Image summary for sles-15-sp3-chost-byos-v20220708-x86-64

SUSE-IU-2022:760-1

Container Advisory IDSUSE-IU-2022:760-1
Container Tagssles-15-sp3-chost-byos-v20220708-x86-64:20220708
Container Release
The following patches have been included in this update:
Advisory IDSUSE-RU-2022:2061-1
ReleasedMon Jun 13 15:33:49 2022
SummaryRecommended update for SUSEConnect
Typerecommended
Severitymoderate
References1196076
Description:

This update for SUSEConnect fixes the following issues:


Advisory IDSUSE-SU-2022:2064-1
ReleasedMon Jun 13 15:35:18 2022
SummarySecurity update for grub2
Typesecurity
Severityimportant
References1191184,1191185,1191186,1193282,1197948,1198460,1198493,1198495,1198496,1198581,CVE-2021-3695,CVE-2021-3696,CVE-2021-3697,CVE-2022-28733,CVE-2022-28734,CVE-2022-28735,CVE-2022-28736
Description:

This update for grub2 fixes the following issues:
Security fixes and hardenings for boothole 3 / boothole 2022 (bsc#1198581)


Advisory IDSUSE-SU-2022:2065-1
ReleasedMon Jun 13 15:35:53 2022
SummarySecurity update for xen
Typesecurity
Severityimportant
References1027519,1197426,1199965,1199966,CVE-2022-26358,CVE-2022-26359,CVE-2022-26360,CVE-2022-26361,CVE-2022-26362,CVE-2022-26363,CVE-2022-26364
Description:

This update for xen fixes the following issues:

Advisory IDSUSE-SU-2022:2078-1
ReleasedTue Jun 14 20:30:07 2022
SummarySecurity update for the Linux Kernel
Typesecurity
Severityimportant
References1055117,1061840,1065729,1103269,1118212,1153274,1154353,1156395,1158266,1167773,1176447,1178134,1180100,1183405,1188885,1195826,1196426,1196478,1196570,1196840,1197446,1197472,1197601,1197675,1198438,1198577,1198971,1198989,1199035,1199052,1199063,1199114,1199314,1199505,1199507,1199564,1199626,1199631,1199650,1199670,1199839,1200019,1200045,1200046,1200192,1200216,CVE-2019-19377,CVE-2021-33061,CVE-2022-0168,CVE-2022-1184,CVE-2022-1652,CVE-2022-1729,CVE-2022-1972,CVE-2022-20008,CVE-2022-21123,CVE-2022-21125,CVE-2022-21127,CVE-2022-21166,CVE-2022-21180,CVE-2022-30594
Description:


The SUSE Linux Enterprise 15 SP3 kernel was updated.
The following security bugs were fixed:


The following non-security bugs were fixed:

Advisory IDSUSE-SU-2022:2102-1
ReleasedThu Jun 16 15:18:23 2022
SummarySecurity update for vim
Typesecurity
Severityimportant
References1070955,1191770,1192167,1192902,1192903,1192904,1193466,1193905,1194093,1194216,1194217,1194388,1194872,1194885,1195004,1195203,1195332,1195354,1196361,1198596,1198748,1199331,1199333,1199334,1199651,1199655,1199693,1199745,1199747,1199936,1200010,1200011,1200012,CVE-2017-17087,CVE-2021-3778,CVE-2021-3796,CVE-2021-3872,CVE-2021-3875,CVE-2021-3903,CVE-2021-3927,CVE-2021-3928,CVE-2021-3968,CVE-2021-3973,CVE-2021-3974,CVE-2021-3984,CVE-2021-4019,CVE-2021-4069,CVE-2021-4136,CVE-2021-4166,CVE-2021-4192,CVE-2021-4193,CVE-2021-46059,CVE-2022-0128,CVE-2022-0213,CVE-2022-0261,CVE-2022-0318,CVE-2022-0319,CVE-2022-0351,CVE-2022-0359,CVE-2022-0361,CVE-2022-0392,CVE-2022-0407,CVE-2022-0413,CVE-2022-0696,CVE-2022-1381,CVE-2022-1420,CVE-2022-1616,CVE-2022-1619,CVE-2022-1620,CVE-2022-1733,CVE-2022-1735,CVE-2022-1771,CVE-2022-1785,CVE-2022-1796,CVE-2022-1851,CVE-2022-1897,CVE-2022-1898,CVE-2022-1927
Description:

This update for vim fixes the following issues:

Advisory IDSUSE-SU-2022:2173-1
ReleasedFri Jun 24 10:52:31 2022
SummarySecurity update for the Linux Kernel
Typesecurity
Severityimportant
References1177282,1199365,1200015,1200143,1200144,1200206,1200207,1200249,1200259,1200263,1200268,1200529,CVE-2020-26541,CVE-2022-1966,CVE-2022-1974,CVE-2022-1975
Description:


The SUSE Linux Enterprise 15 SP3 kernel was updated.
The following security bugs were fixed:

The following non-security bugs were fixed:

Advisory IDSUSE-SU-2022:2251-1
ReleasedMon Jul 4 09:52:25 2022
SummarySecurity update for openssl-1_1
Typesecurity
Severitymoderate
References1185637,1199166,1200550,CVE-2022-1292,CVE-2022-2068
Description:

This update for openssl-1_1 fixes the following issues:

Advisory IDSUSE-RU-2022:2269-1
ReleasedTue Jul 5 15:34:04 2022
SummaryRecommended update for virt-manager
Typerecommended
Severitymoderate
References1027942
Description:

This update for virt-manager fixes the following issues:


Advisory IDSUSE-RU-2022:2323-1
ReleasedThu Jul 7 12:16:58 2022
SummaryRecommended update for systemd-presets-branding-SLE
Typerecommended
Severitylow
References
Description:

This update for systemd-presets-branding-SLE fixes the following issues:

Advisory IDSUSE-SU-2022:2327-1
ReleasedThu Jul 7 15:06:13 2022
SummarySecurity update for curl
Typesecurity
Severityimportant
References1200735,1200737,CVE-2022-32206,CVE-2022-32208
Description:

This update for curl fixes the following issues:

Advisory IDSUSE-SU-2022:2328-1
ReleasedThu Jul 7 15:07:35 2022
SummarySecurity update for openssl-1_1
Typesecurity
Severityimportant
References1201099,CVE-2022-2097
Description:

This update for openssl-1_1 fixes the following issues:

Advisory IDSUSE-RU-2022:2339-1
ReleasedFri Jul 8 15:47:43 2022
SummaryRecommended update for rsyslog
Typerecommended
Severitymoderate
References1198939
Description:

This update for rsyslog fixes the following issues:

Advisory IDSUSE-SU-2022:2341-1
ReleasedFri Jul 8 16:09:12 2022
SummarySecurity update for containerd, docker and runc
Typesecurity
Severityimportant
References1192051,1199460,1199565,1200088,1200145,CVE-2022-29162,CVE-2022-31030
Description:

This update for containerd, docker and runc fixes the following issues:
containerd:


docker:

runc:
Update to runc v1.1.3.
Upstream changelog is available from https://github.com/opencontainers/runc/releases/tag/v1.1.3.

Update to runc v1.1.2.
Upstream changelog is available from https://github.com/opencontainers/runc/releases/tag/v1.1.2.
Security issue fixed:


Update to runc v1.1.1.
Upstream changelog is available from https://github.com/opencontainers/runc/releases/tag/v1.1.1.

Update to runc v1.1.0.
Upstream changelog is available from https://github.com/opencontainers/runc/releases/tag/v1.1.0.

Update to runc v1.1.0~rc1.
Upstream changelog is available from https://github.com/opencontainers/runc/releases/tag/v1.1.0-rc.1.

SUSE-IU-2022:679-1

Container Advisory IDSUSE-IU-2022:679-1
Container Tagssles-15-sp3-chost-byos-v20220608-x86-64:20220608
Container Release
The following patches have been included in this update:
Advisory IDSUSE-RU-2022:1655-1
ReleasedFri May 13 15:36:10 2022
SummaryRecommended update for pam
Typerecommended
Severitymoderate
References1197794
Description:

This update for pam fixes the following issue:

Advisory IDSUSE-SU-2022:1657-1
ReleasedFri May 13 15:39:07 2022
SummarySecurity update for curl
Typesecurity
Severitymoderate
References1198614,1198723,1198766,CVE-2022-22576,CVE-2022-27775,CVE-2022-27776
Description:

This update for curl fixes the following issues:

Advisory IDSUSE-RU-2022:1658-1
ReleasedFri May 13 15:40:20 2022
SummaryRecommended update for libpsl
Typerecommended
Severityimportant
References1197771
Description:

This update for libpsl fixes the following issues:

Advisory IDSUSE-RU-2022:1659-1
ReleasedFri May 13 15:41:32 2022
SummaryRecommended update for cups
Typerecommended
Severitymoderate
References1189517,1195115
Description:

This update for cups fixes the following issues:

Advisory IDSUSE-SU-2022:1670-1
ReleasedMon May 16 10:06:30 2022
SummarySecurity update for openldap2
Typesecurity
Severityimportant
References1199240,CVE-2022-29155
Description:

This update for openldap2 fixes the following issues:

Advisory IDSUSE-SU-2022:1687-1
ReleasedMon May 16 13:58:33 2022
SummarySecurity update for the Linux Kernel
Typesecurity
Severityimportant
References1028340,1071995,1137728,1152472,1152489,1177028,1179878,1182073,1183723,1187055,1191647,1193556,1193842,1194625,1195651,1195926,1196018,1196114,1196367,1196514,1196639,1196942,1197157,1197391,1197656,1197660,1197677,1197914,1197926,1198077,1198217,1198330,1198400,1198413,1198437,1198448,1198484,1198515,1198516,1198534,1198742,1198825,1198989,1199012,1199024,CVE-2020-27835,CVE-2021-0707,CVE-2021-20292,CVE-2021-20321,CVE-2021-38208,CVE-2021-4154,CVE-2022-0812,CVE-2022-1158,CVE-2022-1280,CVE-2022-1353,CVE-2022-1419,CVE-2022-1516,CVE-2022-28356,CVE-2022-28748,CVE-2022-28893,CVE-2022-29156
Description:


The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes.

The following security bugs were fixed:



The following non-security bugs were fixed:

Advisory IDSUSE-SU-2022:1688-1
ReleasedMon May 16 14:02:49 2022
SummarySecurity update for e2fsprogs
Typesecurity
Severityimportant
References1198446,CVE-2022-1304
Description:

This update for e2fsprogs fixes the following issues:

Advisory IDSUSE-SU-2022:1689-1
ReleasedMon May 16 14:09:01 2022
SummarySecurity update for containerd, docker
Typesecurity
Severityimportant
References1193930,1196441,1197284,1197517,CVE-2021-43565,CVE-2022-23648,CVE-2022-24769,CVE-2022-27191
Description:

This update for containerd, docker fixes the following issues:

Advisory IDSUSE-RU-2022:1691-1
ReleasedMon May 16 15:13:39 2022
SummaryRecommended update for augeas
Typerecommended
Severitymoderate
References1197443
Description:

This update for augeas fixes the following issue:

Advisory IDSUSE-RU-2022:1709-1
ReleasedTue May 17 17:35:47 2022
SummaryRecommended update for libcbor
Typerecommended
Severityimportant
References1197743
Description:

This update for libcbor fixes the following issues:

Advisory IDSUSE-SU-2022:1750-1
ReleasedThu May 19 15:28:20 2022
SummarySecurity update for libxml2
Typesecurity
Severityimportant
References1196490,1199132,CVE-2022-23308,CVE-2022-29824
Description:

This update for libxml2 fixes the following issues:

Advisory IDSUSE-RU-2022:1752-1
ReleasedThu May 19 15:51:22 2022
SummaryRecommended update for samba
Typerecommended
Severityimportant
References1080338,1118508,1173429,1195896,1196308,1196788,1197995,1198255,1199247,1199362
Description:


This update for samba provides the following fixes:
Bugfixes:

Advisory IDSUSE-RU-2022:1843-1
ReleasedWed May 25 15:25:44 2022
SummaryRecommended update for suse-build-key
Typerecommended
Severitymoderate
References1198504
Description:

This update for suse-build-key fixes the following issues:

Advisory IDSUSE-SU-2022:1861-1
ReleasedThu May 26 12:07:40 2022
SummarySecurity update for cups
Typesecurity
Severityimportant
References1199474,CVE-2022-26691
Description:

This update for cups fixes the following issues:

Advisory IDSUSE-SU-2022:1870-1
ReleasedFri May 27 10:03:40 2022
SummarySecurity update for curl
Typesecurity
Severityimportant
References1199223,1199224,CVE-2022-27781,CVE-2022-27782
Description:

This update for curl fixes the following issues:

Advisory IDSUSE-SU-2022:1883-1
ReleasedMon May 30 12:41:35 2022
SummarySecurity update for pcre2
Typesecurity
Severityimportant
References1199232,CVE-2022-1586
Description:

This update for pcre2 fixes the following issues:

Advisory IDSUSE-RU-2022:1887-1
ReleasedTue May 31 09:24:18 2022
SummaryRecommended update for grep
Typerecommended
Severitymoderate
References1040589
Description:

This update for grep fixes the following issues:

Advisory IDSUSE-RU-2022:1899-1
ReleasedWed Jun 1 10:43:22 2022
SummaryRecommended update for libtirpc
Typerecommended
Severityimportant
References1198176
Description:

This update for libtirpc fixes the following issues:

Advisory IDSUSE-RU-2022:1909-1
ReleasedWed Jun 1 16:25:35 2022
SummaryRecommended update for glibc
Typerecommended
Severitymoderate
References1198751
Description:

This update for glibc fixes the following issues:

Advisory IDSUSE-RU-2022:2019-1
ReleasedWed Jun 8 16:50:07 2022
SummaryRecommended update for gcc11
Typerecommended
Severitymoderate
References1192951,1193659,1195283,1196861,1197065
Description:

This update for gcc11 fixes the following issues:
Update to the GCC 11.3.0 release.

SUSE-IU-2022:633-1

Container Advisory IDSUSE-IU-2022:633-1
Container Tagssles-15-sp3-chost-byos-v20220510-x86-64:20220510
Container Release
The following patches have been included in this update:
Advisory IDSUSE-RU-2022:1147-1
ReleasedMon Apr 11 15:49:43 2022
SummaryRecommended update for containerd
Typerecommended
Severitymoderate
References1195784
Description:


This update of containerd fixes the following issue:

Advisory IDSUSE-RU-2022:1150-1
ReleasedMon Apr 11 17:34:19 2022
SummaryRecommended update for suse-build-key
Typerecommended
Severitymoderate
References1197293
Description:

This update for suse-build-key fixes the following issues:
No longer install 1024bit keys by default. (bsc#1197293)

Advisory IDSUSE-SU-2022:1157-1
ReleasedTue Apr 12 13:26:19 2022
SummarySecurity update for libsolv, libzypp, zypper
Typesecurity
Severityimportant
References1184501,1194848,1195999,1196061,1196317,1196368,1196514,1196925,1197134
Description:

This update for libsolv, libzypp, zypper fixes the following issues:
Security relevant fix:


libsolv update to 0.7.22:

libzypp update to 17.30.0:

zypper update to 1.14.52:

Advisory IDSUSE-SU-2022:1158-1
ReleasedTue Apr 12 14:44:43 2022
SummarySecurity update for xz
Typesecurity
Severityimportant
References1198062,CVE-2022-1271
Description:

This update for xz fixes the following issues:

Advisory IDSUSE-RU-2022:1170-1
ReleasedTue Apr 12 18:20:07 2022
SummaryRecommended update for systemd
Typerecommended
Severitymoderate
References1191502,1193086,1195247,1195529,1195899,1196567
Description:

This update for systemd fixes the following issues:

Advisory IDSUSE-SU-2022:1183-1
ReleasedWed Apr 13 16:58:27 2022
SummarySecurity update for the Linux Kernel
Typesecurity
Severityimportant
References1065729,1156395,1175667,1177028,1178134,1179639,1180153,1189562,1194649,1195640,1195926,1196018,1196196,1196478,1196761,1196823,1197227,1197243,1197300,1197302,1197331,1197343,1197366,1197389,1197462,1197501,1197534,1197661,1197675,1197702,1197811,1197812,1197815,1197817,1197819,1197820,1197888,1197889,1197894,1197914,1198027,1198028,1198029,1198030,1198031,1198032,1198033,CVE-2021-45868,CVE-2022-0850,CVE-2022-0854,CVE-2022-1011,CVE-2022-1016,CVE-2022-1048,CVE-2022-1055,CVE-2022-1195,CVE-2022-1198,CVE-2022-1199,CVE-2022-1205,CVE-2022-27666,CVE-2022-28388,CVE-2022-28389,CVE-2022-28390
Description:


The SUSE Linux Enterprise 15 SP3 kernel was updated.
The following security bugs were fixed:


The following non-security bugs were fixed:

Advisory IDSUSE-RU-2022:1201-1
ReleasedThu Apr 14 11:40:33 2022
SummaryRecommended update for grub2
Typerecommended
Severitymoderate
References1179981,1191974,1192622,1195204
Description:

This update for grub2 fixes the following issues:

Advisory IDSUSE-RU-2022:1203-1
ReleasedThu Apr 14 11:43:28 2022
SummaryRecommended update for lvm2
Typerecommended
Severitymoderate
References1195231
Description:

This update for lvm2 fixes the following issues:

Advisory IDSUSE-RU-2022:1281-1
ReleasedWed Apr 20 12:26:38 2022
SummaryRecommended update for libtirpc
Typerecommended
Severitymoderate
References1196647
Description:

This update for libtirpc fixes the following issues:

Advisory IDSUSE-RU-2022:1302-1
ReleasedFri Apr 22 10:04:46 2022
SummaryRecommended update for e2fsprogs
Typerecommended
Severitymoderate
References1196939
Description:

This update for e2fsprogs fixes the following issues:

Advisory IDSUSE-RU-2022:1374-1
ReleasedMon Apr 25 15:02:13 2022
SummaryRecommended update for openldap2
Typerecommended
Severitymoderate
References1191157,1197004
Description:

This update for openldap2 fixes the following issues:

Advisory IDSUSE-RU-2022:1409-1
ReleasedTue Apr 26 12:54:57 2022
SummaryRecommended update for gcc11
Typerecommended
Severitymoderate
References1195628,1196107
Description:

This update for gcc11 fixes the following issues:

Advisory IDSUSE-SU-2022:1430-1
ReleasedWed Apr 27 10:01:43 2022
SummarySecurity update for cifs-utils
Typesecurity
Severityimportant
References1197216,CVE-2022-27239
Description:

This update for cifs-utils fixes the following issues:

Advisory IDSUSE-RU-2022:1438-1
ReleasedWed Apr 27 15:27:19 2022
SummaryRecommended update for systemd-presets-common-SUSE
Typerecommended
Severitylow
References1195251
Description:

This update for systemd-presets-common-SUSE fixes the following issue:

Advisory IDSUSE-RU-2022:1451-1
ReleasedThu Apr 28 10:47:22 2022
SummaryRecommended update for perl
Typerecommended
Severitymoderate
References1193489
Description:

This update for perl fixes the following issues:

Advisory IDSUSE-SU-2022:1455-1
ReleasedThu Apr 28 11:31:51 2022
SummarySecurity update for glib2
Typesecurity
Severitylow
References1183533,CVE-2021-28153
Description:

This update for glib2 fixes the following issues:

Advisory IDSUSE-RU-2022:1460-1
ReleasedThu Apr 28 16:21:58 2022
SummaryRecommended update for google-guest-agent, google-guest-configs, google-guest-oslogin, google-osconfig-agent
Typerecommended
Severitymoderate
References1195437,1195438
Description:

This update for google-guest-agent, google-guest-configs, google-guest-oslogin, google-osconfig-agent fixes the following issues:





Advisory IDSUSE-SU-2022:1506-1
ReleasedTue May 3 16:08:08 2022
SummarySecurity update for xen
Typesecurity
Severitymoderate
References1197423,1197425,1197426,CVE-2022-26356,CVE-2022-26357,CVE-2022-26358,CVE-2022-26359,CVE-2022-26360,CVE-2022-26361
Description:

This update for xen fixes the following issues:

Advisory IDSUSE-SU-2022:1512-1
ReleasedTue May 3 16:11:28 2022
SummarySecurity update for ruby2.5
Typesecurity
Severityimportant
References1188160,1188161,1190375,1193035,1198441,CVE-2021-31799,CVE-2021-31810,CVE-2021-32066,CVE-2021-41817,CVE-2022-28739
Description:

This update for ruby2.5 fixes the following issues:

Advisory IDSUSE-RU-2022:1544-1
ReleasedThu May 5 11:52:22 2022
SummaryRecommended update for dracut
Typerecommended
Severitymoderate
References1195011,1195508,1197967
Description:

This update for dracut fixes the following issues:

Advisory IDSUSE-SU-2022:1548-1
ReleasedThu May 5 16:45:28 2022
SummarySecurity update for tar
Typesecurity
Severitymoderate
References1029961,1120610,1130496,1181131,CVE-2018-20482,CVE-2019-9923,CVE-2021-20193
Description:

This update for tar fixes the following issues:






Advisory IDSUSE-SU-2022:1576-1
ReleasedMon May 9 13:44:45 2022
SummarySecurity update for ldb
Typesecurity
Severitylow
References1198397,CVE-2021-3670
Description:

This update for ldb fixes the following issues:

Advisory IDSUSE-SU-2022:1583-1
ReleasedMon May 9 17:42:50 2022
SummarySecurity update for rsyslog
Typesecurity
Severityimportant
References1199061,CVE-2022-24903
Description:

This update for rsyslog fixes the following issues:

Advisory IDSUSE-SU-2022:1617-1
ReleasedTue May 10 14:40:12 2022
SummarySecurity update for gzip
Typesecurity
Severityimportant
References1198062,1198922,CVE-2022-1271
Description:

This update for gzip fixes the following issues:

Advisory IDSUSE-RU-2022:1626-1
ReleasedTue May 10 15:55:13 2022
SummaryRecommended update for systemd
Typerecommended
Severitymoderate
References1198090,1198114
Description:

This update for systemd fixes the following issues:

SUSE-IU-2022:480-1

Container Advisory IDSUSE-IU-2022:480-1
Container Tagssles-15-sp3-chost-byos-v20220411-x86-64:20220411
Container Release
The following patches have been included in this update:
Advisory IDSUSE-RU-2022:808-1
ReleasedFri Mar 11 06:07:58 2022
SummaryRecommended update for procps
Typerecommended
Severitymoderate
References1195468
Description:

This update for procps fixes the following issues:

Advisory IDSUSE-RU-2022:833-1
ReleasedMon Mar 14 18:51:58 2022
SummaryRecommended update for open-iscsi
Typerecommended
Severitymoderate
References1195656
Description:

This update for open-iscsi fixes the following issue:

Advisory IDSUSE-SU-2022:844-1
ReleasedTue Mar 15 11:33:57 2022
SummarySecurity update for expat
Typesecurity
Severityimportant
References1196025,1196784,CVE-2022-25236
Description:

This update for expat fixes the following issues:

Advisory IDSUSE-SU-2022:845-1
ReleasedTue Mar 15 11:40:52 2022
SummarySecurity update for chrony
Typesecurity
Severitymoderate
References1099272,1115529,1128846,1162964,1172113,1173277,1174075,1174911,1180689,1181826,1187906,1190926,1194229,CVE-2020-14367
Description:

This update for chrony fixes the following issues:
Chrony was updated to 4.1, bringing features and bugfixes.
Update to 4.1
* Add support for NTS servers specified by IP address (matching Subject Alternative Name in server certificate) * Add source-specific configuration of trusted certificates * Allow multiple files and directories with trusted certificates * Allow multiple pairs of server keys and certificates * Add copy option to server/pool directive * Increase PPS lock limit to 40% of pulse interval * Perform source selection immediately after loading dump files * Reload dump files for addresses negotiated by NTS-KE server * Update seccomp filter and add less restrictive level * Restart ongoing name resolution on online command * Fix dump files to not include uncorrected offset * Fix initstepslew to accept time from own NTP clients * Reset NTP address and port when no longer negotiated by NTS-KE server



Update to 4.0
- Enhancements
- Add support for Network Time Security (NTS) authentication - Add support for AES-CMAC keys (AES128, AES256) with Nettle - Add authselectmode directive to control selection of unauthenticated sources - Add binddevice, bindacqdevice, bindcmddevice directives - Add confdir directive to better support fragmented configuration - Add sourcedir directive and 'reload sources' command to support dynamic NTP sources specified in files - Add clockprecision directive - Add dscp directive to set Differentiated Services Code Point (DSCP) - Add -L option to limit log messages by severity - Add -p option to print whole configuration with included files - Add -U option to allow start under non-root user - Allow maxsamples to be set to 1 for faster update with -q/-Q option - Avoid replacing NTP sources with sources that have unreachable address - Improve pools to repeat name resolution to get 'maxsources' sources - Improve source selection with trusted sources - Improve NTP loop test to prevent synchronisation to itself - Repeat iburst when NTP source is switched from offline state to online - Update clock synchronisation status and leap status more frequently - Update seccomp filter - Add 'add pool' command - Add 'reset sources' command to drop all measurements - Add authdata command to print details about NTP authentication - Add selectdata command to print details about source selection - Add -N option and sourcename command to print original names of sources - Add -a option to some commands to print also unresolved sources - Add -k, -p, -r options to clients command to select, limit, reset data
- Bug fixes
- Don’t set interface for NTP responses to allow asymmetric routing - Handle RTCs that don’t support interrupts - Respond to command requests with correct address on multihomed hosts - Removed features - Drop support for RIPEMD keys (RMD128, RMD160, RMD256, RMD320) - Drop support for long (non-standard) MACs in NTPv4 packets (chrony 2.x clients using non-MD5/SHA1 keys need to use option 'version 3') - Drop support for line editing with GNU Readline


Update to 3.5.1:
* Create new file when writing pidfile (CVE-2020-14367, bsc#1174911)





Update to 3.5:




Update to version 3.4
* Enhancements
+ Add filter option to server/pool/peer directive + Add minsamples and maxsamples options to hwtimestamp directive + Add support for faster frequency adjustments in Linux 4.19 + Change default pidfile to /var/run/chrony/chronyd.pid to allow chronyd without root privileges to remove it on exit + Disable sub-second polling intervals for distant NTP sources + Extend range of supported sub-second polling intervals + Get/set IPv4 destination/source address of NTP packets on FreeBSD + Make burst options and command useful with short polling intervals + Modify auto_offline option to activate when sending request failed + Respond from interface that received NTP request if possible + Add onoffline command to switch between online and offline state according to current system network configuration + Improve example NetworkManager dispatcher script
* Bug fixes
+ Avoid waiting in Linux getrandom system call + Fix PPS support on FreeBSD and NetBSD
Update to version 3.3
* Enhancements:
+ Add burst option to server/pool directive + Add stratum and tai options to refclock directive + Add support for Nettle crypto library + Add workaround for missing kernel receive timestamps on Linux + Wait for late hardware transmit timestamps + Improve source selection with unreachable sources + Improve protection against replay attacks on symmetric mode + Allow PHC refclock to use socket in /var/run/chrony + Add shutdown command to stop chronyd + Simplify format of response to manual list command + Improve handling of unknown responses in chronyc
* Bug fixes:
+ Respond to NTPv1 client requests with zero mode + Fix -x option to not require CAP_SYS_TIME under non-root user + Fix acquisitionport directive to work with privilege separation + Fix handling of socket errors on Linux to avoid high CPU usage + Fix chronyc to not get stuck in infinite loop after clock step

Advisory IDSUSE-RU-2022:861-1
ReleasedTue Mar 15 23:30:48 2022
SummaryRecommended update for openssl-1_1
Typerecommended
Severitymoderate
References1182959,1195149,1195792,1195856
Description:

This update for openssl-1_1 fixes the following issues:
openssl-1_1:

glibc:
linux-glibc-devel:

libxcrypt:

zlib:

Advisory IDSUSE-RU-2022:874-1
ReleasedWed Mar 16 10:40:52 2022
SummaryRecommended update for openldap2
Typerecommended
Severitymoderate
References1197004
Description:

This update for openldap2 fixes the following issue:

Advisory IDSUSE-RU-2022:884-1
ReleasedThu Mar 17 09:47:28 2022
SummaryRecommended update for python-jsonschema, python-rfc3987, python-strict-rfc3339
Typerecommended
Severitymoderate
References1082318
Description:

This update for python-jsonschema, python-rfc3987, python-strict-rfc3339 fixes the following issues:










Advisory IDSUSE-RU-2022:888-1
ReleasedThu Mar 17 10:56:42 2022
SummaryRecommended update for avahi
Typerecommended
Severitymoderate
References1179060,1194561,1195614,1196282
Description:

This update for avahi fixes the following issues:

Advisory IDSUSE-RU-2022:905-1
ReleasedMon Mar 21 08:46:09 2022
SummaryRecommended update for util-linux
Typerecommended
Severityimportant
References1172427,1194642
Description:

This update for util-linux fixes the following issues:

Advisory IDSUSE-RU-2022:936-1
ReleasedTue Mar 22 18:10:17 2022
SummaryRecommended update for filesystem and systemd-rpm-macros
Typerecommended
Severitymoderate
References1196275,1196406
Description:

This update for filesystem and systemd-rpm-macros fixes the following issues:
filesystem:


systemd-rpm-macros:

Advisory IDSUSE-SU-2022:940-1
ReleasedWed Mar 23 10:41:16 2022
SummarySecurity update for xen
Typesecurity
Severityimportant
References1027519,1191668,1194267,1196915,CVE-2021-26401,CVE-2022-0001,CVE-2022-0002
Description:

This update for xen fixes the following issues:
Update Xen to version 4.14.4 (bsc#1027519)
Transient execution side-channel attacks attacking the Branch History Buffer (BHB), named 'Branch Target Injection' and 'Intra-Mode Branch History Injection' are now mitigated.
Security issues fixed:


Non-security issues fixed:

Advisory IDSUSE-SU-2022:942-1
ReleasedThu Mar 24 10:30:15 2022
SummarySecurity update for python3
Typesecurity
Severitymoderate
References1186819,CVE-2021-3572
Description:

This update for python3 fixes the following issues:

Advisory IDSUSE-SU-2022:945-1
ReleasedThu Mar 24 12:53:37 2022
SummarySecurity update for bind
Typesecurity
Severityimportant
References1197135,CVE-2021-25220
Description:

This update for bind fixes the following issues:

Advisory IDSUSE-RU-2022:948-1
ReleasedFri Mar 25 12:46:42 2022
SummaryRecommended update for sudo
Typerecommended
Severitymoderate
References1193446
Description:

This update for sudo fixes the following issues:

Advisory IDSUSE-RU-2022:1028-1
ReleasedTue Mar 29 16:37:33 2022
SummaryRecommended update for chrony
Typerecommended
Severitymoderate
References1194220
Description:

This update for chrony fixes the following issues:

Advisory IDSUSE-SU-2022:1039-1
ReleasedWed Mar 30 09:38:11 2022
SummarySecurity update for the Linux Kernel
Typesecurity
Severityimportant
References1176447,1176774,1178134,1179439,1181147,1191428,1192273,1193731,1193787,1193864,1194463,1194516,1194943,1195051,1195211,1195254,1195353,1195403,1195612,1195897,1195905,1195939,1195949,1195987,1196079,1196095,1196130,1196132,1196155,1196299,1196301,1196433,1196468,1196472,1196488,1196627,1196723,1196779,1196830,1196836,1196866,1196868,1196956,1196959,CVE-2021-0920,CVE-2021-39657,CVE-2021-39698,CVE-2021-44879,CVE-2021-45402,CVE-2022-0487,CVE-2022-0617,CVE-2022-0644,CVE-2022-23036,CVE-2022-23037,CVE-2022-23038,CVE-2022-23039,CVE-2022-23040,CVE-2022-23041,CVE-2022-23042,CVE-2022-24448,CVE-2022-24958,CVE-2022-24959,CVE-2022-25258,CVE-2022-25636,CVE-2022-26490,CVE-2022-26966
Description:

The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes.

The following security bugs were fixed:


The following non-security bugs were fixed:

Advisory IDSUSE-SU-2022:1040-1
ReleasedWed Mar 30 09:40:58 2022
SummarySecurity update for protobuf
Typesecurity
Severitymoderate
References1195258,CVE-2021-22570
Description:

This update for protobuf fixes the following issues:

Advisory IDSUSE-RU-2022:1047-1
ReleasedWed Mar 30 16:20:56 2022
SummaryRecommended update for pam
Typerecommended
Severitymoderate
References1196093,1197024
Description:

This update for pam fixes the following issues:

Advisory IDSUSE-SU-2022:1061-1
ReleasedWed Mar 30 18:27:06 2022
SummarySecurity update for zlib
Typesecurity
Severityimportant
References1197459,CVE-2018-25032
Description:

This update for zlib fixes the following issues:

Advisory IDSUSE-SU-2022:1073-1
ReleasedFri Apr 1 11:45:01 2022
SummarySecurity update for yaml-cpp
Typesecurity
Severitymoderate
References1121227,1121230,1122004,1122021,CVE-2018-20573,CVE-2018-20574,CVE-2019-6285,CVE-2019-6292
Description:

This update for yaml-cpp fixes the following issues:

Advisory IDSUSE-RU-2022:1099-1
ReleasedMon Apr 4 12:53:05 2022
SummaryRecommended update for aaa_base
Typerecommended
Severitymoderate
References1194883
Description:

This update for aaa_base fixes the following issues:

Advisory IDSUSE-RU-2022:1107-1
ReleasedMon Apr 4 17:49:17 2022
SummaryRecommended update for util-linux
Typerecommended
Severitymoderate
References1194642
Description:

This update for util-linux fixes the following issue:

Advisory IDSUSE-RU-2022:1118-1
ReleasedTue Apr 5 18:34:06 2022
SummaryRecommended update for timezone
Typerecommended
Severitymoderate
References1177460
Description:

This update for timezone fixes the following issues:

Advisory IDSUSE-RU-2022:1119-1
ReleasedWed Apr 6 09:16:06 2022
SummaryRecommended update for supportutils
Typerecommended
Severitymoderate
References1189028,1190315,1190943,1191096,1191794,1193204,1193732,1193868,1195797
Description:

This update for supportutils fixes the following issues:

Advisory IDSUSE-RU-2022:1126-1
ReleasedThu Apr 7 14:05:02 2022
SummaryRecommended update for nfs-utils
Typerecommended
Severitymoderate
References1197297,1197788
Description:

This update for nfs-utils fixes the following issues:

Advisory IDSUSE-RU-2022:1132-1
ReleasedFri Apr 8 13:11:16 2022
SummaryRecommended update for kdump
Typerecommended
Severitymoderate
References1189923,1197069
Description:

This update for kdump fixes the following issues:

SUSE-IU-2022:359-1

Container Advisory IDSUSE-IU-2022:359-1
Container Tagssles-15-sp3-chost-byos-v20220310:20220310
Container Release
The following patches have been included in this update:
Advisory IDSUSE-RU-2021:2626-1
ReleasedThu Aug 5 12:10:35 2021
SummaryRecommended maintenance update for libeconf
Typerecommended
Severitymoderate
References1188348
Description:

This update for libeconf fixes the following issue:

Advisory IDSUSE-RU-2022:604-1
ReleasedTue Mar 1 07:13:50 2022
SummaryRecommended update for rsyslog
Typerecommended
Severitylow
References1194669
Description:

This update for rsyslog fixes the following issues:

Advisory IDSUSE-RU-2022:674-1
ReleasedWed Mar 2 13:24:38 2022
SummaryRecommended update for yast2-network
Typerecommended
Severitymoderate
References1187512
Description:

This update for yast2-network fixes the following issues:

Advisory IDSUSE-RU-2022:682-1
ReleasedThu Mar 3 11:37:03 2022
SummaryRecommended update for supportutils-plugin-suse-public-cloud
Typerecommended
Severityimportant
References1195095,1195096
Description:

This update for supportutils-plugin-suse-public-cloud fixes the following issues:

Advisory IDSUSE-RU-2022:692-1
ReleasedThu Mar 3 15:46:47 2022
SummaryRecommended update for filesystem
Typerecommended
Severitymoderate
References1190447
Description:

This update for filesystem fixes the following issues:

Advisory ID23018
ReleasedFri Mar 4 08:31:54 2022
SummarySecurity update for conmon, libcontainers-common, libseccomp, podman
Typesecurity
Severitymoderate
References1176804,1177598,1181640,1182998,1188520,1188914,1193166,1193273,CVE-2020-14370,CVE-2020-15157,CVE-2021-20199,CVE-2021-20291,CVE-2021-3602,CVE-2021-4024,CVE-2021-41190
Description:

This update for conmon, libcontainers-common, libseccomp, podman fixes the following issues:
podman was updated to 3.4.4.
Security issues fixed:



Update to version 3.4.4:
* Bugfixes
- Fixed a bug where the podman exec command would, under some circumstances, print a warning message about failing to move conmon to the appropriate cgroup (#12535). - Fixed a bug where named volumes created as part of container creation (e.g. podman run --volume avolume:/a/mountpoint or similar) would be mounted with incorrect permissions (#12523). - Fixed a bug where the podman-remote create and podman-remote run commands did not properly handle the --entrypoint='' option (to clear the container's entrypoint) (#12521).

