Systemd environment for containers based on the SLE Base Container Image. This container is only supported with podman.
Last scanned on: May 18, 2025 13:01
| Package Name | Severity | Status | Description | Reference links | |
|---|---|---|---|---|---|
| suse-build-key | UNKNOWN | fixed |
Security update for suse-build-key Vulnerability ID: SUSE-SU-2024:0444-1 Installed Version: 12.0-150000.8.34.1 Fixed Version: 12.0-150000.8.40.1 This update for suse-build-key fixes the following issues: This update runs a import-suse-build-key script. The previous libzypp-post-script based installation is replaced with a systemd timer and service (bsc#1217215 bsc#1216410 jsc#PED-2777). - suse-build-key-import.service - suse-build-key-import.timer It imports the future SUSE Linux Enterprise 15 4096 bit RSA key primary and reserve keys. After successful import the timer is disabled. To manually import them you can also run: # rpm --import /usr/lib/rpm/gnupg/keys/gpg-pubkey-3fa1d6ce-63c9481c.asc # rpm --import /usr/lib/rpm/gnupg/keys/gpg-pubkey-d588dc46-63c939db.asc Bugfix added since last update: - run rpm commands in import script only when libzypp is not active. bsc#1219189 bsc#1219123 |
||
| systemd | MEDIUM | fixed |
Security update for systemd Vulnerability ID: SUSE-SU-2024:3149-1 Installed Version: 249.16-150400.8.35.5 Fixed Version: 249.17-150400.8.43.1 This update for systemd fixes the following issues: - CVE-2023-7008: Fixed man-in-the-middle due to unsigned name response in signed zone not refused when DNSSEC=yes (bsc#1218297) Other fixes: - Unit: drop ProtectClock=yes from systemd-udevd.service (bsc#1226414) - Don't mention any rpm macros inside comments, even if escaped (bsc#1228091) - Skip redundant dependencies specified the LSB description that references the file name of the service itself for early boot scripts (bsc#1221479). |
||
| tar | LOW | fixed |
Security update for tar Vulnerability ID: SUSE-SU-2024:0070-1 Installed Version: 1.34-150000.3.31.1 Fixed Version: 1.34-150000.3.34.1 This update for tar fixes the following issues: - CVE-2023-39804: Fixed extension attributes in PAX archives incorrect hanling (bsc#1217969). |
||
| terminfo-base | MEDIUM | fixed |
Security update for ncurses Vulnerability ID: SUSE-SU-2023:4891-1 Installed Version: 6.1-150000.5.15.1 Fixed Version: 6.1-150000.5.20.1 This update for ncurses fixes the following issues: - CVE-2023-50495: Fixed a segmentation fault via _nc_wrap_entry() (bsc#1218014) - Modify reset command to avoid altering clocal if the terminal uses a modem (bsc#1201384) |
||
| terminfo-base | LOW | fixed |
Security update for ncurses Vulnerability ID: SUSE-SU-2024:1133-1 Installed Version: 6.1-150000.5.15.1 Fixed Version: 6.1-150000.5.24.1 This update for ncurses fixes the following issues: - CVE-2023-45918: Fixed NULL pointer dereference via corrupted xterm-256color file (bsc#1220061). |
||