Vulnerability Scan Report for registry.suse.com/bci/bci-init:15.5.8.35
Systemd environment for containers based on the SLE Base Container Image. This container is only supported with podman.
Last scanned on: November 04, 2024 03:30
Systemd environment for containers based on the SLE Base Container Image. This container is only supported with podman.
Last scanned on: November 04, 2024 03:30
Package Name | Severity | Status | Description | Reference links | |
---|---|---|---|---|---|
systemd | MEDIUM | fixed |
Security update for systemd Vulnerability ID: SUSE-SU-2024:3149-1 Installed Version: 249.16-150400.8.28.3 Fixed Version: 249.17-150400.8.43.1 This update for systemd fixes the following issues: - CVE-2023-7008: Fixed man-in-the-middle due to unsigned name response in signed zone not refused when DNSSEC=yes (bsc#1218297) Other fixes: - Unit: drop ProtectClock=yes from systemd-udevd.service (bsc#1226414) - Don't mention any rpm macros inside comments, even if escaped (bsc#1228091) - Skip redundant dependencies specified the LSB description that references the file name of the service itself for early boot scripts (bsc#1221479). |
||
tar | LOW | fixed |
Security update for tar Vulnerability ID: SUSE-SU-2024:0070-1 Installed Version: 1.34-150000.3.31.1 Fixed Version: 1.34-150000.3.34.1 This update for tar fixes the following issues: - CVE-2023-39804: Fixed extension attributes in PAX archives incorrect hanling (bsc#1217969). |
||
terminfo-base | MEDIUM | fixed |
Security update for ncurses Vulnerability ID: SUSE-SU-2023:4891-1 Installed Version: 6.1-150000.5.15.1 Fixed Version: 6.1-150000.5.20.1 This update for ncurses fixes the following issues: - CVE-2023-50495: Fixed a segmentation fault via _nc_wrap_entry() (bsc#1218014) - Modify reset command to avoid altering clocal if the terminal uses a modem (bsc#1201384) |
||
terminfo-base | LOW | fixed |
Security update for ncurses Vulnerability ID: SUSE-SU-2024:1133-1 Installed Version: 6.1-150000.5.15.1 Fixed Version: 6.1-150000.5.24.1 This update for ncurses fixes the following issues: - CVE-2023-45918: Fixed NULL pointer dereference via corrupted xterm-256color file (bsc#1220061). |
||
util-linux | HIGH | fixed |
Security update for util-linux Vulnerability ID: SUSE-SU-2024:1172-1 Installed Version: 2.37.4-150500.7.16 Fixed Version: 2.37.4-150500.9.6.1 This update for util-linux fixes the following issues: - CVE-2024-28085: Properly neutralize escape sequences in wall. (bsc#1221831) |