* Security
- This release addresses CVE-2021-4024, where the podman machine command opened the gvproxy API (used to forward ports to podman machine VMs) to the public internet on port 7777. - This release addresses CVE-2021-41190, where incomplete specification of behavior regarding image manifests could lead to inconsistent decoding on different clients.
* Features
- The --secret type=mount option to podman create and podman run supports a new option, target=, which specifies where in the container the secret will be mounted (#12287).
* Bugfixes
- Fixed a bug where rootless Podman would occasionally print warning messages about failing to move the pause process to a new cgroup (#12065). - Fixed a bug where the podman run and podman create commands would, when pulling images, still require TLS even with registries set to Insecure via config file (#11933). - Fixed a bug where the podman generate systemd command generated units that depended on multi-user.target, which has been removed from some distributions (#12438). - Fixed a bug where Podman could not run containers with images that had /etc/ as a symlink (#12189). - Fixed a bug where the podman logs -f command would, when using the journald logs backend, exit immediately if the container had previously been restarted (#12263). - Fixed a bug where, in containers on VMs created by podman machine, the host.containers.internal name pointed to the VM, not the host system (#11642). - Fixed a bug where containers and pods created by the podman play kube command in VMs managed by podman machine would not automatically forward ports from the host machine (#12248). - Fixed a bug where podman machine init would fail on OS X when GNU Coreutils was installed (#12329). - Fixed a bug where podman machine start would exit before SSH on the started VM was accepting connections (#11532). - Fixed a bug where the podman run command with signal proxying (--sig-proxy) enabled could print an error if it attempted to send a signal to a container that had just exited (#8086). - Fixed a bug where the podman stats command would not return correct information for containers running Systemd as PID1 (#12400). - Fixed a bug where the podman image save command would fail on OS X when writing the image to STDOUT (#12402). - Fixed a bug where the podman ps command did not properly handle PS arguments which contained whitespace (#12452). - Fixed a bug where the podman-remote wait command could fail to detect that the container exited and return an error under some circumstances (#12457). - Fixed a bug where the Windows MSI installer for podman-remote would break the PATH environment variable by adding an extra ' (#11416).
* API
- The Libpod Play Kube endpoint now also accepts ConfigMap YAML as part of its payload, and will use provided any ConfigMap to configure provided pods and services. - Fixed a bug where the Compat Create endpoint for Containers would not always create the container's working directory if it did not exist (#11842). - Fixed a bug where the Compat Create endpoint for Containers returned an incorrect error message with 404 errors when the requested image was not found (#12315). - Fixed a bug where the Compat Create endpoint for Containers did not properly handle the HostConfig.Mounts field (#12419). - Fixed a bug where the Compat Archive endpoint for Containers did not properly report errors when the operation failed (#12420). - Fixed a bug where the Compat Build endpoint for Images ignored the layers query parameter (for caching intermediate layers from the build) (#12378). - Fixed a bug where the Compat Build endpoint for Images did not report errors in a manner compatible with Docker (#12392). - Fixed a bug where the Compat Build endpoint for Images would fail to build if the context directory was a symlink (#12409). - Fixed a bug where the Compat List endpoint for Images included manifest lists (and not just images) in returned results (#12453).

* Fixed a bug where podman tag could not tag manifest lists (#12046). * Fixed a bug where built-in volumes specified by images would not be created correctly under some circumstances. * Fixed a bug where, when using Podman Machine on OS X, containers in pods did not have working port forwarding from the host (#12207). * Fixed a bug where the podman network reload command command on containers using the slirp4netns network mode and the rootlessport port forwarding driver would make an unnecessary attempt to restart rootlessport on containers that did not forward ports. * Fixed a bug where the podman generate kube command would generate YAML including some unnecessary (set to default) fields (e.g. empty SELinux and DNS configuration blocks, and the privileged flag when set to false) (#11995). * Fixed a bug where the podman pod rm command could, if interrupted at the right moment, leave a reference to an already-removed infra container behind (#12034). * Fixed a bug where the podman pod rm command would not remove pods with more than one container if all containers save for the infra container were stopped unless --force was specified (#11713). * Fixed a bug where the --memory flag to podman run and podman create did not accept a limit of 0 (which should specify unlimited memory) (#12002). * Fixed a bug where the remote Podman client's podman build command could attempt to build a Dockerfile in the working directory of the podman system service instance instead of the Dockerfile specified by the user (#12054). * Fixed a bug where the podman logs --tail command could function improperly (printing more output than requested) when the journald log driver was used. * Fixed a bug where containers run using the slirp4netns network mode with IPv6 enabled would not have IPv6 connectivity until several seconds after they started (#11062). * Fixed a bug where some Podman commands could cause an extra dbus-daemon process to be created (#9727). * Fixed a bug where rootless Podman would sometimes print warnings about a failure to move the pause process into a given CGroup (#12065). * Fixed a bug where the checkpointed field in podman inspect on a container was not set to false after a container was restored. * Fixed a bug where the podman system service command would print overly-verbose logs about request IDs (#12181). * Fixed a bug where Podman could, when creating a new container without a name explicitly specified by the user, sometimes use an auto-generated name already in use by another container if multiple containers were being created in parallel (#11735).
Update to version 3.4.1:
* Bugfixes
- Fixed a bug where podman machine init could, under some circumstances, create invalid machine configurations which could not be started (#11824). - Fixed a bug where the podman machine list command would not properly populate some output fields. - Fixed a bug where podman machine rm could leave dangling sockets from the removed machine (#11393). - Fixed a bug where podman run --pids-limit=-1 was not supported (it now sets the PID limit in the container to unlimited) (#11782). - Fixed a bug where podman run and podman attach could throw errors about a closed network connection when STDIN was closed by the client (#11856). - Fixed a bug where the podman stop command could fail when run on a container that had another podman stop command run on it previously. - Fixed a bug where the --sync flag to podman ps was nonfunctional. - Fixed a bug where the Windows and OS X remote clients' podman stats command would fail (#11909). - Fixed a bug where the podman play kube command did not properly handle environment variables whose values contained an = (#11891). - Fixed a bug where the podman generate kube command could generate invalid annotations when run on containers with volumes that use SELinux relabelling (:z or :Z) (#11929). - Fixed a bug where the podman generate kube command would generate YAML including some unnecessary (set to default) fields (e.g. user and group, entrypoint, default protocol for forwarded ports) (#11914, #11915, and #11965). - Fixed a bug where the podman generate kube command could, under some circumstances, generate YAML including an invalid targetPort field for forwarded ports (#11930). - Fixed a bug where rootless Podman's podman info command could, under some circumstances, not read available CGroup controllers (#11931). - Fixed a bug where podman container checkpoint --export would fail to checkpoint any container created with --log-driver=none (#11974).
* API
- Fixed a bug where the Compat Create endpoint for Containers could panic when no options were passed to a bind mount of tmpfs (#11961).
Update to version 3.4.0:
* Features
- Pods now support init containers! Init containers are containers which run before the rest of the pod starts. There are two types of init containers: 'always', which always run before the pod is started, and 'once', which only run the first time the pod starts and are subsequently removed. They can be added using the podman create command's --init-ctr option. - Support for init containers has also been added to podman play kube and podman generate kube - init containers contained in Kubernetes YAML will be created as Podman init containers, and YAML generated by Podman will include any init containers created. - The podman play kube command now supports building images. If the --build option is given and a directory with the name of the specified image exists in the current working directory and contains a valid Containerfile or Dockerfile, the image will be built and used for the container. - The podman play kube command now supports a new option, --teardown, which removes any pods and containers created by the given Kubernetes YAML. - The podman generate kube command now generates annotations for SELinux mount options on volume (:z and :Z) that are respected by the podman play kube command. - A new command has been added, podman pod logs, to return logs for all containers in a pod at the same time. - Two new commands have been added, podman volume export (to export a volume to a tar file) and podman volume import) (to populate a volume from a given tar file). - The podman auto-update command now supports simple rollbacks. If a container fails to start after an automatic update, it will be rolled back to the previous image and restarted again. - Pods now share their user namespace by default, and the podman pod create command now supports the --userns option. This allows rootless pods to be created with the --userns=keep-id option. - The podman pod ps command now supports a new filter with its --filter option, until, which returns pods created before a given timestamp. - The podman image scp command has been added. This command allows images to be transferred between different hosts. - The podman stats command supports a new option, --interval, to specify the amount of time before the information is refreshed. - The podman inspect command now includes ports exposed (but not published) by containers (e.g. ports from --expose when --publish-all is not specified). - The podman inspect command now has a new boolean value, Checkpointed, which indicates that a container was stopped as a result of a podman container checkpoint operation. - Volumes created by podman volume create now support setting quotas when run atop XFS. The size and inode options allow the maximum size and maximum number of inodes consumed by a volume to be limited. - The podman info command now outputs information on what log drivers, network drivers, and volume plugins are available for use (#11265). - The podman info command now outputs the current log driver in use, and the variant and codename of the distribution in use. - The parameters of the VM created by podman machine init (amount of disk space, memory, CPUs) can now be set in containers.conf. - The podman machine ls command now shows additional information (CPUs, memory, disk size) about VMs managed by podman machine. - The podman ps command now includes healthcheck status in container state for containers that have healthchecks (#11527).
* Changes
- The podman build command has a new alias, podman buildx, to improve compatibility with Docker. We have already added support for many docker buildx flags to podman build and aim to continue to do so. - Cases where Podman is run without a user session or a writable temporary files directory will now produce better error messages. - The default log driver has been changed from file to journald. The file driver did not properly support log rotation, so this should lead to a better experience. If journald is not available on the system, Podman will automatically revert to the file. - Podman no longer depends on ip for removing networks (#11403). - The deprecated --macvlan flag to podman network create now warns when it is used. It will be removed entirely in the Podman 4.0 release. - The podman machine start command now prints a message when the VM is successfully started. - The podman stats command can now be used on containers that are paused. - The podman unshare command will now return the exit code of the command that was run in the user namespace (assuming the command was successfully run). - Successful healthchecks will no longer add a healthy line to the system log to reduce log spam. - As a temporary workaround for a lack of shortname prompts in the Podman remote client, VMs created by podman machine now default to only using the docker.io registry.
* Bugfixes
- Fixed a bug where whitespace in the definition of sysctls (particularly default sysctls specified in containers.conf) would cause them to be parsed incorrectly. - Fixed a bug where the Windows remote client improperly validated volume paths (#10900). - Fixed a bug where the first line of logs from a container run with the journald log driver could be skipped. - Fixed a bug where images created by podman commit did not include ports exposed by the container. - Fixed a bug where the podman auto-update command would ignore the io.containers.autoupdate.authfile label when pulling images (#11171). - Fixed a bug where the --workdir option to podman create and podman run could not be set to a directory where a volume was mounted (#11352). - Fixed a bug where systemd socket-activation did not properly work with systemd-managed Podman containers (#10443). - Fixed a bug where environment variable secrets added to a container were not available to exec sessions launched in the container. - Fixed a bug where rootless containers could fail to start the rootlessport port-forwarding service when XDG_RUNTIME_DIR was set to a long path. - Fixed a bug where arguments to the --systemd option to podman create and podman run were case-sensitive (#11387). - Fixed a bug where the podman manifest rm command would also remove images referenced by the manifest, not just the manifest itself (#11344). - Fixed a bug where the Podman remote client on OS X would not function properly if the TMPDIR environment variable was not set (#11418). - Fixed a bug where the /etc/hosts file was not guaranteed to contain an entry for localhost (this is still not guaranteed if --net=host is used; such containers will exactly match the host's /etc/hosts) (#11411). - Fixed a bug where the podman machine start command could print warnings about unsupported CPU features (#11421). - Fixed a bug where the podman info command could segfault when accessing cgroup information. - Fixed a bug where the podman logs -f command could hang when a container exited (#11461). - Fixed a bug where the podman generate systemd command could not be used on containers that specified a restart policy (#11438). - Fixed a bug where the remote Podman client's podman build command would fail to build containers if the UID and GID on the client were higher than 65536 (#11474). - Fixed a bug where the remote Podman client's podman build command would fail to build containers if the context directory was a symlink (#11732). - Fixed a bug where the --network flag to podman play kube was not properly parsed when a non-bridge network configuration was specified. - Fixed a bug where the podman inspect command could error when the container being inspected was removed as it was being inspected (#11392). - Fixed a bug where the podman play kube command ignored the default pod infra image specified in containers.conf. - Fixed a bug where the --format option to podman inspect was nonfunctional under some circumstances (#8785). - Fixed a bug where the remote Podman client's podman run and podman exec commands could skip a byte of output every 8192 bytes (#11496). - Fixed a bug where the podman stats command would print nonsensical results if the container restarted while it was running (#11469). - Fixed a bug where the remote Podman client would error when STDOUT was redirected on a Windows client (#11444). - Fixed a bug where the podman run command could return 0 when the application in the container exited with 125 (#11540). - Fixed a bug where containers with --restart=always set using the rootlessport port-forwarding service could not be restarted automatically. - Fixed a bug where the --cgroups=split option to podman create and podman run was silently discarded if the container was part of a pod. - Fixed a bug where the podman container runlabel command could fail if the image name given included a tag. - Fixed a bug where Podman could add an extra 127.0.0.1 entry to /etc/hosts under some circumstances (#11596). - Fixed a bug where the remote Podman client's podman untag command did not properly handle tags including a digest (#11557). - Fixed a bug where the --format option to podman ps did not properly support the table argument for tabular output. - Fixed a bug where the --filter option to podman ps did not properly handle filtering by healthcheck status (#11687). - Fixed a bug where the podman run and podman start --attach commands could race when retrieving the exit code of a container that had already been removed resulting in an error (e.g. by an external podman rm -f) (#11633). - Fixed a bug where the podman generate kube command would add default environment variables to generated YAML. - Fixed a bug where the podman generate kube command would add the default CMD from the image to generated YAML (#11672). - Fixed a bug where the podman rm --storage command could fail to remove containers under some circumstances (#11207). - Fixed a bug where the podman machine ssh command could fail when run on Linux (#11731). - Fixed a bug where the podman stop command would error when used on a container that was already stopped (#11740). - Fixed a bug where renaming a container in a pod using the podman rename command, then removing the pod using podman pod rm, could cause Podman to believe the new name of the container was permanently in use, despite the container being removed (#11750).
* API
- The Libpod Pull endpoint for Images now has a new query parameter, quiet, which (when set to true) suppresses image pull progress reports (#10612). - The Compat Events endpoint now includes several deprecated fields from the Docker v1.21 API for improved compatibility with older clients. - The Compat List and Inspect endpoints for Images now prefix image IDs with sha256: for improved Docker compatibility (#11623). - The Compat Create endpoint for Containers now properly sets defaults for healthcheck-related fields (#11225). - The Compat Create endpoint for Containers now supports volume options provided by the Mounts field (#10831). - The Compat List endpoint for Secrets now supports a new query parameter, filter, which allows returned results to be filtered. - The Compat Auth endpoint now returns the correct response code (500 instead of 400) when logging into a registry fails. - The Version endpoint now includes information about the OCI runtime and Conmon in use (#11227). - Fixed a bug where the X-Registry-Config header was not properly handled, leading to errors when pulling images (#11235). - Fixed a bug where invalid query parameters could cause a null pointer dereference when creating error messages. - Logging of API requests and responses at trace level has been greatly improved, including the addition of an X-Reference-Id header to correlate requests and responses (#10053).
Update to version 3.3.1:
* Bugfixes
- Fixed a bug where unit files created by podman generate systemd could not cleanup shut down containers when stopped by systemctl stop (#11304). - Fixed a bug where podman machine commands would not properly locate the gvproxy binary in some circumstances. - Fixed a bug where containers created as part of a pod using the --pod-id-file option would not join the pod's network namespace (#11303). - Fixed a bug where Podman, when using the systemd cgroups driver, could sometimes leak dbus sessions. - Fixed a bug where the until filter to podman logs and podman events was improperly handled, requiring input to be negated (#11158). - Fixed a bug where rootless containers using CNI networking run on systems using systemd-resolved for DNS would fail to start if resolved symlinked /etc/resolv.conf to an absolute path (#11358).
* API
- A large number of potential file descriptor leaks from improperly closing client connections have been fixed.
Update to version 3.3.0:
* Fix network aliases with network id * machine: compute sha256 as we read the image file * machine: check for file exists instead of listing directory * pkg/bindings/images.nTar(): slashify hdr.Name values * Volumes: Only remove from DB if plugin removal succeeds * For compatibility, ignore Content-Type * [v3.3] Bump c/image 5.15.2, buildah v1.22.3 * Implement SD-NOTIFY proxy in conmon * Fix rootless cni dns without systemd stub resolver * fix rootlessport flake * Skip stats test in CGv1 container environments * Fix AVC denials in tests of volume mounts * Restore buildah-bud test requiring new images * Revert '.cirrus.yml: use fresh images for all VMs' * Fix device tests using ls test files * Enhance priv. dev. check * Workaround host availability of /dev/kvm * Skip cgroup-parent test due to frequent flakes * Cirrus: Fix not uploading logformatter html
Switch to crun (bsc#1188914)
Update to version 3.2.3:
* Bump to v3.2.3 * Update release notes for v3.2.3 * vendor containers/common@v0.38.16 * vendor containers/buildah@v1.21.3 * Fix race conditions in rootless cni setup * CNI-in-slirp4netns: fix bind-mount for /run/systemd/resolve/stub-resolv.conf * Make rootless-cni setup more robust * Support uid,gid,mode options for secrets * vendor containers/common@v0.38.15 * [CI:DOCS] podman search: clarify that results depend on implementation * vendor containers/common@v0.38.14 * vendor containers/common@v0.38.13 * [3.2] vendor containers/common@v0.38.12 * Bump README to v3.2.2 * Bump to v3.2.3-dev







Bugfixes - Fixed a bug where the Created field of podman ps --format=json was formatted as a string instead of an Unix timestamp (integer) (#9315). - Fixed a bug where failing lookups of individual layers during the podman images command would cause the whole command to fail without printing output. - Fixed a bug where --cgroups=split did not function properly on cgroups v1 systems. - Fixed a bug where mounting a volume over an directory in the container that existed, but was empty, could fail (#9393). - Fixed a bug where mounting a volume over a directory in the container that existed could copy the entirety of the container's rootfs, instead of just the directory mounted over, into the volume (#9415). - Fixed a bug where Podman would treat the --entrypoint=[''] option to podman run and podman create as a literal empty string in the entrypoint, when instead it should have been ignored (#9377). - Fixed a bug where Podman would set the HOME environment variable to '' when the container ran as a user without an assigned home directory (#9378). - Fixed a bug where specifying a pod infra image that had no tags (by using its ID) would cause podman pod create to panic (#9374). - Fixed a bug where the --runtime option was not properly handled by the podman build command (#9365). - Fixed a bug where Podman would incorrectly print an error message related to the remote API when the remote API was not in use and starting Podman failed. - Fixed a bug where Podman would change ownership of a container's working directory, even if it already existed (#9387). - Fixed a bug where the podman generate systemd --new command would incorrectly escape %t when generating the path for the PID file (#9373). - Fixed a bug where Podman could, when run inside a Podman container with the host's containers/storage directory mounted into the container, erroneously detect a reboot and reset container state if the temporary directory was not also mounted in (#9191). - Fixed a bug where some options of the podman build command (including but not limited to --jobs) were nonfunctional (#9247). * API - Fixed a breaking change to the Libpod Wait API for Containers where the Conditions parameter changed type in Podman v3.0 (#9351). - Fixed a bug where the Compat Create endpoint for Containers did not properly handle forwarded ports that did not specify a host port. - Fixed a bug where the Libpod Wait endpoint for Containers could write duplicate headers after an error occurred. - Fixed a bug where the Compat Create endpoint for Images would not pull images that already had a matching tag present locally, even if a more recent version was available at the registry (#9232). - The Compat Create endpoint for Images has had its compatibility with Docker improved, allowing its use with the docker-java library. * Misc - Updated Buildah to v1.19.4 - Updated the containers/storage library to v1.24.6
  • Changes from v3.0.0 * Features - Podman now features initial support for Docker Compose. - Added the podman rename command, which allows containers to be renamed after they are created (#1925). - The Podman remote client now supports the podman copy command. - A new command, podman network reload, has been added. This command will re-configure the network of all running containers, and can be used to recreate firewall rules lost when the system firewall was reloaded (e.g. via firewall-cmd --reload). - Podman networks now have IDs. They can be seen in podman network ls and can be used when removing and inspecting networks. Existing networks receive IDs automatically. - Podman networks now also support labels. They can be added via the --label option to network create, and podman network ls can filter labels based on them. - The podman network create command now supports setting bridge MTU and VLAN through the --opt option (#8454). - The podman container checkpoint and podman container restore commands can now checkpoint and restore containers that include volumes. - The podman container checkpoint command now supports the --with-previous and --pre-checkpoint options, and the podman container restore command now support the --import-previous option. These add support for two-step checkpointing with lowered dump times. - The podman push command can now push manifest lists. Podman will first attempt to push as an image, then fall back to pushing as a manifest list if that fails. - The podman generate kube command can now be run on multiple containers at once, and will generate a single pod containing all of them. - The podman generate kube and podman play kube commands now support Kubernetes DNS configuration, and will preserve custom DNS configuration when exporting or importing YAML (#9132). - The podman generate kube command now properly supports generating YAML for containers and pods creating using host networking (--net=host) (#9077). - The podman kill command now supports a --cidfile option to kill containers given a file containing the container's ID (#8443). - The podman pod create command now supports the --net=none option (#9165). - The podman volume create command can now specify volume UID and GID as options with the UID and GID fields passed to the the --opt option. - Initial support has been added for Docker Volume Plugins. Podman can now define available plugins in containers.conf and use them to create volumes with podman volume create --driver. - The podman run and podman create commands now support a new option, --platform, to specify the platform of the image to be used when creating the container. - The --security-opt option to podman run and podman create now supports the systempaths=unconfined option to unrestrict access to all paths in the container, as well as mask and unmask options to allow more granular restriction of container paths. - The podman stats --format command now supports a new format specified, MemUsageBytes, which prints the raw bytes of memory consumed by a container without human-readable formatting #8945. - The podman ps command can now filter containers based on what pod they are joined to via the pod filter (#8512). - The podman pod ps command can now filter pods based on what networks they are joined to via the network filter. The podman pod ps command can now print information on what networks a pod is joined to via the .Networks specifier to the --format option. - The podman system prune command now supports filtering what containers, pods, images, and volumes will be pruned. - The podman volume prune commands now supports filtering what volumes will be pruned. - The podman system prune command now includes information on space reclaimed (#8658). - The podman info command will now properly print information about packages in use on Gentoo and Arch systems. - The containers.conf file now contains an option for disabling creation of a new kernel keyring on container creation (#8384). - The podman image sign command can now sign multi-arch images by producing a signature for each image in a given manifest list. - The podman image sign command, when run as rootless, now supports per-user registry configuration files in $HOME/.config/containers/registries.d. - Configuration options for slirp4netns can now be set system-wide via the NetworkCmdOptions configuration option in containers.conf. - The MTU of slirp4netns can now be configured via the mtu= network command option (e.g. podman run --net slirp4netns:mtu=9000). * Security - A fix for CVE-2021-20199 is included. Podman between v1.8.0 and v2.2.1 used 127.0.0.1 as the source address for all traffic forwarded into rootless containers by a forwarded port; this has been changed to address the issue. * Changes - Shortname aliasing support has now been turned on by default. All Podman commands that must pull an image will, if a TTY is available, prompt the user about what image to pull. - The podman load command no longer accepts a NAME[:TAG] argument. The presence of this argument broke CLI compatibility with Docker by making docker load commands unusable with Podman (#7387). - The Go bindings for the HTTP API have been rewritten with a focus on limiting dependency footprint and improving extensibility. Read more here. - The legacy Varlink API has been completely removed from Podman. - The default log level for Podman has been changed from Error to Warn. - The podman network create command can now create macvlan networks using the --driver macvlan option for Docker compatibility. The existing --macvlan flag has been deprecated and will be removed in Podman 4.0 some time next year. - The podman inspect command has had the LogPath and LogTag fields moved into the LogConfig structure (from the root of the Inspect structure). The maximum size of the log file is also included. - The podman generate systemd command no longer generates unit files using the deprecated KillMode=none option (#8615). - The podman stop command now releases the container lock while waiting for it to stop - as such, commands like podman ps will no longer block until podman stop completes (#8501). - Networks created with podman network create --internal no longer use the dnsname plugin. This configuration never functioned as expected. - Error messages for the remote Podman client have been improved when it cannot connect to a Podman service. - Error messages for podman run when an invalid SELinux is specified have been improved. - Rootless Podman features improved support for containers with a single user mapped into the rootless user namespace. - Pod infra containers now respect default sysctls specified in containers.conf allowing for advanced configuration of the namespaces they will share. - SSH public key handling for remote Podman has been improved. * Bugfixes - Fixed a bug where the podman history --no-trunc command would truncate the Created By field (#9120). - Fixed a bug where root containers that did not explicitly specify a CNI network to join did not generate an entry for the network in use in the Networks field of the output of podman inspect (#6618). - Fixed a bug where, under some circumstances, container working directories specified by the image (via the WORKDIR instruction) but not present in the image, would not be created (#9040). - Fixed a bug where the podman generate systemd command would generate invalid unit files if the container was creating using a command line that included doubled braces ({{ and }}), e.g. --log-opt-tag={{.Name}} (#9034). - Fixed a bug where the podman generate systemd --new command could generate unit files including invalid Podman commands if the container was created using merged short options (e.g. podman run -dt) (#8847). - Fixed a bug where the podman generate systemd --new command could generate unit files that did not handle Podman commands including some special characters (e.g. $) (#9176 - Fixed a bug where rootless containers joining CNI networks could not set a static IP address (#7842). - Fixed a bug where rootless containers joining CNI networks could not set network aliases (#8567). - Fixed a bug where the remote client could, under some circumstances, not include the Containerfile when sending build context to the server (#8374). - Fixed a bug where rootless Podman did not mount /sys as a new sysfs in some circumstances where it was acceptable. - Fixed a bug where rootless containers that both joined a user namespace and a CNI networks would cause a segfault. These options are incompatible and now return an error. - Fixed a bug where the podman play kube command did not properly handle CMD and ARGS from images (#8803). - Fixed a bug where the podman play kube command did not properly handle environment variables from images (#8608). - Fixed a bug where the podman play kube command did not properly print errors that occurred when starting containers. - Fixed a bug where the podman play kube command errored when hostNetwork was used (#8790). - Fixed a bug where the podman play kube command would always pull images when the :latest tag was specified, even if the image was available locally (#7838). - Fixed a bug where the podman play kube command did not properly handle SELinux configuration, rending YAML with custom SELinux configuration unusable (#8710). - Fixed a bug where the podman generate kube command incorrectly populated the args and command fields of generated YAML (#9211). - Fixed a bug where containers in a pod would create a duplicate entry in the pod's shared /etc/hosts file every time the container restarted (#8921). - Fixed a bug where the podman search --list-tags command did not support the --format option (#8740). - Fixed a bug where the http_proxy option in containers.conf was not being respected, and instead was set unconditionally to true (#8843). - Fixed a bug where rootless Podman could, on systems with a recent Conmon and users with a long username, fail to attach to containers (#8798). - Fixed a bug where the podman images command would break and fail to display any images if an empty manifest list was present in storage (#8931). - Fixed a bug where locale environment variables were not properly passed on to Conmon. - Fixed a bug where Podman would not build on the MIPS architecture (#8782). - Fixed a bug where rootless Podman could fail to properly configure user namespaces for rootless containers when the user specified a --uidmap option that included a mapping beginning with UID 0. - Fixed a bug where the podman logs command using the k8s-file backend did not properly handle partial log lines with a length of 1 (#8879). - Fixed a bug where the podman logs command with the --follow option did not properly handle log rotation (#8733). - Fixed a bug where user-specified HOSTNAME environment variables were overwritten by Podman (#8886). - Fixed a bug where Podman would applied default sysctls from containers.conf in too many situations (e.g. applying network sysctls when the container shared its network with a pod). - Fixed a bug where Podman did not properly handle cases where a secondary image store was in use and an image was present in both the secondary and primary stores (#8176). - Fixed a bug where systemd-managed rootless Podman containers where the user in the container was not root could fail as the container's PID file was not accessible to systemd on the host (#8506). - Fixed a bug where the --privileged option to podman run and podman create would, under some circumstances, not disable Seccomp (#8849). - Fixed a bug where the podman exec command did not properly add capabilities when the container or exec session were run with --privileged. - Fixed a bug where rootless Podman would use the --enable-sandbox option to slirp4netns unconditionally, even when pivot_root was disabled, rendering slirp4netns unusable when pivot_root was disabled (#8846). - Fixed a bug where podman build --logfile did not actually write the build's log to the logfile. - Fixed a bug where the podman system service command did not close STDIN, and could display user-interactive prompts (#8700). - Fixed a bug where the podman system reset command could, under some circumstances, remove all the contents of the XDG_RUNTIME_DIR directory (#8680). - Fixed a bug where the podman network create command created CNI configurations that did not include a default gateway (#8748). - Fixed a bug where the podman.service systemd unit provided by default used the wrong service type, and would cause systemd to not correctly register the service as started (#8751). - Fixed a bug where, if the TMPDIR environment variable was set for the container engine in containers.conf, it was being ignored. - Fixed a bug where the podman events command did not properly handle future times given to the --until option (#8694). - Fixed a bug where the podman logs command wrote container STDERR logs to STDOUT instead of STDERR (#8683). - Fixed a bug where containers created from an image with multiple tags would report that they were created from the wrong tag (#8547). - Fixed a bug where container capabilities were not set properly when the --cap-add=all and --user options to podman create and podman run were combined. - Fixed a bug where the --layers option to podman build was nonfunctional (#8643). - Fixed a bug where the podman system prune command did not act recursively, and thus would leave images, containers, pods, and volumes present that would be removed by a subsequent call to podman system prune (#7990). - Fixed a bug where the --publish option to podman run and podman create did not properly handle ports specified as a range of ports with no host port specified (#8650). - Fixed a bug where --format did not support JSON output for individual fields (#8444). - Fixed a bug where the podman stats command would fail when run on root containers using the slirp4netns network mode (#7883). - Fixed a bug where the Podman remote client would ask for a password even if the server's SSH daemon did not support password authentication (#8498). - Fixed a bug where the podman stats command would fail if the system did not support one or more of the cgroup controllers Podman supports (#8588). - Fixed a bug where the --mount option to podman create and podman run did not ignore the consistency mount option. - Fixed a bug where failures during the resizing of a container's TTY would print the wrong error. - Fixed a bug where the podman network disconnect command could cause the podman inspect command to fail for a container until it was restarted (#9234). - Fixed a bug where containers created from a read-only rootfs (using the --rootfs option to podman create and podman run) would fail (#9230). - Fixed a bug where specifying Go templates to the --format option to multiple Podman commands did not support the join function (#8773). - Fixed a bug where the podman rmi command could, when run in parallel on multiple images, return layer not known errors (#6510). - Fixed a bug where the podman inspect command on containers displayed unlimited ulimits incorrectly (#9303). - Fixed a bug where Podman would fail to start when a volume was mounted over a directory in a container that contained symlinks that terminated outside the directory and its subdirectories (#6003).
    • API - Libpod API version has been bumped to v3.0.0. - All Libpod Pod APIs have been modified to properly report errors with individual containers. Cases where the operation as a whole succeeded but individual containers failed now report an HTTP 409 error (#8865). - The Compat API for Containers now supports the Rename and Copy APIs. - Fixed a bug where the Compat Prune APIs (for volumes, containers, and images) did not return the amount of space reclaimed in their responses. - Fixed a bug where the Compat and Libpod Exec APIs for Containers would drop errors that occurred prior to the exec session successfully starting (e.g. a 'no such file' error if an invalid executable was passed) (#8281) - Fixed a bug where the Volumes field in the Compat Create API for Containers was being ignored (#8649). - Fixed a bug where the NetworkMode field in the Compat Create API for Containers was not handling some values, e.g. container:, correctly. - Fixed a bug where the Compat Create API for Containers did not set container name properly. - Fixed a bug where containers created using the Compat Create API unconditionally used Kubernetes file logging (the default specified in containers.conf is now used). - Fixed a bug where the Compat Inspect API for Containers could include container states not recognized by Docker. - Fixed a bug where Podman did not properly clean up after calls to the Events API when the journald backend was in use, resulting in a leak of file descriptors (#8864). - Fixed a bug where the Libpod Pull endpoint for Images could fail with an index out of range error under certain circumstances (#8870). - Fixed a bug where the Libpod Exists endpoint for Images could panic. - Fixed a bug where the Compat List API for Containers did not support all filters (#8860). - Fixed a bug where the Compat List API for Containers did not properly populate the Status field. - Fixed a bug where the Compat and Libpod Resize APIs for Containers ignored the height and width parameters (#7102). - Fixed a bug where the Compat Search API for Images returned an incorrectly-formatted JSON response (#8758). - Fixed a bug where the Compat Load API for Images did not properly clean up temporary files. - Fixed a bug where the Compat Create API for Networks could panic when an empty IPAM configuration was specified. - Fixed a bug where the Compat Inspect and List APIs for Networks did not include Scope. - Fixed a bug where the Compat Wait endpoint for Containers did not support the same wait conditions that Docker did. * Misc - Updated Buildah to v1.19.2 - Updated the containers/storage library to v1.24.5 - Updated the containers/image library to v5.10.2 - Updated the containers/common library to v0.33.4


    SELinux support [jsc#SMO-15]

    libseccomp was updated to release 2.5.3:

    Update to release 2.5.2

    update to 2.5.1:

    Update to release 2.5.0

    Update to release 2.4.3

    Update to release 2.4.2


    conmon was updated to version 2.0.30:
    * Remove unreachable code path * exit: report if the exit command was killed * exit: fix race zombie reaper * conn_sock: allow watchdog messages through the notify socket proxy * seccomp: add support for seccomp notify
    Update to version 2.0.29:
    * Reset OOM score back to 0 for container runtime * call functions registered with atexit on SIGTERM * conn_sock: fix potential segfault
    Update to version 2.0.27:
    * Add CRI-O integration test GitHub action * exec: don't fail on EBADFD * close_fds: fix close of external fds * Add arm64 static build binary
    Update to version 2.0.26:
    * conn_sock: do not fail on EAGAIN * fix segfault from a double freed pointer * Fix a bug where conmon could never spawn a container, because a disagreement between the caller and itself on where the attach socket was. * improve --full-attach to ignore the socket-dir directly. that means callers don't need to specify a socket dir at all (and can remove it) * add full-attach option to allow callers to not truncate a very long path for the attach socket * close only opened FDs * set locale to inherit environment
    Update to version 2.0.22:
    * added man page * attach: always chdir * conn_sock: Explicitly free a heap-allocated string * refactor I/O and add SD_NOTIFY proxy support
    Update to version 2.0.21:
    * protect against kill(-1) * Makefile: enable debuginfo generation * Remove go.sum file and add go.mod * Fail if conmon config could not be written * nix: remove double definition for e2fsprogs * Speedup static build by utilizing CI cache on `/nix` folder * Fix nix build for failing e2fsprogs tests * test: fix CI * Use Podman for building
    libcontainers-common was updated to include:
    (changes too long to list)
    CVEs fixed: CVE-2020-14370,CVE-2020-15157,CVE-2021-20199,CVE-2021-20291,CVE-2021-3602

    Advisory IDSUSE-RU-2022:711-1
    ReleasedFri Mar 4 09:15:11 2022
    SummaryRecommended update for sudo
    Typerecommended
    Severitymoderate
    References1181703
    Description:

    This update for sudo fixes the following issues:

    Advisory IDSUSE-SU-2022:713-1
    ReleasedFri Mar 4 09:34:17 2022
    SummarySecurity update for expat
    Typesecurity
    Severityimportant
    References1196025,1196026,1196168,1196169,1196171,CVE-2022-25235,CVE-2022-25236,CVE-2022-25313,CVE-2022-25314,CVE-2022-25315
    Description:

    This update for expat fixes the following issues:

    Advisory IDSUSE-SU-2022:717-1
    ReleasedFri Mar 4 09:45:20 2022
    SummarySecurity update for gnutls
    Typesecurity
    Severitymoderate
    References1196167,CVE-2021-4209
    Description:

    This update for gnutls fixes the following issues:

    Advisory IDSUSE-SU-2022:720-1
    ReleasedFri Mar 4 10:20:28 2022
    SummarySecurity update for containerd
    Typesecurity
    Severitymoderate
    References1196441,CVE-2022-23648
    Description:

    This update for containerd fixes the following issues:

    Advisory IDSUSE-SU-2022:727-1
    ReleasedFri Mar 4 10:39:21 2022
    SummarySecurity update for libeconf, shadow and util-linux
    Typesecurity
    Severitymoderate
    References1188507,1192954,1193632,1194976,CVE-2021-3995,CVE-2021-3996
    Description:

    This security update for libeconf, shadow and util-linux fix the following issues:
    libeconf:


    Issues fixed in libeconf:
    shadow:

    util-linux:

    Advisory IDSUSE-SU-2022:736-1
    ReleasedFri Mar 4 14:51:57 2022
    SummarySecurity update for vim
    Typesecurity
    Severityimportant
    References1190533,1190570,1191893,1192478,1192481,1193294,1193298,1194216,1194556,1195004,1195066,1195126,1195202,1195356,CVE-2021-3778,CVE-2021-3796,CVE-2021-3872,CVE-2021-3927,CVE-2021-3928,CVE-2021-3984,CVE-2021-4019,CVE-2021-4193,CVE-2021-46059,CVE-2022-0318,CVE-2022-0319,CVE-2022-0351,CVE-2022-0361,CVE-2022-0413
    Description:

    This update for vim fixes the following issues:

    Advisory IDSUSE-SU-2022:743-1
    ReleasedMon Mar 7 22:08:12 2022
    SummarySecurity update for cyrus-sasl
    Typesecurity
    Severityimportant
    References1194265,1196036,CVE-2022-24407
    Description:

    This update for cyrus-sasl fixes the following issues:


    The following non-security bugs were fixed:

    Advisory IDSUSE-SU-2022:760-1
    ReleasedTue Mar 8 19:06:23 2022
    SummarySecurity update for the Linux Kernel
    Typesecurity
    Severityimportant
    References1089644,1154353,1157038,1157923,1176447,1176940,1178134,1181147,1181588,1183872,1187716,1188404,1189126,1190812,1190972,1191580,1191655,1191741,1192210,1192483,1193096,1193233,1193243,1193787,1194163,1194967,1195012,1195081,1195286,1195352,1195378,1195506,1195516,1195543,1195668,1195701,1195798,1195799,1195823,1195908,1195928,1195947,1195957,1195995,1196195,1196235,1196339,1196373,1196400,1196403,1196516,1196584,1196585,1196601,1196612,1196776,CVE-2022-0001,CVE-2022-0002,CVE-2022-0492,CVE-2022-0516,CVE-2022-0847,CVE-2022-25375
    Description:

    The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes.

