SUSE Container Update Advisory: sles12/chartmuseum
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2019:303-1
Container Tags        : sles12/chartmuseum:0.2.8
Container Release     : 2.3.275
Severity              : moderate
Type                  : security
References            : 1042781 1085003 1125535 1131291 941922 CVE-2015-5186 
-----------------------------------------------------------------

The container sles12/chartmuseum was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2019:1136-1
Released:    Fri May  3 10:27:57 2019
Summary:     Security update for openssl
Type:        security
Severity:    moderate
References:  1131291
This update for openssl fixes the following issues:

- Reject invalid EC point coordinates (bsc#1131291)

  This helps openssl using services that do not do this verification on their own.

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2019:1166-1
Released:    Tue May  7 11:01:39 2019
Summary:     Security update for audit
Type:        security
Severity:    moderate
References:  1042781,1085003,1125535,941922,CVE-2015-5186

This update for audit fixes the following issues:

Audit on SUSE Linux Enterprise 12 SP3 was updated to 2.8.1 to bring
new features and bugfixes.  (bsc#1125535 FATE#326346)

* Many features were added to auparse_normalize
* cli option added to auditd and audispd for setting config dir
* In auditd, restore the umask after creating a log file
* Option added to auditd for skipping email verification

The full changelog can be found here: http://people.redhat.com/sgrubb/audit/ChangeLog


- Change openldap dependency to client only (bsc#1085003)

Minor security issue fixed:

- CVE-2015-5186: Audit: log terminal emulator escape sequences handling (bsc#941922)