SUSE Container Update Advisory: suse/sles12sp3 ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2022:595-1 Container Tags : suse/sles12sp3:2.0.2 , suse/sles12sp3:24.376 , suse/sles12sp3:latest Container Release : 24.376 Severity : important Type : security References : 1171962 1180225 1188018 1188063 1188291 1189480 1190984 1191399 1193841 1195899 1198062 CVE-2022-1271 ----------------------------------------------------------------- The container suse/sles12sp3 was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2022:1160-1 Released: Tue Apr 12 14:49:18 2022 Summary: Security update for xz Type: security Severity: important References: 1198062,CVE-2022-1271 This update for xz fixes the following issues: - CVE-2022-1271: Fixed an incorrect escaping of malicious filenames (ZDI-CAN-16587). (bsc#1198062) ----------------------------------------------------------------- Advisory ID: SUSE-RU-2022:1171-1 Released: Tue Apr 12 18:20:34 2022 Summary: Recommended update for systemd Type: recommended Severity: moderate References: 1171962,1180225,1188018,1188063,1188291,1189480,1190984,1191399,1193841,1195899 This update for systemd fixes the following issues: - systemd-coredump: allow setting external core size to infinity (bsc#1195899 jsc#SLE-23869 jsc#SLE-23871) - systemctl: exit with 1 if no unit files found (bsc#1193841) - umount: show correct error message - core/umount: fix unitialized fields in MountPoint in dm_list_get() - umount: Add more asserts and remove some unused arguments, fix memory leak - mount-util: fix fd_is_mount_point() when both the parent and directory are network fs (bsc#1190984) - busctl: add a timestamp to the output of the busctl monitor command (bsc#1180225 jsc#SLE-21861) - sysctl: configure kernel parameters in the order they occur in each sysctl configuration files (bsc#1191399) - manager: reexecute on SIGRTMIN+25, user instances only - logind: terminate cleanly on SIGTERM/SIGINT (bsc#1188018) - units: make fsck/grows/makefs/makeswap units conflict against shutdown.target - Make sure the versions of both udev and systemd packages are always the same (bsc#1189480) - Avoid the error message when udev is updated due to udev being already active when the sockets are started again (bsc#1188291) - Allow systemd sysusers config files to be overriden during system installation (bsc#1171962). - While at it, add a comment to explain why we don't use %sysusers_create in %pre and why it should be safe in %post. The following package changes have been done: - libudev1-228-150.101.3 updated - xz-5.0.5-6.7.1 updated - liblzma5-5.0.5-6.7.1 updated - libsystemd0-228-150.101.3 updated - systemd-228-150.101.3 updated