SUSE Container Update Advisory: suse/sles12sp4
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2020:549-1
Container Tags        : suse/sles12sp4:26.248 , suse/sles12sp4:latest
Container Release     : 26.248
Severity              : important
Type                  : security
References            : 1170347 1176410 1176759 1177143 CVE-2020-25219 CVE-2020-26154
-----------------------------------------------------------------

The container suse/sles12sp4 was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2020:2897-1
Released:    Tue Oct 13 14:00:25 2020
Summary:     Recommended update for suse-build-key
Type:        recommended
Severity:    moderate
References:  1170347,1176759
This update for suse-build-key fixes the following issues:

- This update extends the suse build key (bsc#1176759)
- The SUSE container key is different from the build key. (PM-1845 bsc#1170347)

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2020:2900-1
Released:    Tue Oct 13 14:20:15 2020
Summary:     Security update for libproxy
Type:        security
Severity:    important
References:  1176410,1177143,CVE-2020-25219,CVE-2020-26154
This update for libproxy fixes the following issues:

- CVE-2020-25219: Rewrote url::recvline to be nonrecursive (bsc#1176410).
- CVE-2020-26154: Fixed a buffer overflow when PAC is enabled (bsc#1177143).	  


The following package changes have been done:

- base-container-licenses-3.0-1.173 updated
- container-suseconnect-2.0.0-1.81 updated
- libproxy1-0.4.13-18.3.1 updated
- suse-build-key-12.0-7.12.1 updated