    Transient execution side-channel attacks attacking the Branch History Buffer (BHB), named 'Branch Target Injection' and 'Intra-Mode Branch History Injection' are now mitigated.
    The following security bugs were fixed:


    The following non-security bugs were fixed:

    Advisory IDSUSE-RU-2022:771-1
    ReleasedWed Mar 9 09:27:07 2022
    SummaryRecommended update for libseccomp
    Typerecommended
    Severitymoderate
    References1196825
    Description:

    This update for libseccomp fixes the following issues:

    Advisory IDSUSE-SU-2022:774-1
    ReleasedWed Mar 9 10:52:10 2022
    SummarySecurity update for tcpdump
    Typesecurity
    Severitymoderate
    References1195825,CVE-2018-16301
    Description:

    This update for tcpdump fixes the following issues:

    Advisory IDSUSE-RU-2022:775-1
    ReleasedWed Mar 9 12:55:03 2022
    SummaryRecommended update for pciutils
    Typerecommended
    Severitymoderate
    References1192862
    Description:

    This update for pciutils fixes the following issues:

    Advisory IDSUSE-RU-2022:787-1
    ReleasedThu Mar 10 11:20:13 2022
    SummaryRecommended update for openldap2
    Typerecommended
    Severitymoderate
    References
    Description:

    This update for openldap2 fixes the following issue:

    Advisory IDSUSE-RU-2022:788-1
    ReleasedThu Mar 10 11:21:04 2022
    SummaryRecommended update for libzypp, zypper
    Typerecommended
    Severitymoderate
    References1195326
    Description:

    This update for libzypp, zypper fixes the following issues:

    Advisory IDSUSE-RU-2022:789-1
    ReleasedThu Mar 10 11:22:05 2022
    SummaryRecommended update for update-alternatives
    Typerecommended
    Severitymoderate
    References1195654
    Description:

    This update for update-alternatives fixes the following issues:

    Advisory IDSUSE-RU-2022:792-1
    ReleasedThu Mar 10 11:58:18 2022
    SummaryRecommended update for suse-build-key
    Typerecommended
    Severitymoderate
    References1194845,1196494,1196495
    Description:

    This update for suse-build-key fixes the following issues:

    SUSE-IU-2022:282-1

    Container Advisory IDSUSE-IU-2022:282-1
    Container Tagssles-15-sp3-chost-byos-v20220222:20220222
    Container Release
    The following patches have been included in this update:
    Advisory IDSUSE-RU-2022:207-1
    ReleasedThu Jan 27 09:24:49 2022
    SummaryRecommended update for glibc
    Typerecommended
    Severitymoderate
    References
    Description:

    This update for glibc fixes the following issues:

    Advisory IDSUSE-RU-2022:228-1
    ReleasedMon Jan 31 06:07:52 2022
    SummaryRecommended update for boost
    Typerecommended
    Severitymoderate
    References1194522
    Description:

    This update for boost fixes the following issues:

    Advisory IDSUSE-RU-2022:273-1
    ReleasedTue Feb 1 14:15:21 2022
    SummaryRecommended update for google-guest-agent, google-guest-configs, google-guest-oslogin, google-osconfig-agent
    Typerecommended
    Severityimportant
    References1102408,1192652,1192653,1193257,1193258
    Description:

    This update for google-guest-agent, google-guest-configs, google-guest-oslogin, google-osconfig-agent contains the following fixes:
    Changes in google-guest-agent:






    Changes in google-guest-configs:





    Changes in google-guest-oslogin:
    Changes in google-osconfig-agent:



    Advisory IDSUSE-RU-2022:317-1
    ReleasedThu Feb 3 10:06:59 2022
    SummaryRecommended update for wicked
    Typerecommended
    Severitymoderate
    References1057592,1156920,1160654,1178357,1181163,1181812,1182227,1183407,1183495,1188019,1189560,1192164,1192311,1192353,1194392
    Description:

    This update for wicked fixes the following issues:

    Advisory IDSUSE-RU-2022:322-1
    ReleasedThu Feb 3 14:03:19 2022
    SummaryRecommended update for dracut
    Typerecommended
    Severitymoderate
    References1192685,1194716
    Description:

    This update for dracut fixes the following issues:

    Advisory IDSUSE-SU-2022:330-1
    ReleasedFri Feb 4 09:29:08 2022
    SummarySecurity update for glibc
    Typesecurity
    Severityimportant
    References1194640,1194768,1194770,1194785,CVE-2021-3999,CVE-2022-23218,CVE-2022-23219
    Description:


    This update for glibc fixes the following issues:


    Features added:

    Advisory IDSUSE-SU-2022:333-1
    ReleasedFri Feb 4 09:30:26 2022
    SummarySecurity update for xen
    Typesecurity
    Severityimportant
    References1194576,1194581,1194588,CVE-2022-23033,CVE-2022-23034,CVE-2022-23035
    Description:

    This update for xen fixes the following issues:

    Advisory IDSUSE-SU-2022:334-1
    ReleasedFri Feb 4 09:30:58 2022
    SummarySecurity update for containerd, docker
    Typesecurity
    Severitymoderate
    References1191015,1191121,1191334,1191434,1193273,CVE-2021-41089,CVE-2021-41091,CVE-2021-41092,CVE-2021-41103,CVE-2021-41190
    Description:

    This update for containerd, docker fixes the following issues:

    Advisory IDSUSE-RU-2022:335-1
    ReleasedFri Feb 4 10:24:02 2022
    SummaryRecommended update for coreutils
    Typerecommended
    Severitymoderate
    References1189152
    Description:

    This update for coreutils fixes the following issues:

    Advisory IDSUSE-RU-2022:340-1
    ReleasedMon Feb 7 13:08:14 2022
    SummarySecurity update for the Linux Kernel
    Typerecommended
    Severitymoderate
    References1195142
    Description:



    The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various a regression bugfix.
    The following non-security bugs were fixed:

    Advisory IDSUSE-RU-2022:343-1
    ReleasedMon Feb 7 15:16:58 2022
    SummaryRecommended update for systemd
    Typerecommended
    Severitymoderate
    References1193086
    Description:

    This update for systemd fixes the following issues:

    Advisory IDSUSE-RU-2022:348-1
    ReleasedTue Feb 8 13:02:20 2022
    SummaryRecommended update for libzypp
    Typerecommended
    Severityimportant
    References1193007,1193488,1194597,1194898,954813
    Description:

    This update for libzypp fixes the following issues:

    Advisory IDSUSE-SU-2022:283-1
    ReleasedTue Feb 8 16:10:39 2022
    SummarySecurity update for samba
    Typesecurity
    Severitycritical
    References1139519,1183572,1183574,1188571,1191227,1191532,1192684,1193690,1194859,1195048,CVE-2020-27840,CVE-2021-20277,CVE-2021-20316,CVE-2021-36222,CVE-2021-43566,CVE-2021-44141,CVE-2021-44142,CVE-2022-0336
    Description:




    samba was updated to 4.15.4 (jsc#SLE-23329);

    Samba was updated to version 4.15.3

    krb5 was updated to 1.16.3 to 1.19.2

    Changes from 1.19.1:

    Changes from 1.19
    Administrator experience * When a client keytab is present, the GSSAPI krb5 mech will refresh credentials even if the current credentials were acquired manually. * It is now harder to accidentally delete the K/M entry from a KDB. Developer experience * gss_acquire_cred_from() now supports the 'password' and 'verify' options, allowing credentials to be acquired via password and verified using a keytab key. * When an application accepts a GSS security context, the new GSS_C_CHANNEL_BOUND_FLAG will be set if the initiator and acceptor both provided matching channel bindings. * Added the GSS_KRB5_NT_X509_CERT name type, allowing S4U2Self requests to identify the desired client principal by certificate. * PKINIT certauth modules can now cause the hw-authent flag to be set in issued tickets. * The krb5_init_creds_step() API will now issue the same password expiration warnings as krb5_get_init_creds_password(). Protocol evolution * Added client and KDC support for Microsoft's Resource-Based Constrained Delegation, which allows cross-realm S4U2Proxy requests. A third-party database module is required for KDC support. * kadmin/admin is now the preferred server principal name for kadmin connections, and the host-based form is no longer created by default. The client will still try the host-based form as a fallback. * Added client and server support for Microsoft's KERB_AP_OPTIONS_CBT extension, which causes channel bindings to be required for the initiator if the acceptor provided them. The client will send this option if the client_aware_gss_bindings profile option is set. User experience * kinit will now issue a warning if the des3-cbc-sha1 encryption type is used in the reply. This encryption type will be deprecated and removed in future releases. * Added kvno flags --out-cache, --no-store, and --cached-only (inspired by Heimdal's kgetcred).
    Changes from 1.18.3
    Changes from 1.18.2
    Changes from 1.18.1
    Changes from 1.18 Administrator experience: * Remove support for single-DES encryption types. * Change the replay cache format to be more efficient and robust. Replay cache filenames using the new format end with '.rcache2' by default. * setuid programs will automatically ignore environment variables that normally affect krb5 API functions, even if the caller does not use krb5_init_secure_context(). * Add an 'enforce_ok_as_delegate' krb5.conf relation to disable credential forwarding during GSSAPI authentication unless the KDC sets the ok-as-delegate bit in the service ticket. * Use the permitted_enctypes krb5.conf setting as the default value for default_tkt_enctypes and default_tgs_enctypes. Developer experience: * Implement krb5_cc_remove_cred() for all credential cache types. * Add the krb5_pac_get_client_info() API to get the client account name from a PAC. Protocol evolution: * Add KDC support for S4U2Self requests where the user is identified by X.509 certificate. (Requires support for certificate lookup from a third-party KDB module.) * Remove support for an old ('draft 9') variant of PKINIT. * Add support for Microsoft NegoEx. (Requires one or more third-party GSS modules implementing NegoEx mechanisms.) User experience: * Add support for 'dns_canonicalize_hostname=fallback', causing host-based principal names to be tried first without DNS canonicalization, and again with DNS canonicalization if the un-canonicalized server is not found. * Expand single-component hostnames in host-based principal names when DNS canonicalization is not used, adding the system's first DNS search path as a suffix. Add a 'qualify_shortname' krb5.conf relation to override this suffix or disable expansion. * Honor the transited-policy-checked ticket flag on application servers, eliminating the requirement to configure capaths on servers in some scenarios. Code quality: * The libkrb5 serialization code (used to export and import krb5 GSS security contexts) has been simplified and made type-safe. * The libkrb5 code for creating KRB-PRIV, KRB-SAFE, and KRB-CRED messages has been revised to conform to current coding practices. * The test suite has been modified to work with macOS System Integrity Protection enabled. * The test suite incorporates soft-pkcs11 so that PKINIT PKCS11 support can always be tested.
    Changes from 1.17.1
    Changes from 1.17: Administrator experience: Developer experience:
  • The new krb5_get_etype_info() API can be used to retrieve enctype, salt, and string-to-key parameters from the KDC for a client principal.
  • The new GSS_KRB5_NT_ENTERPRISE_NAME name type allows enterprise principal names to be used with GSS-API functions.
  • KDC and kadmind modules which call com_err() will now write to the log file in a format more consistent with other log messages.
  • Programs which use large numbers of memory credential caches should perform better.
    • Protocol evolution:
  • The SPAKE pre-authentication mechanism is now supported. This mechanism protects against password dictionary attacks without requiring any additional infrastructure such as certificates. SPAKE is enabled by default on clients, but must be manually enabled on the KDC for this release.
  • PKINIT freshness tokens are now supported. Freshness tokens can protect against scenarios where an attacker uses temporary access to a smart card to generate authentication requests for the future.
  • Password change operations now prefer TCP over UDP, to avoid spurious error messages about replays when a response packet is dropped.
  • The KDC now supports cross-realm S4U2Self requests when used with a third-party KDB module such as Samba's. The client code for cross-realm S4U2Self requests is also now more robust.
    • User experience:
  • The new ktutil addent -f flag can be used to fetch salt information from the KDC for password-based keys.
  • The new kdestroy -p option can be used to destroy a credential cache within a collection by client principal name.
  • The Kerberos man page has been restored, and documents the environment variables that affect programs using the Kerberos library.
    • Code quality:
  • Python test scripts now use Python 3.
  • Python test scripts now display markers in verbose output, making it easier to find where a failure occurred within the scripts.
  • The Windows build system has been simplified and updated to work with more recent versions of Visual Studio. A large volume of unused Windows-specific code has been removed. Visual Studio 2013 or later is now required.

    • ldb was updated to version 2.4.1 (jsc#SLE-23329);

    + Corrected python behaviour for 'in' for LDAP attributes contained as part of ldb.Message; (bso#14845); + Fix memory handling in ldb.msg_diff; (bso#14836);

    + pyldb: Fix Message.items() for a message containing elements + pyldb: Add test for Message.items() + tests: Use ldbsearch '--scope instead of '-s' + Change page size of guidindexpackv1.ldb + Use a 1MiB lmdb so the test also passes on aarch64 CentOS stream + attrib_handler casefold: simplify space dropping + fix ldb_comparison_fold off-by-one overrun + CVE-2020-27840: pytests: move Dn.validate test to ldb + CVE-2020-27840 ldb_dn: avoid head corruption in ldb_dn_explode + CVE-2021-20277 ldb/attrib_handlers casefold: stay in bounds + CVE-2021-20277 ldb tests: ldb_match tests with extra spaces + improve comments for ldb_module_connect_backend() + test/ldb_tdb: correct introductory comments + ldb.h: remove undefined async_ctx function signatures + correct comments in attrib_handers val_to_int64 + dn tests use cmocka print functions + ldb_match: remove redundant check + add tests for ldb_wildcard_compare + ldb_match: trailing chunk must match end of string + pyldb: catch potential overflow error in py_timestring + ldb: remove some 'if PY3's in tests
    talloc was updated to 2.3.3:

    tdb was updated to version 1.4.4:

    tevent was updated to version 0.11.0:

    sssd was updated to:

    apparmor was updated to:

    Advisory IDSUSE-SU-2022:370-1
    ReleasedFri Feb 11 08:35:29 2022
    SummarySecurity update for the Linux Kernel
    Typesecurity
    Severitycritical
    References1154353,1154488,1156395,1160634,1176447,1177599,1183405,1185377,1187428,1187723,1188605,1191881,1193096,1193506,1193767,1193802,1193861,1193864,1193867,1194048,1194227,1194291,1194880,1195009,1195062,1195065,1195073,1195183,1195184,1195254,1195267,1195293,1195371,1195476,1195477,1195478,1195479,1195480,1195481,1195482,CVE-2020-28097,CVE-2021-22600,CVE-2021-39648,CVE-2021-39657,CVE-2021-39685,CVE-2021-44733,CVE-2021-45095,CVE-2022-0286,CVE-2022-0330,CVE-2022-0435,CVE-2022-22942
    Description:


    The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes.

    The following security bugs were fixed:



    The following non-security bugs were fixed:

    Advisory IDSUSE-RU-2022:383-1
    ReleasedTue Feb 15 17:47:36 2022
    SummaryRecommended update for cyrus-sasl
    Typerecommended
    Severitymoderate
    References1194265
    Description:

    This update for cyrus-sasl fixes the following issues:

    Advisory IDSUSE-RU-2022:476-1
    ReleasedThu Feb 17 10:31:35 2022
    SummaryRecommended update for nfs-utils
    Typerecommended
    Severitymoderate
    References1194661
    Description:

    This update for nfs-utils fixes the following issues:

    Advisory IDSUSE-SU-2022:498-1
    ReleasedFri Feb 18 10:46:56 2022
    SummarySecurity update for expat
    Typesecurity
    Severityimportant
    References1195054,1195217,CVE-2022-23852,CVE-2022-23990
    Description:

    This update for expat fixes the following issues:

    Advisory IDSUSE-RU-2022:513-1
    ReleasedFri Feb 18 12:43:10 2022
    SummaryRecommended update for grub2
    Typerecommended
    Severitymoderate
    References1159205,1190395
    Description:

    This update for grub2 fixes the following issues:

    Advisory IDSUSE-RU-2022:520-1
    ReleasedFri Feb 18 12:45:19 2022
    SummaryRecommended update for rpm
    Typerecommended
    Severitymoderate
    References1194968
    Description:

    This update for rpm fixes the following issues:

    Advisory IDSUSE-SU-2022:539-1
    ReleasedMon Feb 21 13:47:51 2022
    SummarySecurity update for systemd
    Typesecurity
    Severitymoderate
    References1191826,1192637,1194178,CVE-2021-3997
    Description:

    This update for systemd fixes the following issues:


    The following non-security bugs were fixed:

    Advisory IDSUSE-RU-2022:548-1
    ReleasedTue Feb 22 13:48:55 2022
    SummaryRecommended update for blog
    Typerecommended
    Severitymoderate
    References1186506,1191057
    Description:

    This update for blog fixes the following issues:





    SUSE-IU-2022:32-1

    Container Advisory IDSUSE-IU-2022:32-1
    Container Tagssles-15-sp3-chost-byos-v20220126:20220126
    Container Release
    The following patches have been included in this update:
    Advisory IDSUSE-RU-2019:32-1
    ReleasedTue Jan 8 13:03:20 2019
    SummaryRecommended update for librdkafka
    Typerecommended
    Severitymoderate
    References1119963
    Description:


    This update ships librdkafka 0.11.6 to SUSE Linux Enterprise Server 15.
    librdkafka is a C library implementation of the Apache Kafka protocol, containing both Producer and Consumer support.

    Advisory IDSUSE-RU-2021:2974-1
    ReleasedTue Sep 7 17:17:23 2021
    SummaryRecommended update for librdkafka
    Typerecommended
    Severityimportant
    References1189792
    Description:

    This update for librdkafka fixes the following issue:

    Advisory IDSUSE-SU-2022:43-1
    ReleasedTue Jan 11 08:50:13 2022
    SummarySecurity update for systemd
    Typesecurity
    Severitymoderate
    References1178561,1190515,1194178,CVE-2021-3997
    Description:

    This update for systemd fixes the following issues:

    Advisory IDSUSE-RU-2022:48-1
    ReleasedTue Jan 11 09:17:57 2022
    SummaryRecommended update for python3
    Typerecommended
    Severitymoderate
    References1190566,1192249,1193179
    Description:

    This update for python3 fixes the following issues:


    Advisory IDSUSE-RU-2022:55-1
    ReleasedTue Jan 11 12:53:23 2022
    SummaryRecommended update for rsyslog
    Typerecommended
    Severitymoderate
    References1029961,1160414,1178490,1182653
    Description:

    This update for rsyslog fixes the following issues:








    Advisory IDSUSE-RU-2022:72-1
    ReleasedThu Jan 13 16:13:36 2022
    SummaryRecommended update for mozilla-nss and MozillaFirefox
    Typerecommended
    Severityimportant
    References1193845
    Description:

    This update for mozilla-nss and MozillaFirefox fix the following issues:
    mozilla-nss:

    MozillaFirefox:

    Advisory IDSUSE-RU-2022:84-1
    ReleasedMon Jan 17 04:40:30 2022
    SummaryRecommended update for dosfstools
    Typerecommended
    Severitymoderate
    References1172863,1188401
    Description:

    This update for dosfstools fixes the following issues:

    Advisory IDSUSE-RU-2022:92-1
    ReleasedMon Jan 17 20:59:15 2022
    SummaryRecommended update for rsyslog
    Typerecommended
    Severityimportant
    References1194593
    Description:

    This update for rsyslog fixes the following issues:

    Advisory IDSUSE-RU-2022:93-1
    ReleasedTue Jan 18 05:11:58 2022
    SummaryRecommended update for openssl-1_1
    Typerecommended
    Severityimportant
    References1192489
    Description:

    This update for openssl-1_1 fixes the following issues:

    Advisory IDSUSE-RU-2022:95-1
    ReleasedTue Jan 18 05:14:24 2022
    SummaryRecommended update for grub2
    Typerecommended
    Severitymoderate
    References1193532
    Description:

    This update for grub2 fixes the following issues:

    Advisory IDSUSE-RU-2022:96-1
    ReleasedTue Jan 18 05:14:44 2022
    SummaryRecommended update for rpm
    Typerecommended
    Severityimportant
    References1180125,1190824,1193711
    Description:

    This update for rpm fixes the following issues:

    Advisory IDSUSE-RU-2022:125-1
    ReleasedWed Jan 19 05:03:22 2022
    SummaryRecommended update for dracut
    Typerecommended
    Severitymoderate
    References1175892,1194162
    Description:

    This update for dracut fixes the following issues:

    Advisory IDSUSE-SU-2022:131-1
    ReleasedWed Jan 19 17:30:58 2022
    SummarySecurity update for the Linux Kernel
    Typesecurity
    Severityimportant
    References1139944,1151927,1152489,1153275,1154353,1154355,1161907,1164565,1166780,1169514,1176242,1176447,1176536,1176544,1176545,1176546,1176548,1176558,1176559,1176774,1176940,1176956,1177440,1178134,1178270,1179211,1179424,1179426,1179427,1179599,1181148,1181507,1181710,1182404,1183534,1183540,1183897,1184318,1185726,1185902,1186332,1187541,1189126,1189158,1191793,1191876,1192267,1192320,1192507,1192511,1192569,1192606,1192691,1192845,1192847,1192874,1192946,1192969,1192987,1192990,1192998,1193002,1193042,1193139,1193169,1193306,1193318,1193349,1193440,1193442,1193655,1193993,1194087,1194094,CVE-2020-24504,CVE-2020-27820,CVE-2021-28711,CVE-2021-28712,CVE-2021-28713,CVE-2021-28714,CVE-2021-28715,CVE-2021-4001,CVE-2021-4002,CVE-2021-43975,CVE-2021-43976,CVE-2021-45485,CVE-2021-45486
    Description:


    The SUSE Linux Enterprise 15 SP3 kernel was updated


    The following security bugs were fixed:

    The following non-security bugs were fixed:

    Advisory IDSUSE-SU-2022:141-1
    ReleasedThu Jan 20 13:47:16 2022
    SummarySecurity update for permissions
    Typesecurity
    Severitymoderate
    References1169614
    Description:

    This update for permissions fixes the following issues:

    Advisory IDSUSE-SU-2022:144-1
    ReleasedThu Jan 20 16:38:23 2022
    SummarySecurity update for cryptsetup
    Typesecurity
    Severitymoderate
    References1194469,CVE-2021-4122
    Description:

    This update for cryptsetup fixes the following issues:

    Advisory IDSUSE-SU-2022:151-1
    ReleasedFri Jan 21 12:40:52 2022
    SummarySecurity update for bind
    Typesecurity
    Severitymoderate
    References1192146,CVE-2021-25219
    Description:

    This update for bind fixes the following issues:

    Advisory IDSUSE-SU-2022:178-1
    ReleasedTue Jan 25 14:16:23 2022
    SummarySecurity update for expat
    Typesecurity
    Severityimportant
    References1194251,1194362,1194474,1194476,1194477,1194478,1194479,1194480,CVE-2021-45960,CVE-2021-46143,CVE-2022-22822,CVE-2022-22823,CVE-2022-22824,CVE-2022-22825,CVE-2022-22826,CVE-2022-22827
    Description:

    This update for expat fixes the following issues:

    Advisory IDSUSE-SU-2022:184-1
    ReleasedTue Jan 25 18:20:56 2022
    SummarySecurity update for json-c
    Typesecurity
    Severityimportant
    References1171479,CVE-2020-12762
    Description:

    This update for json-c fixes the following issues:

    Advisory IDSUSE-SU-2022:198-1
    ReleasedWed Jan 26 07:42:51 2022
    SummarySecurity update for the Linux Kernel
    Typesecurity
    Severityimportant
    References1065729,1071995,1154353,1154492,1156395,1167773,1176447,1176774,1177437,1190256,1191271,1191929,1192931,1193255,1193328,1193660,1193669,1193727,1193901,1193927,1194001,1194027,1194087,1194094,1194266,1194302,1194493,1194516,1194517,1194518,1194529,1194578,1194580,1194584,1194586,1194587,1194589,1194590,1194591,1194592,1194888,1194953,1194985,CVE-2021-4083,CVE-2021-4135,CVE-2021-4149,CVE-2021-4197,CVE-2021-4202,CVE-2021-45485,CVE-2021-45486,CVE-2021-46283,CVE-2022-0185,CVE-2022-0322
    Description:



    The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes.
    The following security bugs were fixed:


    The following non-security bugs were fixed:

    SUSE-IU-2022:3-1

    Container Advisory IDSUSE-IU-2022:3-1
    Container Tagssles-15-sp3-chost-byos-v20220103:20220103
    Container Release
    The following patches have been included in this update:
    Advisory IDSUSE-RU-2021:3883-1
    ReleasedThu Dec 2 11:47:07 2021
    SummaryRecommended update for timezone
    Typerecommended
    Severitymoderate
    References1177460
    Description:

    This update for timezone fixes the following issues:
    Update timezone to 2021e (bsc#1177460)

    Advisory IDSUSE-RU-2021:3891-1
    ReleasedFri Dec 3 10:21:49 2021
    SummaryRecommended update for keyutils
    Typerecommended
    Severitymoderate
    References1029961,1113013,1187654
    Description:

    This update for keyutils fixes the following issues:


    keyutils was updated to 1.6.3 (jsc#SLE-20016):

    Updated to 1.6:

    Updated to 1.5.11 (bsc#1113013)

    Advisory IDSUSE-SU-2021:3899-1
    ReleasedFri Dec 3 11:27:41 2021
    SummarySecurity update for aaa_base
    Typesecurity
    Severitymoderate
    References1162581,1174504,1191563,1192248
    Description:

    This update for aaa_base fixes the following issues:

    Advisory IDSUSE-SU-2021:3934-1
    ReleasedMon Dec 6 13:22:27 2021
    SummarySecurity update for mozilla-nss
    Typesecurity
    Severityimportant
    References1193170,CVE-2021-43527
    Description:

    This update for mozilla-nss fixes the following issues:
    Update to version 3.68.1:

    Advisory IDSUSE-SU-2021:3941-1
    ReleasedMon Dec 6 14:45:20 2021
    SummarySecurity update for the Linux Kernel
    Typesecurity
    Severityimportant
    References1152489,1169263,1170269,1184924,1190523,1190795,1191790,1191961,1192045,1192217,1192273,1192328,1192375,1192473,1192718,1192740,1192745,1192750,1192753,1192758,1192781,1192802,1192896,1192906,1192918,CVE-2021-0941,CVE-2021-20322,CVE-2021-31916,CVE-2021-34981
    Description:



    The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes.
    The following security bugs were fixed:


    You can reenable via systemctl setting /proc/sys/kernel/unprivileged_bpf_disabled to 0. (kernel.unprivileged_bpf_disabled = 0)

    The following non-security bugs were fixed:

    Advisory IDSUSE-SU-2021:3946-1
    ReleasedMon Dec 6 14:57:42 2021
    SummarySecurity update for gmp
    Typesecurity
    Severitymoderate
    References1192717,CVE-2021-43618
    Description:

    This update for gmp fixes the following issues:

    Advisory IDSUSE-SU-2021:3950-1
    ReleasedMon Dec 6 14:59:37 2021
    SummarySecurity update for openssh
    Typesecurity
    Severityimportant
    References1190975,CVE-2021-41617
    Description:

    This update for openssh fixes the following issues:

    Advisory IDSUSE-RU-2021:3963-1
    ReleasedMon Dec 6 19:57:39 2021
    SummaryRecommended update for system-users
    Typerecommended
    Severitymoderate
    References1190401
    Description:

    This update for system-users fixes the following issues:

    Advisory IDSUSE-SU-2021:3968-1
    ReleasedTue Dec 7 15:31:00 2021
    SummarySecurity update for xen
    Typesecurity
    Severitymoderate
    References1027519,1191363,1192554,1192557,1192559,CVE-2021-28702,CVE-2021-28704,CVE-2021-28705,CVE-2021-28706,CVE-2021-28707,CVE-2021-28708,CVE-2021-28709
    Description:

    This update for xen fixes the following issues:


    Advisory IDSUSE-RU-2021:3980-1
    ReleasedThu Dec 9 16:42:19 2021
    SummaryRecommended update for glibc
    Typerecommended
    Severitymoderate
    References1191592
    Description:


    glibc was updated to fix the following issue:

    Advisory IDSUSE-RU-2021:3985-1
    ReleasedFri Dec 10 06:08:24 2021
    SummaryRecommended update for suse-module-tools
    Typerecommended
    Severitymoderate
    References1187196
    Description:

    This update for suse-module-tools fixes the following issues:

    Advisory IDSUSE-RU-2021:4014-1
    ReleasedMon Dec 13 13:57:39 2021
    SummaryRecommended update for apparmor
    Typerecommended
    Severitymoderate
    References1191532,1191690
    Description:

    This update for apparmor fixes the following issues:
    Changes in apparmor:

    Advisory IDSUSE-SU-2021:4104-1
    ReleasedThu Dec 16 11:14:12 2021
    SummarySecurity update for python3
    Typesecurity
    Severitymoderate
    References1180125,1183374,1183858,1185588,1187668,1189241,1189287,CVE-2021-3426,CVE-2021-3733,CVE-2021-3737
    Description:

    This update for python3 fixes the following issues:


    Advisory IDSUSE-RU-2021:4141-1
    ReleasedWed Dec 22 05:22:23 2021
    SummaryRecommended update for dracut
    Typerecommended
    Severityimportant
    References1193512
    Description:

    This update for dracut fixes the following issues:

    Advisory IDSUSE-RU-2021:4145-1
    ReleasedWed Dec 22 05:27:48 2021
    SummaryRecommended update for openssl-1_1
    Typerecommended
    Severitymoderate
    References1161276
    Description:

    This update for openssl-1_1 fixes the following issues:

    Advisory IDSUSE-RU-2021:4149-1
    ReleasedWed Dec 22 10:41:05 2021
    SummaryRecommended update for samba
    Typerecommended
    Severityimportant
    References1192849,CVE-2020-25717
    Description:

    This update for samba fixes the following issues:
    The username map advice from the CVE-2020-25717 advisory note has undesired side effects for the local nt token. Fallback to a SID/UID based mapping if the name based lookup fails (bsc#1192849).

    Advisory IDSUSE-SU-2021:4153-1
    ReleasedWed Dec 22 11:00:48 2021
    SummarySecurity update for openssh
    Typesecurity
    Severityimportant
    References1183137,CVE-2021-28041
    Description:

    This update for openssh fixes the following issues:

    Advisory IDSUSE-SU-2021:4154-1
    ReleasedWed Dec 22 11:02:38 2021
    SummarySecurity update for p11-kit
    Typesecurity
    Severityimportant
    References1180064,1187993,CVE-2020-29361
    Description:

    This update for p11-kit fixes the following issues:

    Advisory IDSUSE-RU-2021:4163-1
    ReleasedWed Dec 22 22:36:00 2021
    SummaryRecommended update for grub2
    Typerecommended
    Severitymoderate
    References1071559,1189769,1189874,1191504,1192522
    Description:

    This update for grub2 fixes the following issues:

    Advisory IDSUSE-RU-2021:4165-1
    ReleasedWed Dec 22 22:52:11 2021
    SummaryRecommended update for kmod
    Typerecommended
    Severitymoderate
    References1193430
    Description:

    This update for kmod fixes the following issues:

    Advisory IDSUSE-SU-2021:4171-1
    ReleasedThu Dec 23 09:55:13 2021
    SummarySecurity update for runc
    Typesecurity
    Severitymoderate
    References1193436,CVE-2021-43784
    Description:

    This update for runc fixes the following issues:
    Update to runc v1.0.3.

