SUSE Container Update Advisory: sles12/mariadb ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2019:455-1 Container Tags : sles12/mariadb:10.0 Container Release : 3.3.260 Severity : important Type : security References : 1040621 1080919 1097869 1105435 1118629 1121563 1125352 1126056 1127557 1128657 1130230 1131982 1132348 1132400 1132721 1135170 955942 CVE-2017-6891 CVE-2018-1000654 CVE-2018-6954 CVE-2019-3842 CVE-2019-5436 CVE-2019-6454 SLE-5933 ----------------------------------------------------------------- The container sles12/mariadb was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-RU-2019:1259-1 Released: Wed May 15 14:06:20 2019 Summary: Recommended update for sysvinit Type: recommended Severity: moderate References: 1131982 This update for sysvinit fixes the following issues: - Handle various optional fields of /proc//mountinfo on the entry/ies before the hyphen (bsc#1131982) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2019:1265-1 Released: Thu May 16 09:52:22 2019 Summary: Security update for systemd Type: security Severity: important References: 1080919,1121563,1125352,1126056,1127557,1128657,1130230,1132348,1132400,1132721,955942,CVE-2018-6954,CVE-2019-3842,CVE-2019-6454,SLE-5933 This update for systemd fixes the following issues: Security issues fixed: - CVE-2018-6954: Fixed a vulnerability in the symlink handling of systemd-tmpfiles which allowed a local user to obtain ownership of arbitrary files (bsc#1080919). - CVE-2019-3842: Fixed a vulnerability in pam_systemd which allowed a local user to escalate privileges (bsc#1132348). - CVE-2019-6454: Fixed a denial of service caused by long dbus messages (bsc#1125352). Non-security issues fixed: - systemd-coredump: generate a stack trace of all core dumps (jsc#SLE-5933) - udevd: notify when max number value of children is reached only once per batch of events (bsc#1132400) - sd-bus: bump message queue size again (bsc#1132721) - core: only watch processes when it's really necessary (bsc#955942 bsc#1128657) - rules: load drivers only on 'add' events (bsc#1126056) - sysctl: Don't pass null directive argument to '%s' (bsc#1121563) - Do not automatically online memory on s390x (bsc#1127557) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2019:1363-1 Released: Tue May 28 10:50:53 2019 Summary: Security update for curl Type: security Severity: important References: 1135170,CVE-2019-5436 This update for curl fixes the following issues: Security issue fixed: - CVE-2019-5436: Fixed a heap buffer overflow exists in tftp_receive_packet that receives data from a TFTP server (bsc#1135170). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2019:1379-1 Released: Wed May 29 15:07:04 2019 Summary: Security update for libtasn1 Type: security Severity: moderate References: 1040621,1105435,CVE-2017-6891,CVE-2018-1000654 This update for libtasn1 fixes the following issues: Security issues fixed: - CVE-2018-1000654: Fixed a denial of service in the asn1 parser (bsc#1105435). - CVE-2017-6891: Fixed a stack overflow in asn1_find_node() (bsc#1040621). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2019:1402-1 Released: Mon Jun 3 09:12:38 2019 Summary: Recommended update for kmod Type: recommended Severity: moderate References: 1097869,1118629 This update for kmod fixes the following issues: - Fixes a potential buffer overflow in libkmod (bsc#1118629).