SUSE Container Update Advisory: suse/sles12sp4
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2019:669-1
Container Tags        : suse/sles12sp4:26.105 , suse/sles12sp4:latest
Container Release     : 26.105
Severity              : moderate
Type                  : security
References            : 1047247 1093414 1097665 1150734 1157198 CVE-2019-3688 CVE-2019-3690
-----------------------------------------------------------------

The container suse/sles12sp4 was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2019:3183-1
Released:    Thu Dec  5 11:43:25 2019
Summary:     Security update for permissions
Type:        security
Severity:    moderate
References:  1047247,1093414,1097665,1150734,1157198,CVE-2019-3688,CVE-2019-3690
This update for permissions fixes the following issues:

Security issues fixed: 

- CVE-2019-3688: Changed wrong ownership in /usr/sbin/pinger to root:squid
  which could have allowed a squid user to gain persistence by changing the 
  binary (bsc#1093414).
- CVE-2019-3690: Fixed a privilege escalation through untrusted symbolic 
  links (bsc#1150734).	  

Other issue addressed: 

- Corrected a badly constracted file which could have allowed treating of the
  shell environment as permissions files (bsc#1097665,bsc#1047247).
- Fixed a regression which caused sagmentation fault (bsc#1157198). 


The following package changes have been done:

- base-container-licenses-3.0-1.125 updated
- permissions-20170707-3.14.1 updated