    Advisory IDSUSE-RU-2021:4175-1
    ReleasedThu Dec 23 11:22:33 2021
    SummaryRecommended update for systemd
    Typerecommended
    Severityimportant
    References1192423,1192858,1193759
    Description:

    This update for systemd fixes the following issues:

    Advisory IDSUSE-RU-2021:4178-1
    ReleasedThu Dec 23 11:47:22 2021
    SummaryRecommended update for cpupower
    Typerecommended
    Severityimportant
    References1193557
    Description:

    This update for cpupower fixes the following issues:

    Advisory IDSUSE-RU-2021:4182-1
    ReleasedThu Dec 23 11:51:51 2021
    SummaryRecommended update for zlib
    Typerecommended
    Severitymoderate
    References1192688
    Description:

    This update for zlib fixes the following issues:

    Advisory IDSUSE-SU-2021:4192-1
    ReleasedTue Dec 28 10:39:50 2021
    SummarySecurity update for permissions
    Typesecurity
    Severitymoderate
    References1174504
    Description:

    This update for permissions fixes the following issues:

    Advisory IDSUSE-RU-2022:2-1
    ReleasedMon Jan 3 08:27:18 2022
    SummaryRecommended update for lvm2
    Typerecommended
    Severitymoderate
    References1183905,1193181
    Description:

    This update for lvm2 fixes the following issues:

    Advisory IDSUSE-RU-2022:4-1
    ReleasedMon Jan 3 08:28:54 2022
    SummaryRecommended update for libgcrypt
    Typerecommended
    Severitymoderate
    References1193480
    Description:

    This update for libgcrypt fixes the following issues:

    SUSE-IU-2021:772-1

    Container Advisory IDSUSE-IU-2021:772-1
    Container Tagssles-15-sp3-chost-byos-v20211202:20211202
    Container Release
    The following patches have been included in this update:
    Advisory IDSUSE-RU-2021:3638-1
    ReleasedTue Nov 9 15:15:38 2021
    SummaryRecommended update for samba
    Typerecommended
    Severityimportant
    References1188727,1189017,14571
    Description:

    This update for samba fixes the following issues:
    Features added:


    Bugs fixed:

    Samba was updated to 4.13.10

    Samba was updated to 4.13.9:

    Update to 4.13.7

    Advisory IDSUSE-SU-2021:3647-1
    ReleasedWed Nov 10 17:34:14 2021
    SummarySecurity update for samba and ldb
    Typesecurity
    Severityimportant
    References1014440,1192214,1192215,1192246,1192247,1192283,1192284,1192505,CVE-2016-2124,CVE-2020-25717,CVE-2020-25718,CVE-2020-25719,CVE-2020-25721,CVE-2020-25722,CVE-2021-23192,CVE-2021-3738
    Description:

    This update for samba and ldb fixes the following issues:


    Samba was updated to 4.13.13

    Samba was updated to 4.13.12:

    Samba was updated to 4.13.11:

    ldb was updated to 2.2.2:

    Release ldb 2.2.2

    Advisory IDSUSE-SU-2021:3655-1
    ReleasedThu Nov 11 11:59:22 2021
    SummarySecurity update for the Linux Kernel
    Typesecurity
    Severityimportant
    References1065729,1085030,1152472,1152489,1156395,1172073,1173604,1176447,1176774,1176914,1178134,1180100,1181147,1184673,1185762,1186063,1186109,1187167,1188563,1189841,1190006,1190067,1190349,1190351,1190479,1190620,1190642,1190795,1190801,1190941,1191229,1191240,1191241,1191315,1191317,1191349,1191384,1191449,1191450,1191451,1191452,1191455,1191456,1191628,1191645,1191663,1191731,1191800,1191867,1191934,1191958,1192040,1192041,1192074,1192107,1192145,CVE-2021-33033,CVE-2021-34866,CVE-2021-3542,CVE-2021-3655,CVE-2021-3715,CVE-2021-3760,CVE-2021-3772,CVE-2021-3896,CVE-2021-41864,CVE-2021-42008,CVE-2021-42252,CVE-2021-42739,CVE-2021-43056
    Description:

    The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes.
    NOTE: This update was retracted due to a NFS regression.
    The following security bugs were fixed:


    The following non-security bugs were fixed:

    Advisory IDSUSE-SU-2021:3662-1
    ReleasedMon Nov 15 19:13:54 2021
    SummarySecurity update for samba
    Typesecurity
    Severityimportant
    References1192601,CVE-2020-25717
    Description:

    This update for samba fixes the following issues:

    Advisory IDSUSE-RU-2021:3663-1
    ReleasedMon Nov 15 19:14:32 2021
    SummaryRecommended update for suse-module-tools
    Typerecommended
    Severitymoderate
    References1191804
    Description:

    This update for suse-module-tools fixes the following issues:

    Advisory IDSUSE-SU-2021:3675-1
    ReleasedTue Nov 16 17:47:44 2021
    SummarySecurity update for the Linux Kernel
    Typesecurity
    Severityimportant
    References1065729,1085030,1089118,1094840,1133021,1152472,1152489,1154353,1156395,1157177,1167773,1172073,1173604,1176447,1176774,1176914,1176940,1178134,1180100,1180749,1181147,1184673,1185762,1186063,1186109,1187167,1188563,1188601,1189841,1190006,1190067,1190349,1190351,1190479,1190620,1190642,1190795,1190801,1190941,1191229,1191240,1191241,1191315,1191317,1191349,1191384,1191449,1191450,1191451,1191452,1191455,1191456,1191628,1191645,1191663,1191731,1191800,1191851,1191867,1191934,1191958,1191980,1192040,1192041,1192074,1192107,1192145,1192229,1192267,1192288,1192549,CVE-2021-33033,CVE-2021-34866,CVE-2021-3542,CVE-2021-3655,CVE-2021-3715,CVE-2021-37159,CVE-2021-3760,CVE-2021-3772,CVE-2021-3896,CVE-2021-41864,CVE-2021-42008,CVE-2021-42252,CVE-2021-42739,CVE-2021-43056,CVE-2021-43389
    Description:



    The following security bugs were fixed:


    The following non-security bugs were fixed:

    Advisory IDSUSE-RU-2021:3782-1
    ReleasedTue Nov 23 23:49:03 2021
    SummaryRecommended update for dracut
    Typerecommended
    Severitymoderate
    References1187190,1188713,1190326
    Description:

    This update for dracut fixes the following issues:

    Advisory IDSUSE-RU-2021:3786-1
    ReleasedWed Nov 24 05:59:13 2021
    SummaryRecommended update for rpm-config-SUSE
    Typerecommended
    Severityimportant
    References1192160
    Description:

    This update for rpm-config-SUSE fixes the following issues:

    Advisory IDSUSE-RU-2021:3787-1
    ReleasedWed Nov 24 06:00:10 2021
    SummaryRecommended update for xfsprogs
    Typerecommended
    Severitymoderate
    References1189983,1189984,1191500,1191566,1191675
    Description:

    This update for xfsprogs fixes the following issues:

    Advisory IDSUSE-RU-2021:3790-1
    ReleasedWed Nov 24 06:10:31 2021
    SummaryRecommended update for open-iscsi
    Typerecommended
    Severitymoderate
    References1187190,1187958,1188869,1191054,1192013,1192568
    Description:

    This update for open-iscsi fixes the following issues:

    Advisory IDSUSE-RU-2021:3792-1
    ReleasedWed Nov 24 06:12:09 2021
    SummaryRecommended update for kmod
    Typerecommended
    Severitymoderate
    References1192104
    Description:

    This update for kmod fixes the following issues:

    Advisory IDSUSE-RU-2021:3799-1
    ReleasedWed Nov 24 18:07:54 2021
    SummaryRecommended update for gcc11
    Typerecommended
    Severitymoderate
    References1187153,1187273,1188623
    Description:

    This update for gcc11 fixes the following issues:
    The additional GNU compiler collection GCC 11 is provided:
    To select these compilers install the packages:


    to select them for building:

    The compiler baselibraries (libgcc_s1, libstdc++6 and others) are being replaced by the GCC 11 variants.

    Advisory IDSUSE-RU-2021:3808-1
    ReleasedFri Nov 26 00:30:54 2021
    SummaryRecommended update for systemd
    Typerecommended
    Severitymoderate
    References1186071,1190440,1190984,1192161
    Description:

    This update for systemd fixes the following issues:

    Advisory IDSUSE-SU-2021:3838-1
    ReleasedWed Dec 1 16:07:54 2021
    SummarySecurity update for ruby2.5
    Typesecurity
    Severityimportant
    References1188160,1188161,1190375,CVE-2021-31799,CVE-2021-31810,CVE-2021-32066
    Description:

    This update for ruby2.5 fixes the following issues:

    Advisory IDSUSE-RU-2021:3870-1
    ReleasedThu Dec 2 07:11:50 2021
    SummaryRecommended update for libzypp, zypper
    Typerecommended
    Severitymoderate
    References1190356,1191286,1191324,1191370,1191609,1192337,1192436
    Description:

    This update for libzypp, zypper fixes the following issues:
    libzypp:


    zypper:

    Advisory IDSUSE-RU-2021:3872-1
    ReleasedThu Dec 2 07:25:55 2021
    SummaryRecommended update for cracklib
    Typerecommended
    Severitymoderate
    References1191736
    Description:

    This update for cracklib fixes the following issues:

    SUSE-IU-2021:750-1

    Container Advisory IDSUSE-IU-2021:750-1
    Container Tagssles-15-sp3-chost-byos-v20211101:20211101
    Container Release
    The following patches have been included in this update:
    Advisory IDSUSE-OU-2020:3026-1
    ReleasedFri Oct 23 15:35:51 2020
    SummaryOptional update for the Public Cloud Module
    Typeoptional
    Severitymoderate
    References
    Description:


    This update adds the Google Cloud Storage packages to the Public Cloud module (jsc#ECO-2398). The following packages were included:

    Advisory IDSUSE-RU-2021:294-1
    ReleasedWed Feb 3 12:54:28 2021
    SummaryRecommended update for libprotobuf
    Typerecommended
    Severitymoderate
    References
    Description:


    libprotobuf was updated to fix:

    Advisory IDSUSE-SU-2021:3291-1
    ReleasedWed Oct 6 16:45:36 2021
    SummarySecurity update for glibc
    Typesecurity
    Severitymoderate
    References1186489,1187911,CVE-2021-33574,CVE-2021-35942
    Description:

    This update for glibc fixes the following issues:

    Advisory IDSUSE-SU-2021:3298-1
    ReleasedWed Oct 6 16:54:52 2021
    SummarySecurity update for curl
    Typesecurity
    Severitymoderate
    References1190373,1190374,CVE-2021-22946,CVE-2021-22947
    Description:

    This update for curl fixes the following issues:

    Advisory IDSUSE-RU-2021:3304-1
    ReleasedWed Oct 6 18:11:33 2021
    SummaryRecommended update for kdump
    Typerecommended
    Severitymoderate
    References1172670,1183070,1184616,1186037
    Description:

    This update for kdump fixes the following issues:

    Advisory IDSUSE-RU-2021:3310-1
    ReleasedWed Oct 6 18:12:41 2021
    SummaryRecommended update for systemd
    Typerecommended
    Severitymoderate
    References1134353,1184994,1188291,1188588,1188713,1189446,1189480
    Description:

    This update for systemd fixes the following issues:




    Additional fixes:

    Advisory IDSUSE-RU-2021:3311-1
    ReleasedWed Oct 6 18:12:56 2021
    SummaryRecommended update for perl-Bootloader
    Typerecommended
    Severitymoderate
    References1188768
    Description:

    This update for perl-Bootloader fixes the following issues:

    Advisory IDSUSE-OU-2021:3327-1
    ReleasedMon Oct 11 11:44:50 2021
    SummaryOptional update for coreutils
    Typeoptional
    Severitylow
    References1189454
    Description:

    This optional update for coreutils fixes the following issue:

    Advisory IDSUSE-RU-2021:3382-1
    ReleasedTue Oct 12 14:30:17 2021
    SummaryRecommended update for ca-certificates-mozilla
    Typerecommended
    Severitymoderate
    References
    Description:

    This update for ca-certificates-mozilla fixes the following issues:

    Advisory IDSUSE-SU-2021:3387-1
    ReleasedTue Oct 12 17:09:16 2021
    SummarySecurity update for the Linux Kernel
    Typesecurity
    Severityimportant
    References1065729,1148868,1152489,1154353,1159886,1167773,1170774,1171688,1173746,1174003,1176447,1176940,1177028,1178134,1184439,1184804,1185302,1185550,1185677,1185726,1185762,1187211,1188067,1188418,1188651,1188986,1189257,1189297,1189841,1189884,1190023,1190062,1190115,1190138,1190159,1190358,1190406,1190432,1190467,1190523,1190534,1190543,1190544,1190561,1190576,1190595,1190596,1190598,1190620,1190626,1190679,1190705,1190717,1190746,1190758,1190784,1190785,1191172,1191193,1191292,CVE-2020-3702,CVE-2021-3669,CVE-2021-3744,CVE-2021-3752,CVE-2021-3759,CVE-2021-3764,CVE-2021-40490
    Description:


    The SUSE Linux Enterprise 15 SP3 kernel was updated.
    The following security bugs were fixed:


    The following non-security bugs were fixed:

    Advisory IDSUSE-RU-2021:3411-1
    ReleasedWed Oct 13 10:42:25 2021
    SummaryRecommended update for lvm2
    Typerecommended
    Severitymoderate
    References1191019
    Description:

    This update for lvm2 fixes the following issues:

    Advisory IDSUSE-RU-2021:3413-1
    ReleasedWed Oct 13 10:50:45 2021
    SummaryRecommended update for suse-module-tools
    Typerecommended
    Severityimportant
    References1189441,1189841,1190598
    Description:

    This update for suse-module-tools fixes the following issues:

    Advisory IDSUSE-SU-2021:3445-1
    ReleasedFri Oct 15 09:03:39 2021
    SummarySecurity update for rpm
    Typesecurity
    Severityimportant
    References1183659,1185299,1187670,1188548
    Description:

    This update for rpm fixes the following issues:
    Security issues fixed:


    Maintaince issues fixed:

    Advisory IDSUSE-SU-2021:3454-1
    ReleasedMon Oct 18 09:29:26 2021
    SummarySecurity update for krb5
    Typesecurity
    Severitymoderate
    References1189929,CVE-2021-37750
    Description:

    This update for krb5 fixes the following issues:

    Advisory IDSUSE-SU-2021:3474-1
    ReleasedWed Oct 20 08:41:31 2021
    SummarySecurity update for util-linux
    Typesecurity
    Severitymoderate
    References1178236,1188921,CVE-2021-37600
    Description:

    This update for util-linux fixes the following issues:

    Advisory IDSUSE-RU-2021:3479-1
    ReleasedWed Oct 20 11:23:45 2021
    SummaryRecommended update for dracut
    Typerecommended
    Severitymoderate
    References1184970,1186260,1187115,1187470,1187774,1190845
    Description:

    This update for dracut fixes the following issues:

    Advisory IDSUSE-RU-2021:3480-1
    ReleasedWed Oct 20 11:24:10 2021
    SummaryRecommended update for yast2-network
    Typerecommended
    Severitymoderate
    References1185016,1185524,1186910,1187270,1187512,1188344,1190645,1190739,1190915,1190933
    Description:

    This update for yast2-network fixes the following issues:

    Advisory IDSUSE-SU-2021:3490-1
    ReleasedWed Oct 20 16:31:55 2021
    SummarySecurity update for ncurses
    Typesecurity
    Severitymoderate
    References1190793,CVE-2021-39537
    Description:

    This update for ncurses fixes the following issues:

    Advisory IDSUSE-RU-2021:3494-1
    ReleasedWed Oct 20 16:48:46 2021
    SummaryRecommended update for pam
    Typerecommended
    Severitymoderate
    References1190052
    Description:

    This update for pam fixes the following issues:

    Advisory IDSUSE-RU-2021:3501-1
    ReleasedFri Oct 22 10:42:46 2021
    SummaryRecommended update for libzypp, zypper, libsolv, protobuf
    Typerecommended
    Severitymoderate
    References1186503,1186602,1187224,1187425,1187466,1187738,1187760,1188156,1188435,1189031,1190059,1190199,1190465,1190712,1190815
    Description:

    This update for libzypp, zypper, libsolv and protobuf fixes the following issues:

    Advisory IDSUSE-SU-2021:3506-1
    ReleasedMon Oct 25 10:20:22 2021
    SummarySecurity update for containerd, docker, runc
    Typesecurity
    Severityimportant
    References1102408,1185405,1187704,1188282,1190826,1191015,1191121,1191334,1191355,1191434,CVE-2021-30465,CVE-2021-32760,CVE-2021-41089,CVE-2021-41091,CVE-2021-41092,CVE-2021-41103
    Description:

    This update for containerd, docker, runc fixes the following issues:
    Docker was updated to 20.10.9-ce. (bsc#1191355)
    See upstream changelog in the packaged /usr/share/doc/packages/docker/CHANGELOG.md.
    CVE-2021-41092 CVE-2021-41089 CVE-2021-41091 CVE-2021-41103
    container was updated to v1.4.11, to fix CVE-2021-41103. bsc#1191355



    Update to runc v1.0.2. Upstream changelog is available from
    https://github.com/opencontainers/runc/releases/tag/v1.0.2

    Update to runc v1.0.1. Upstream changelog is available from
    https://github.com/opencontainers/runc/releases/tag/v1.0.1

    Update to runc v1.0.0. Upstream changelog is available from
    https://github.com/opencontainers/runc/releases/tag/v1.0.0
    ! The usage of relative paths for mountpoints will now produce a warning (such configurations are outside of the spec, and in future runc will produce an error when given such configurations).
    Update to runc v1.0.0~rc95. Upstream changelog is available from https://github.com/opencontainers/runc/releases/tag/v1.0.0-rc95
    This release of runc contains a fix for CVE-2021-30465, and users are strongly recommended to update (especially if you are providing semi-limited access to spawn containers to untrusted users). (bsc#1185405)
    Update to runc v1.0.0~rc94. Upstream changelog is available from https://github.com/opencontainers/runc/releases/tag/v1.0.0-rc94
    Breaking Changes:
    Regression Fixes:

    Advisory IDSUSE-RU-2021:3509-1
    ReleasedTue Oct 26 09:47:40 2021
    SummaryRecommended update for suse-module-tools
    Typerecommended
    Severityimportant
    References1191200,1191260,1191480,1191804,1191922
    Description:

    This update for suse-module-tools fixes the following issues:
    Update to version 15.3.13:

    Advisory IDSUSE-RU-2021:3510-1
    ReleasedTue Oct 26 11:22:15 2021
    SummaryRecommended update for pam
    Typerecommended
    Severityimportant
    References1191987
    Description:

    This update for pam fixes the following issues:

    Advisory IDSUSE-SU-2021:3529-1
    ReleasedWed Oct 27 09:23:32 2021
    SummarySecurity update for pcre
    Typesecurity
    Severitymoderate
    References1172973,1172974,CVE-2019-20838,CVE-2020-14155
    Description:

    This update for pcre fixes the following issues:
    Update pcre to version 8.45:

    Advisory IDSUSE-RU-2021:3538-1
    ReleasedWed Oct 27 10:40:32 2021
    SummaryRecommended update for iproute2
    Typerecommended
    Severitymoderate
    References1160242
    Description:

    This update for iproute2 fixes the following issues:

    Advisory IDSUSE-RU-2021:3545-1
    ReleasedWed Oct 27 14:46:39 2021
    SummaryRecommended update for less
    Typerecommended
    Severitylow
    References1190552
    Description:

    This update for less fixes the following issues:

    Advisory IDSUSE-RU-2021:3564-1
    ReleasedWed Oct 27 16:12:08 2021
    SummaryRecommended update for rpm-config-SUSE
    Typerecommended
    Severitymoderate
    References1190850
    Description:

    This update for rpm-config-SUSE fixes the following issues:

    Advisory IDSUSE-RU-2021:3581-1
    ReleasedFri Oct 29 16:09:23 2021
    SummaryRecommended update for SUSEConnect
    Typerecommended
    Severityimportant
    References
    Description:

    This update for SUSEConnect contains the following fix:

    Advisory IDSUSE-RU-2021:3589-1
    ReleasedMon Nov 1 19:27:52 2021
    SummaryRecommended update for apparmor
    Typerecommended
    Severitymoderate
    References1191690
    Description:

    This update for apparmor fixes the following issues:

    SUSE-IU-2021:736-1

    Container Advisory IDSUSE-IU-2021:736-1
    Container Tagssles-15-sp3-chost-byos-v20211004:20211004
    Container Release
    The following patches have been included in this update:
    Advisory IDSUSE-RU-2021:3245-1
    ReleasedTue Sep 28 13:54:31 2021
    SummaryRecommended update for docker
    Typerecommended
    Severityimportant
    References1190670
    Description:

    This update for docker fixes the following issues:

    Advisory IDSUSE-RU-2021:3274-1
    ReleasedFri Oct 1 10:34:17 2021
    SummaryRecommended update for ca-certificates-mozilla
    Typerecommended
    Severityimportant
    References1190858
    Description:

    This update for ca-certificates-mozilla fixes the following issues:

    SUSE-IU-2021:729-1

    Container Advisory IDSUSE-IU-2021:729-1
    Container Tagssles-15-sp3-chost-byos-v20210927:20210927
    Container Release
    The following patches have been included in this update:
    Advisory IDSUSE-RU-2021:2886-1
    ReleasedTue Aug 31 13:21:20 2021
    SummaryRecommended update for bind
    Typerecommended
    Severitymoderate
    References1187921
    Description:

    This update for bind fixes the following issues:

    Advisory IDSUSE-RU-2021:2898-1
    ReleasedWed Sep 1 08:30:33 2021
    SummaryRecommended update for grub2
    Typerecommended
    Severitymoderate
    References1186975,1187565,1187645
    Description:

    This update for grub2 fixes the following issues:

    Advisory IDSUSE-SU-2021:2923-1
    ReleasedThu Sep 2 10:11:32 2021
    SummarySecurity update for xen
    Typesecurity
    Severityimportant
    References1027519,1176189,1179246,1183243,1183877,1185682,1186428,1186429,1186433,1186434,1187406,1188050,1189373,1189376,1189378,1189380,1189381,1189882,CVE-2021-0089,CVE-2021-28690,CVE-2021-28692,CVE-2021-28693,CVE-2021-28694,CVE-2021-28695,CVE-2021-28696,CVE-2021-28697,CVE-2021-28698,CVE-2021-28699,CVE-2021-28700
    Description:

    This update for xen fixes the following issues:
    Update to Xen 4.13.3 general bug fix release (bsc#1027519).
    Security issues fixed:


    Other issues fixed:

    Advisory IDSUSE-SU-2021:2937-1
    ReleasedFri Sep 3 09:18:45 2021
    SummarySecurity update for libesmtp
    Typesecurity
    Severityimportant
    References1160462,1189097,CVE-2019-19977
    Description:

    This update for libesmtp fixes the following issues:

    Advisory IDSUSE-RU-2021:2938-1
    ReleasedFri Sep 3 09:19:36 2021
    SummaryRecommended update for openldap2
    Typerecommended
    Severitymoderate
    References1184614
    Description:


    This update for openldap2 fixes the following issue:

    Advisory IDSUSE-RU-2021:2945-1
    ReleasedFri Sep 3 09:34:53 2021
    SummaryRecommended update for open-iscsi
    Typerecommended
    Severitymoderate
    References1153806,1185930,1188579
    Description:

    This update for open-iscsi fixes the following issues:

    Advisory IDSUSE-RU-2021:2950-1
    ReleasedFri Sep 3 11:59:19 2021
    SummaryRecommended update for pcre2
    Typerecommended
    Severitymoderate
    References1187937
    Description:

    This update for pcre2 fixes the following issue:

    PHP versions.

    Advisory IDSUSE-RU-2021:2962-1
    ReleasedMon Sep 6 18:23:01 2021
    SummaryRecommended update for runc
    Typerecommended
    Severitycritical
    References1189743
    Description:

    This update for runc fixes the following issues:

    Advisory IDSUSE-SU-2021:2966-1
    ReleasedTue Sep 7 09:49:14 2021
    SummarySecurity update for openssl-1_1
    Typesecurity
    Severitylow
    References1189521,CVE-2021-3712
    Description:

    This update for openssl-1_1 fixes the following issues:

    Advisory IDSUSE-RU-2021:2997-1
    ReleasedThu Sep 9 14:37:34 2021
    SummaryRecommended update for python3
    Typerecommended
    Severitymoderate
    References1187338,1189659
    Description:

    This update for python3 fixes the following issues:

    Advisory IDSUSE-RU-2021:3001-1
    ReleasedThu Sep 9 15:08:13 2021
    SummaryRecommended update for netcfg
    Typerecommended
    Severitymoderate
    References1189683
    Description:

    This update for netcfg fixes the following issues:

    Advisory IDSUSE-RU-2021:3022-1
    ReleasedMon Sep 13 10:48:16 2021
    SummaryRecommended update for c-ares
    Typerecommended
    Severityimportant
    References1190225
    Description:

    This update for c-ares fixes the following issue:

    Advisory IDSUSE-RU-2021:3115-1
    ReleasedThu Sep 16 14:04:26 2021
    SummaryRecommended update for mozilla-nspr, mozilla-nss
    Typerecommended
    Severitymoderate
    References1029961,1174697,1176206,1176934,1179382,1188891,CVE-2020-12400,CVE-2020-12401,CVE-2020-12403,CVE-2020-25648,CVE-2020-6829
    Description:

    This update for mozilla-nspr fixes the following issues:
    mozilla-nspr was updated to version 4.32:



    Mozilla NSS was updated to version 3.68:

    update to NSS 3.67

    update to NSS 3.66

    update to NSS 3.65

    update to NSS 3.64
    disable_crypto_vsx.
  • bmo#1698320 - replace __builtin_cpu_supports('vsx') with
    • ppc_crypto_support() for clang.
  • bmo#1613235 - Add POWER ChaCha20 stream cipher vector
    • acceleration.
    Fixed in 3.63
    initialization to prevent build isses with GCC 4.8.
  • bmo#1683520 - [lib/freebl/ecl] P-384: allow zero scalars in dual
    • scalar multiplication.
  • bmo#1683520 - ECCKiila P521, change syntax of nested structs
    • initialization to prevent build isses with GCC 4.8.
  • bmo#1683520 - [lib/freebl/ecl] P-521: allow zero scalars in dual
    • scalar multiplication.
  • bmo#1696800 - HACL* update March 2021 - c95ab70fcb2bc21025d8845281bc4bc8987ca683.
  • bmo#1694214 - tstclnt can't enable middlebox compat mode.
  • bmo#1694392 - NSS does not work with PKCS #11 modules not supporting
    • profiles.
  • bmo#1685880 - Minor fix to prevent unused variable on early return.
  • bmo#1685880 - Fix for the gcc compiler version 7 to support setenv
    • with nss build.
  • bmo#1693217 - Increase nssckbi.h version number for March 2021 batch
    • of root CA changes, CA list version 2.48.
  • bmo#1692094 - Set email distrust after to 21-03-01 for Camerfirma's
    • 'Chambers of Commerce' and 'Global Chambersign' roots.
  • bmo#1618407 - Symantec root certs - Set CKA_NSS_EMAIL_DISTRUST_AFTER.
  • bmo#1693173 - Add GlobalSign R45, E45, R46, and E46 root certs to NSS.
  • bmo#1683738 - Add AC RAIZ FNMT-RCM SERVIDORES SEGUROS root cert to NSS.
  • bmo#1686854 - Remove GeoTrust PCA-G2 and VeriSign Universal root certs
    • from NSS.
  • bmo#1687822 - Turn off Websites trust bit for the “Staat der
    • Nederlanden Root CA - G3” root cert in NSS.
  • bmo#1692094 - Turn off Websites Trust Bit for 'Chambers of Commerce
    • Root - 2008' and 'Global Chambersign Root - 2008’.
  • bmo#1694291 - Tracing fixes for ECH.

    • update to NSS 3.62
    can corrupt 'cachedCertTable'
  • bmo#1690583 - Fix CH padding extension size calculation
  • bmo#1690421 - Adjust 3.62 ABI report formatting for new libabigail
  • bmo#1690421 - Install packaged libabigail in docker-builds image
  • bmo#1689228 - Minor ECH -09 fixes for interop testing, fuzzing
  • bmo#1674819 - Fixup a51fae403328, enum type may be signed
  • bmo#1681585 - Add ECH support to selfserv
  • bmo#1681585 - Update ECH to Draft-09
  • bmo#1678398 - Add Export/Import functions for HPKE context
  • bmo#1678398 - Update HPKE to draft-07

    • update to NSS 3.61
    values under certain conditions.
  • bmo#1684300 - Fix default PBE iteration count when NSS is compiled
    • with NSS_DISABLE_DBM.
  • bmo#1651411 - Improve constant-timeness in RSA operations.
  • bmo#1677207 - Upgrade Google Test version to latest release.
  • bmo#1654332 - Add aarch64-make target to nss-try.

    • Update to NSS 3.60.1:
    Notable changes in NSS 3.60:
    Update to NSS 3.59.1:
    PKCS11 modules
    Update to NSS 3.59:
    Notable changes:

    Bugfixes
    root certs when SHA1 signatures are disabled.
  • bmo#1644209 - Fix broken SelectedCipherSuiteReplacer filter to
    • solve some test intermittents
  • bmo#1672703 - Tolerate the first CCS in TLS 1.3 to fix a regression in
    • our CVE-2020-25648 fix that broke purple-discord (boo#1179382)
  • bmo#1666891 - Support key wrap/unwrap with RSA-OAEP
  • bmo#1667989 - Fix gyp linking on Solaris
  • bmo#1668123 - Export CERT_AddCertToListHeadWithData and
    • CERT_AddCertToListTailWithData from libnss
  • bmo#1634584 - Set CKA_NSS_SERVER_DISTRUST_AFTER for Trustis FPS Root CA
  • bmo#1663091 - Remove unnecessary assertions in the streaming
    • ASN.1 decoder that affected decoding certain PKCS8 private keys when using NSS debug builds
  • bmo#670839 - Use ARM crypto extension for AES, SHA1 and SHA2 on MacOS.

    • update to NSS 3.58
    Bugs fixed:

    update to NSS 3.57

    update to NSS 3.56
    Notable changes
    detection.
  • bmo#1652729 - Add build flag to disable RC2 and relocate to
    • lib/freebl/deprecated.
  • bmo#1656429 - Correct RTT estimate used in 0-RTT anti-replay.
  • bmo#1588941 - Send empty certificate message when scheme selection
    • fails.
  • bmo#1652032 - Fix failure to build in Windows arm64 makefile
    • cross-compilation.
  • bmo#1625791 - Fix deadlock issue in nssSlot_IsTokenPresent.
  • bmo#1653975 - Fix 3.53 regression by setting 'all' as the default
    • makefile target.
  • bmo#1659792 - Fix broken libpkix tests with unexpired PayPal cert.
  • bmo#1659814 - Fix interop.sh failures with newer tls-interop
    • commit and dependencies.
  • bmo#1656519 - NSPR dependency updated to 4.28

    • update to NSS 3.55
    Notable changes
    Relevant Bugfixes

    update to NSS 3.54
    Notable changes


    Bugs fixed
    Root Certification Authority; C=TW' root.
  • bmo#1645199 - Remove AddTrust root certificates.
  • bmo#1641718 - Remove 'LuxTrust Global Root 2' root certificate.
  • bmo#1639987 - Remove 'Staat der Nederlanden Root CA - G2' root
    • certificate.
  • bmo#1618402 - Remove Symantec root certificates and disable email trust
    • bit.
  • bmo#1640516 - NSS 3.54 should depend on NSPR 4.26.
  • bmo#1642146 - Fix undefined reference to `PORT_ZAlloc_stub' in seed.c.
  • bmo#1642153 - Fix infinite recursion building NSS.
  • bmo#1642638 - Fix fuzzing assertion crash.
  • bmo#1642871 - Enable SSL_SendSessionTicket after resumption.
  • bmo#1643123 - Support SSL_ExportEarlyKeyingMaterial with External PSKs.
  • bmo#1643557 - Fix numerous compile warnings in NSS.
  • bmo#1644774 - SSL gtests to use ClearServerCache when resetting
    • self-encrypt keys.
  • bmo#1645479 - Don't use SECITEM_MakeItem in secutil.c.
  • bmo#1646520 - Stricter enforcement of ASN.1 INTEGER encoding.

    • Advisory IDSUSE-RU-2021:3132-1
    ReleasedFri Sep 17 16:37:37 2021
    SummaryRecommended update for google-guest-oslogin
    Typerecommended
    Severitymoderate
    References1188992,1189041
    Description:

    This update for google-guest-oslogin contains the following fixes:




    Advisory IDSUSE-RU-2021:3133-1
    ReleasedFri Sep 17 16:37:56 2021
    SummaryRecommended update for grub2, efibootmgr
    Typerecommended
    Severitymoderate
    References1186565,1186975,1187565
    Description:

    This update for grub2, efibootmgr provides the following fixes:

    Advisory IDSUSE-RU-2021:3136-1
    ReleasedFri Sep 17 16:59:09 2021
    SummaryRecommended update for SUSEConnect
    Typerecommended
    Severitymoderate
    References1185611
    Description:

    This update for SUSEConnect fixes the following issues:

    Advisory IDSUSE-SU-2021:3140-1
    ReleasedSat Sep 18 14:37:16 2021
    SummarySecurity update for xen
    Typesecurity
    Severitymoderate
    References1027519,1189632,CVE-2021-28701
    Description:

    This update for xen fixes the following issues:


    Advisory IDSUSE-RU-2021:3182-1
    ReleasedTue Sep 21 17:04:26 2021
    SummaryRecommended update for file
    Typerecommended
    Severitymoderate
    References1189996
    Description:

    This update for file fixes the following issues:

    Advisory IDSUSE-SU-2021:3187-1
    ReleasedWed Sep 22 15:09:23 2021
    SummarySecurity update for samba
    Typesecurity
    Severityimportant
    References1182830,1183572,1183574,1184677,1189875,CVE-2020-27840,CVE-2021-20254,CVE-2021-20277
    Description:

    This update for samba fixes the following issues:


    Advisory IDSUSE-RU-2021:3203-1
    ReleasedThu Sep 23 14:41:35 2021
    SummaryRecommended update for kmod
    Typerecommended
    Severitymoderate
    References1189537,1190190
    Description:

    This update for kmod fixes the following issues:


    Advisory IDSUSE-SU-2021:3205-1
    ReleasedThu Sep 23 16:15:20 2021
    SummarySecurity update for the Linux Kernel
    Typesecurity
    Severityimportant
    References1040364,1127650,1135481,1152489,1160010,1168202,1171420,1174969,1175052,1175543,1177399,1180100,1180141,1180347,1181006,1181148,1181972,1184180,1185902,1186264,1186731,1187211,1187455,1187468,1187483,1187619,1187959,1188067,1188172,1188231,1188270,1188412,1188418,1188616,1188700,1188780,1188781,1188782,1188783,1188784,1188786,1188787,1188788,1188790,1188878,1188885,1188924,1188982,1188983,1188985,1189021,1189057,1189077,1189153,1189197,1189209,1189210,1189212,1189213,1189214,1189215,1189216,1189217,1189218,1189219,1189220,1189221,1189222,1189225,1189229,1189233,1189262,1189291,1189292,1189296,1189298,1189301,1189305,1189323,1189384,1189385,1189392,1189393,1189399,1189400,1189427,1189503,1189504,1189505,1189506,1189507,1189562,1189563,1189564,1189565,1189566,1189567,1189568,1189569,1189573,1189574,1189575,1189576,1189577,1189579,1189581,1189582,1189583,1189585,1189586,1189587,1189706,1189760,1189762,1189832,1189841,1189870,1189872,1189883,1190022,1190025,1190115,1190117,1190412,1190413,1190428,CVE-2020-12770,CVE-2021-34556,CVE-2021-35477,CVE-2021-3640,CVE-2021-3653,CVE-2021-3656,CVE-2021-3679,CVE-2021-3732,CVE-2021-3739,CVE-2021-3743,CVE-2021-3753,CVE-2021-3759,CVE-2021-38160,CVE-2021-38166,CVE-2021-38198,CVE-2021-38204,CVE-2021-38205,CVE-2021-38206,CVE-2021-38207,CVE-2021-38209
    Description:

    The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes.

    The following security bugs were fixed:


    The following non-security bugs were fixed:

    Advisory IDSUSE-RU-2021:3233-1
    ReleasedMon Sep 27 15:02:21 2021
    SummaryRecommended update for xfsprogs
    Typerecommended
    Severitymoderate
    References1085917,1181299,1181306,1181309,1181535,1181536,1188651,1189552
    Description:

    This update for xfsprogs fixes the following issues:

    SUSE-IU-2021:621-1

    Container Advisory IDSUSE-IU-2021:621-1
    Container Tagssles-15-sp3-chost-byos-v20210827:20210827
    Container Release
    The following patches have been included in this update:
    Advisory IDSUSE-RU-2021:2606-1
    ReleasedWed Aug 4 13:16:09 2021
    SummaryRecommended update for libcbor
    Typerecommended
    Severitymoderate
    References1102408
    Description:

    This update for libcbor fixes the following issues:

    Advisory IDSUSE-RU-2021:2625-1
    ReleasedThu Aug 5 12:10:27 2021
    SummaryRecommended update for supportutils
    Typerecommended
    Severitymoderate
    References1185991,1185993,1186347,1186397,1186687,1188348
    Description:

    This update for supportutils fixes the following issues:
    ethtool was updated to version 3.1.17:

    Advisory IDSUSE-RU-2021:2627-1
    ReleasedThu Aug 5 12:10:46 2021
    SummaryRecommended maintenance update for systemd-default-settings
    Typerecommended
    Severitymoderate
    References1188348
    Description:

    This update for systemd-default-settings fixes the following issue:

    Advisory IDSUSE-RU-2021:2681-1
    ReleasedThu Aug 12 14:59:06 2021
    SummaryRecommended update for growpart-rootgrow
    Typerecommended
    Severityimportant
    References1188868,1188904
    Description:

    This update for growpart-rootgrow fixes the following issues:

    Advisory IDSUSE-SU-2021:2682-1
    ReleasedThu Aug 12 20:06:19 2021
    SummarySecurity update for rpm
    Typesecurity
    Severityimportant
    References1179416,1181805,1183543,1183545,CVE-2021-20266,CVE-2021-20271,CVE-2021-3421
    Description:

    This update for rpm fixes the following issues:


    Security fixes:


    Advisory IDSUSE-SU-2021:2687-1
    ReleasedSat Aug 14 10:16:41 2021
    SummarySecurity update for the Linux Kernel
    Typesecurity
    Severityimportant
    References1065729,1085224,1094840,1113295,1152472,1152489,1153274,1154353,1155518,1156395,1170511,1176447,1176940,1179243,1180092,1180814,1183871,1184114,1184350,1184631,1184804,1185308,1185377,1185791,1186194,1186206,1186482,1186483,1187215,1187476,1187495,1187585,1188036,1188080,1188101,1188121,1188126,1188176,1188267,1188268,1188269,1188323,1188366,1188405,1188445,1188504,1188620,1188683,1188703,1188720,1188746,1188747,1188748,1188752,1188770,1188771,1188772,1188773,1188774,1188777,1188838,1188876,1188885,1188893,1188973,CVE-2021-21781,CVE-2021-22543,CVE-2021-35039,CVE-2021-3609,CVE-2021-3612,CVE-2021-3659,CVE-2021-37576
    Description:

    The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes.

