SUSE Container Update Advisory: suse/sles12sp4
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2019:640-1
Container Tags        : suse/sles12sp4:14.87 , suse/sles12sp4:latest
Container Release     : 14.87
Severity              : moderate
Type                  : security
References            : 1100396 1110304 1110661 1122729 1127223 1127308 1128574 1129576
                        1131994 CVE-2009-5155 CVE-2016-10739 CVE-2019-9169 
-----------------------------------------------------------------

The container suse/sles12sp4 was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2019:1005-1
Released:    Wed Apr 24 11:59:57 2019
Summary:     Recommended update for zlib
Type:        recommended
Severity:    moderate
References:  1110304,1129576
This update for zlib fixes the following issue:

- Fix a segmentation fault in CRC32 code on POWER (bsc#1110304, bsc#1129576)


-----------------------------------------------------------------
Advisory ID: SUSE-SU-2019:1102-1
Released:    Tue Apr 30 12:07:42 2019
Summary:     Security update for glibc
Type:        security
Severity:    moderate
References:  1100396,1110661,1122729,1127223,1127308,1128574,1131994,CVE-2009-5155,CVE-2016-10739,CVE-2019-9169
This update for glibc fixes the following issues:

Security issues fixed:

- CVE-2019-9169: regex: fix read overrun (bsc#1127308, BZ #24114)
- CVE-2016-10739: Fully parse IPv4 address strings (bsc#1122729, BZ #20018)
- CVE-2009-5155: ERE '0|()0|\1|0' causes regexec undefined behavior (bsc#1127223, BZ #18986)

Non-security issues fixed:

- Enable TLE only if GLIBC_ELISION_ENABLE=yes is defined (bsc#1131994, fate#322271)
- Add more checks for valid ld.so.cache file (bsc#1110661, BZ #18093)
- Added cfi information for start routines in order to stop unwinding (bsc#1128574)
- ja_JP locale: Add entry for the new Japanese era (bsc#1100396, fate#325570, BZ #22964)


The following package changes have been done:

- base-container-licenses-3.0-1.78 updated
- container-suseconnect-2.0.0-1.9 updated
- glibc-2.22-100.8.1 updated
- libz1-1.2.11-3.3.1 updated