SUSE: 2023:218-1 suse/sle-micro/5.2/toolbox Security Update
Summary
Advisory ID: SUSE-RU-2023:157-1 Released: Thu Jan 26 15:54:43 2023 Summary: Recommended update for util-linux Type: recommended Severity: moderate Advisory ID: SUSE-SU-2023:174-1 Released: Thu Jan 26 20:52:38 2023 Summary: Security update for glib2 Type: security Severity: low Advisory ID: SUSE-RU-2023:179-1 Released: Thu Jan 26 21:54:30 2023 Summary: Recommended update for tar Type: recommended Severity: low
References
References : 1183533 1194038 1202436 1205646 CVE-2021-28153
1194038,1205646
This update for util-linux fixes the following issues:
- libuuid continuous clock handling for time based UUIDs:
Prevent use of the new libuuid ABI by uuidd %post before update
of libuuid1 (bsc#1205646).
- Use chown --quiet to prevent error message if /var/lib/libuuid/clock.txt
does not exist.
- Fix tests not passing when '@' character is in build path:
Fixes rpmbuild %checks fail when @ in the directory path (bsc#1194038).
1183533,CVE-2021-28153
This update for glib2 fixes the following issues:
- CVE-2021-28153: Fixed an issue where symlink targets would be incorrectly created as empty files (bsc#1183533).
1202436
This update for tar fixes the following issue:
- Fix hang when unpacking test tarball (bsc#1202436)
The following package changes have been done:
- libgmodule-2_0-0-2.62.6-150200.3.10.1 updated
- tar-1.34-150000.3.26.1 updated
- util-linux-systemd-2.36.2-150300.4.32.1 updated