SUSE Container Update Advisory: suse/sles12sp3
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2019:674-1
Container Tags        : suse/sles12sp3:12.62 , suse/sles12sp3:2.0.2 , suse/sles12sp3:latest
Container Release     : 12.62
Severity              : important
Type                  : security
References            : 1087481 1091236 1092100 1096974 1096984 1100078 1111498 1112300
                        1113975 1114835 1115500 1117025 1117382 1117951 1118629 1120658
                        1121753 1122000 1122344 1123333 1123371 1123377 1123378 1123892
                        1125352 1126117 1126118 1126119 1127080 1128471 1128472 1128474
                        1128476 1128480 1128481 1128490 1128492 1128493 1130324 CVE-2018-10360
                        CVE-2018-1122 CVE-2018-1123 CVE-2018-1124 CVE-2018-1125 CVE-2018-1126
                        CVE-2018-16890 CVE-2019-1559 CVE-2019-3822 CVE-2019-3823 CVE-2019-3855
                        CVE-2019-3856 CVE-2019-3857 CVE-2019-3858 CVE-2019-3859 CVE-2019-3860
                        CVE-2019-3861 CVE-2019-3862 CVE-2019-3863 CVE-2019-6454 CVE-2019-8905
                        CVE-2019-8906 CVE-2019-8907 CVE-2019-9924 
-----------------------------------------------------------------

The container suse/sles12sp3 was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2019:218-1
Released:    Thu Jan 31 20:30:20 2019
Summary:     Recommended update for kmod
Type:        recommended
Severity:    moderate
References:  1118629
This update for kmod fixes the following issues:

- Fix module dependency file corruption on parallel invocation (bsc#1118629).
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2019:249-1
Released:    Wed Feb  6 08:36:16 2019
Summary:     Security update for curl
Type:        security
Severity:    important
References:  1123371,1123377,1123378,CVE-2018-16890,CVE-2019-3822,CVE-2019-3823
This update for curl fixes the following issues:

Security issues fixed:

- CVE-2019-3823: Fixed a heap out-of-bounds read in the code handling the end-of-response for SMTP (bsc#1123378).
- CVE-2019-3822: Fixed a stack based buffer overflow in the function creating an outgoing NTLM type-3 message (bsc#1123377).
- CVE-2018-16890: Fixed a heap buffer out-of-bounds read in the function handling incoming NTLM type-2 messages (bsc#1123371).

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2019:261-1
Released:    Wed Feb  6 11:26:21 2019
Summary:     Recommended update for pam-config
Type:        recommended
Severity:    moderate
References:  1114835
This update for pam-config fixes the following issues:

- Adds support for more pam_cracklib options. (bsc#1114835)

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2019:428-1
Released:    Tue Feb 19 10:59:59 2019
Summary:     Security update for systemd
Type:        security
Severity:    important
References:  1111498,1117025,1117382,1120658,1122000,1122344,1123333,1123892,1125352,CVE-2019-6454
This update for systemd fixes the following issues:

Security vulnerability fixed:

- CVE-2019-6454: Fixed a crash of PID1 by sending specially crafted D-BUS
  message on the system bus by an unprivileged user (bsc#1125352)

Other bug fixes and changes:

- journal-remote: set a limit on the number of fields in a message
- journal-remote: verify entry length from header
- journald: set a limit on the number of fields (1k)
- journald: do not store the iovec entry for process commandline on stack
- core: include Found state in device dumps
- device: fix serialization and deserialization of DeviceFound
- fix path in btrfs rule (#6844)
- assemble multidevice btrfs volumes without external tools (#6607) (bsc#1117025)
- Update systemd-system.conf.xml (bsc#1122000)
- units: inform user that the default target is started after exiting from rescue or emergency mode
- manager: don't skip sigchld handler for main and control pid for services (#3738)
- core: Add helper functions unit_{main, control}_pid
- manager: Fixing a debug printf formatting mistake (#3640)
- manager: Only invoke a single sigchld per unit within a cleanup cycle (bsc#1117382)
- core: update invoke_sigchld_event() to handle NULL ->sigchld_event()
- sd-event: expose the event loop iteration counter via sd_event_get_iteration() (#3631)
- unit: rework a bit how we keep the service fdstore from being destroyed during service restart (bsc#1122344)
- core: when restarting services, don't close fds
- cryptsetup: Add dependency on loopback setup to generated units
- journal-gateway: use localStorage['cursor'] only when it has valid value
- journal-gateway: explicitly declare local variables
- analyze: actually select longest activated-time of services
- sd-bus: fix implicit downcast of bitfield reported by LGTM
- core: free lines after reading them (bsc#1123892)
- pam_systemd: reword message about not creating a session (bsc#1111498)
- pam_systemd: suppress LOG_DEBUG log messages if debugging is off (bsc#1111498)
- main: improve RLIMIT_NOFILE handling (#5795) (bsc#1120658)
- sd-bus: if we receive an invalid dbus message, ignore and proceeed
- automount: don't pass non-blocking pipe to kernel.
- units: make sure initrd-cleanup.service terminates before switching to rootfs (bsc#1123333)
- units: add Wants=initrd-cleanup.service to initrd-switch-root.target (#4345) (bsc#1123333)