    The following security bugs were fixed:


    The following non-security bugs were fixed:

    Advisory IDSUSE-SU-2021:2689-1
    ReleasedMon Aug 16 10:54:52 2021
    SummarySecurity update for cpio
    Typesecurity
    Severityimportant
    References1189206,CVE-2021-38185
    Description:

    This update for cpio fixes the following issues:
    It was possible to trigger Remote code execution due to a integer overflow (CVE-2021-38185, bsc#1189206)

    Advisory IDSUSE-SU-2021:2760-1
    ReleasedTue Aug 17 17:11:14 2021
    SummarySecurity update for c-ares
    Typesecurity
    Severityimportant
    References1188881,CVE-2021-3672
    Description:

    This update for c-ares fixes the following issues:
    Version update to git snapshot 1.17.1+20200724:

    Advisory IDSUSE-RU-2021:2763-1
    ReleasedTue Aug 17 17:16:22 2021
    SummaryRecommended update for cpio
    Typerecommended
    Severitycritical
    References1189465
    Description:

    This update for cpio fixes the following issues:

    Advisory IDSUSE-RU-2021:2780-1
    ReleasedThu Aug 19 16:09:15 2021
    SummaryRecommended update for cpio
    Typerecommended
    Severitycritical
    References1189465,CVE-2021-38185
    Description:

    This update for cpio fixes the following issues:

    Advisory IDSUSE-RU-2021:2786-1
    ReleasedFri Aug 20 02:02:23 2021
    SummaryRecommended update for bash
    Typerecommended
    Severityimportant
    References1057452,1188287
    Description:

    This update for bash fixes the following issues:

    Advisory IDSUSE-SU-2021:2800-1
    ReleasedFri Aug 20 10:43:04 2021
    SummarySecurity update for krb5
    Typesecurity
    Severityimportant
    References1188571,CVE-2021-36222
    Description:

    This update for krb5 fixes the following issues:

    Advisory IDSUSE-RU-2021:2805-1
    ReleasedMon Aug 23 07:01:37 2021
    SummaryRecommended update for dracut
    Typerecommended
    Severitymoderate
    References1185615,1185646,1187115,1187470,1187774
    Description:

    This update for dracut fixes the following issues:

    Advisory IDSUSE-SU-2021:2809-1
    ReleasedMon Aug 23 12:12:31 2021
    SummarySecurity update for systemd
    Typesecurity
    Severitymoderate
    References1166028,1171962,1184994,1185972,1188063,CVE-2020-13529,CVE-2021-33910
    Description:

    This update for systemd fixes the following issues:

    Advisory IDSUSE-SU-2021:2810-1
    ReleasedMon Aug 23 12:14:30 2021
    SummarySecurity update for dbus-1
    Typesecurity
    Severitymoderate
    References1172505,CVE-2020-12049
    Description:

    This update for dbus-1 fixes the following issues:

    Advisory IDSUSE-SU-2021:2830-1
    ReleasedTue Aug 24 16:20:18 2021
    SummarySecurity update for openssl-1_1
    Typesecurity
    Severityimportant
    References1189520,1189521,CVE-2021-3711,CVE-2021-3712
    Description:

    This update for openssl-1_1 fixes the following security issues:


    SUSE-IU-2021:606-1

    Container Advisory IDSUSE-IU-2021:606-1
    Container Tagssles-15-sp3-chost-byos-v20210729:20210729
    Container Release
    The following patches have been included in this update:
    Advisory IDSUSE-RU-2021:2205-1
    ReleasedWed Jun 30 09:17:41 2021
    SummaryRecommended update for openldap2
    Typerecommended
    Severityimportant
    References1187210
    Description:

    This update for openldap2 fixes the following issues:

    Advisory IDSUSE-RU-2021:2210-1
    ReleasedWed Jun 30 13:00:09 2021
    SummaryRecommended update for lvm2
    Typerecommended
    Severitymoderate
    References1184124
    Description:

    This update for lvm2 fixes the following issues:

    Advisory IDSUSE-RU-2021:2223-1
    ReleasedThu Jul 1 12:15:26 2021
    SummaryRecommended update for chrony
    Typerecommended
    Severitymoderate
    References1173760
    Description:

    This update for chrony fixes the following issues:

    Advisory IDSUSE-OU-2021:2249-1
    ReleasedMon Jul 5 15:40:46 2021
    SummaryOptional update for gnutls
    Typeoptional
    Severitylow
    References1047218,1186579
    Description:

    This update for gnutls does not fix any user visible issues. It is therefore optional to install.

    Advisory IDSUSE-RU-2021:2273-1
    ReleasedThu Jul 8 09:48:48 2021
    SummaryRecommended update for libzypp, zypper
    Typerecommended
    Severitymoderate
    References1186447,1186503
    Description:

    This update for libzypp, zypper fixes the following issues:

    Advisory IDSUSE-RU-2021:2286-1
    ReleasedFri Jul 9 17:38:53 2021
    SummaryRecommended update for dosfstools
    Typerecommended
    Severitymoderate
    References1172863
    Description:

    This update for dosfstools fixes the following issue:

    Advisory IDSUSE-SU-2021:2292-1
    ReleasedMon Jul 12 08:25:20 2021
    SummarySecurity update for dbus-1
    Typesecurity
    Severityimportant
    References1187105,CVE-2020-35512
    Description:

    This update for dbus-1 fixes the following issues:

    Advisory IDSUSE-RU-2021:2308-1
    ReleasedTue Jul 13 13:36:03 2021
    SummaryRecommended update for cpupower
    Typerecommended
    Severitymoderate
    References
    Description:

    This update for cpupower provides the following fix:

    Advisory IDSUSE-RU-2021:2316-1
    ReleasedWed Jul 14 13:49:55 2021
    SummaryRecommended update for systemd
    Typerecommended
    Severitymoderate
    References1185807,1185828,1185958,1186411,1187154,1187292
    Description:

    This update for systemd fixes the following issues:



    Advisory IDSUSE-SU-2021:2320-1
    ReleasedWed Jul 14 17:01:06 2021
    SummarySecurity update for sqlite3
    Typesecurity
    Severityimportant
    References1157818,1158812,1158958,1158959,1158960,1159491,1159715,1159847,1159850,1160309,1160438,1160439,1164719,1172091,1172115,1172234,1172236,1172240,1173641,928700,928701,CVE-2015-3414,CVE-2015-3415,CVE-2019-19244,CVE-2019-19317,CVE-2019-19603,CVE-2019-19645,CVE-2019-19646,CVE-2019-19880,CVE-2019-19923,CVE-2019-19924,CVE-2019-19925,CVE-2019-19926,CVE-2019-19959,CVE-2019-20218,CVE-2020-13434,CVE-2020-13435,CVE-2020-13630,CVE-2020-13631,CVE-2020-13632,CVE-2020-15358,CVE-2020-9327
    Description:

    This update for sqlite3 fixes the following issues:

    Advisory IDSUSE-SU-2021:2352-1
    ReleasedThu Jul 15 15:16:01 2021
    SummarySecurity update for the Linux Kernel
    Typesecurity
    Severityimportant
    References1152489,1153274,1154353,1155518,1164648,1176447,1176774,1176919,1177028,1178134,1182470,1184212,1184685,1185486,1185675,1185677,1186206,1186666,1186949,1187171,1187263,1187356,1187402,1187403,1187404,1187407,1187408,1187409,1187410,1187411,1187412,1187413,1187452,1187554,1187595,1187601,1187795,1187867,1187883,1187886,1187927,1187972,1187980,CVE-2021-0512,CVE-2021-0605,CVE-2021-33624,CVE-2021-34693,CVE-2021-3573
    Description:

    The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes.
    The following security bugs were fixed:


    The following non-security bugs were fixed:

    Advisory IDSUSE-RU-2021:2394-1
    ReleasedMon Jul 19 12:06:53 2021
    SummaryRecommended update for suse-module-tools
    Typerecommended
    Severitymoderate
    References1177695,1187093
    Description:

    This update for suse-module-tools provides the following fixes:

    Advisory IDSUSE-RU-2021:2395-1
    ReleasedMon Jul 19 12:08:34 2021
    SummaryRecommended update for efivar
    Typerecommended
    Severitymoderate
    References1187386
    Description:

    This update for efivar provides the following fix:

    Advisory IDSUSE-RU-2021:2399-1
    ReleasedMon Jul 19 19:06:22 2021
    SummaryRecommended update for release packages
    Typerecommended
    Severitymoderate
    References1099521
    Description:

    This update for the release packages provides the following fix:

    Advisory IDSUSE-SU-2021:2410-1
    ReleasedTue Jul 20 14:41:26 2021
    SummarySecurity update for systemd
    Typesecurity
    Severityimportant
    References1188063,CVE-2021-33910
    Description:

    This update for systemd fixes the following issues:

    Advisory IDSUSE-SU-2021:2412-1
    ReleasedTue Jul 20 15:25:21 2021
    SummarySecurity update for containerd
    Typesecurity
    Severitymoderate
    References1188282,CVE-2021-32760
    Description:

    This update for containerd fixes the following issues:

    Advisory IDSUSE-SU-2021:2415-1
    ReleasedTue Jul 20 16:11:34 2021
    SummarySecurity update for the Linux Kernel
    Typesecurity
    Severityimportant
    References1188062,1188116,CVE-2021-22555,CVE-2021-33909
    Description:


    The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes.
    Security issues fixed:


    The following non-security bugs were fixed:

    Advisory IDSUSE-SU-2021:2439-1
    ReleasedWed Jul 21 13:46:48 2021
    SummarySecurity update for curl
    Typesecurity
    Severitymoderate
    References1188217,1188218,1188219,1188220,CVE-2021-22922,CVE-2021-22923,CVE-2021-22924,CVE-2021-22925
    Description:

    This update for curl fixes the following issues:

    Advisory IDSUSE-RU-2021:2456-1
    ReleasedThu Jul 22 15:28:39 2021
    SummaryRecommended update for pam-config
    Typerecommended
    Severitymoderate
    References1187091
    Description:

    This update for pam-config fixes the following issues:

    Advisory IDSUSE-RU-2021:2464-1
    ReleasedFri Jul 23 14:20:23 2021
    SummaryRecommended update for shim
    Typerecommended
    Severitymoderate
    References1185232,1185261,1185441,1185464,1185961,1187071,1187260,1187696
    Description:

    This update for shim fixes the following issues:

    Advisory IDSUSE-RU-2021:2477-1
    ReleasedTue Jul 27 13:32:50 2021
    SummaryRecommended update for growpart-rootgrow
    Typerecommended
    Severityimportant
    References1165198,1188179
    Description:

    This update for growpart-rootgrow fixes the following issues:










    Advisory IDSUSE-RU-2021:2481-1
    ReleasedTue Jul 27 14:20:27 2021
    SummaryRecommended update for sysconfig
    Typerecommended
    Severitymoderate
    References1184124
    Description:

    This update for sysconfig fixes the following issues:

    Advisory IDSUSE-RU-2021:2573-1
    ReleasedThu Jul 29 14:21:52 2021
    SummaryRecommended update for timezone
    Typerecommended
    Severitymoderate
    References1188127
    Description:

    This update for timezone fixes the following issue:

    the IANA time zone database package, in addition to 'zone1970.tab', as before. This makes sure time zone aliases are now correctly supported. This update adds the 'tzdata.zi' file (bsc#1188127).

    SUSE-IU-2021:597-1

    Container Advisory IDSUSE-IU-2021:597-1
    Container Tagssles-15-sp3-chost-byos-v20210629:20210629
    Container Release
    The following patches have been included in this update:
    Advisory IDSUSE-RU-2018:1332-1
    ReleasedTue Jul 17 09:01:19 2018
    SummaryRecommended update for timezone
    Typerecommended
    Severitymoderate
    References1073299,1093392
    Description:

    This update for timezone provides the following fixes:

    Advisory IDSUSE-RU-2018:1334-1
    ReleasedTue Jul 17 09:06:41 2018
    SummaryRecommended update for mozilla-nss
    Typerecommended
    Severitymoderate
    References1096515
    Description:

    This update for mozilla-nss provides the following fixes:

    Advisory IDSUSE-SU-2018:1353-1
    ReleasedThu Jul 19 09:50:32 2018
    SummarySecurity update for e2fsprogs
    Typesecurity
    Severitymoderate
    References1009532,1038194,915402,918346,960273,CVE-2015-0247,CVE-2015-1572
    Description:

    This update for e2fsprogs fixes the following issues:
    Security issues fixed:


    Bug fixes:

    Advisory IDSUSE-SU-2018:1476-1
    ReleasedThu Aug 2 14:20:03 2018
    SummarySecurity update for cups
    Typesecurity
    Severitymoderate
    References1096405,1096406,1096407,1096408,CVE-2018-4180,CVE-2018-4181,CVE-2018-4182,CVE-2018-4183
    Description:

    This update for cups fixes the following issues:
    The following security vulnerabilities were fixed:

    Advisory IDSUSE-RU-2018:1756-1
    ReleasedFri Aug 24 17:12:55 2018
    SummaryRecommended update for growpart
    Typerecommended
    Severitymoderate
    References1097455,1098681
    Description:

    This update for growpart provides the following fix:

    Advisory IDSUSE-RU-2018:1775-1
    ReleasedTue Aug 28 12:40:50 2018
    SummaryRecommended update for xfsprogs
    Typerecommended
    Severityimportant
    References1089777,1105396
    Description:

    This update for xfsprogs fixes the following issues:

    Advisory IDSUSE-RU-2018:1804-1
    ReleasedFri Aug 31 13:02:24 2018
    SummaryRecommended update for docker
    Typerecommended
    Severitymoderate
    References1065609,1073877,1099277,1100727
    Description:

    This update for docker fixes the following issues:

    Advisory IDSUSE-RU-2018:1999-1
    ReleasedTue Sep 25 08:20:35 2018
    SummaryRecommended update for zlib
    Typerecommended
    Severitymoderate
    References1071321
    Description:

    This update for zlib provides the following fixes:

    Advisory IDSUSE-RU-2018:2055-1
    ReleasedThu Sep 27 14:30:14 2018
    SummaryRecommended update for openldap2
    Typerecommended
    Severitymoderate
    References1089640
    Description:

    This update for openldap2 provides the following fix:

    Advisory IDSUSE-RU-2018:2170-1
    ReleasedMon Oct 8 10:31:14 2018
    SummaryRecommended update for python3
    Typerecommended
    Severitymoderate
    References1107030
    Description:

    This update for python3 fixes the following issues:

    Advisory IDSUSE-SU-2018:2182-1
    ReleasedTue Oct 9 11:08:36 2018
    SummarySecurity update for libxml2
    Typesecurity
    Severitymoderate
    References1088279,1102046,1105166,CVE-2018-14404,CVE-2018-14567,CVE-2018-9251
    Description:

    This update for libxml2 fixes the following security issues:

    Advisory IDSUSE-SU-2018:2340-1
    ReleasedFri Oct 19 16:05:53 2018
    SummarySecurity update for fuse
    Typesecurity
    Severitymoderate
    References1101797,CVE-2018-10906
    Description:

    This update for fuse fixes the following issues:

    Advisory IDSUSE-RU-2018:2346-1
    ReleasedMon Oct 22 09:40:46 2018
    SummaryRecommended update for logrotate
    Typerecommended
    Severitymoderate
    References1093617
    Description:

    This update for logrotate provides the following fix:

    Advisory IDSUSE-RU-2018:2370-1
    ReleasedMon Oct 22 14:02:01 2018
    SummaryRecommended update for aaa_base
    Typerecommended
    Severitymoderate
    References1102310,1104531
    Description:

    This update for aaa_base provides the following fixes:

    Advisory IDSUSE-RU-2018:2463-1
    ReleasedThu Oct 25 14:48:34 2018
    SummaryRecommended update for timezone, timezone-java
    Typerecommended
    Severitymoderate
    References1104700,1112310
    Description:


    This update for timezone, timezone-java fixes the following issues:
    The timezone database was updated to 2018f:


    Other bugfixes:

    Advisory IDSUSE-RU-2018:2486-1
    ReleasedFri Oct 26 12:38:27 2018
    SummaryRecommended update for xfsprogs
    Typerecommended
    Severitymoderate
    References1105068
    Description:

    This update for xfsprogs fixes the following issues:

    Advisory IDSUSE-RU-2018:2550-1
    ReleasedWed Oct 31 16:16:56 2018
    SummaryRecommended update for timezone, timezone-java
    Typerecommended
    Severitymoderate
    References1113554
    Description:

    This update provides the latest time zone definitions (2018g), including the following change:

    Advisory IDSUSE-RU-2018:2569-1
    ReleasedFri Nov 2 19:00:18 2018
    SummaryRecommended update for pam
    Typerecommended
    Severitymoderate
    References1110700
    Description:

    This update for pam fixes the following issues:

    Advisory IDSUSE-RU-2018:2607-1
    ReleasedWed Nov 7 15:42:48 2018
    SummaryOptional update for gcc8
    Typerecommended
    Severitylow
    References1084812,1084842,1087550,1094222,1102564
    Description:


    The GNU Compiler GCC 8 is being added to the Development Tools Module by this update.
    The update also supplies gcc8 compatible libstdc++, libgcc_s1 and other gcc derived libraries for the Basesystem module of SUSE Linux Enterprise 15.
    Various optimizers have been improved in GCC 8, several of bugs fixed, quite some new warnings added and the error pin-pointing and fix-suggestions have been greatly improved.
    The GNU Compiler page for GCC 8 contains a summary of all the changes that have happened:
    https://gcc.gnu.org/gcc-8/changes.html
    Also changes needed or common pitfalls when porting software are described on:
    https://gcc.gnu.org/gcc-8/porting_to.html

    Advisory IDSUSE-RU-2018:2641-1
    ReleasedMon Nov 12 20:39:30 2018
    SummaryRecommended update for nfsidmap
    Typerecommended
    Severitymoderate
    References1098217
    Description:

    This update for nfsidmap fixes the following issues:

    Advisory IDSUSE-RU-2018:2742-1
    ReleasedThu Nov 22 13:28:36 2018
    SummaryRecommended update for rpcbind
    Typerecommended
    Severitymoderate
    References969953
    Description:

    This update for rpcbind fixes the following issues:

    Advisory IDSUSE-SU-2018:2825-1
    ReleasedMon Dec 3 15:35:02 2018
    SummarySecurity update for pam
    Typesecurity
    Severityimportant
    References1115640,CVE-2018-17953
    Description:

    This update for pam fixes the following issue:
    Security issue fixed:

    Advisory IDSUSE-SU-2018:2861-1
    ReleasedThu Dec 6 14:32:01 2018
    SummarySecurity update for ncurses
    Typesecurity
    Severityimportant
    References1103320,1115929,CVE-2018-19211
    Description:

    This update for ncurses fixes the following issues:
    Security issue fixed:


    Non-security issue fixed:

    Advisory IDSUSE-SU-2018:2882-1
    ReleasedMon Dec 10 08:07:44 2018
    SummarySecurity update for cups
    Typesecurity
    Severityimportant
    References1115750,CVE-2018-4700
    Description:

    This update for cups fixes the following issues:
    Security issue fixed:

    Advisory IDSUSE-SU-2018:2945-1
    ReleasedFri Dec 14 16:43:57 2018
    SummarySecurity update for tcpdump
    Typesecurity
    Severitymoderate
    References1117267,CVE-2018-19519
    Description:

    This update for tcpdump fixes the following issues:
    Security issues fixed:

    Advisory IDSUSE-SU-2018:2986-1
    ReleasedWed Dec 19 13:53:22 2018
    SummarySecurity update for libnettle
    Typesecurity
    Severitymoderate
    References1118086,CVE-2018-16869
    Description:

    This update for libnettle fixes the following issues:
    Security issues fixed:

    Advisory IDSUSE-SU-2018:3044-1
    ReleasedFri Dec 21 18:47:21 2018
    SummarySecurity update for MozillaFirefox, mozilla-nspr and mozilla-nss
    Typesecurity
    Severityimportant
    References1097410,1106873,1119069,1119105,CVE-2018-0495,CVE-2018-12384,CVE-2018-12404,CVE-2018-12405,CVE-2018-17466,CVE-2018-18492,CVE-2018-18493,CVE-2018-18494,CVE-2018-18498
    Description:

    This update for MozillaFirefox, mozilla-nss and mozilla-nspr fixes the following issues:
    Issues fixed in MozillaFirefox:


    Issues fixed in mozilla-nss:

    Issues fixed in mozilla-nspr:

    Advisory IDSUSE-SU-2018:3064-1
    ReleasedFri Dec 28 18:39:08 2018
    SummarySecurity update for containerd, docker and go
    Typesecurity
    Severityimportant
    References1047218,1074971,1080978,1081495,1084533,1086185,1094680,1095817,1098017,1102522,1104821,1105000,1108038,1113313,1113978,1114209,1118897,1118898,1118899,1119634,1119706,CVE-2018-16873,CVE-2018-16874,CVE-2018-16875,CVE-2018-7187
    Description:


    This update for containerd, docker and go fixes the following issues:
    containerd and docker:


    go:
    Additionally, the package go1.10 has been added.

    Advisory IDSUSE-RU-2019:44-1
    ReleasedTue Jan 8 13:07:32 2019
    SummaryRecommended update for acl
    Typerecommended
    Severitylow
    References953659
    Description:

    This update for acl fixes the following issues:

    Advisory IDSUSE-RU-2019:62-1
    ReleasedThu Jan 10 20:30:58 2019
    SummaryRecommended update for xfsprogs
    Typerecommended
    Severitymoderate
    References1119063
    Description:

    This update for xfsprogs fixes the following issues:

    Advisory IDSUSE-RU-2019:82-1
    ReleasedFri Jan 11 17:16:48 2019
    SummaryRecommended update for suse-build-key
    Typerecommended
    Severitymoderate
    References1044232
    Description:

    This update for suse-build-key fixes the following issues:

    Advisory IDSUSE-RU-2019:91-1
    ReleasedTue Jan 15 14:14:43 2019
    SummaryRecommended update for mozilla-nss
    Typerecommended
    Severitymoderate
    References1090767,1121045,1121207
    Description:

    This update for mozilla-nss fixes the following issues:

    Advisory IDSUSE-SU-2019:93-1
    ReleasedTue Jan 15 14:48:33 2019
    SummarySecurity update for wget
    Typesecurity
    Severityimportant
    References1120382,CVE-2018-20483
    Description:

    This update for wget fixes the following issues:
    Security issue fixed:

    Advisory IDSUSE-RU-2019:102-1
    ReleasedTue Jan 15 18:02:58 2019
    SummaryRecommended update for timezone
    Typerecommended
    Severitymoderate
    References1120402
    Description:

    This update for timezone fixes the following issues:

    Advisory IDSUSE-RU-2019:104-1
    ReleasedTue Jan 15 18:03:13 2019
    SummaryRecommended update for chrony
    Typerecommended
    Severitymoderate
    References1117147
    Description:

    This update for chrony fixes the following issues:

    Advisory IDSUSE-SU-2019:215-1
    ReleasedThu Jan 31 15:59:57 2019
    SummarySecurity update for python3
    Typesecurity
    Severityimportant
    References1120644,1122191,CVE-2018-20406,CVE-2019-5010
    Description:

    This update for python3 fixes the following issues:
    Security issue fixed:

    Advisory IDSUSE-SU-2019:247-1
    ReleasedWed Feb 6 07:18:45 2019
    SummarySecurity update for lua53
    Typesecurity
    Severitymoderate
    References1123043,CVE-2019-6706
    Description:

    This update for lua53 fixes the following issues:
    Security issue fixed:

    Advisory IDSUSE-SU-2019:273-1
    ReleasedWed Feb 6 16:48:18 2019
    SummarySecurity update for MozillaFirefox
    Typesecurity
    Severityimportant
    References1119069,1120374,1122983,CVE-2018-12404,CVE-2018-18500,CVE-2018-18501,CVE-2018-18505
    Description:

    This update for MozillaFirefox, mozilla-nss fixes the following issues:
    Security issues fixed:


    Non-security issue fixed:

    Advisory IDSUSE-SU-2019:286-1
    ReleasedThu Feb 7 13:45:27 2019
    SummarySecurity update for docker
    Typesecurity
    Severitymoderate
    References1001161,1112980,1115464,1118897,1118898,1118899,1118990,1121412,CVE-2018-16873,CVE-2018-16874,CVE-2018-16875
    Description:

    This update for containerd, docker, docker-runc and golang-github-docker-libnetwork fixes the following issues:
    Security issues fixed for containerd, docker, docker-runc and golang-github-docker-libnetwork:


    Non-security issues fixed for docker:

    Advisory IDSUSE-RU-2019:369-1
    ReleasedWed Feb 13 14:01:42 2019
    SummaryRecommended update for itstool
    Typerecommended
    Severitymoderate
    References1065270,1111019
    Description:

    This update for itstool and python-libxml2-python fixes the following issues:
    Package: itstool - Updated version to support Python3. (bnc#1111019)
    Package: python-libxml2-python - Fix segfault when parsing invalid data. (bsc#1065270)

    Advisory IDSUSE-SU-2019:495-1
    ReleasedTue Feb 26 16:42:35 2019
    SummarySecurity update for containerd, docker, docker-runc, golang-github-docker-libnetwork, runc
    Typesecurity
    Severityimportant
    References1048046,1051429,1114832,1118897,1118898,1118899,1121967,1124308,CVE-2018-16873,CVE-2018-16874,CVE-2018-16875,CVE-2019-5736
    Description:

    This update for containerd, docker, docker-runc, golang-github-docker-libnetwork, runc fixes the following issues:
    Security issues fixed:


    Other changes and fixes:

    Advisory IDSUSE-SU-2019:571-1
    ReleasedThu Mar 7 18:13:46 2019
    SummarySecurity update for file
    Typesecurity
    Severitymoderate
    References1096974,1096984,1126117,1126118,1126119,CVE-2018-10360,CVE-2019-8905,CVE-2019-8906,CVE-2019-8907
    Description:

    This update for file fixes the following issues:
    The following security vulnerabilities were addressed:

    Advisory IDSUSE-RU-2019:608-1
    ReleasedWed Mar 13 15:21:02 2019
    SummaryRecommended update for cups
    Typerecommended
    Severitymoderate
    References1118118
    Description:

    This update for cups fixes the following issues:

    Advisory IDSUSE-RU-2019:732-1
    ReleasedMon Mar 25 14:10:04 2019
    SummaryRecommended update for aaa_base
    Typerecommended
    Severitymoderate
    References1088524,1118364,1128246
    Description:

    This update for aaa_base fixes the following issues:

    Advisory IDSUSE-SU-2019:788-1
    ReleasedThu Mar 28 11:55:06 2019
    SummarySecurity update for sqlite3
    Typesecurity
    Severitymoderate
    References1119687,CVE-2018-20346
    Description:

    This update for sqlite3 to version 3.27.2 fixes the following issue:
    Security issue fixed:


    Release notes: https://www.sqlite.org/releaselog/3_27_2.html

    Advisory IDSUSE-RU-2019:790-1
    ReleasedThu Mar 28 12:06:17 2019
    SummaryRecommended update for timezone
    Typerecommended
    Severitymoderate
    References1130557
    Description:

    This update for timezone fixes the following issues:
    timezone was updated 2019a:

    Advisory IDSUSE-RU-2019:791-1
    ReleasedThu Mar 28 12:06:50 2019
    SummarySecurity update for libnettle
    Typerecommended
    Severitymoderate
    References1129598
    Description:

    This update for libnettle to version 3.4.1 fixes the following issues:
    Issues addressed and new features:

    Advisory IDSUSE-RU-2019:909-1
    ReleasedTue Apr 9 08:04:44 2019
    SummaryRecommended update for chrony
    Typerecommended
    Severitymoderate
    References1129914
    Description:

    This update for chrony fixes the following issues:

    Advisory IDSUSE-SU-2019:925-1
    ReleasedWed Apr 10 16:32:50 2019
    SummarySecurity update for wget
    Typesecurity
    Severityimportant
    References1131493,CVE-2019-5953
    Description:

    This update for wget fixes the following issues:
    Security issue fixed:

    Advisory IDSUSE-SU-2019:926-1
    ReleasedWed Apr 10 16:33:12 2019
    SummarySecurity update for tar
    Typesecurity
    Severitymoderate
    References1120610,1130496,CVE-2018-20482,CVE-2019-9923
    Description:

    This update for tar fixes the following issues:
    Security issues fixed:

    Advisory IDSUSE-RU-2019:966-1
    ReleasedWed Apr 17 12:20:13 2019
    SummaryRecommended update for python-rpm-macros
    Typerecommended
    Severitymoderate
    References1128323
    Description:

    This update for python-rpm-macros fixes the following issues:
    The Python RPM macros were updated to version 20190408.32abece, fixing bugs (bsc#1128323)

    Advisory IDSUSE-SU-2019:971-1
    ReleasedWed Apr 17 14:43:26 2019
    SummarySecurity update for python3
    Typesecurity
    Severityimportant
    References1129346,CVE-2019-9636
    Description:

    This update for python3 fixes the following issues:
    Security issue fixed:

    Advisory IDSUSE-RU-2019:1002-1
    ReleasedWed Apr 24 10:13:34 2019
    SummaryRecommended update for zlib
    Typerecommended
    Severitymoderate
    References1110304,1129576
    Description:

    This update for zlib fixes the following issues:

    Advisory IDSUSE-SU-2019:1040-1
    ReleasedThu Apr 25 17:09:21 2019
    SummarySecurity update for samba
    Typesecurity
    Severityimportant
    References1114407,1124223,1125410,1126377,1131060,1131686,CVE-2019-3880
    Description:

    This update for samba fixes the following issues:
    Security issue fixed:



    ldb was updated to version 1.2.4 (bsc#1125410 bsc#1131686):


    Non-security issues fixed:

    Advisory IDSUSE-SU-2019:1127-1
    ReleasedThu May 2 09:39:24 2019
    SummarySecurity update for sqlite3
    Typesecurity
    Severitymoderate
    References1130325,1130326,CVE-2019-9936,CVE-2019-9937
    Description:

    This update for sqlite3 to version 3.28.0 fixes the following issues:
    Security issues fixed:

    Advisory IDSUSE-SU-2019:1206-1
    ReleasedFri May 10 14:01:55 2019
    SummarySecurity update for bzip2
    Typesecurity
    Severitylow
    References985657,CVE-2016-3189
    Description:

    This update for bzip2 fixes the following issues:
    Security issue fixed:

    Advisory IDSUSE-SU-2019:1234-1
    ReleasedTue May 14 18:31:52 2019
    SummarySecurity update for containerd, docker, docker-runc, go, go1.11, go1.12, golang-github-docker-libnetwork
    Typesecurity
    Severityimportant
    References1114209,1114832,1118897,1118898,1118899,1121397,1121967,1123013,1128376,1128746,1134068,CVE-2018-16873,CVE-2018-16874,CVE-2018-16875,CVE-2019-5736,CVE-2019-6486
    Description:

    This update for containerd, docker, docker-runc, go, go1.11, go1.12, golang-github-docker-libnetwork fixes the following issues:
    Security issues fixed:


    Other changes and bug fixes:

    Advisory IDSUSE-RU-2019:1312-1
    ReleasedWed May 22 12:19:12 2019
    SummaryRecommended update for aaa_base
    Typerecommended
    Severitymoderate
    References1096191
    Description:

    This update for aaa_base fixes the following issue:
    * Shell detection in /etc/profile and /etc/bash.bashrc was broken within AppArmor-confined containers (bsc#1096191)

    Advisory IDSUSE-SU-2019:1352-1
    ReleasedFri May 24 14:41:44 2019
    SummarySecurity update for python3
    Typesecurity
    Severitymoderate
    References1130840,1133452,CVE-2019-9947
    Description:

    This update for python3 to version 3.6.8 fixes the following issues:
    Security issue fixed:


    Non-security issue fixed:

    Advisory IDSUSE-SU-2019:1368-1
    ReleasedTue May 28 13:15:38 2019
    SummaryRecommended update for sles12sp3-docker-image, sles12sp4-image, system-user-root
    Typesecurity
    Severityimportant
    References1134524,CVE-2019-5021
    Description:

    This update for sles12sp3-docker-image, sles12sp4-image, system-user-root fixes the following issues:

    Advisory IDSUSE-SU-2019:1372-1
    ReleasedTue May 28 16:53:28 2019
    SummarySecurity update for libtasn1
    Typesecurity
    Severitymoderate
    References1105435,CVE-2018-1000654
    Description:

    This update for libtasn1 fixes the following issues:
    Security issue fixed:

    Advisory IDSUSE-SU-2019:1398-1
    ReleasedFri May 31 12:54:22 2019
    SummarySecurity update for libpng16
    Typesecurity
    Severitylow
    References1100687,1121624,1124211,CVE-2018-13785,CVE-2019-7317
    Description:

    This update for libpng16 fixes the following issues:
    Security issues fixed:

    Advisory IDSUSE-SU-2019:1457-1
    ReleasedTue Jun 11 10:09:14 2019
    SummarySecurity update for vim
    Typesecurity
    Severityimportant
    References1137443,CVE-2019-12735
    Description:

    This update for vim fixes the following issue:
    Security issue fixed:

    Advisory IDSUSE-RU-2019:1484-1
    ReleasedThu Jun 13 07:46:46 2019
    SummaryRecommended update for e2fsprogs
    Typerecommended
    Severitymoderate
    References1128383
    Description:

    This update for e2fsprogs fixes the following issues:

    Advisory IDSUSE-SU-2019:1486-1
    ReleasedThu Jun 13 09:40:24 2019
    SummarySecurity update for elfutils
    Typesecurity
    Severitymoderate
    References1033084,1033085,1033086,1033087,1033088,1033089,1033090,1106390,1107066,1107067,1111973,1112723,1112726,1123685,1125007,CVE-2017-7607,CVE-2017-7608,CVE-2017-7609,CVE-2017-7610,CVE-2017-7611,CVE-2017-7612,CVE-2017-7613,CVE-2018-16062,CVE-2018-16402,CVE-2018-16403,CVE-2018-18310,CVE-2018-18520,CVE-2018-18521,CVE-2019-7150,CVE-2019-7665
    Description:

    This update for elfutils fixes the following issues:
    Security issues fixed:

    Advisory IDSUSE-RU-2019:1492-1
    ReleasedThu Jun 13 14:51:01 2019
    SummaryRecommended update for libidn
    Typerecommended
    Severitylow
    References1132869
    Description:


    This update for libidn fixes the following issue:

    Advisory IDSUSE-SU-2019:1562-1
    ReleasedWed Jun 19 09:16:07 2019
    SummarySecurity update for docker
    Typesecurity
    Severitymoderate
    References1096726,CVE-2018-15664
    Description:

    This update for docker fixes the following issues:
    Security issue fixed:

    Advisory IDSUSE-SU-2019:1595-1
    ReleasedFri Jun 21 10:17:44 2019
    SummarySecurity update for dbus-1
    Typesecurity
    Severityimportant
    References1137832,CVE-2019-12749
    Description:

    This update for dbus-1 fixes the following issues:
    Security issue fixed:

    Advisory IDSUSE-RU-2019:1616-1
    ReleasedFri Jun 21 11:04:39 2019
    SummaryRecommended update for rpcbind
    Typerecommended
    Severitymoderate
    References1134659
    Description:

    This update for rpcbind fixes the following issues:

    Advisory IDSUSE-RU-2019:1627-1
    ReleasedFri Jun 21 11:15:11 2019
    SummaryRecommended update for xfsprogs
    Typerecommended
    Severitymoderate
    References1073421,1122271,1129859
    Description:

    This update for xfsprogs fixes the following issues:

    Advisory IDSUSE-RU-2019:1631-1
    ReleasedFri Jun 21 11:17:21 2019
    SummaryRecommended update for xz
    Typerecommended
    Severitylow
    References1135709
    Description:

    This update for xz fixes the following issues:
    Add SUSE-Public-Domain licence as some parts of xz utils (liblzma, xz, xzdec, lzmadec, documentation, translated messages, tests, debug, extra directory) are in public domain licence [bsc#1135709]

