SUSE Container Update Advisory: suse/sle15
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2019:42-1
Container Tags        : suse/sle15:15.0 , suse/sle15:15.0.4.22.112
Container Release     : 4.22.112
Severity              : moderate
Type                  : security
References            : 1093414 1150734 1157198 CVE-2019-3688 CVE-2019-3690 
-----------------------------------------------------------------

The container suse/sle15 was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2019:3182-1
Released:    Thu Dec  5 11:43:14 2019
Summary:     Security update for permissions
Type:        security
Severity:    moderate
References:  1093414,1150734,1157198,CVE-2019-3688,CVE-2019-3690
This update for permissions fixes the following issues:
	  
- CVE-2019-3688: Changed wrong ownership in /usr/sbin/pinger to root:squid
  which could have allowed a squid user to gain persistence by changing the 
  binary (bsc#1093414).
- CVE-2019-3690: Fixed a privilege escalation through untrusted symbolic 
  links (bsc#1150734).
- Fixed a regression which caused sagmentation fault (bsc#1157198).


The following package changes have been done:

- permissions-20180125-3.18.1 updated