Vulnerability Scan Report for registry.suse.com/bci/openjdk-devel:17-12.33

OpenJDK 17 development container based on the SLE Base Container Image.

registry.suse.com/bci/openjdk-devel:17-12.33

Last scanned on: June 08, 2025 23:17

Package Name	Severity	Status	Description	Reference links
suse-build-key	UNKNOWN	fixed	Security update for suse-build-key Vulnerability ID: SUSE-SU-2023:4672-1 Installed Version: 12.0-150000.8.34.1 Fixed Version: 12.0-150000.8.37.1 This update for suse-build-key fixes the following issues: This update runs a import-suse-build-key script. The previous libzypp-post-script based installation is replaced with a systemd timer and service (bsc#1217215 bsc#1216410 jsc#PED-2777). - suse-build-key-import.service - suse-build-key-import.timer It imports the future SUSE Linux Enterprise 15 4096 bit RSA key primary and reserve keys. After successful import the timer is disabled. To manually import them you can also run: # rpm --import /usr/lib/rpm/gnupg/keys/gpg-pubkey-3fa1d6ce-63c9481c.asc # rpm --import /usr/lib/rpm/gnupg/keys/gpg-pubkey-d588dc46-63c939db.asc	SU-20234672-1 SUSE Bug#1216410 SUSE Bug#1217215 SUSE Mailing List [sle-updates] 2023-December#033022 SUSE Security Rating
suse-build-key	UNKNOWN	fixed	Security update for suse-build-key Vulnerability ID: SUSE-SU-2024:0444-1 Installed Version: 12.0-150000.8.34.1 Fixed Version: 12.0-150000.8.40.1 This update for suse-build-key fixes the following issues: This update runs a import-suse-build-key script. The previous libzypp-post-script based installation is replaced with a systemd timer and service (bsc#1217215 bsc#1216410 jsc#PED-2777). - suse-build-key-import.service - suse-build-key-import.timer It imports the future SUSE Linux Enterprise 15 4096 bit RSA key primary and reserve keys. After successful import the timer is disabled. To manually import them you can also run: # rpm --import /usr/lib/rpm/gnupg/keys/gpg-pubkey-3fa1d6ce-63c9481c.asc # rpm --import /usr/lib/rpm/gnupg/keys/gpg-pubkey-d588dc46-63c939db.asc Bugfix added since last update: - run rpm commands in import script only when libzypp is not active. bsc#1219189 bsc#1219123	SU-20240444-1 SUSE Bug#1219123 SUSE Bug#1219189 SUSE Mailing List [sle-security-updates] 2024-February#017898 SUSE Security Rating
tar	LOW	fixed	Security update for tar Vulnerability ID: SUSE-SU-2024:0070-1 Installed Version: 1.34-150000.3.31.1 Fixed Version: 1.34-150000.3.34.1 This update for tar fixes the following issues: - CVE-2023-39804: Fixed extension attributes in PAX archives incorrect hanling (bsc#1217969).	CVE-2023-39804 SU-20240070-1 SUSE Bug#1217969 SUSE Mailing List [sle-updates] 2024-January#033622 SUSE Security Rating
terminfo-base	MEDIUM	fixed	Security update for ncurses Vulnerability ID: SUSE-SU-2023:4891-1 Installed Version: 6.1-150000.5.15.1 Fixed Version: 6.1-150000.5.20.1 This update for ncurses fixes the following issues: - CVE-2023-50495: Fixed a segmentation fault via _nc_wrap_entry() (bsc#1218014) - Modify reset command to avoid altering clocal if the terminal uses a modem (bsc#1201384)	CVE-2023-50495 SU-20234891-1 SUSE Bug#1201384 SUSE Bug#1218014 SUSE Mailing List [sle-security-updates] 2023-December#017440 SUSE Security Rating
terminfo-base	LOW	fixed	Security update for ncurses Vulnerability ID: SUSE-SU-2024:1133-1 Installed Version: 6.1-150000.5.15.1 Fixed Version: 6.1-150000.5.24.1 This update for ncurses fixes the following issues: - CVE-2023-45918: Fixed NULL pointer dereference via corrupted xterm-256color file (bsc#1220061).	CVE-2023-45918 SU-20241133-1 SUSE Bug#1220061 SUSE Mailing List [sle-updates] 2024-April#034889 SUSE Security Rating