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2019:434-1
Released:    Tue Feb 19 12:19:02 2019
Summary:     Recommended update for libsemanage
Type:        recommended
Severity:    moderate
References:  1115500
This update for libsemanage provides the following fix:

- Prevent an error message when reading module version if the directory does not exist.
  (bsc#1115500)

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2019:450-1
Released:    Wed Feb 20 16:42:38 2019
Summary:     Security update for procps
Type:        security
Severity:    important
References:  1092100,1121753,CVE-2018-1122,CVE-2018-1123,CVE-2018-1124,CVE-2018-1125,CVE-2018-1126

  
This update for procps fixes the following security issues:

- CVE-2018-1122: Prevent local privilege escalation in top. If a user ran top
  with HOME unset in an attacker-controlled directory, the attacker could have
  achieved privilege escalation by exploiting one of several vulnerabilities in
  the config_file() function (bsc#1092100).
- CVE-2018-1123: Prevent denial of service in ps via mmap buffer overflow.
  Inbuilt protection in ps maped a guard page at the end of the overflowed
  buffer, ensuring that the impact of this flaw is limited to a crash (temporary
  denial of service) (bsc#1092100).
- CVE-2018-1124: Prevent multiple integer overflows leading to a heap
  corruption in file2strvec function. This allowed a privilege escalation for a
  local attacker who can create entries in procfs by starting processes, which
  could result in crashes or arbitrary code execution in proc utilities run by
  other users (bsc#1092100).
- CVE-2018-1125: Prevent stack buffer overflow in pgrep. This vulnerability was
  mitigated by FORTIFY limiting the impact to a crash (bsc#1092100).
- CVE-2018-1126: Ensure correct integer size in proc/alloc.* to prevent
  truncation/integer overflow issues (bsc#1092100).

(These issues were previously released for SUSE Linux Enterprise 12 SP3 and SP4.)

Also the following non-security issue was fixed:

- Fix CPU summary showing old data. (bsc#1121753)

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2019:514-1
Released:    Thu Feb 28 15:39:05 2019
Summary:     Recommended update for apparmor
Type:        recommended
Severity:    moderate
References:  1112300
This update for apparmor fixes the following issues:

- Fix erroneously generated audit records: include status* files in dnsmasq. (bsc#1112300)

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2019:655-1
Released:    Wed Mar 20 10:30:49 2019
Summary:     Security update for libssh2_org
Type:        security
Severity:    moderate
References:  1091236,1128471,1128472,1128474,1128476,1128480,1128481,1128490,1128492,1128493,CVE-2019-3855,CVE-2019-3856,CVE-2019-3857,CVE-2019-3858,CVE-2019-3859,CVE-2019-3860,CVE-2019-3861,CVE-2019-3862,CVE-2019-3863
This update for libssh2_org fixes the following issues:

Security issues fixed: 	  

- CVE-2019-3861: Fixed Out-of-bounds reads with specially crafted SSH packets (bsc#1128490).
- CVE-2019-3862: Fixed Out-of-bounds memory comparison with specially crafted message channel request packet (bsc#1128492).
- CVE-2019-3860: Fixed Out-of-bounds reads with specially crafted SFTP packets (bsc#1128481).
- CVE-2019-3863: Fixed an Integer overflow in user authenticate keyboard interactive which could allow out-of-bounds writes 
  with specially crafted keyboard responses (bsc#1128493).
- CVE-2019-3856: Fixed a potential Integer overflow in keyboard interactive handling which could allow out-of-bounds write 
  with specially crafted payload (bsc#1128472).
- CVE-2019-3859: Fixed Out-of-bounds reads with specially crafted payloads due to unchecked use of _libssh2_packet_require 
  and _libssh2_packet_requirev (bsc#1128480).
- CVE-2019-3855: Fixed a potential Integer overflow in transport read which could allow out-of-bounds write with specially 
  crafted payload (bsc#1128471).
- CVE-2019-3858: Fixed a potential zero-byte allocation which could lead to an out-of-bounds read with a specially crafted 
  SFTP packet (bsc#1128476).
- CVE-2019-3857: Fixed a potential Integer overflow which could lead to zero-byte allocation and out-of-bounds with specially 
  crafted message channel request SSH packet (bsc#1128474).

