-150400.8.43.1 updated - systemd-249.17-150400.8.43.1 updated - udev-249.17-150400.8.43.1 updated