    Advisory IDSUSE-RU-2019:1635-1
    ReleasedFri Jun 21 12:45:53 2019
    SummaryRecommended update for krb5
    Typerecommended
    Severitymoderate
    References1134217
    Description:

    This update for krb5 provides the following fix:


    Advisory IDSUSE-RU-2019:1700-1
    ReleasedTue Jun 25 13:19:21 2019
    SummarySecurity update for libssh
    Typerecommended
    Severitymoderate
    References1134193
    Description:

    This update for libssh fixes the following issue:
    Issue addressed:

    Advisory IDSUSE-SU-2019:1804-1
    ReleasedWed Jul 10 10:40:44 2019
    SummarySecurity update for ruby-bundled-gems-rpmhelper, ruby2.5
    Typesecurity
    Severityimportant
    References1082007,1082008,1082009,1082010,1082011,1082014,1082058,1087433,1087434,1087436,1087437,1087440,1087441,1112530,1112532,1130028,1130611,1130617,1130620,1130622,1130623,1130627,1133790,CVE-2017-17742,CVE-2018-1000073,CVE-2018-1000074,CVE-2018-1000075,CVE-2018-1000076,CVE-2018-1000077,CVE-2018-1000078,CVE-2018-1000079,CVE-2018-16395,CVE-2018-16396,CVE-2018-6914,CVE-2018-8777,CVE-2018-8778,CVE-2018-8779,CVE-2018-8780,CVE-2019-8320,CVE-2019-8321,CVE-2019-8322,CVE-2019-8323,CVE-2019-8324,CVE-2019-8325
    Description:

    This update for ruby2.5 and ruby-bundled-gems-rpmhelper fixes the following issues:
    Changes in ruby2.5:
    Update to 2.5.5 and 2.5.4:
    https://www.ruby-lang.org/en/news/2019/03/15/ruby-2-5-5-released/ https://www.ruby-lang.org/en/news/2019/03/13/ruby-2-5-4-released/
    Security issues fixed:



    Ruby 2.5 was updated to 2.5.3:
    This release includes some bug fixes and some security fixes.
    Security issues fixed:

    Ruby 2.5 was updated to 2.5.1:
    This release includes some bug fixes and some security fixes.
    Security issues fixed:


    - CVE-2018-1000079: Fixed path traversal issue during gem installation allows to write to arbitrary filesystem locations (bsc#1082058) - CVE-2018-1000075: Fixed infinite loop vulnerability due to negative size in tar header causes Denial of Service (bsc#1082014) - CVE-2018-1000078: Fixed XSS vulnerability in homepage attribute when displayed via gem server (bsc#1082011) - CVE-2018-1000077: Fixed that missing URL validation on spec home attribute allows malicious gem to set an invalid homepage URL (bsc#1082010) - CVE-2018-1000076: Fixed improper verification of signatures in tarball allows to install mis-signed gem (bsc#1082009) - CVE-2018-1000074: Fixed unsafe Object Deserialization Vulnerability in gem owner allowing arbitrary code execution on specially crafted YAML (bsc#1082008) - CVE-2018-1000073: Fixed path traversal when writing to a symlinked basedir outside of the root (bsc#1082007)
    Other changes:


    Changes in ruby-bundled-gems-rpmhelper:

    Advisory IDSUSE-RU-2019:1808-1
    ReleasedWed Jul 10 13:16:29 2019
    SummaryRecommended update for libgcrypt
    Typerecommended
    Severitymoderate
    References1133808
    Description:

    This update for libgcrypt fixes the following issues:

    Advisory IDSUSE-RU-2019:1815-1
    ReleasedThu Jul 11 07:47:55 2019
    SummaryRecommended update for timezone
    Typerecommended
    Severitymoderate
    References1140016
    Description:

    This update for timezone fixes the following issues:

    Advisory IDSUSE-SU-2019:1835-1
    ReleasedFri Jul 12 18:06:31 2019
    SummarySecurity update for expat
    Typesecurity
    Severitymoderate
    References1139937,CVE-2018-20843
    Description:

    This update for expat fixes the following issues:
    Security issue fixed:

    Advisory IDSUSE-SU-2019:1846-1
    ReleasedMon Jul 15 11:36:33 2019
    SummarySecurity update for bzip2
    Typesecurity
    Severityimportant
    References1139083,CVE-2019-12900
    Description:

    This update for bzip2 fixes the following issues:
    Security issue fixed:

    Advisory IDSUSE-SU-2019:1869-1
    ReleasedWed Jul 17 14:03:20 2019
    SummarySecurity update for MozillaFirefox
    Typesecurity
    Severityimportant
    References1140868,CVE-2019-11709,CVE-2019-11711,CVE-2019-11712,CVE-2019-11713,CVE-2019-11715,CVE-2019-11717,CVE-2019-11719,CVE-2019-11729,CVE-2019-11730,CVE-2019-9811
    Description:

    This update for MozillaFirefox, mozilla-nss fixes the following issues:
    MozillaFirefox to version ESR 60.8:


    mozilla-nss to version 3.44.1:

    Advisory IDSUSE-SU-2019:1971-1
    ReleasedThu Jul 25 14:58:52 2019
    SummarySecurity update for libgcrypt
    Typesecurity
    Severitymoderate
    References1138939,CVE-2019-12904
    Description:

    This update for libgcrypt fixes the following issues:
    Security issue fixed:

    Advisory IDSUSE-RU-2019:1994-1
    ReleasedFri Jul 26 16:12:05 2019
    SummaryRecommended update for libxml2
    Typerecommended
    Severitymoderate
    References1135123
    Description:

    This update for libxml2 fixes the following issues:

    Advisory IDSUSE-RU-2019:2001-1
    ReleasedFri Jul 26 18:09:41 2019
    SummaryRecommended update for docker
    Typerecommended
    Severityimportant
    References1138920
    Description:

    This update for docker fixes the following issues:

    Advisory IDSUSE-SU-2019:2004-1
    ReleasedMon Jul 29 13:01:59 2019
    SummarySecurity update for bzip2
    Typesecurity
    Severityimportant
    References1139083,CVE-2019-12900
    Description:

    This update for bzip2 fixes the following issues:

    Advisory IDSUSE-SU-2019:2050-1
    ReleasedTue Aug 6 09:42:37 2019
    SummarySecurity update for python3
    Typesecurity
    Severityimportant
    References1094814,1138459,1141853,CVE-2018-20852,CVE-2019-10160
    Description:

    This update for python3 fixes the following issues:
    Security issue fixed:


    Non-security issue fixed:

    Advisory IDSUSE-SU-2019:2087-1
    ReleasedWed Aug 7 18:16:48 2019
    SummarySecurity update for tcpdump
    Typesecurity
    Severitymoderate
    References1068716,1142439,CVE-2017-16808,CVE-2019-1010220
    Description:

    This update for tcpdump fixes the following issues:
    Security issues fixed:

    Advisory IDSUSE-RU-2019:2097-1
    ReleasedFri Aug 9 09:31:17 2019
    SummaryRecommended update for libgcrypt
    Typerecommended
    Severityimportant
    References1097073
    Description:

    This update for libgcrypt fixes the following issues:

    Advisory IDSUSE-SU-2019:2117-1
    ReleasedTue Aug 13 14:56:55 2019
    SummarySecurity update for containerd, docker, docker-runc, golang-github-docker-libnetwork
    Typesecurity
    Severityimportant
    References1100331,1121967,1138920,1139649,1142160,1142413,1143409,CVE-2018-10892,CVE-2019-13509,CVE-2019-14271,CVE-2019-5736
    Description:

    This update for containerd, docker, docker-runc, golang-github-docker-libnetwork fixes the following issues:
    Docker:


    runc:

    containerd:

    golang-github-docker-libnetwork:

    Advisory IDSUSE-RU-2019:2134-1
    ReleasedWed Aug 14 11:54:56 2019
    SummaryRecommended update for zlib
    Typerecommended
    Severitymoderate
    References1136717,1137624,1141059,SLE-5807
    Description:

    This update for zlib fixes the following issues:

    Advisory IDSUSE-RU-2019:2142-1
    ReleasedWed Aug 14 18:14:04 2019
    SummaryRecommended update for mozilla-nspr, mozilla-nss
    Typerecommended
    Severitymoderate
    References1141322
    Description:


    This update for mozilla-nspr, mozilla-nss fixes the following issues:
    mozilla-nss was updated to NSS 3.45 (bsc#1141322) :


    mozilla-nspr was updated to version 4.21

    Advisory IDSUSE-RU-2019:2188-1
    ReleasedWed Aug 21 10:10:29 2019
    SummaryRecommended update for aaa_base
    Typerecommended
    Severitymoderate
    References1140647
    Description:

    This update for aaa_base fixes the following issues:

    Advisory IDSUSE-RU-2019:2218-1
    ReleasedMon Aug 26 11:29:57 2019
    SummaryRecommended update for pinentry
    Typerecommended
    Severitymoderate
    References1141883
    Description:

    This update for pinentry fixes the following issues:

    Advisory IDSUSE-RU-2019:2357-1
    ReleasedWed Sep 11 13:26:14 2019
    SummaryRecommended update for lmdb
    Typerecommended
    Severitymoderate
    References1136132
    Description:

    This update for lmdb fixes the following issues:

    Advisory IDSUSE-RU-2019:2361-1
    ReleasedThu Sep 12 07:54:54 2019
    SummaryRecommended update for krb5
    Typerecommended
    Severitymoderate
    References1081947,1144047
    Description:

    This update for krb5 contains the following fixes:

    Advisory IDSUSE-SU-2019:2395-1
    ReleasedWed Sep 18 08:31:38 2019
    SummarySecurity update for openldap2
    Typesecurity
    Severitymoderate
    References1073313,1111388,1114845,1143194,1143273,CVE-2017-17740,CVE-2019-13057,CVE-2019-13565
    Description:

    This update for openldap2 fixes the following issues:
    Security issue fixed:


    Non-security issues fixed:

    Advisory IDSUSE-RU-2019:2423-1
    ReleasedFri Sep 20 16:41:45 2019
    SummaryRecommended update for aaa_base
    Typerecommended
    Severitymoderate
    References1146866,SLE-9132
    Description:

    This update for aaa_base fixes the following issues:
    Added sysctl.d/51-network.conf to tighten network security (bsc#1146866) (jira#SLE-9132)
    Following settings have been tightened (and set to 0):

    Advisory IDSUSE-SU-2019:2429-1
    ReleasedMon Sep 23 09:28:40 2019
    SummarySecurity update for expat
    Typesecurity
    Severitymoderate
    References1149429,CVE-2019-15903
    Description:

    This update for expat fixes the following issues:
    Security issues fixed:

    Advisory IDSUSE-SU-2019:2517-1
    ReleasedWed Oct 2 10:49:20 2019
    SummarySecurity update for libseccomp
    Typesecurity
    Severitymoderate
    References1082318,1128828,1142614,CVE-2019-9893
    Description:

    This update for libseccomp fixes the following issues:
    Security issues fixed:


    libseccomp was updated to new upstream release 2.4.1:

    libseccomp was updated to 2.4.0 (bsc#1128828 CVE-2019-9893):

    libseccomp was updated to release 2.3.3:

    Advisory IDSUSE-SU-2019:2533-1
    ReleasedThu Oct 3 15:02:50 2019
    SummarySecurity update for sqlite3
    Typesecurity
    Severitymoderate
    References1150137,CVE-2019-16168
    Description:

    This update for sqlite3 fixes the following issues:
    Security issue fixed:

    Advisory IDSUSE-SU-2019:2674-1
    ReleasedTue Oct 15 16:53:28 2019
    SummarySecurity update for tcpdump
    Typesecurity
    Severityimportant
    References1068716,1153098,1153332,CVE-2017-16808,CVE-2018-10103,CVE-2018-10105,CVE-2018-14461,CVE-2018-14462,CVE-2018-14463,CVE-2018-14464,CVE-2018-14465,CVE-2018-14466,CVE-2018-14467,CVE-2018-14468,CVE-2018-14469,CVE-2018-14470,CVE-2018-14879,CVE-2018-14880,CVE-2018-14881,CVE-2018-14882,CVE-2018-16227,CVE-2018-16228,CVE-2018-16229,CVE-2018-16230,CVE-2018-16300,CVE-2018-16301,CVE-2018-16451,CVE-2018-16452,CVE-2019-1010220,CVE-2019-15166,CVE-2019-15167
    Description:

    This update for tcpdump fixes the following issues:

    Advisory IDSUSE-RU-2019:2676-1
    ReleasedTue Oct 15 21:06:54 2019
    SummaryRecommended update for e2fsprogs
    Typerecommended
    Severitymoderate
    References1145716,1152101,CVE-2019-5094
    Description:

    This update for e2fsprogs fixes the following issues:
    Security issue fixed:


    Non-security issue fixed:

    Advisory IDSUSE-RU-2019:2693-1
    ReleasedWed Oct 16 16:43:30 2019
    SummaryRecommended update for rpcbind
    Typerecommended
    Severitymoderate
    References1142343
    Description:

    This update for rpcbind fixes the following issues:

    Advisory IDSUSE-RU-2019:2722-1
    ReleasedMon Oct 21 11:14:20 2019
    SummaryRecommended update for pciutils-ids
    Typerecommended
    Severitymoderate
    References1127840,1133581
    Description:

    This is a version update for pciutils-ids to version 20190830 (bsc#1133581, bsc#1127840)

    Advisory IDSUSE-SU-2019:2730-1
    ReleasedMon Oct 21 16:04:57 2019
    SummarySecurity update for procps
    Typesecurity
    Severityimportant
    References1092100,1121753,CVE-2018-1122,CVE-2018-1123,CVE-2018-1124,CVE-2018-1125,CVE-2018-1126
    Description:

    This update for procps fixes the following issues:
    procps was updated to 3.3.15. (bsc#1092100)
    Following security issues were fixed:



    Also this non-security issue was fixed:

    The update to 3.3.15 contains the following fixes:

    Advisory IDSUSE-RU-2019:2762-1
    ReleasedThu Oct 24 07:08:44 2019
    SummaryRecommended update for timezone
    Typerecommended
    Severitymoderate
    References1150451
    Description:

    This update for timezone fixes the following issues:

    Advisory IDSUSE-RU-2019:2777-1
    ReleasedThu Oct 24 16:13:20 2019
    SummaryRecommended update for fipscheck
    Typerecommended
    Severitymoderate
    References1149792
    Description:

    This update for fipscheck fixes the following issues:

    Advisory IDSUSE-SU-2019:2782-1
    ReleasedFri Oct 25 14:27:52 2019
    SummarySecurity update for nfs-utils
    Typesecurity
    Severitymoderate
    References1150733,CVE-2019-3689
    Description:

    This update for nfs-utils fixes the following issues:

    Advisory IDSUSE-SU-2019:2802-1
    ReleasedTue Oct 29 11:39:05 2019
    SummarySecurity update for python3
    Typesecurity
    Severitymoderate
    References1149121,1149792,1149955,1151490,1153238,CVE-2019-16056,CVE-2019-16935,PM-1350,SLE-9426
    Description:

    This update for python3 to 3.6.9 fixes the following issues:
    Security issues fixed:


    Non-security issues fixed:

    Advisory IDSUSE-SU-2019:2810-1
    ReleasedTue Oct 29 14:56:44 2019
    SummarySecurity update for runc
    Typesecurity
    Severitymoderate
    References1131314,1131553,1152308,CVE-2019-16884
    Description:

    This update for runc fixes the following issues:
    Security issue fixed:


    Non-security issues fixed:

    Advisory IDSUSE-RU-2019:2870-1
    ReleasedThu Oct 31 08:09:14 2019
    SummaryRecommended update for aaa_base
    Typerecommended
    Severitymoderate
    References1051143,1138869,1151023
    Description:

    This update for aaa_base provides the following fixes:

    Advisory IDSUSE-SU-2019:2997-1
    ReleasedMon Nov 18 15:16:38 2019
    SummarySecurity update for ncurses
    Typesecurity
    Severitymoderate
    References1103320,1154036,1154037,CVE-2019-17594,CVE-2019-17595
    Description:

    This update for ncurses fixes the following issues:
    Security issues fixed:


    Non-security issue fixed:

    Advisory IDSUSE-SU-2019:3030-1
    ReleasedThu Nov 21 19:11:25 2019
    SummarySecurity update for cups
    Typesecurity
    Severityimportant
    References1146358,1146359,CVE-2019-8675,CVE-2019-8696
    Description:

    This update for cups fixes the following issues:

    Advisory IDSUSE-SU-2019:3059-1
    ReleasedMon Nov 25 17:33:07 2019
    SummarySecurity update for cpio
    Typesecurity
    Severitymoderate
    References1155199,CVE-2019-14866
    Description:

    This update for cpio fixes the following issues:

    Advisory IDSUSE-SU-2019:3061-1
    ReleasedMon Nov 25 17:34:22 2019
    SummarySecurity update for gcc9
    Typesecurity
    Severitymoderate
    References1114592,1135254,1141897,1142649,1142654,1148517,1149145,CVE-2019-14250,CVE-2019-15847,SLE-6533,SLE-6536
    Description:



    This update includes the GNU Compiler Collection 9.
    A full changelog is provided by the GCC team on:
    https://www.gnu.org/software/gcc/gcc-9/changes.html

    The base system compiler libraries libgcc_s1, libstdc++6 and others are now built by the gcc 9 packages.
    To use it, install 'gcc9' or 'gcc9-c++' or other compiler brands and use CC=gcc-9 / CXX=g++-9 during configuration for using it.

    Security issues fixed:


    Non-security issues fixed:

    Advisory IDSUSE-SU-2019:3086-1
    ReleasedThu Nov 28 10:02:24 2019
    SummarySecurity update for libidn2
    Typesecurity
    Severitymoderate
    References1154884,1154887,CVE-2019-12290,CVE-2019-18224
    Description:

    This update for libidn2 to version 2.2.0 fixes the following issues:

    Advisory IDSUSE-SU-2019:3087-1
    ReleasedThu Nov 28 10:03:00 2019
    SummarySecurity update for libxml2
    Typesecurity
    Severitylow
    References1123919
    Description:

    This update for libxml2 doesn't fix any additional security issues, but correct its rpm changelog to reflect all CVEs that have been fixed over the past.

    Advisory IDSUSE-RU-2019:3118-1
    ReleasedFri Nov 29 14:41:35 2019
    SummaryRecommended update for e2fsprogs
    Typerecommended
    Severitymoderate
    References1154295
    Description:

    This update for e2fsprogs fixes the following issues:

    Advisory IDSUSE-RU-2019:3166-1
    ReleasedWed Dec 4 11:24:42 2019
    SummaryRecommended update for aaa_base
    Typerecommended
    Severitymoderate
    References1007715,1084934,1157278
    Description:

    This update for aaa_base fixes the following issues:

    Advisory IDSUSE-RU-2019:3173-1
    ReleasedWed Dec 4 20:22:45 2019
    SummaryRecommended update for growpart, growpart-rootgrow
    Typerecommended
    Severitymoderate
    References1154357,ECO-550
    Description:

    This update for growpart, growpart-rootgrow contains the following fixes:
    growpart:


    growpart-rootgrow:

    Advisory IDSUSE-RU-2019:3240-1
    ReleasedTue Dec 10 10:40:19 2019
    SummaryRecommended update for ca-certificates-mozilla, p11-kit
    Typerecommended
    Severitymoderate
    References1154871
    Description:

    This update for ca-certificates-mozilla, p11-kit fixes the following issues:
    Changes in ca-certificates-mozilla:


    Changes in p11-kit:

    Advisory IDSUSE-SU-2019:3267-1
    ReleasedWed Dec 11 11:19:53 2019
    SummarySecurity update for libssh
    Typesecurity
    Severityimportant
    References1158095,CVE-2019-14889
    Description:

    This update for libssh fixes the following issues:

    Advisory IDSUSE-SU-2019:3392-1
    ReleasedFri Dec 27 13:33:29 2019
    SummarySecurity update for libgcrypt
    Typesecurity
    Severitymoderate
    References1148987,1155338,1155339,CVE-2019-13627
    Description:

    This update for libgcrypt fixes the following issues:
    Security issues fixed:


    Bug fixes:

    Advisory IDSUSE-SU-2019:3395-1
    ReleasedMon Dec 30 14:05:06 2019
    SummarySecurity update for mozilla-nspr, mozilla-nss
    Typesecurity
    Severitymoderate
    References1141322,1158527,1159819,CVE-2018-18508,CVE-2019-11745,CVE-2019-17006
    Description:

    This update for mozilla-nspr, mozilla-nss fixes the following issues:
    mozilla-nss was updated to NSS 3.47.1:
    Security issues fixed:


    mozilla-nspr was updated to version 4.23:

    Advisory IDSUSE-RU-2020:9-1
    ReleasedThu Jan 2 12:33:47 2020
    SummaryRecommended update for xfsprogs
    Typerecommended
    Severitymoderate
    References1157438
    Description:

    This update for xfsprogs fixes the following issues:

    Advisory IDSUSE-SU-2020:35-1
    ReleasedWed Jan 8 09:06:32 2020
    SummarySecurity update for containerd, docker, docker-runc, golang-github-docker-libnetwork
    Typesecurity
    Severitymoderate
    References1122469,1143349,1150397,1152308,1153367,1158590,CVE-2019-16884
    Description:

    This update for containerd, docker, docker-runc, golang-github-docker-libnetwork fixes the following issues:
    Security issue fixed:


    Bug fixes:

    Advisory IDSUSE-SU-2020:114-1
    ReleasedThu Jan 16 10:11:52 2020
    SummarySecurity update for python3
    Typesecurity
    Severityimportant
    References1027282,1029377,1029902,1040164,1042670,1070853,1079761,1081750,1083507,1086001,1088004,1088009,1088573,1094814,1107030,1109663,1109847,1120644,1122191,1129346,1130840,1133452,1137942,1138459,1141853,1149121,1149792,1149955,1151490,1153238,1159035,1159622,637176,658604,673071,709442,743787,747125,751718,754447,754677,787526,809831,831629,834601,871152,885662,885882,917607,942751,951166,983582,984751,985177,985348,989523,CVE-2011-3389,CVE-2011-4944,CVE-2012-0845,CVE-2012-1150,CVE-2013-1752,CVE-2013-4238,CVE-2014-2667,CVE-2014-4650,CVE-2016-0772,CVE-2016-1000110,CVE-2016-5636,CVE-2016-5699,CVE-2017-18207,CVE-2018-1000802,CVE-2018-1060,CVE-2018-1061,CVE-2018-14647,CVE-2018-20406,CVE-2018-20852,CVE-2019-10160,CVE-2019-15903,CVE-2019-16056,CVE-2019-16935,CVE-2019-5010,CVE-2019-9636,CVE-2019-9947
    Description:

    This update for python3 to version 3.6.10 fixes the following issues:

    Advisory IDSUSE-SU-2020:129-1
    ReleasedMon Jan 20 09:21:13 2020
    SummarySecurity update for libssh
    Typesecurity
    Severityimportant
    References1158095,CVE-2019-14889
    Description:

    This update for libssh fixes the following issues:

    Advisory IDSUSE-RU-2020:225-1
    ReleasedFri Jan 24 06:49:07 2020
    SummaryRecommended update for procps
    Typerecommended
    Severitymoderate
    References1158830
    Description:

    This update for procps fixes the following issues:

    Advisory IDSUSE-RU-2020:256-1
    ReleasedWed Jan 29 09:39:17 2020
    SummaryRecommended update for aaa_base
    Typerecommended
    Severitymoderate
    References1157794,1160970
    Description:

    This update for aaa_base fixes the following issues:

    Advisory IDSUSE-SU-2020:265-1
    ReleasedThu Jan 30 14:05:34 2020
    SummarySecurity update for e2fsprogs
    Typesecurity
    Severitymoderate
    References1160571,CVE-2019-5188
    Description:

    This update for e2fsprogs fixes the following issues:

    Advisory IDSUSE-RU-2020:279-1
    ReleasedFri Jan 31 12:01:39 2020
    SummaryRecommended update for p11-kit
    Typerecommended
    Severitymoderate
    References1013125
    Description:

    This update for p11-kit fixes the following issues:

    Advisory IDSUSE-RU-2020:325-1
    ReleasedWed Feb 5 14:57:02 2020
    SummaryRecommended update for dmidecode
    Typerecommended
    Severitymoderate
    References1153533,1158833
    Description:

    This update for dmidecode fixes the following issues:

    Advisory IDSUSE-RU-2020:339-1
    ReleasedThu Feb 6 13:03:22 2020
    SummaryRecommended update for openldap2
    Typerecommended
    Severitylow
    References1158921
    Description:

    This update for openldap2 provides the following fix:

    Advisory IDSUSE-RU-2020:340-1
    ReleasedThu Feb 6 13:03:56 2020
    SummaryRecommended update for python-rpm-macros
    Typerecommended
    Severitymoderate
    References1161770
    Description:

    This update for python-rpm-macros fixes the following issues:

    Advisory IDSUSE-RU-2020:365-1
    ReleasedFri Feb 7 13:48:54 2020
    SummaryRecommended update for lmdb
    Typerecommended
    Severitymoderate
    References1159086
    Description:

    This update for lmdb fixes the following issues:

    Advisory IDSUSE-RU-2020:417-1
    ReleasedWed Feb 19 11:40:02 2020
    SummaryRecommended update for chrony
    Typerecommended
    Severitymoderate
    References1159840
    Description:

    This update for chrony fixes the following issues:

    Advisory IDSUSE-RU-2020:451-1
    ReleasedTue Feb 25 10:50:35 2020
    SummaryRecommended update for libgcrypt
    Typerecommended
    Severitymoderate
    References1155337,1161215,1161216,1161218,1161219,1161220
    Description:

    This update for libgcrypt fixes the following issues:

    Advisory IDSUSE-RU-2020:462-1
    ReleasedTue Feb 25 11:49:30 2020
    SummaryRecommended update for xfsprogs
    Typerecommended
    Severitymoderate
    References1158504,1158509,1158630,1158758
    Description:

    This update for xfsprogs fixes the following issues:

    Advisory IDSUSE-SU-2020:467-1
    ReleasedTue Feb 25 12:00:39 2020
    SummarySecurity update for python3
    Typesecurity
    Severitymoderate
    References1162224,1162367,1162423,1162825,CVE-2019-9674,CVE-2020-8492
    Description:

    This update for python3 fixes the following issues:
    Security issues fixed:


    Non-security issue fixed:

    Advisory IDSUSE-RU-2020:480-1
    ReleasedTue Feb 25 17:38:22 2020
    SummaryRecommended update for aaa_base
    Typerecommended
    Severitymoderate
    References1160735
    Description:

    This update for aaa_base fixes the following issues:

    Advisory IDSUSE-RU-2020:517-1
    ReleasedThu Feb 27 14:39:01 2020
    SummaryRecommended update for cifs-utils
    Typerecommended
    Severitymoderate
    References1130528,1132087,1136031,1149164
    Description:

    This update for cifs-utils fixes the following issues:
    Update cifs-utils 6.9; (bsc#1132087); (bsc#1136031).


    Advisory IDSUSE-RU-2020:521-1
    ReleasedThu Feb 27 18:08:56 2020
    SummaryRecommended update for c-ares
    Typerecommended
    Severitymoderate
    References1125306,1159006
    Description:

    This update for c-ares fixes the following issues:
    c-ares version update to 1.15.0:


    Advisory IDSUSE-RU-2020:525-1
    ReleasedFri Feb 28 11:49:36 2020
    SummaryRecommended update for pam
    Typerecommended
    Severitymoderate
    References1164562
    Description:

    This update for pam fixes the following issues:

    Advisory IDSUSE-RU-2020:597-1
    ReleasedThu Mar 5 15:24:09 2020
    SummaryRecommended update for libgcrypt
    Typerecommended
    Severitymoderate
    References1164950
    Description:

    This update for libgcrypt fixes the following issues:

    Advisory IDSUSE-RU-2020:633-1
    ReleasedTue Mar 10 16:23:08 2020
    SummaryRecommended update for aaa_base
    Typerecommended
    Severitymoderate
    References1139939,1151023
    Description:

    This update for aaa_base fixes the following issues:

    Advisory IDSUSE-RU-2020:655-1
    ReleasedThu Mar 12 13:17:03 2020
    SummaryRecommended update for growpart
    Typerecommended
    Severitymoderate
    References1164736
    Description:

    This update for growpart fixes the following issues:

    Advisory IDSUSE-RU-2020:689-1
    ReleasedFri Mar 13 17:09:01 2020
    SummaryRecommended update for pam
    Typerecommended
    Severitymoderate
    References1166510
    Description:


    This update for PAM fixes the following issue:

    Advisory IDSUSE-RU-2020:690-1
    ReleasedFri Mar 13 17:09:28 2020
    SummaryRecommended update for suse-build-key
    Typerecommended
    Severitymoderate
    References1166334
    Description:

    This update for suse-build-key fixes the following issues:

    Advisory IDSUSE-SU-2020:737-1
    ReleasedFri Mar 20 13:47:16 2020
    SummaryRecommended update for ruby2.5
    Typesecurity
    Severityimportant
    References1140844,1152990,1152992,1152994,1152995,1162396,1164804,CVE-2012-6708,CVE-2015-9251,CVE-2019-15845,CVE-2019-16201,CVE-2019-16254,CVE-2019-16255,CVE-2020-8130
    Description:

    This update for ruby2.5 toversion 2.5.7 fixes the following issues: ruby 2.5 was updated to version 2.5.7

    Advisory IDSUSE-RU-2020:777-1
    ReleasedTue Mar 24 18:07:52 2020
    SummaryRecommended update for python3
    Typerecommended
    Severitymoderate
    References1165894
    Description:

    This update for python3 fixes the following issue:

    Advisory IDSUSE-RU-2020:846-1
    ReleasedThu Apr 2 07:24:07 2020
    SummaryRecommended update for libgcrypt
    Typerecommended
    Severitymoderate
    References1164950,1166748,1167674
    Description:

    This update for libgcrypt fixes the following issues:


    * Set up global_init as the constructor function: * Relax the entropy requirements on selftest. This is especially important for virtual machines to boot properly before the RNG is available:

    Advisory IDSUSE-RU-2020:850-1
    ReleasedThu Apr 2 14:37:31 2020
    SummaryRecommended update for mozilla-nss
    Typerecommended
    Severitymoderate
    References1155350,1155357,1155360,1166880
    Description:

    This update for mozilla-nss fixes the following issues:
    Added various fixes related to FIPS certification:

    Advisory IDSUSE-RU-2020:917-1
    ReleasedFri Apr 3 15:02:25 2020
    SummaryRecommended update for pam
    Typerecommended
    Severitymoderate
    References1166510
    Description:

    This update for pam fixes the following issues:

    Advisory IDSUSE-RU-2020:934-1
    ReleasedTue Apr 7 03:46:20 2020
    SummaryRecommended update for wget
    Typerecommended
    Severitymoderate
    References1167919
    Description:

    This update for wget fixes the following issues:
    wget was updated to 1.20.3, fixing various bugs, including:

    Advisory IDSUSE-RU-2020:935-1
    ReleasedTue Apr 7 03:46:39 2020
    SummaryRecommended update for xfsprogs
    Typerecommended
    Severitymoderate
    References1158630,1167205,1167206
    Description:

    This update for xfsprogs fixes the following issues:



    Advisory IDSUSE-SU-2020:944-1
    ReleasedTue Apr 7 15:49:33 2020
    SummarySecurity update for runc
    Typesecurity
    Severitymoderate
    References1149954,1160452,CVE-2019-19921
    Description:

    This update for runc fixes the following issues:
    runc was updated to v1.0.0~rc10

    Advisory IDSUSE-SU-2020:948-1
    ReleasedWed Apr 8 07:44:21 2020
    SummarySecurity update for gmp, gnutls, libnettle
    Typesecurity
    Severitymoderate
    References1152692,1155327,1166881,1168345,CVE-2020-11501
    Description:

    This update for gmp, gnutls, libnettle fixes the following issues:
    Security issue fixed:


    FIPS related bugfixes:

    Advisory IDSUSE-RU-2020:949-1
    ReleasedWed Apr 8 07:45:48 2020
    SummaryRecommended update for mozilla-nss
    Typerecommended
    Severitymoderate
    References1168669
    Description:

    This update for mozilla-nss fixes the following issues:

    Advisory IDSUSE-RU-2020:961-1
    ReleasedWed Apr 8 13:34:06 2020
    SummaryRecommended update for e2fsprogs
    Typerecommended
    Severitymoderate
    References1160979
    Description:

    This update for e2fsprogs fixes the following issues:

    Advisory IDSUSE-SU-2020:967-1
    ReleasedThu Apr 9 11:41:53 2020
    SummarySecurity update for libssh
    Typesecurity
    Severitymoderate
    References1168699,CVE-2020-1730
    Description:

    This update for libssh fixes the following issues:

    Advisory IDSUSE-SU-2020:995-1
    ReleasedWed Apr 15 08:30:39 2020
    SummarySecurity update for ruby2.5
    Typesecurity
    Severitymoderate
    References1167244,1168938,CVE-2020-10663,CVE-2020-10933
    Description:

    This update for ruby2.5 to version 2.5.8 fixes the following issues:

    Advisory IDSUSE-RU-2020:1061-1
    ReleasedWed Apr 22 10:45:41 2020
    SummaryRecommended update for mozilla-nss
    Typerecommended
    Severitymoderate
    References1169872
    Description:

    This update for mozilla-nss fixes the following issues:

    Advisory IDSUSE-RU-2020:1063-1
    ReleasedWed Apr 22 10:46:50 2020
    SummaryRecommended update for libgcrypt
    Typerecommended
    Severitymoderate
    References1165539,1169569
    Description:

    This update for libgcrypt fixes the following issues:
    This update for libgcrypt fixes the following issues:

    Advisory IDSUSE-SU-2020:1083-1
    ReleasedThu Apr 23 11:31:23 2020
    SummarySecurity update for cups
    Typesecurity
    Severityimportant
    References1168422,CVE-2020-3898
    Description:

    This update for cups fixes the following issues:

    Advisory IDSUSE-RU-2020:1112-1
    ReleasedFri Apr 24 16:44:20 2020
    SummaryRecommended update for suse-build-key
    Typerecommended
    Severitymoderate
    References1170347
    Description:

    This update for suse-build-key fixes the following issues:

    Advisory IDSUSE-RU-2020:1131-1
    ReleasedTue Apr 28 11:59:17 2020
    SummaryRecommended update for mozilla-nss
    Typerecommended
    Severitymoderate
    References1170571,1170572
    Description:

    This update for mozilla-nss fixes the following issues:

    Advisory IDSUSE-RU-2020:1181-1
    ReleasedTue May 5 12:02:39 2020
    SummaryRecommended update for pciutils-ids
    Typerecommended
    Severitymoderate
    References1170160
    Description:

    This update for pciutils-ids fixes the following issues:

    Advisory IDSUSE-RU-2020:1182-1
    ReleasedTue May 5 12:06:55 2020
    SummaryRecommended update for chrony
    Typerecommended
    Severitymoderate
    References1099272,1156884,1161119
    Description:

    This update for chrony fixes the following issues:

    Advisory IDSUSE-RU-2020:1214-1
    ReleasedThu May 7 11:20:34 2020
    SummaryRecommended update for libgcrypt
    Typerecommended
    Severitymoderate
    References1169944
    Description:

    This update for libgcrypt fixes the following issues:

    Advisory IDSUSE-SU-2020:1219-1
    ReleasedThu May 7 17:10:42 2020
    SummarySecurity update for openldap2
    Typesecurity
    Severityimportant
    References1170771,CVE-2020-12243
    Description:

    This update for openldap2 fixes the following issues:

    Advisory IDSUSE-RU-2020:1226-1
    ReleasedFri May 8 10:51:05 2020
    SummaryRecommended update for gcc9
    Typerecommended
    Severitymoderate
    References1149995,1152590,1167898
    Description:

    This update for gcc9 fixes the following issues:
    This update ships the GCC 9.3 release.

    Advisory IDSUSE-RU-2020:1266-1
    ReleasedWed May 13 10:20:54 2020
    SummaryRecommended update for jq
    Typerecommended
    Severitymoderate
    References1170838
    Description:

    This update for jq fixes the following issues:
    jq was updated to version 1.6:

    '.' for the program, regardless of stdin/stdout
  • fix: Make sorting stable regardless of qsort.

