Vulnerability Scan Report for registry.suse.com/bci/bci-init:15.5.14.36
Systemd environment for containers based on the SLE Base Container Image. This container is only supported with podman.
Last scanned on: November 01, 2024 11:02
Systemd environment for containers based on the SLE Base Container Image. This container is only supported with podman.
Last scanned on: November 01, 2024 11:02
Package Name | Severity | Status | Description | Reference links | |
---|---|---|---|---|---|
libudev1 | MEDIUM | fixed |
Security update for systemd Vulnerability ID: SUSE-SU-2024:3149-1 Installed Version: 249.17-150400.8.40.1 Fixed Version: 249.17-150400.8.43.1 This update for systemd fixes the following issues: - CVE-2023-7008: Fixed man-in-the-middle due to unsigned name response in signed zone not refused when DNSSEC=yes (bsc#1218297) Other fixes: - Unit: drop ProtectClock=yes from systemd-udevd.service (bsc#1226414) - Don't mention any rpm macros inside comments, even if escaped (bsc#1228091) - Skip redundant dependencies specified the LSB description that references the file name of the service itself for early boot scripts (bsc#1221479). |
||
libuuid1 | HIGH | fixed |
Security update for util-linux Vulnerability ID: SUSE-SU-2024:1172-1 Installed Version: 2.37.4-150500.9.3.1 Fixed Version: 2.37.4-150500.9.6.1 This update for util-linux fixes the following issues: - CVE-2024-28085: Properly neutralize escape sequences in wall. (bsc#1221831) |
||
libxml2-2 | LOW | fixed |
Security update for libxml2 Vulnerability ID: SUSE-SU-2024:2290-1 Installed Version: 2.10.3-150500.5.14.1 Fixed Version: 2.10.3-150500.5.17.1 This update for libxml2 fixes the following issues: - CVE-2024-34459: Fixed buffer over-read in xmlHTMLPrintFileContext in xmllint.c (bsc#1224282). |
||
login_defs | MEDIUM | fixed |
Security update for shadow Vulnerability ID: SUSE-SU-2024:2658-1 Installed Version: 4.8.1-150400.10.15.1 Fixed Version: 4.8.1-150400.10.18.1 This update for shadow fixes the following issues: - CVE-2013-4235: Fixed a race condition when copying and removing directory trees (bsc#916845). |
||
login_defs | MEDIUM | fixed |
Security update for shadow Vulnerability ID: SUSE-SU-2024:2804-1 Installed Version: 4.8.1-150400.10.15.1 Fixed Version: 4.8.1-150400.10.21.1 This update for shadow fixes the following issues: - Fixed not copying of skel files (bsc#1228770) |