SUSE Container Update Advisory: suse/git
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2024:3101-1
Container Tags        : suse/git:2.43 , suse/git:2.43-17.10 , suse/git:latest
Container Release     : 17.10
Severity              : moderate
Type                  : security
References            : 1218215 1224392 1225904 1227318 1227350 CVE-2023-51385 CVE-2024-39894
-----------------------------------------------------------------

The container suse/git was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2024:2393-1
Released:    Wed Jul 10 17:33:47 2024
Summary:     Security update for openssh
Type:        security
Severity:    moderate
References:  1218215,1224392,1225904,1227318,1227350,CVE-2023-51385,CVE-2024-39894
This update for openssh fixes the following issues:

Security fixes:

- CVE-2024-39894: Fixed timing attacks against echo-off password entry (bsc#1227318).

Other fixes:
- Add obsoletes for openssh-server-config-rootlogin (bsc#1227350).
- Add #include <stdlib.h> in some files added by the ldap patch to
  fix build with gcc14 (bsc#1225904).
- Remove the recommendation for openssh-server-config-rootlogin
  from openssh-server (bsc#1224392).


The following package changes have been done:

- openssh-clients-9.6p1-150600.6.6.1 updated
- openssh-common-9.6p1-150600.6.6.1 updated