SUSE Container Update Advisory: bci/rust ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2024:2380-1 Container Tags : bci/rust:1.77 , bci/rust:1.77-2.2.7 , bci/rust:oldstable , bci/rust:oldstable-2.2.7 Container Release : 2.7 Severity : moderate Type : security References : 1222047 1222548 1223596 CVE-2024-2511 ----------------------------------------------------------------- The container bci/rust was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-RU-2024:1159-1 Released: Mon Apr 8 13:27:12 2024 Summary: Recommended update for rust, rust1.77 Type: recommended Severity: moderate References: 1222047 This update for rust, rust1.77 fixes the following issues: Changes in rust1.77: - update gcc minimum to 13 for SLE (bsc#1222047) Version 1.77.0 (2024-03-21) ========================== Language -------- - Reveal opaque types within the defining body for exhaustiveness checking. - Stabilize C-string literals. - Stabilize THIR unsafeck. - Add lint `static_mut_refs` to warn on references to mutable statics. - Support async recursive calls (as long as they have indirection). - Undeprecate lint `unstable_features` and make use of it in the compiler. - Make inductive cycles in coherence ambiguous always. - Get rid of type-driven traversal in const-eval interning only as a [future compatiblity lint - Deny braced macro invocations in let-else. Compiler -------- - Include lint `soft_unstable` in future breakage reports. - Make `i128` and `u128` 16-byte aligned on x86-based targets. - Use `--verbose` in diagnostic output. - Improve spacing between printed tokens. - Merge the `unused_tuple_struct_fields` lint into `dead_code`. - Error on incorrect implied bounds in well-formedness check with a temporary exception for Bevy. - Fix coverage instrumentation/reports for non-ASCII source code. - Fix `fn`/`const` items implied bounds and well-formedness check. - Promote `riscv32{im|imafc}-unknown-none-elf` targets to tier 2. Libraries --------- - Implement `From<&[T; N]>` for `Cow<[T]>`. - Remove special-case handling of `vec.split_off(0)`. Stabilized APIs --------------- - `array::each_ref` https://doc.rust-lang.org/stable/std/primitive.array.html#method.each_ref - `array::each_mut` https://doc.rust-lang.org/stable/std/primitive.array.html#method.each_mut - `core::net` https://doc.rust-lang.org/stable/core/net/index.html - `f32::round_ties_even` https://doc.rust-lang.org/stable/std/primitive.f32.html#method.round_ties_even - `f64::round_ties_even` https://doc.rust-lang.org/stable/std/primitive.f64.html#method.round_ties_even - `mem::offset_of!` https://doc.rust-lang.org/stable/std/mem/macro.offset_of.html - `slice::first_chunk` https://doc.rust-lang.org/stable/std/primitive.slice.html#method.first_chunk - `slice::first_chunk_mut` https://doc.rust-lang.org/stable/std/primitive.slice.html#method.first_chunk_mut - `slice::split_first_chunk` https://doc.rust-lang.org/stable/std/primitive.slice.html#method.split_first_chunk - `slice::split_first_chunk_mut` https://doc.rust-lang.org/stable/std/primitive.slice.html#method.split_first_chunk_mut - `slice::last_chunk` https://doc.rust-lang.org/stable/std/primitive.slice.html#method.last_chunk - `slice::last_chunk_mut` https://doc.rust-lang.org/stable/std/primitive.slice.html#method.last_chunk_mut - `slice::split_last_chunk` https://doc.rust-lang.org/stable/std/primitive.slice.html#method.split_last_chunk - `slice::split_last_chunk_mut` https://doc.rust-lang.org/stable/std/primitive.slice.html#method.split_last_chunk_mut - `slice::chunk_by` https://doc.rust-lang.org/stable/std/primitive.slice.html#method.chunk_by - `slice::chunk_by_mut` https://doc.rust-lang.org/stable/std/primitive.slice.html#method.chunk_by_mut - `Bound::map` https://doc.rust-lang.org/stable/std/ops/enum.Bound.html#method.map - `File::create_new` https://doc.rust-lang.org/stable/std/fs/struct.File.html#method.create_new - `Mutex::clear_poison` https://doc.rust-lang.org/stable/std/sync/struct.Mutex.html#method.clear_poison - `RwLock::clear_poison` https://doc.rust-lang.org/stable/std/sync/struct.RwLock.html#method.clear_poison Cargo ----- - Extend the build directive syntax with `cargo::`. - Stabilize metadata `id` format as `PackageIDSpec`. - Pull out `cargo-util-schemas` as a crate. - Strip all debuginfo when debuginfo is not requested. - Inherit jobserver from env for all kinds of runners. - Deprecate rustc plugin support in cargo. Rustdoc ----- - Allows links in markdown headings. - Search for tuples and unit by type with `()`. - Clean up the source sidebar's hide button. - Prevent JS injection from `localStorage`. Misc ---- - Recommend version-sorting for all sorting in style guide. ----------------------------------------------------------------- Advisory ID: SUSE-RU-2024:1802-1 Released: Tue May 28 16:20:18 2024 Summary: Recommended update for e2fsprogs Type: recommended Severity: moderate References: 1223596 This update for e2fsprogs fixes the following issues: EA Inode handling fixes: - ext2fs: avoid re-reading inode multiple times (bsc#1223596) - e2fsck: fix potential out-of-bounds read in inc_ea_inode_refs() (bsc#1223596) - e2fsck: add more checks for ea inode consistency (bsc#1223596) - e2fsck: fix golden output of several tests (bsc#1223596) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2024:1808-1 Released: Tue May 28 22:12:38 2024 Summary: Security update for openssl-1_1 Type: security Severity: moderate References: 1222548,CVE-2024-2511 This update for openssl-1_1 fixes the following issues: - CVE-2024-2511: Fixed unconstrained session cache growth in TLSv1.3 (bsc#1222548). The following package changes have been done: - libcom_err2-1.46.4-150400.3.6.2 updated - libopenssl1_1-1.1.1l-150500.17.28.2 updated - libopenssl1_1-hmac-1.1.1l-150500.17.28.2 updated - rust1.77-1.77.0-150500.11.3.1 added - cargo1.77-1.77.0-150500.11.3.1 added - container:sles15-image-15.0.0-36.11.38 updated - cargo1.76-1.76.0-150500.11.6.1 removed - rust1.76-1.76.0-150500.11.6.1 removed