    • Advisory IDSUSE-SU-2020:1294-1
    ReleasedMon May 18 07:38:36 2020
    SummarySecurity update for file
    Typesecurity
    Severitymoderate
    References1154661,1169512,CVE-2019-18218
    Description:

    This update for file fixes the following issues:
    Security issues fixed:


    Non-security issue fixed:

    Advisory IDSUSE-SU-2020:1299-1
    ReleasedMon May 18 07:43:21 2020
    SummarySecurity update for libxml2
    Typesecurity
    Severitymoderate
    References1159928,1161517,1161521,CVE-2019-19956,CVE-2019-20388,CVE-2020-7595
    Description:

    This update for libxml2 fixes the following issues:

    Advisory IDSUSE-RU-2020:1303-1
    ReleasedMon May 18 09:40:36 2020
    SummaryRecommended update for timezone
    Typerecommended
    Severitymoderate
    References1169582
    Description:

    This update for timezone fixes the following issues:

    Advisory IDSUSE-RU-2020:1328-1
    ReleasedMon May 18 17:16:04 2020
    SummaryRecommended update for grep
    Typerecommended
    Severitymoderate
    References1155271
    Description:

    This update for grep fixes the following issues:

    Advisory IDSUSE-RU-2020:1342-1
    ReleasedTue May 19 13:27:31 2020
    SummaryRecommended update for python3
    Typerecommended
    Severitymoderate
    References1149955,1165894,CVE-2019-16056
    Description:

    This update for python3 fixes the following issues:

    Advisory IDSUSE-RU-2020:1348-1
    ReleasedWed May 20 11:37:41 2020
    SummaryRecommended update for mozilla-nss
    Typerecommended
    Severitymoderate
    References1170908
    Description:

    This update for mozilla-nss fixes the following issues:
    The following issues are fixed:

    Advisory IDSUSE-SU-2020:1353-1
    ReleasedWed May 20 13:02:32 2020
    SummarySecurity update for freetype2
    Typesecurity
    Severitymoderate
    References1079603,1091109,CVE-2018-6942
    Description:

    This update for freetype2 to version 2.10.1 fixes the following issues:
    Security issue fixed:


    Non-security issues fixed:








    Advisory IDSUSE-RU-2020:1361-1
    ReleasedThu May 21 09:31:18 2020
    SummaryRecommended update for libgcrypt
    Typerecommended
    Severitymoderate
    References1171872
    Description:

    This update for libgcrypt fixes the following issues:

    Advisory IDSUSE-RU-2020:1370-1
    ReleasedThu May 21 19:06:00 2020
    SummaryRecommended update for systemd-presets-branding-SLE
    Typerecommended
    Severitymoderate
    References1171656
    Description:

    This update for systemd-presets-branding-SLE fixes the following issues:
    Cleanup of outdated autostart services (bsc#1171656):

    Advisory IDSUSE-RU-2020:1404-1
    ReleasedMon May 25 15:32:34 2020
    SummaryRecommended update for zlib
    Typerecommended
    Severitymoderate
    References1138793,1166260
    Description:

    This update for zlib fixes the following issues:

    Advisory IDSUSE-RU-2020:1492-1
    ReleasedWed May 27 18:32:41 2020
    SummaryRecommended update for python-rpm-macros
    Typerecommended
    Severitymoderate
    References1171561
    Description:

    This update for python-rpm-macros fixes the following issue:

    Advisory IDSUSE-RU-2020:1506-1
    ReleasedFri May 29 17:22:11 2020
    SummaryRecommended update for aaa_base
    Typerecommended
    Severitymoderate
    References1087982,1170527
    Description:

    This update for aaa_base fixes the following issues:

    Advisory IDSUSE-SU-2020:1532-1
    ReleasedThu Jun 4 10:16:12 2020
    SummarySecurity update for libxml2
    Typesecurity
    Severitymoderate
    References1172021,CVE-2019-19956
    Description:

    This update for libxml2 fixes the following issues:

    Advisory IDSUSE-RU-2020:1542-1
    ReleasedThu Jun 4 13:24:37 2020
    SummaryRecommended update for timezone
    Typerecommended
    Severitymoderate
    References1172055
    Description:

    This update for timezone fixes the following issue:

    Advisory IDSUSE-SU-2020:1551-1
    ReleasedMon Jun 8 09:31:41 2020
    SummarySecurity update for vim
    Typesecurity
    Severitymoderate
    References1172225,CVE-2019-20807
    Description:

    This update for vim fixes the following issues:

    Advisory IDSUSE-RU-2020:1558-1
    ReleasedMon Jun 8 10:36:32 2020
    SummaryRecommended update for chrony
    Typerecommended
    Severitymoderate
    References1172113
    Description:

    This update for chrony fixes the following issue:

    Advisory IDSUSE-SU-2020:1657-1
    ReleasedThu Jun 18 10:49:53 2020
    SummarySecurity update for containerd, docker, docker-runc, golang-github-docker-libnetwork
    Typesecurity
    Severitymoderate
    References1172377,CVE-2020-13401
    Description:

    This update for containerd, docker, docker-runc, golang-github-docker-libnetwork fixes the following issues:
    Docker was updated to 19.03.11-ce runc was updated to version 1.0.0-rc10 containerd was updated to version 1.2.13

    Advisory IDSUSE-SU-2020:1677-1
    ReleasedThu Jun 18 18:16:39 2020
    SummarySecurity update for mozilla-nspr, mozilla-nss
    Typesecurity
    Severityimportant
    References1159819,1169746,1171978,CVE-2019-17006,CVE-2020-12399
    Description:

    This update for mozilla-nspr, mozilla-nss fixes the following issues:
    mozilla-nss was updated to version 3.53

    Release notes: https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.53_release_notes
    mozilla-nspr to version 4.25

    Advisory IDSUSE-SU-2020:1733-1
    ReleasedWed Jun 24 09:43:36 2020
    SummarySecurity update for curl
    Typesecurity
    Severityimportant
    References1173026,1173027,CVE-2020-8169,CVE-2020-8177
    Description:

    This update for curl fixes the following issues:

    Advisory IDSUSE-RU-2020:1759-1
    ReleasedThu Jun 25 18:44:37 2020
    SummaryRecommended update for krb5
    Typerecommended
    Severitymoderate
    References1169357
    Description:

    This update for krb5 fixes the following issue:

    Advisory IDSUSE-RU-2020:1795-1
    ReleasedMon Jun 29 11:22:45 2020
    SummaryRecommended update for lvm2
    Typerecommended
    Severityimportant
    References1172566
    Description:

    This update for lvm2 fixes the following issues:

    Advisory IDSUSE-RU-2020:1821-1
    ReleasedThu Jul 2 08:39:34 2020
    SummaryRecommended update for dracut
    Typerecommended
    Severitymoderate
    References1172807,1172816
    Description:

    This update for dracut fixes the following issues:

    Advisory IDSUSE-SU-2020:1822-1
    ReleasedThu Jul 2 11:30:42 2020
    SummarySecurity update for python3
    Typesecurity
    Severityimportant
    References1173274,CVE-2020-14422
    Description:

    This update for python3 fixes the following issues:

    Advisory IDSUSE-SU-2020:1396-1
    ReleasedFri Jul 3 12:33:05 2020
    SummarySecurity update for zstd
    Typesecurity
    Severitymoderate
    References1082318,1133297
    Description:

    This update for zstd fixes the following issues:

    Advisory IDSUSE-SU-2020:1850-1
    ReleasedMon Jul 6 14:44:39 2020
    SummarySecurity update for mozilla-nss
    Typesecurity
    Severitymoderate
    References1168669,1173032,CVE-2020-12402
    Description:

    This update for mozilla-nss fixes the following issues:
    mozilla-nss was updated to version 3.53.1

    Advisory IDSUSE-RU-2020:1852-1
    ReleasedMon Jul 6 16:50:23 2020
    SummaryRecommended update for fontforge, ghostscript-fonts, ttf-converter, xorg-x11-fonts
    Typerecommended
    Severitymoderate
    References1169444
    Description:

    This update for fontforge, ghostscript-fonts, ttf-converter, xorg-x11-fonts fixes the following issues:
    Changes in fontforge:


    Changes in ttf-converter:

    --shift-unicode-values: When passed 3 comma separated numbers a,b,c this shifts the unicode values of glyphs between a and b (both included) by adding c. Can be used more than once. * Add --bitmapTransform parameter to transform bitmap glyphs. (bsc#1169444) When used, all glyphs are modified with the transformation function and values passed as parameters. The parameter has three values separated by commas: fliph|flipv|rotate90cw|rotate90ccw|rotate180|skew|transmove,xoff,yoff * Add support to convert bitmap fonts (bsc#1169444) * Rename MediumItalic subfamily to Medium Italic * Show some more information when removing duplicated glyphs * Add a --force-monospaced argument instead of hardcoding font names * Convert `BoldCond` subfamily to `Bold Condensed` * Fixes for Monospaced fonts and force the Nimbus Mono L font to be Monospaced. (bsc#1169444 #c41) * Add a --version argument * Fix subfamily names so the converted font's subfamily match the original ones. (bsc#1169444 #c41)
    Changes in xorg-x11-fonts:

    Changes in ghostscript-fonts:

    Advisory IDSUSE-SU-2020:1856-1
    ReleasedMon Jul 6 17:05:51 2020
    SummarySecurity update for openldap2
    Typesecurity
    Severityimportant
    References1172698,1172704,CVE-2020-8023
    Description:

    This update for openldap2 fixes the following issues:

    Advisory IDSUSE-RU-2020:1938-1
    ReleasedThu Jul 16 14:43:32 2020
    SummaryRecommended update for libsolv, libzypp, zypper
    Typerecommended
    Severitymoderate
    References1169947,1170801,1172925,1173106
    Description:

    This update for libsolv, libzypp, zypper fixes the following issues:
    libsolv was updated to:


    zypper was updated to version 1.14.37:

    libzypp was updated to 17.24.0

    Advisory IDSUSE-RU-2020:1950-1
    ReleasedFri Jul 17 17:16:21 2020
    SummaryRecommended update for dracut
    Typerecommended
    Severitymoderate
    References1161573,1165828,1169997,1172807,1173560
    Description:

    This update for dracut fixes the following issues:


    Advisory IDSUSE-RU-2020:1954-1
    ReleasedSat Jul 18 03:07:15 2020
    SummaryRecommended update for cracklib
    Typerecommended
    Severitymoderate
    References1172396
    Description:

    This update for cracklib fixes the following issues:

    Advisory IDSUSE-RU-2020:1987-1
    ReleasedTue Jul 21 17:02:15 2020
    SummaryRecommended update for libsolv, libzypp, yast2-packager, yast2-pkg-bindings
    Typerecommended
    Severityimportant
    References1172477,1173336,1174011
    Description:

    This update for libsolv, libzypp, yast2-packager, yast2-pkg-bindings fixes the following issues:
    libsolv:


    libzypp:

    yast2-packager:

    yast2-pkg-bindings:

    Advisory IDSUSE-RU-2020:2000-1
    ReleasedWed Jul 22 09:04:41 2020
    SummaryRecommended update for efivar
    Typerecommended
    Severityimportant
    References1100077,1101023,1120862,1127544
    Description:

    This update for efivar fixes the following issues:

    Advisory IDSUSE-RU-2020:2082-1
    ReleasedThu Jul 30 09:49:35 2020
    SummaryRecommended update for google-guest-agent, google-guest-configs, and google-guest-oslogin
    Typerecommended
    Severitymoderate
    References1174304,1174306
    Description:

    The python based packages google-compute-engine-init and google-compute-engine-oslogin were deprecated and are now replaced by the new Go based packages google-guest-agent, google-guest-configs, and google-guest-oslogin (jsc#ECO-2099)

    Advisory IDSUSE-RU-2020:2083-1
    ReleasedThu Jul 30 10:27:59 2020
    SummaryRecommended update for diffutils
    Typerecommended
    Severitymoderate
    References1156913
    Description:

    This update for diffutils fixes the following issue:

    Advisory IDSUSE-RU-2020:2148-1
    ReleasedThu Aug 6 13:36:17 2020
    SummaryRecommended update for ca-certificates-mozilla
    Typerecommended
    Severityimportant
    References1174673
    Description:

    This update for ca-certificates-mozilla fixes the following issues:
    Update to 2.42 state of the Mozilla NSS Certificate store (bsc#1174673)
    Removed CAs:
    * AddTrust External CA Root * AddTrust Class 1 CA Root * LuxTrust Global Root 2 * Staat der Nederlanden Root CA - G2 * Symantec Class 1 Public Primary Certification Authority - G4 * Symantec Class 2 Public Primary Certification Authority - G4 * VeriSign Class 3 Public Primary Certification Authority - G3
    Added CAs:
    * certSIGN Root CA G2 * e-Szigno Root CA 2017 * Microsoft ECC Root Certificate Authority 2017 * Microsoft RSA Root Certificate Authority 2017

    Advisory IDSUSE-RU-2020:2219-1
    ReleasedWed Aug 12 15:47:42 2020
    SummaryRecommended update for supportutils-plugin-suse-public-cloud and python3-azuremetadata
    Typerecommended
    Severitymoderate
    References1170475,1170476,1173238,1173240,1173357,1174618,1174847
    Description:

    This update for supportutils-plugin-suse-public-cloud and python3-azuremetadata fixes the following issues:
    supportutils-plugin-suse-public-cloud:


    python3-azuremetadata:

    Advisory IDSUSE-RU-2020:2256-1
    ReleasedMon Aug 17 15:08:46 2020
    SummaryRecommended update for sysfsutils
    Typerecommended
    Severitymoderate
    References1155305
    Description:

    This update for sysfsutils fixes the following issue:

    Advisory IDSUSE-SU-2020:2277-1
    ReleasedWed Aug 19 13:24:03 2020
    SummarySecurity update for python3
    Typesecurity
    Severitymoderate
    References1174091,CVE-2019-20907
    Description:

    This update for python3 fixes the following issues:

    Advisory IDSUSE-RU-2020:2380-1
    ReleasedFri Aug 28 14:54:08 2020
    SummaryRecommended update for supportutils-plugin-suse-public-cloud
    Typerecommended
    Severitymoderate
    References1175250,1175251
    Description:

    This update for supportutils-plugin-suse-public-cloud contains the following fix:

    Advisory IDSUSE-RU-2020:2384-1
    ReleasedSat Aug 29 00:57:13 2020
    SummaryRecommended update for e2fsprogs
    Typerecommended
    Severitylow
    References1170964
    Description:

    This update for e2fsprogs fixes the following issues:

    Advisory IDSUSE-RU-2020:2420-1
    ReleasedTue Sep 1 13:48:35 2020
    SummaryRecommended update for zlib
    Typerecommended
    Severitymoderate
    References1174551,1174736
    Description:

    This update for zlib provides the following fixes:

    Advisory IDSUSE-RU-2020:2425-1
    ReleasedTue Sep 1 13:54:05 2020
    SummaryRecommended update for nfs-utils
    Typerecommended
    Severitymoderate
    References1174260
    Description:

    This update for nfs-utils fixes the following issues:

    Advisory IDSUSE-RU-2020:2441-1
    ReleasedTue Sep 1 22:16:10 2020
    SummaryRecommended update for avahi
    Typerecommended
    Severitymoderate
    References1154063
    Description:

    This update for avahi fixes the following issues:

    Advisory IDSUSE-SU-2020:2445-1
    ReleasedWed Sep 2 09:33:02 2020
    SummarySecurity update for curl
    Typesecurity
    Severitymoderate
    References1175109,CVE-2020-8231
    Description:

    This update for curl fixes the following issues:

    Advisory IDSUSE-RU-2020:2451-1
    ReleasedWed Sep 2 12:30:38 2020
    SummaryRecommended update for dracut
    Typerecommended
    Severityimportant
    References1167494,996146
    Description:

    This update for dracut fixes the following issues:
    Update from version 049.1+suse.152.g8506e86f to version 049.1+suse.156.g7d852636:

    Advisory IDSUSE-RU-2020:2458-1
    ReleasedWed Sep 2 15:44:30 2020
    SummaryRecommended update for iputils
    Typerecommended
    Severitymoderate
    References927831
    Description:

    This update for iputils fixes the following issue:

    Advisory IDSUSE-SU-2020:2581-1
    ReleasedWed Sep 9 13:07:07 2020
    SummarySecurity update for openldap2
    Typesecurity
    Severitymoderate
    References1174154,CVE-2020-15719
    Description:

    This update for openldap2 fixes the following issues:

    Advisory IDSUSE-SU-2020:2612-1
    ReleasedFri Sep 11 11:18:01 2020
    SummarySecurity update for libxml2
    Typesecurity
    Severitymoderate
    References1176179,CVE-2020-24977
    Description:

    This update for libxml2 fixes the following issues:

    Advisory IDSUSE-RU-2020:2651-1
    ReleasedWed Sep 16 14:42:55 2020
    SummaryRecommended update for zlib
    Typerecommended
    Severitymoderate
    References1175811,1175830,1175831
    Description:

    This update for zlib fixes the following issues:

    Advisory IDSUSE-RU-2020:2655-1
    ReleasedWed Sep 16 14:44:27 2020
    SummaryRecommended update for google-guest-agent, google-guest-configs, google-guest-oslogin
    Typerecommended
    Severitymoderate
    References1174745,1175173,1175740,1175741
    Description:

    This update for google-guest-agent, google-guest-configs, google-guest-oslogin contains the following fixes:





    Advisory IDSUSE-RU-2020:2704-1
    ReleasedTue Sep 22 15:06:36 2020
    SummaryRecommended update for krb5
    Typerecommended
    Severitymoderate
    References1174079
    Description:

    This update for krb5 fixes the following issue:

    Advisory IDSUSE-SU-2020:2712-1
    ReleasedTue Sep 22 17:08:03 2020
    SummarySecurity update for openldap2
    Typesecurity
    Severitymoderate
    References1175568,CVE-2020-8027
    Description:

    This update for openldap2 fixes the following issues:

    Advisory IDSUSE-SU-2020:2729-1
    ReleasedWed Sep 23 16:00:48 2020
    SummarySecurity update for cifs-utils
    Typesecurity
    Severitymoderate
    References1152930,1174477,CVE-2020-14342
    Description:

    This update for cifs-utils fixes the following issues:

    Advisory IDSUSE-RU-2020:2757-1
    ReleasedFri Sep 25 19:45:40 2020
    SummaryRecommended update for nfs-utils
    Typerecommended
    Severitymoderate
    References1173104
    Description:

    This update for nfs-utils fixes the following issue:

    Advisory IDSUSE-RU-2020:2819-1
    ReleasedThu Oct 1 10:39:16 2020
    SummaryRecommended update for libzypp, zypper
    Typerecommended
    Severitymoderate
    References1165424,1173273,1173529,1174240,1174561,1174918,1175342,1175592
    Description:

    This update for libzypp, zypper provides the following fixes:
    Changes in libzypp:


    Changes in zypper:

    Advisory IDSUSE-RU-2020:2825-1
    ReleasedFri Oct 2 08:44:28 2020
    SummaryRecommended update for suse-build-key
    Typerecommended
    Severitymoderate
    References1170347,1176759
    Description:

    This update for suse-build-key fixes the following issues:


    Advisory IDSUSE-RU-2020:2850-1
    ReleasedFri Oct 2 12:26:03 2020
    SummaryRecommended update for lvm2
    Typerecommended
    Severitymoderate
    References1175110
    Description:

    This update for lvm2 fixes the following issues:

    Advisory IDSUSE-RU-2020:2852-1
    ReleasedFri Oct 2 16:55:39 2020
    SummaryRecommended update for openssl-1_1
    Typerecommended
    Severitymoderate
    References1173470,1175844
    Description:

    This update for openssl-1_1 fixes the following issues:
    FIPS:

    Advisory IDSUSE-RU-2020:2863-1
    ReleasedTue Oct 6 09:28:41 2020
    SummaryRecommended update for efivar
    Typerecommended
    Severitymoderate
    References1175989
    Description:

    This update for efivar fixes the following issues:

    Advisory IDSUSE-SU-2020:2864-1
    ReleasedTue Oct 6 10:34:14 2020
    SummarySecurity update for gnutls
    Typesecurity
    Severitymoderate
    References1176086,1176181,1176671,CVE-2020-24659
    Description:

    This update for gnutls fixes the following issues:

    Advisory IDSUSE-RU-2020:2869-1
    ReleasedTue Oct 6 16:13:20 2020
    SummaryRecommended update for aaa_base
    Typerecommended
    Severitymoderate
    References1011548,1153943,1153946,1161239,1171762
    Description:

    This update for aaa_base fixes the following issues:

    Advisory IDSUSE-RU-2020:2893-1
    ReleasedMon Oct 12 14:14:55 2020
    SummaryRecommended update for openssl-1_1
    Typerecommended
    Severitymoderate
    References1177479
    Description:

    This update for openssl-1_1 fixes the following issues:

    Advisory IDSUSE-SU-2020:2914-1
    ReleasedTue Oct 13 17:25:20 2020
    SummarySecurity update for bind
    Typesecurity
    Severitymoderate
    References1100369,1109160,1118367,1118368,1128220,1156205,1157051,1161168,1170667,1170713,1171313,1171740,1172958,1173307,1173311,1173983,1175443,1176092,1176674,906079,CVE-2017-3136,CVE-2018-5741,CVE-2019-6477,CVE-2020-8616,CVE-2020-8617,CVE-2020-8618,CVE-2020-8619,CVE-2020-8620,CVE-2020-8621,CVE-2020-8622,CVE-2020-8623,CVE-2020-8624
    Description:

    This update for bind fixes the following issues:
    BIND was upgraded to version 9.16.6:
    Note:


    Fixing security issues:

    Other issues fixed:

    Advisory IDSUSE-RU-2020:2936-1
    ReleasedThu Oct 15 13:41:33 2020
    SummaryRecommended update for iproute2
    Typerecommended
    Severitymoderate
    References1175281
    Description:


    This update for iproute2 provides the following fix:

    Advisory IDSUSE-SU-2020:2947-1
    ReleasedFri Oct 16 15:23:07 2020
    SummarySecurity update for gcc10, nvptx-tools
    Typesecurity
    Severitymoderate
    References1172798,1172846,1173972,1174753,1174817,1175168,CVE-2020-13844
    Description:

    This update for gcc10, nvptx-tools fixes the following issues:
    This update provides the GCC10 compiler suite and runtime libraries.
    The base SUSE Linux Enterprise libraries libgcc_s1, libstdc++6 are replaced by the gcc10 variants.
    The new compiler variants are available with '-10' suffix, you can specify them via:
    CC=gcc-10 CXX=g++-10
    or similar commands.
    For a detailed changelog check out https://gcc.gnu.org/gcc-10/changes.html
    Changes in nvptx-tools:

    Advisory IDSUSE-RU-2020:2958-1
    ReleasedTue Oct 20 12:24:55 2020
    SummaryRecommended update for procps
    Typerecommended
    Severitymoderate
    References1158830
    Description:

    This update for procps fixes the following issues:

    Advisory IDSUSE-RU-2020:2979-1
    ReleasedWed Oct 21 11:37:14 2020
    SummaryRecommended update for mozilla-nss
    Typerecommended
    Severitymoderate
    References1176173
    Description:


    This update for mozilla-nss fixes the following issue:


    Advisory IDSUSE-RU-2020:2983-1
    ReleasedWed Oct 21 15:03:03 2020
    SummaryRecommended update for file
    Typerecommended
    Severitymoderate
    References1176123
    Description:

    This update for file fixes the following issues:

    Advisory IDSUSE-RU-2020:2989-1
    ReleasedThu Oct 22 08:53:10 2020
    SummaryRecommended update for chrony
    Typerecommended
    Severitymoderate
    References1171806
    Description:

    This update for chrony fixes the following issues:

    Advisory IDSUSE-SU-2020:2995-1
    ReleasedThu Oct 22 10:03:09 2020
    SummarySecurity update for freetype2
    Typesecurity
    Severityimportant
    References1177914,CVE-2020-15999
    Description:

    This update for freetype2 fixes the following issues:

    Advisory IDSUSE-RU-2020:3048-1
    ReleasedTue Oct 27 16:05:17 2020
    SummaryRecommended update for libsolv, libzypp, yaml-cpp, zypper
    Typerecommended
    Severitymoderate
    References1174918,1176192,1176435,1176712,1176740,1176902,1177238,935885
    Description:

    This update for libsolv, libzypp, yaml-cpp, zypper fixes the following issues:
    libzypp was updated to 17.25.1:


    yaml-cpp:

    No source changes were done to yaml-cpp.
    zypper was updated to 1.14.40:

    libsolv was updated to 0.7.15 to fix:

    Advisory IDSUSE-RU-2020:3058-1
    ReleasedWed Oct 28 06:11:14 2020
    SummaryRecommended update for catatonit
    Typerecommended
    Severitymoderate
    References1176155
    Description:

    This update for catatonit fixes the following issues:

    Advisory IDSUSE-RU-2020:3059-1
    ReleasedWed Oct 28 06:11:23 2020
    SummaryRecommended update for sysconfig
    Typerecommended
    Severitymoderate
    References1173391,1176285,1176325
    Description:

    This update for sysconfig fixes the following issues:

    Advisory IDSUSE-RU-2020:3099-1
    ReleasedThu Oct 29 19:33:41 2020
    SummaryRecommended update for timezone
    Typerecommended
    Severitymoderate
    References1177460
    Description:

    This update for timezone fixes the following issues:

    Advisory IDSUSE-RU-2020:3123-1
    ReleasedTue Nov 3 09:48:13 2020
    SummaryRecommended update for timezone
    Typerecommended
    Severityimportant
    References1177460,1178346,1178350,1178353
    Description:

    This update for timezone fixes the following issues:

    Advisory IDSUSE-RU-2020:3157-1
    ReleasedWed Nov 4 15:37:05 2020
    SummaryRecommended update for ca-certificates-mozilla
    Typerecommended
    Severitymoderate
    References1177864
    Description:

    This update for ca-certificates-mozilla fixes the following issues:
    The SSL Root CA store was updated to the 2.44 state of the Mozilla NSS Certificate store (bsc#1177864)


    - EE Certification Centre Root CA - Taiwan GRCA

    - Trustwave Global Certification Authority - Trustwave Global ECC P256 Certification Authority - Trustwave Global ECC P384 Certification Authority

    Advisory IDSUSE-RU-2020:3199-1
    ReleasedFri Nov 6 13:01:11 2020
    SummaryRecommended update for SUSEConnect
    Typerecommended
    Severitymoderate
    References1155027
    Description:

    This update for SUSEConnect fixes the following issues:

    Advisory IDSUSE-RU-2020:3253-1
    ReleasedMon Nov 9 07:45:04 2020
    SummaryRecommended update for mozilla-nss
    Typerecommended
    Severitymoderate
    References1174697,1176173
    Description:

    This update for mozilla-nss fixes the following issues:

    Advisory IDSUSE-RU-2020:3277-1
    ReleasedWed Nov 11 09:06:52 2020
    SummaryRecommended update for google-osconfig-agent
    Typerecommended
    Severitymoderate
    References1176427,1178249
    Description:

    This update for google-osconfig-agent fixes the following issues:
    This update ships the google-osconfig-agent in version 20200929.00 (bsc#1176427, bsc#1178249, jsc#ECO-2702, jsc#PM-2203)

    Advisory IDSUSE-RU-2020:2779-1
    ReleasedThu Nov 12 15:00:21 2020
    SummaryRecommended update for rsyslog
    Typerecommended
    Severitymoderate
    References1173433,1178627
    Description:

    This update for rsyslog fixes the following issues:

    Advisory IDSUSE-SU-2020:3313-1
    ReleasedThu Nov 12 16:07:37 2020
    SummarySecurity update for openldap2
    Typesecurity
    Severityimportant
    References1178387,CVE-2020-25692
    Description:

    This update for openldap2 fixes the following issues:

    Advisory IDSUSE-SU-2020:3358-1
    ReleasedTue Nov 17 13:17:10 2020
    SummarySecurity update for tcpdump
    Typesecurity
    Severitymoderate
    References1178466,CVE-2020-8037
    Description:

    This update for tcpdump fixes the following issues:

    Advisory IDSUSE-SU-2020:3377-1
    ReleasedThu Nov 19 09:29:32 2020
    SummarySecurity update for krb5
    Typesecurity
    Severitymoderate
    References1178512,CVE-2020-28196
    Description:

    This update for krb5 fixes the following security issue:

    Advisory IDSUSE-RU-2020:3382-1
    ReleasedThu Nov 19 11:03:01 2020
    SummaryRecommended update for dmidecode
    Typerecommended
    Severitymoderate
    References1174257
    Description:

    This update for dmidecode fixes the following issues:

    Advisory IDSUSE-RU-2020:3462-1
    ReleasedFri Nov 20 13:14:35 2020
    SummaryRecommended update for pam and sudo
    Typerecommended
    Severitymoderate
    References1174593,1177858,1178727
    Description:

    This update for pam and sudo fixes the following issue:
    pam:


    sudo:

    Advisory IDSUSE-SU-2020:3478-1
    ReleasedMon Nov 23 09:33:17 2020
    SummarySecurity update for c-ares
    Typesecurity
    Severitymoderate
    References1178882,CVE-2020-8277
    Description:

    This update for c-ares fixes the following issues:

    Advisory IDSUSE-OU-2020:3481-1
    ReleasedMon Nov 23 11:17:09 2020
    SummaryOptional update for vim
    Typeoptional
    Severitylow
    References1166602,1173256,1174564,1176549
    Description:

    This update for vim doesn't fix any user visible issues and it is optional to install.

    Advisory IDSUSE-RU-2020:3498-1
    ReleasedTue Nov 24 13:07:16 2020
    SummaryRecommended update for dracut
    Typerecommended
    Severitymoderate
    References1164076,1177811,1178217
    Description:

    This update for dracut fixes the following issues:

    Advisory IDSUSE-SU-2020:3566-1
    ReleasedMon Nov 30 16:56:52 2020
    SummarySecurity update for python-setuptools
    Typesecurity
    Severityimportant
    References1176262,CVE-2019-20916
    Description:

    This update for python-setuptools fixes the following issues:

    Advisory IDSUSE-RU-2020:3570-1
    ReleasedMon Nov 30 17:14:35 2020
    SummaryRecommended update for rsyslog
    Typerecommended
    Severitymoderate
    References1178288
    Description:

    This update for rsyslog fixes the following issue:

    Advisory IDSUSE-RU-2020:3581-1
    ReleasedTue Dec 1 14:40:22 2020
    SummaryRecommended update for libusb-1_0
    Typerecommended
    Severitymoderate
    References1178376
    Description:

    This update for libusb-1_0 fixes the following issues:

    Advisory IDSUSE-SU-2020:3593-1
    ReleasedWed Dec 2 10:33:49 2020
    SummarySecurity update for python3
    Typesecurity
    Severityimportant
    References1176262,1179193,CVE-2019-20916
    Description:

    This update for python3 fixes the following issues:
    Update to 3.6.12 (bsc#1179193), including:

    Advisory IDSUSE-RU-2020:3616-1
    ReleasedThu Dec 3 10:56:12 2020
    SummaryRecommended update for c-ares
    Typerecommended
    Severitymoderate
    References1178882
    Description:



    Advisory IDSUSE-RU-2020:3620-1
    ReleasedThu Dec 3 17:03:55 2020
    SummaryRecommended update for pam
    Typerecommended
    Severitymoderate
    References
    Description:

    This update for pam fixes the following issues:

    Advisory IDSUSE-RU-2020:3703-1
    ReleasedMon Dec 7 20:17:32 2020
    SummaryRecommended update for aaa_base
    Typerecommended
    Severitymoderate
    References1179431
    Description:

    This update for aaa_base fixes the following issue:

    Advisory IDSUSE-SU-2020:3721-1
    ReleasedWed Dec 9 13:36:46 2020
    SummarySecurity update for openssl-1_1
    Typesecurity
    Severityimportant
    References1179491,CVE-2020-1971
    Description:

    This update for openssl-1_1 fixes the following issues:

    Advisory IDSUSE-SU-2020:3735-1
    ReleasedWed Dec 9 18:19:24 2020
    SummarySecurity update for curl
    Typesecurity
    Severitymoderate
    References1179398,1179399,1179593,CVE-2020-8284,CVE-2020-8285,CVE-2020-8286
    Description:

    This update for curl fixes the following issues:

    Advisory IDSUSE-RU-2020:3791-1
    ReleasedMon Dec 14 17:39:19 2020
    SummaryRecommended update for gzip
    Typerecommended
    Severitymoderate
    References
    Description:

    This update for gzip fixes the following issue:

    Advisory IDSUSE-RU-2020:3619-1
    ReleasedTue Dec 15 13:41:16 2020
    SummaryRecommended update for cloud-netconfig, google-guest-agent
    Typerecommended
    Severitymoderate
    References1159460,1178486,1179031,1179032
    Description:

    This update for cloud-netconfig, google-guest-agent fixes the following issues:
    cloud-netconfig:


    google-guest-agent:


    Advisory IDSUSE-RU-2020:3809-1
    ReleasedTue Dec 15 13:46:05 2020
    SummaryRecommended update for glib2
    Typerecommended
    Severitymoderate
    References1178346
    Description:

    This update for glib2 fixes the following issues:
    Update from version 2.62.5 to version 2.62.6:

    Advisory IDSUSE-SU-2020:3930-1
    ReleasedWed Dec 23 18:19:39 2020
    SummarySecurity update for python3
    Typesecurity
    Severityimportant
    References1155094,1174091,1174571,1174701,1177211,1178009,1179193,1179630,CVE-2019-16935,CVE-2019-18348,CVE-2019-20907,CVE-2019-5010,CVE-2020-14422,CVE-2020-26116,CVE-2020-27619,CVE-2020-8492
    Description:

    This update for python3 fixes the following issues:


    Update to 3.6.12 (bsc#1179193)


    Update to 3.6.11:

    Advisory IDSUSE-RU-2020:3942-1
    ReleasedTue Dec 29 12:22:01 2020
    SummaryRecommended update for libidn2
    Typerecommended
    Severitymoderate
    References1180138
    Description:

    This update for libidn2 fixes the following issues:

    Advisory IDSUSE-RU-2020:3943-1
    ReleasedTue Dec 29 12:24:45 2020
    SummaryRecommended update for libxml2
    Typerecommended
    Severitymoderate
    References1178823
    Description:

    This update for libxml2 fixes the following issues:
    Avoid quadratic checking of identity-constraints, speeding up XML validation (bsc#1178823)

    Advisory IDSUSE-RU-2020:3946-1
    ReleasedTue Dec 29 17:39:54 2020
    SummaryRecommended update for python3
    Typerecommended
    Severityimportant
    References1180377
    Description:

    This update for python3 fixes the following issues:

    Advisory IDSUSE-RU-2021:6-1
    ReleasedMon Jan 4 07:05:06 2021
    SummaryRecommended update for libdlm
    Typerecommended
    Severitymoderate
    References1098449,1144793,1168771,1177533,1177658
    Description:

    This update for libdlm fixes the following issues:

    Advisory IDSUSE-RU-2021:10-1
    ReleasedMon Jan 4 10:01:52 2021
    SummaryRecommended update for dmidecode
    Typerecommended
    Severitymoderate
    References1174257
    Description:

    This update for dmidecode fixes the following issue:

    Advisory IDSUSE-RU-2021:73-1
    ReleasedTue Jan 12 10:24:50 2021
    SummaryRecommended update for SUSEConnect
    Typerecommended
    Severitylow
    References
    Description:

    This update for SUSEConnect fixes the following issue:
    Update to version 0.3.29

    Advisory IDSUSE-SU-2021:109-1
    ReleasedWed Jan 13 10:13:24 2021
    SummarySecurity update for libzypp, zypper
    Typesecurity
    Severitymoderate
    References1050625,1174016,1177238,1177275,1177427,1177583,1178910,1178966,1179083,1179222,1179415,1179909,CVE-2017-9271
    Description:

    This update for libzypp, zypper fixes the following issues:
    Update zypper to version 1.14.41
    Update libzypp to 17.25.4


    yast-installation was updated to 4.2.48:

    Advisory IDSUSE-SU-2021:129-1
    ReleasedThu Jan 14 12:26:15 2021
    SummarySecurity update for openldap2
    Typesecurity
    Severitymoderate
    References1178909,1179503,CVE-2020-25709,CVE-2020-25710
    Description:

    This update for openldap2 fixes the following issues:
    Security issues fixed:


    Non-security issue fixed:

    Advisory IDSUSE-RU-2021:152-1
    ReleasedFri Jan 15 17:04:47 2021
    SummaryRecommended update for lvm2
    Typerecommended
    Severitymoderate
    References1179691,1179738
    Description:

    This update for lvm2 fixes the following issues:

    Advisory IDSUSE-RU-2021:169-1
    ReleasedTue Jan 19 16:18:46 2021
    SummaryRecommended update for libsolv, libzypp, zypper
    Typerecommended
    Severitymoderate
    References1179816,1180077,1180663,1180721
    Description:

    This update for libsolv, libzypp, zypper fixes the following issues:
    libzypp was updated to 17.25.6:


    zypper was updated to 1.14.42:

    libsolv was updated to 0.7.16;

    Advisory IDSUSE-RU-2021:174-1
    ReleasedWed Jan 20 07:55:23 2021
    SummaryRecommended update for gnutls
    Typerecommended
    Severitymoderate
    References1172695
    Description:

    This update for gnutls fixes the following issue:

    Advisory IDSUSE-RU-2021:179-1
    ReleasedWed Jan 20 13:38:51 2021
    SummaryRecommended update for timezone
    Typerecommended
    Severitymoderate
    References1177460
    Description:

    This update for timezone fixes the following issues:




    Advisory IDSUSE-SU-2021:197-1
    ReleasedFri Jan 22 15:17:42 2021
    SummarySecurity update for permissions
    Typesecurity
    Severitymoderate
    References1171883,CVE-2020-8025
    Description:

    This update for permissions fixes the following issues:

    Advisory IDSUSE-RU-2021:220-1
    ReleasedTue Jan 26 14:00:51 2021
    SummaryRecommended update for keyutils
    Typerecommended
    Severitymoderate
    References1180603
    Description:

    This update for keyutils fixes the following issues:

    Advisory IDSUSE-RU-2021:264-1
    ReleasedMon Feb 1 15:04:00 2021
    SummaryRecommended update for dracut
    Typerecommended
    Severityimportant
    References1142248,1177870,1180119
    Description:

    This update for dracut fixes the following issues:

    Advisory IDSUSE-RU-2021:278-1
    ReleasedTue Feb 2 09:43:08 2021
    SummaryRecommended update for lvm2
    Typerecommended
    Severitymoderate
    References1181319
    Description:

    This update for lvm2 fixes the following issues:

    Advisory IDSUSE-SU-2021:285-1
    ReleasedTue Feb 2 13:08:54 2021
    SummarySecurity update for cups
    Typesecurity
    Severitymoderate
    References1170671,1180520,CVE-2019-8842,CVE-2020-10001
    Description:

    This update for cups fixes the following issues:

    Advisory IDSUSE-RU-2021:293-1
    ReleasedWed Feb 3 12:52:34 2021
    SummaryRecommended update for gmp
    Typerecommended
    Severitymoderate
    References1180603
    Description:

    This update for gmp fixes the following issues:

    Advisory IDSUSE-RU-2021:301-1
    ReleasedThu Feb 4 08:46:27 2021
    SummaryRecommended update for timezone
    Typerecommended
    Severitymoderate
    References1177460
    Description:

    This update for timezone fixes the following issues:


    Advisory IDSUSE-RU-2021:302-1
    ReleasedThu Feb 4 13:18:35 2021
    SummaryRecommended update for lvm2
    Typerecommended
    Severityimportant
    References1179691
    Description:

    This update for lvm2 fixes the following issues:


    If this behavior is still wanted, please change this manually in the lvm.conf

    Advisory IDSUSE-OU-2021:339-1
    ReleasedMon Feb 8 13:16:07 2021
    SummaryOptional update for pam
    Typeoptional
    Severitylow
    References
    Description:

    This update for pam fixes the following issues:


    This patch is optional to be installed - it doesn't fix any bugs.