Other issue addressed: 

- Libbssh2 will stop using keys unsupported types in the known_hosts file (bsc#1091236).
 
-----------------------------------------------------------------
Advisory ID: SUSE-RU-2019:794-1
Released:    Thu Mar 28 12:09:29 2019
Summary:     Recommended update for krb5
Type:        recommended
Severity:    moderate
References:  1087481
This update for krb5 fixes the following issues:

- Add support for the GSS_KRB5_CRED_NO_CI_FLAGS_X cred option to
  suppress sending the confidentiality and integrity flags in GSS
  initiator tokens unless they are requested by the caller. These
  flags control the negotiated SASL security layer for the Microsoft
  GSS-SPNEGO SASL mechanism. (bsc#1087481).

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2019:803-1
Released:    Fri Mar 29 13:14:21 2019
Summary:     Security update for openssl
Type:        security
Severity:    moderate
References:  1100078,1113975,1117951,1127080,CVE-2019-1559
This update for openssl fixes the following issues:

Security issues fixed: 

- The 9 Lives of Bleichenbacher's CAT: Cache Attacks on TLS Implementations (bsc#1117951)
- CVE-2019-1559: Fixed OpenSSL 0-byte Record Padding Oracle which under certain circumstances
  a TLS server can be forced to respond differently to a client and lead to the decryption of the data (bsc#1127080).

Other issues addressed: 

- Fixed IV handling in SHAEXT paths: aes/asm/aesni-sha*-x86_64.pl (bsc#1113975).
- Set TLS version to 0 in msg_callback for record messages to avoid confusing applications (bsc#1100078).

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2019:838-1
Released:    Tue Apr  2 09:52:06 2019
Summary:     Security update for bash
Type:        security
Severity:    important
References:  1130324,CVE-2019-9924
This update for bash fixes the following issues:
	  
Security issue fixed: 

- CVE-2019-9924: Fixed a vulnerability in which shell did not prevent user BASH_CMDS 
  allowing the user to execute any command with the permissions of the shell (bsc#1130324).

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2019:839-1
Released:    Tue Apr  2 13:13:21 2019
Summary:     Security update for file
Type:        security
Severity:    moderate
References:  1096974,1096984,1126117,1126118,1126119,CVE-2018-10360,CVE-2019-8905,CVE-2019-8906,CVE-2019-8907
This update for file fixes the following issues:

The following security vulnerabilities were addressed:

- Fixed an out-of-bounds read in the function do_core_note in readelf.c, which
  allowed remote attackers to cause a denial of service (application crash) via
  a crafted ELF file (bsc#1096974 CVE-2018-10360).
- CVE-2019-8905: Fixed a stack-based buffer over-read in do_core_note in readelf.c
  (bsc#1126118)
- CVE-2019-8906: Fixed an out-of-bounds read in do_core_note in readelf. c
  (bsc#1126119)
- CVE-2019-8907: Fixed a stack corruption in do_core_note in readelf.c
  (bsc#1126117)


The following package changes have been done:

- libopenssl1_0_0-1.0.2j-60.49.1 updated
- libapparmor1-2.8.2-51.18.3 updated
- libkmod2-17-9.9.1 updated
- libmagic1-5.22-10.12.2 updated
- file-5.22-10.12.2 updated
- libudev1-228-150.63.1 updated
- libsemanage1-2.5-9.3.1 updated
- openssl-1.0.2j-60.49.1 updated
- file-magic-5.22-10.12.2 updated
- libprocps3-3.3.9-11.18.1 updated
- libssh2-1-1.4.3-20.3.1 updated
- libreadline6-6.3-83.23.1 updated
- libsystemd0-228-150.63.1 updated
- bash-4.3-83.23.1 updated
- krb5-1.12.5-40.34.1 updated
- libcurl4-7.37.0-37.34.1 updated
- procps-3.3.9-11.18.1 updated
- pam-config-0.89-5.3.2 updated
- systemd-228-150.63.1 updated
- kmod-compat-17-9.9.1 updated