SUSE Container Update Advisory: suse/sles12sp4
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2019:642-1
Container Tags        : suse/sles12sp4:26.4 , suse/sles12sp4:latest
Container Release     : 26.4
Severity              : important
Type                  : security
References            : 1040621 1080919 1105435 1121563 1125352 1126056 1127557 1128657
                        1130230 1132348 1132400 1132721 955942 CVE-2017-6891 CVE-2018-1000654
                        CVE-2018-6954 CVE-2019-3842 CVE-2019-6454 SLE-5933 
-----------------------------------------------------------------

The container suse/sles12sp4 was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2019:1265-1
Released:    Thu May 16 09:52:22 2019
Summary:     Security update for systemd
Type:        security
Severity:    important
References:  1080919,1121563,1125352,1126056,1127557,1128657,1130230,1132348,1132400,1132721,955942,CVE-2018-6954,CVE-2019-3842,CVE-2019-6454,SLE-5933
This update for systemd fixes the following issues:

Security issues fixed:

- CVE-2018-6954: Fixed a vulnerability in the symlink handling of systemd-tmpfiles 
  which allowed a local user to obtain ownership of arbitrary files (bsc#1080919).
- CVE-2019-3842: Fixed a vulnerability in pam_systemd which allowed a local user to escalate privileges (bsc#1132348).
- CVE-2019-6454: Fixed a denial of service caused by long dbus messages (bsc#1125352).

Non-security issues fixed:

- systemd-coredump: generate a stack trace of all core dumps (jsc#SLE-5933)
- udevd: notify when max number value of children is reached only once per batch of events (bsc#1132400)
- sd-bus: bump message queue size again (bsc#1132721)
- core: only watch processes when it's really necessary (bsc#955942 bsc#1128657)
- rules: load drivers only on 'add' events (bsc#1126056)
- sysctl: Don't pass null directive argument to '%s' (bsc#1121563)
- Do not automatically online memory on s390x (bsc#1127557)

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2019:1379-1
Released:    Wed May 29 15:07:04 2019
Summary:     Security update for libtasn1
Type:        security
Severity:    moderate
References:  1040621,1105435,CVE-2017-6891,CVE-2018-1000654
This update for libtasn1 fixes the following issues:

Security issues fixed:

- CVE-2018-1000654: Fixed a denial of service in the asn1 parser (bsc#1105435).
- CVE-2017-6891: Fixed a stack overflow in asn1_find_node() (bsc#1040621).


The following package changes have been done:

- base-container-licenses-3.0-1.83 updated
- container-suseconnect-2.0.0-1.13 updated
- libsystemd0-228-150.66.4 updated
- libtasn1-6-4.9-3.10.1 updated
- libtasn1-4.9-3.10.1 updated
- libudev1-228-150.66.4 updated