    Advisory IDSUSE-SU-2021:435-1
    ReleasedThu Feb 11 14:47:25 2021
    SummarySecurity update for containerd, docker, docker-runc, golang-github-docker-libnetwork
    Typesecurity
    Severityimportant
    References1174075,1176708,1178801,1178969,1180243,1180401,1181730,1181732,CVE-2020-15257,CVE-2021-21284,CVE-2021-21285
    Description:

    This update for containerd, docker, docker-runc, golang-github-docker-libnetwork fixes the following issues:
    Security issues fixed:


    Non-security issues fixed:












    Advisory IDSUSE-RU-2021:516-1
    ReleasedThu Feb 18 14:42:51 2021
    SummaryRecommended update for docker, golang-github-docker-libnetwork
    Typerecommended
    Severitymoderate
    References1178801,1180401,1182168
    Description:

    This update for docker, golang-github-docker-libnetwork fixes the following issues:

    Advisory IDSUSE-SU-2021:529-1
    ReleasedFri Feb 19 14:53:47 2021
    SummarySecurity update for python3
    Typesecurity
    Severitymoderate
    References1176262,1179756,1180686,1181126,CVE-2019-20916,CVE-2021-3177
    Description:

    This update for python3 fixes the following issues:

    Advisory IDSUSE-SU-2021:551-1
    ReleasedTue Feb 23 09:31:53 2021
    SummarySecurity update for avahi
    Typesecurity
    Severitymoderate
    References1180827,CVE-2021-26720
    Description:

    This update for avahi fixes the following issues:

    Advisory IDSUSE-RU-2021:573-1
    ReleasedWed Feb 24 09:58:38 2021
    SummaryRecommended update for dracut
    Typerecommended
    Severitymoderate
    References1176171,1180336
    Description:

    This update for dracut fixes the following issues:

    Advisory IDSUSE-RU-2021:656-1
    ReleasedMon Mar 1 09:34:21 2021
    SummaryRecommended update for protobuf
    Typerecommended
    Severitymoderate
    References1177127
    Description:

    This update for protobuf fixes the following issues:

    Advisory IDSUSE-SU-2021:723-1
    ReleasedMon Mar 8 16:45:27 2021
    SummarySecurity update for openldap2
    Typesecurity
    Severityimportant
    References1182279,1182408,1182411,1182412,1182413,1182415,1182416,1182417,1182418,1182419,1182420,CVE-2020-36221,CVE-2020-36222,CVE-2020-36223,CVE-2020-36224,CVE-2020-36225,CVE-2020-36226,CVE-2020-36227,CVE-2020-36228,CVE-2020-36229,CVE-2020-36230,CVE-2021-27212
    Description:

    This update for openldap2 fixes the following issues:

    Advisory IDSUSE-SU-2021:754-1
    ReleasedTue Mar 9 17:10:49 2021
    SummarySecurity update for openssl-1_1
    Typesecurity
    Severitymoderate
    References1182331,1182333,1182959,CVE-2021-23840,CVE-2021-23841
    Description:

    This update for openssl-1_1 fixes the following issues:

    Advisory IDSUSE-RU-2021:758-1
    ReleasedWed Mar 10 12:16:27 2021
    SummaryRecommended update for dracut
    Typerecommended
    Severitymoderate
    References1182688
    Description:

    This update for dracut fixes the following issues:

    Advisory IDSUSE-SU-2021:778-1
    ReleasedFri Mar 12 17:42:25 2021
    SummarySecurity update for glib2
    Typesecurity
    Severityimportant
    References1182328,1182362,CVE-2021-27218,CVE-2021-27219
    Description:

    This update for glib2 fixes the following issues:

    Advisory IDSUSE-RU-2021:784-1
    ReleasedMon Mar 15 11:19:08 2021
    SummaryRecommended update for efivar
    Typerecommended
    Severitymoderate
    References1181967
    Description:

    This update for efivar fixes the following issues:

    Advisory IDSUSE-RU-2021:786-1
    ReleasedMon Mar 15 11:19:23 2021
    SummaryRecommended update for zlib
    Typerecommended
    Severitymoderate
    References1176201
    Description:

    This update for zlib fixes the following issues:

    Advisory IDSUSE-RU-2021:874-1
    ReleasedThu Mar 18 09:41:54 2021
    SummaryRecommended update for libsolv, libzypp, zypper
    Typerecommended
    Severitymoderate
    References1179847,1181328,1181622,1182629
    Description:

    This update for libsolv, libzypp, zypper fixes the following issues:

    Advisory IDSUSE-RU-2021:924-1
    ReleasedTue Mar 23 10:00:49 2021
    SummaryRecommended update for filesystem
    Typerecommended
    Severitymoderate
    References1078466,1146705,1175519,1178775,1180020,1180083,1180596,1181011,1181831,1183094
    Description:

    This update for filesystem the following issues:


    This update for systemd fixes the following issues:

    Advisory IDSUSE-RU-2021:926-1
    ReleasedTue Mar 23 13:20:24 2021
    SummaryRecommended update for systemd-presets-common-SUSE
    Typerecommended
    Severitymoderate
    References1083473,1112500,1115408,1165780,1183012
    Description:

    This update for systemd-presets-common-SUSE fixes the following issues:

    Advisory IDSUSE-SU-2021:930-1
    ReleasedWed Mar 24 12:09:23 2021
    SummarySecurity update for nghttp2
    Typesecurity
    Severityimportant
    References1172442,1181358,CVE-2020-11080
    Description:

    This update for nghttp2 fixes the following issues:

    Advisory IDSUSE-SU-2021:933-1
    ReleasedWed Mar 24 12:16:14 2021
    SummarySecurity update for ruby2.5
    Typesecurity
    Severityimportant
    References1177125,1177222,CVE-2020-25613
    Description:

    This update for ruby2.5 fixes the following issues:

    Advisory IDSUSE-SU-2021:935-1
    ReleasedWed Mar 24 12:19:10 2021
    SummarySecurity update for gnutls
    Typesecurity
    Severityimportant
    References1183456,1183457,CVE-2021-20231,CVE-2021-20232
    Description:

    This update for gnutls fixes the following issues:

    Advisory IDSUSE-SU-2021:947-1
    ReleasedWed Mar 24 14:30:58 2021
    SummarySecurity update for python3
    Typesecurity
    Severitymoderate
    References1182379,CVE-2021-23336
    Description:

    This update for python3 fixes the following issues:

    Advisory IDSUSE-SU-2021:948-1
    ReleasedWed Mar 24 14:31:34 2021
    SummarySecurity update for zstd
    Typesecurity
    Severitymoderate
    References1183370,1183371,CVE-2021-24031,CVE-2021-24032
    Description:

    This update for zstd fixes the following issues:

    Advisory IDSUSE-SU-2021:955-1
    ReleasedThu Mar 25 16:11:48 2021
    SummarySecurity update for openssl-1_1
    Typesecurity
    Severityimportant
    References1183852,CVE-2021-3449
    Description:

    This update for openssl-1_1 fixes the security issue:

    Advisory IDSUSE-SU-2021:974-1
    ReleasedMon Mar 29 19:31:27 2021
    SummarySecurity update for tar
    Typesecurity
    Severitylow
    References1181131,CVE-2021-20193
    Description:

    This update for tar fixes the following issues:
    CVE-2021-20193: Memory leak in read_header() in list.c (bsc#1181131)

    Advisory IDSUSE-RU-2021:991-1
    ReleasedWed Mar 31 13:28:37 2021
    SummaryRecommended update for vim
    Typerecommended
    Severitymoderate
    References1182324
    Description:

    This update for vim provides the following fixes:

    Advisory IDSUSE-RU-2021:1004-1
    ReleasedThu Apr 1 15:07:09 2021
    SummaryRecommended update for libcap
    Typerecommended
    Severitymoderate
    References1180073
    Description:

    This update for libcap fixes the following issues:

    Advisory IDSUSE-SU-2021:1006-1
    ReleasedThu Apr 1 17:44:57 2021
    SummarySecurity update for curl
    Typesecurity
    Severitymoderate
    References1183933,1183934,CVE-2021-22876,CVE-2021-22890
    Description:

    This update for curl fixes the following issues:

    Advisory IDSUSE-RU-2021:1018-1
    ReleasedTue Apr 6 14:29:13 2021
    SummaryRecommended update for gzip
    Typerecommended
    Severitymoderate
    References1180713
    Description:

    This update for gzip fixes the following issues:

    Advisory IDSUSE-RU-2021:1021-1
    ReleasedTue Apr 6 14:30:30 2021
    SummaryRecommended update for cups
    Typerecommended
    Severitymoderate
    References1175960
    Description:

    This update for cups fixes the following issues:

    Advisory IDSUSE-RU-2021:1141-1
    ReleasedMon Apr 12 13:13:36 2021
    SummaryRecommended update for openldap2
    Typerecommended
    Severitylow
    References1182791
    Description:

    This update for openldap2 fixes the following issues:

    Advisory IDSUSE-SU-2021:1161-1
    ReleasedTue Apr 13 11:35:57 2021
    SummarySecurity update for cifs-utils
    Typesecurity
    Severitymoderate
    References1183239,CVE-2021-20208
    Description:

    This update for cifs-utils fixes the following issues:

    Advisory IDSUSE-RU-2021:1169-1
    ReleasedTue Apr 13 15:01:42 2021
    SummaryRecommended update for procps
    Typerecommended
    Severitylow
    References1181976
    Description:

    This update for procps fixes the following issues:

    Advisory IDSUSE-RU-2021:1205-1
    ReleasedThu Apr 15 15:14:31 2021
    SummaryRecommended update for rsyslog
    Typerecommended
    Severitymoderate
    References1178490
    Description:

    This update for rsyslog fixes the following issues:

    Advisory IDSUSE-SU-2021:1280-1
    ReleasedTue Apr 20 14:34:19 2021
    SummarySecurity update for ruby2.5
    Typesecurity
    Severitymoderate
    References1184644,CVE-2021-28965
    Description:

    This update for ruby2.5 fixes the following issues:

    Advisory IDSUSE-RU-2021:1289-1
    ReleasedWed Apr 21 14:02:46 2021
    SummaryRecommended update for gzip
    Typerecommended
    Severitymoderate
    References1177047
    Description:

    This update for gzip fixes the following issues:

    Advisory IDSUSE-RU-2021:1295-1
    ReleasedWed Apr 21 14:08:19 2021
    SummaryRecommended update for systemd-presets-common-SUSE
    Typerecommended
    Severitymoderate
    References1184136
    Description:

    This update for systemd-presets-common-SUSE fixes the following issues:

    Advisory IDSUSE-OU-2021:1296-1
    ReleasedWed Apr 21 14:09:28 2021
    SummaryOptional update for e2fsprogs
    Typeoptional
    Severitylow
    References1183791
    Description:

    This update for e2fsprogs fixes the following issues:


    This patch does not fix any user visible issues and is therefore optional to install.

    Advisory IDSUSE-OU-2021:1299-1
    ReleasedWed Apr 21 14:11:41 2021
    SummaryOptional update for gpgme
    Typeoptional
    Severitylow
    References1183801
    Description:

    This update for gpgme fixes the following issues:


    This patch is optional to install and does not provide any user visible bug fixes.

    Advisory IDSUSE-RU-2021:1407-1
    ReleasedWed Apr 28 15:49:02 2021
    SummaryRecommended update for libcap
    Typerecommended
    Severityimportant
    References1184690
    Description:

    This update for libcap fixes the following issues:

    Advisory IDSUSE-SU-2021:1412-1
    ReleasedWed Apr 28 17:09:28 2021
    SummarySecurity update for libnettle
    Typesecurity
    Severityimportant
    References1184401,CVE-2021-20305
    Description:

    This update for libnettle fixes the following issues:

    Advisory IDSUSE-RU-2021:1419-1
    ReleasedThu Apr 29 06:20:30 2021
    SummaryRecommended update for dracut
    Typerecommended
    Severitymoderate
    References1178219
    Description:

    This update for dracut fixes the following issues:

    Advisory IDSUSE-OU-2021:1425-1
    ReleasedThu Apr 29 06:23:08 2021
    SummaryOptional update for tcpdump
    Typeoptional
    Severitylow
    References1183800
    Description:

    This update for tcpdump fixes the following issues:


    This patch does not fix any user visible issues and is therefore optional to install.

    Advisory IDSUSE-RU-2021:1426-1
    ReleasedThu Apr 29 06:23:13 2021
    SummaryRecommended update for libsolv
    Typerecommended
    Severitymoderate
    References
    Description:

    This update for libsolv fixes the following issues:

    Advisory IDSUSE-RU-2021:1449-1
    ReleasedFri Apr 30 08:08:25 2021
    SummaryRecommended update for systemd-presets-branding-SLE
    Typerecommended
    Severitymoderate
    References1165780
    Description:

    This update for systemd-presets-branding-SLE fixes the following issues:

    Advisory IDSUSE-SU-2021:1454-1
    ReleasedFri Apr 30 09:22:26 2021
    SummarySecurity update for cups
    Typesecurity
    Severityimportant
    References1184161,CVE-2021-25317
    Description:

    This update for cups fixes the following issues:

    Advisory IDSUSE-RU-2021:1456-1
    ReleasedFri Apr 30 12:00:01 2021
    SummaryRecommended update for cifs-utils
    Typerecommended
    Severityimportant
    References1184815
    Description:

    This update for cifs-utils fixes the following issues:

    Advisory IDSUSE-SU-2021:1466-1
    ReleasedTue May 4 08:30:57 2021
    SummarySecurity update for permissions
    Typesecurity
    Severityimportant
    References1182899
    Description:

    This update for permissions fixes the following issues:

    Advisory IDSUSE-RU-2021:1481-1
    ReleasedTue May 4 14:18:32 2021
    SummaryRecommended update for lvm2
    Typerecommended
    Severitymoderate
    References1178680
    Description:

    This update for lvm2 fixes the following issues:

    Advisory IDSUSE-SU-2021:1493-1
    ReleasedTue May 4 17:13:34 2021
    SummarySecurity update for avahi
    Typesecurity
    Severitymoderate
    References1184521,CVE-2021-3468
    Description:

    This update for avahi fixes the following issues:

    Advisory IDSUSE-SU-2021:1523-1
    ReleasedWed May 5 18:24:20 2021
    SummarySecurity update for libxml2
    Typesecurity
    Severitymoderate
    References1185408,1185409,1185410,CVE-2021-3516,CVE-2021-3517,CVE-2021-3518
    Description:

    This update for libxml2 fixes the following issues:

    Advisory IDSUSE-RU-2021:1526-1
    ReleasedThu May 6 08:57:30 2021
    SummaryRecommended update for bash
    Typerecommended
    Severityimportant
    References1183064
    Description:

    This update for bash fixes the following issues:

    Advisory IDSUSE-RU-2021:1528-1
    ReleasedThu May 6 15:31:23 2021
    SummaryRecommended update for openssl-1_1
    Typerecommended
    Severitymoderate
    References1161276
    Description:

    This update for openssl-1_1 fixes the following issues:

    Advisory IDSUSE-RU-2021:1533-1
    ReleasedThu May 6 17:04:28 2021
    SummaryRecommended update for google-guest-agent, google-guest-configs, google-guest-oslogin, google-osconfig-agent
    Typerecommended
    Severitymoderate
    References1174304,1174306,1175740,1175741,1179031,1179032,1180304,1182793,1183414,1183415
    Description:

    This update for google-guest-agent, google-guest-configs, google-guest-oslogin, google-osconfig-agent contains the following fixes:
    Changes in google-guest-agent:



    Changes in google-guest-configs:

    Changes in google-guest-oslogin:

    * add getpwnam,getpwuid,getgrnam,getgrgid (#42) * Change requires to not require the python library for policycoreutils. (#44) * add dial and recvline (#41) * PR feedback * new client component and tests
    Changes in google-osconfig-agent:





    Advisory IDSUSE-RU-2021:1543-1
    ReleasedFri May 7 15:16:34 2021
    SummaryRecommended update for patterns-microos
    Typerecommended
    Severitymoderate
    References1184435
    Description:

    This update for patterns-microos provides the following fix:

    Advisory IDSUSE-RU-2021:1544-1
    ReleasedFri May 7 16:34:41 2021
    SummaryRecommended update for libzypp
    Typerecommended
    Severitymoderate
    References1180851,1181874,1182936,1183628,1184997,1185239
    Description:

    This update for libzypp fixes the following issues:
    Upgrade from version 17.25.8 to version 17.25.10

    Advisory IDSUSE-RU-2021:1549-1
    ReleasedMon May 10 13:48:00 2021
    SummaryRecommended update for procps
    Typerecommended
    Severitymoderate
    References1185417
    Description:

    This update for procps fixes the following issues:

    Advisory IDSUSE-SU-2021:1557-1
    ReleasedTue May 11 09:50:00 2021
    SummarySecurity update for python3
    Typesecurity
    Severitymoderate
    References1183374,CVE-2021-3426
    Description:

    This update for python3 fixes the following issues:

    Advisory IDSUSE-RU-2021:1565-1
    ReleasedTue May 11 14:20:04 2021
    SummaryRecommended update for krb5
    Typerecommended
    Severitymoderate
    References1185163
    Description:

    This update for krb5 fixes the following issues:

    Advisory IDSUSE-RU-2021:1566-1
    ReleasedWed May 12 09:39:16 2021
    SummaryRecommended update for chrony
    Typerecommended
    Severitymoderate
    References1162964,1184400
    Description:

    This update for chrony fixes the following issues:

    Advisory IDSUSE-RU-2021:1582-1
    ReleasedWed May 12 13:40:03 2021
    SummaryRecommended update for lvm2
    Typerecommended
    Severitymoderate
    References1184687,1185190
    Description:

    This update for lvm2 fixes the following issues:

    Advisory IDSUSE-RU-2021:1600-1
    ReleasedThu May 13 16:34:08 2021
    SummaryRecommended update for dracut
    Typerecommended
    Severitymoderate
    References1185277
    Description:

    This update for dracut fixes the following issue:
    Update to version 049.1+suse.188.gbf445638:

    Advisory IDSUSE-RU-2021:1612-1
    ReleasedFri May 14 17:09:39 2021
    SummaryRecommended update for openldap2
    Typerecommended
    Severitymoderate
    References1184614
    Description:

    This update for openldap2 fixes the following issue:

    Advisory IDSUSE-RU-2021:1643-1
    ReleasedWed May 19 13:51:48 2021
    SummaryRecommended update for pam
    Typerecommended
    Severityimportant
    References1181443,1184358,1185562
    Description:

    This update for pam fixes the following issues:

    Advisory IDSUSE-SU-2021:1654-1
    ReleasedWed May 19 16:43:36 2021
    SummarySecurity update for libxml2
    Typesecurity
    Severityimportant
    References1185408,1185409,1185410,1185698,CVE-2021-3516,CVE-2021-3517,CVE-2021-3518,CVE-2021-3537
    Description:

    This update for libxml2 fixes the following issues:

    Advisory IDSUSE-RU-2021:1669-1
    ReleasedThu May 20 11:10:44 2021
    SummaryRecommended update for nfs-utils
    Typerecommended
    Severitymoderate
    References1181540,1181651,1183194,1185170
    Description:

    This update for nfs-utils fixes the following issues:

    Advisory IDSUSE-RU-2021:1675-1
    ReleasedThu May 20 15:00:23 2021
    SummaryRecommended update for snappy
    Typerecommended
    Severitymoderate
    References1080040,1184507
    Description:

    This update for snappy fixes the following issues:
    Update from version 1.1.3 to 1.1.8

    Advisory IDSUSE-RU-2021:1700-1
    ReleasedMon May 24 16:39:35 2021
    SummaryRecommended update for google-guest-agent, google-guest-oslogin, google-osconfig-agent
    Typerecommended
    Severitymoderate
    References1185848,1185849
    Description:

    This update for google-guest-agent, google-guest-oslogin, google-osconfig-agent contains the following fixes:



    Advisory IDSUSE-SU-2021:1762-1
    ReleasedWed May 26 12:30:01 2021
    SummarySecurity update for curl
    Typesecurity
    Severitymoderate
    References1186114,CVE-2021-22898
    Description:

    This update for curl fixes the following issues:

    Advisory IDSUSE-RU-2021:1773-1
    ReleasedWed May 26 17:22:21 2021
    SummaryRecommended update for python3
    Typerecommended
    Severitylow
    References
    Description:

    This update for python3 fixes the following issues:

    Advisory IDSUSE-SU-2021:1825-1
    ReleasedTue Jun 1 16:24:01 2021
    SummarySecurity update for lz4
    Typesecurity
    Severityimportant
    References1185438,CVE-2021-3520
    Description:

    This update for lz4 fixes the following issues:

    Advisory IDSUSE-SU-2021:1826-1
    ReleasedTue Jun 1 16:40:26 2021
    SummarySecurity update for bind
    Typesecurity
    Severityimportant
    References1183453,1185073,CVE-2021-25214,CVE-2021-25215
    Description:

    This update for bind fixes the following issues:

    Advisory IDSUSE-RU-2021:1833-1
    ReleasedWed Jun 2 15:32:28 2021
    SummaryRecommended update for zypper
    Typerecommended
    Severitymoderate
    References1153687,1180851,1181874,1182372,1182936,1183268,1183589,1183628,1184997,1185239
    Description:

    This update for zypper fixes the following issues:
    zypper was upgraded to 1.14.44:


    libzypp was upgraded from version 17.25.8 to version 17.25.10

    Advisory IDSUSE-RU-2021:1846-1
    ReleasedFri Jun 4 08:46:37 2021
    SummaryRecommended update for mozilla-nss
    Typerecommended
    Severitymoderate
    References1185910
    Description:

    This update for mozilla-nss fixes the following issue:

    Advisory IDSUSE-RU-2021:1861-1
    ReleasedFri Jun 4 09:59:40 2021
    SummaryRecommended update for gcc10
    Typerecommended
    Severitymoderate
    References1029961,1106014,1178577,1178624,1178675,1182016
    Description:

    This update for gcc10 fixes the following issues:

    Advisory IDSUSE-RU-2021:1879-1
    ReleasedTue Jun 8 09:16:09 2021
    SummaryRecommended update for libzypp, zypper
    Typerecommended
    Severityimportant
    References1184326,1184399,1184997,1185325
    Description:

    This update for libzypp, zypper fixes the following issues:
    libzypp was updated to 17.26.0:


    zypper was updated to 1.14.45:

    Advisory IDSUSE-SU-2021:1917-1
    ReleasedWed Jun 9 14:48:05 2021
    SummarySecurity update for libxml2
    Typesecurity
    Severitymoderate
    References1186015,CVE-2021-3541
    Description:

    This update for libxml2 fixes the following issues:

    Advisory IDSUSE-RU-2021:1923-1
    ReleasedThu Jun 10 08:37:00 2021
    SummaryRecommended update for nfs-utils
    Typerecommended
    Severityimportant
    References1183194
    Description:

    This update for nfs-utils fixes the following issues:

    Advisory IDSUSE-RU-2021:1935-1
    ReleasedThu Jun 10 10:45:09 2021
    SummaryRecommended update for gzip
    Typerecommended
    Severitymoderate
    References1186642
    Description:


    This update for gzip fixes the following issue:

    Advisory IDSUSE-RU-2021:1937-1
    ReleasedThu Jun 10 10:47:09 2021
    SummaryRecommended update for nghttp2
    Typerecommended
    Severitymoderate
    References1186642
    Description:


    This update for nghttp2 fixes the following issue:

    Advisory IDSUSE-RU-2021:1941-1
    ReleasedThu Jun 10 10:49:52 2021
    SummaryRecommended update for sysconfig
    Typerecommended
    Severitymoderate
    References1186642
    Description:


    This update for sysconfig fixes the following issue:

    Advisory IDSUSE-RU-2021:1946-1
    ReleasedThu Jun 10 11:40:34 2021
    SummaryRecommended update for SUSEConnect
    Typerecommended
    Severitymoderate
    References1186642
    Description:


    This update for SUSEConnect fixes the following issue:

    Advisory IDSUSE-SU-2021:1954-1
    ReleasedFri Jun 11 10:45:09 2021
    SummarySecurity update for containerd, docker, runc
    Typesecurity
    Severityimportant
    References1168481,1175081,1175821,1181594,1181641,1181677,1181730,1181732,1181749,1182451,1182476,1182947,1183024,1183855,1184768,1184962,1185405,CVE-2021-21284,CVE-2021-21285,CVE-2021-21334,CVE-2021-30465
    Description:

    This update for containerd, docker, runc fixes the following issues:
    Docker was updated to 20.10.6-ce (bsc#1184768, bsc#1182947, bsc#1181594)


    runc was updated to v1.0.0~rc93 (bsc#1182451, bsc#1175821 bsc#1184962).

    containerd was updated to v1.4.4

    Advisory IDSUSE-RU-2021:1974-1
    ReleasedTue Jun 15 13:03:45 2021
    SummaryRecommended update for kexec-tools
    Typerecommended
    Severitymoderate
    References1185020
    Description:

    This update for kexec-tools fixes the following issue:

    Advisory IDSUSE-SU-2021:1977-1
    ReleasedTue Jun 15 13:05:56 2021
    SummarySecurity update for the Linux Kernel
    Typesecurity
    Severityimportant
    References1055117,1065729,1087082,1113295,1133021,1152457,1152472,1152489,1153274,1154353,1155518,1156395,1160634,1164648,1167260,1167574,1167773,1168777,1168838,1169709,1171295,1173485,1174416,1174426,1175995,1176447,1176774,1177028,1177326,1177666,1178089,1178134,1178163,1178330,1178378,1178418,1179243,1179519,1179825,1179827,1179851,1180197,1180814,1180846,1181104,1181383,1181507,1181674,1181862,1182077,1182257,1182377,1182552,1182574,1182613,1182712,1182715,1182717,1182999,1183022,1183069,1183252,1183277,1183278,1183279,1183280,1183281,1183282,1183283,1183284,1183285,1183286,1183287,1183288,1183289,1183310,1183311,1183312,1183313,1183314,1183315,1183316,1183317,1183318,1183319,1183320,1183321,1183322,1183323,1183324,1183326,1183346,1183366,1183369,1183386,1183405,1183412,1183427,1183428,1183445,1183447,1183491,1183501,1183509,1183530,1183534,1183540,1183593,1183596,1183598,1183637,1183646,1183658,1183662,1183686,1183692,1183750,1183757,1183775,1183815,1183868,1183871,1183873,1183947,1183976,1184074,1184081,1184082,1184120,1184167,1184168,1184170,1184171,1184192,1184193,1184194,1184196,1184197,1184198,1184199,1184208,1184209,1184211,1184217,1184218,1184219,1184220,1184224,1184264,1184386,1184388,1184391,1184393,1184436,1184485,1184514,1184585,1184611,1184615,1184650,1184710,1184724,1184728,1184730,1184731,1184736,1184737,1184738,1184740,1184741,1184742,1184769,1184811,1184855,1184934,1184942,1184943,1184955,1184969,1184984,1185010,1185113,1185233,1185269,1185428,1185491,1185495,1185549,1185550,1185558,1185573,1185581,1185586,1185587,1185606,1185640,1185641,1185642,1185645,1185670,1185680,1185703,1185725,1185736,1185758,1185796,1185840,1185857,1185898,1185899,1185911,1185938,1185950,1185980,1185988,1186009,1186061,1186111,1186118,1186219,1186285,1186320,1186349,1186352,1186353,1186354,1186355,1186356,1186357,1186401,1186408,1186439,1186441,1186479,1186484,1186498,1186501,1186512,1186681,CVE-2019-18814,CVE-2019-19769,CVE-2020-24586,CVE-2020-24587,CVE-2020-24588,CVE-2020-25670,CVE-2020-25671,CVE-2020-25672,CVE-2020-25673,CVE-2020-26139,CVE-2020-26141,CVE-2020-26145,CVE-2020-26147,CVE-2020-27170,CVE-2020-27171,CVE-2020-27673,CVE-2020-27815,CVE-2020-35519,CVE-2020-36310,CVE-2020-36311,CVE-2020-36312,CVE-2020-36322,CVE-2021-20268,CVE-2021-23134,CVE-2021-27363,CVE-2021-27364,CVE-2021-27365,CVE-2021-28038,CVE-2021-28375,CVE-2021-28660,CVE-2021-28688,CVE-2021-28950,CVE-2021-28952,CVE-2021-28964,CVE-2021-28971,CVE-2021-28972,CVE-2021-29154,CVE-2021-29155,CVE-2021-29264,CVE-2021-29265,CVE-2021-29647,CVE-2021-29650,CVE-2021-30002,CVE-2021-32399,CVE-2021-33034,CVE-2021-33200,CVE-2021-3428,CVE-2021-3444,CVE-2021-3483,CVE-2021-3489,CVE-2021-3490,CVE-2021-3491
    Description:

    The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes.

    The following security bugs were fixed:


    The following non-security bugs were fixed:

    Advisory IDSUSE-RU-2021:2091-1
    ReleasedMon Jun 21 10:45:13 2021
    SummaryRecommended update for wget
    Typerecommended
    Severitymoderate
    References1181173
    Description:

    This update for wget fixes the following issue:

    Advisory IDSUSE-RU-2021:2096-1
    ReleasedMon Jun 21 13:35:38 2021
    SummaryRecommended update for python-six
    Typerecommended
    Severitymoderate
    References1186642
    Description:


    This update for python-six fixes the following issue:

    Advisory IDSUSE-RU-2021:2116-1
    ReleasedMon Jun 21 19:39:31 2021
    SummaryRecommended update for google-guest-configs
    Typerecommended
    Severitymoderate
    References
    Description:

    This update for google-guest-configs contains the following fix:

    Advisory IDSUSE-SU-2021:2143-1
    ReleasedWed Jun 23 16:27:04 2021
    SummarySecurity update for libnettle
    Typesecurity
    Severityimportant
    References1187060,CVE-2021-3580
    Description:

    This update for libnettle fixes the following issues:

    Advisory IDSUSE-RU-2021:2146-1
    ReleasedWed Jun 23 17:55:14 2021
    SummaryRecommended update for openssh
    Typerecommended
    Severitymoderate
    References1115550,1174162
    Description:

    This update for openssh fixes the following issues:

    Advisory IDSUSE-SU-2021:2157-1
    ReleasedThu Jun 24 15:40:14 2021
    SummarySecurity update for libgcrypt
    Typesecurity
    Severityimportant
    References1187212,CVE-2021-33560
    Description:

    This update for libgcrypt fixes the following issues:

    Advisory IDSUSE-RU-2021:2173-1
    ReleasedMon Jun 28 14:59:45 2021
    SummaryRecommended update for automake
    Typerecommended
    Severitymoderate
    References1040589,1047218,1182604,1185540,1186049
    Description:

    This update for automake fixes the following issues:


    This update for pcre fixes the following issues:

    This update for brp-check-suse fixes the following issues:

    Advisory IDSUSE-RU-2021:2178-1
    ReleasedMon Jun 28 15:56:15 2021
    SummaryRecommended update for systemd-presets-common-SUSE
    Typerecommended
    Severitymoderate
    References1186561
    Description:

    This update for systemd-presets-common-SUSE fixes the following issues:
    When installing the systemd-presets-common-SUSE package for the first time in a new system, it might happen that some services are installed before systemd so the %systemd_pre/post macros would not work. This is handled by enabling all preset services in this package's %posttrans section but it wasn't enabling user services, just system services. Now it enables also the user services installed before this package (bsc#1186561)

    Advisory IDSUSE-SU-2021:2184-1
    ReleasedMon Jun 28 18:22:39 2021
    SummarySecurity update for the Linux Kernel
    Typesecurity
    Severityimportant
    References1087082,1152489,1154353,1174978,1176447,1176771,1177666,1178134,1178378,1178612,1179610,1182999,1183712,1184259,1184436,1184631,1185195,1185428,1185497,1185570,1185589,1185675,1185701,1186155,1186286,1186460,1186463,1186472,1186501,1186672,1186677,1186681,1186752,1186885,1186928,1186949,1186950,1186951,1186952,1186953,1186954,1186955,1186956,1186957,1186958,1186959,1186960,1186961,1186962,1186963,1186964,1186965,1186966,1186967,1186968,1186969,1186970,1186971,1186972,1186973,1186974,1186976,1186977,1186978,1186979,1186980,1186981,1186982,1186983,1186984,1186985,1186986,1186987,1186988,1186989,1186990,1186991,1186992,1186993,1186994,1186995,1186996,1186997,1186998,1186999,1187000,1187001,1187002,1187003,1187038,1187039,1187050,1187052,1187067,1187068,1187069,1187072,1187143,1187144,1187167,1187334,1187344,1187345,1187346,1187347,1187348,1187349,1187350,1187351,1187357,1187711,CVE-2020-26558,CVE-2020-36385,CVE-2020-36386,CVE-2021-0129
    Description:

    The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes.

    The following security bugs were fixed:


    The following non-security bugs were fixed:

    Advisory IDSUSE-RU-2021:2191-1
    ReleasedMon Jun 28 18:38:13 2021
    SummaryRecommended update for patterns-microos
    Typerecommended
    Severitymoderate
    References1186791
    Description:

    This update for patterns-microos provides the following fix:

    Advisory IDSUSE-RU-2021:2193-1
    ReleasedMon Jun 28 18:38:43 2021
    SummaryRecommended update for tar
    Typerecommended
    Severitymoderate
    References1184124
    Description:

    This update for tar fixes the following issues:

    Advisory IDSUSE-SU-2021:2196-1
    ReleasedTue Jun 29 09:41:39 2021
    SummarySecurity update for lua53
    Typesecurity
    Severitymoderate
    References1175448,1175449,CVE-2020-24370,CVE-2020-24371
    Description:

    This update for lua53 fixes the following issues:
    Update to version 5.3.6: