SUSE Container Update Advisory: suse/manager/4.3/proxy-ssh
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2023:4230-1
Container Tags        : suse/manager/4.3/proxy-ssh:4.3.10 , suse/manager/4.3/proxy-ssh:4.3.10.9.33.5 , suse/manager/4.3/proxy-ssh:latest , suse/manager/4.3/proxy-ssh:susemanager-4.3.10 , suse/manager/4.3/proxy-ssh:susemanager-4.3.10.9.33.5
Container Release     : 9.33.5
Severity              : important
Type                  : security
References            : 1201384 1214788 1217950 1218014 CVE-2023-48795 CVE-2023-50495
-----------------------------------------------------------------

The container suse/manager/4.3/proxy-ssh was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2023:4891-1
Released:    Mon Dec 18 16:31:49 2023
Summary:     Security update for ncurses
Type:        security
Severity:    moderate
References:  1201384,1218014,CVE-2023-50495
This update for ncurses fixes the following issues:

- CVE-2023-50495: Fixed a segmentation fault via _nc_wrap_entry() (bsc#1218014)
- Modify reset command to avoid altering clocal if the terminal uses a modem (bsc#1201384)

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2023:4902-1
Released:    Tue Dec 19 13:09:42 2023
Summary:     Security update for openssh
Type:        security
Severity:    important
References:  1214788,1217950,CVE-2023-48795
This update for openssh fixes the following issues:

- CVE-2023-48795: Fixed prefix truncation breaking ssh channel integrity (bsc#1217950).

the following non-security bug was fixed:

- Fix the 'no route to host' error when connecting via ProxyJump


The following package changes have been done:

- libncurses6-6.1-150000.5.20.1 updated
- terminfo-base-6.1-150000.5.20.1 updated
- ncurses-utils-6.1-150000.5.20.1 updated
- openssh-common-8.4p1-150300.3.27.1 updated
- openssh-fips-8.4p1-150300.3.27.1 updated
- openssh-server-8.4p1-150300.3.27.1 updated
- openssh-clients-8.4p1-150300.3.27.1 updated
- openssh-8.4p1-150300.3.27.1 updated

SUSE: 2023:4230-1 suse/manager/4.3/proxy-ssh Security Update

December 20, 2023
The container suse/manager/4.3/proxy-ssh was updated

Summary

Advisory ID: SUSE-SU-2023:4891-1 Released: Mon Dec 18 16:31:49 2023 Summary: Security update for ncurses Type: security Severity: moderate Advisory ID: SUSE-SU-2023:4902-1 Released: Tue Dec 19 13:09:42 2023 Summary: Security update for openssh Type: security Severity: important

References

References : 1201384 1214788 1217950 1218014 CVE-2023-48795 CVE-2023-50495

1201384,1218014,CVE-2023-50495

This update for ncurses fixes the following issues:

- CVE-2023-50495: Fixed a segmentation fault via _nc_wrap_entry() (bsc#1218014)

- Modify reset command to avoid altering clocal if the terminal uses a modem (bsc#1201384)

1214788,1217950,CVE-2023-48795

This update for openssh fixes the following issues:

- CVE-2023-48795: Fixed prefix truncation breaking ssh channel integrity (bsc#1217950).

the following non-security bug was fixed:

- Fix the 'no route to host' error when connecting via ProxyJump

The following package changes have been done:

- libncurses6-6.1-150000.5.20.1 updated

- terminfo-base-6.1-150000.5.20.1 updated

- ncurses-utils-6.1-150000.5.20.1 updated

- openssh-common-8.4p1-150300.3.27.1 updated

- openssh-fips-8.4p1-150300.3.27.1 updated

- openssh-server-8.4p1-150300.3.27.1 updated

- openssh-clients-8.4p1-150300.3.27.1 updated

- openssh-8.4p1-150300.3.27.1 updated

Severity
Container Advisory ID : SUSE-CU-2023:4230-1
Container Tags : suse/manager/4.3/proxy-ssh:4.3.10 , suse/manager/4.3/proxy-ssh:4.3.10.9.33.5 , suse/manager/4.3/proxy-ssh:latest , suse/manager/4.3/proxy-ssh:susemanager-4.3.10 , suse/manager/4.3/proxy-ssh:susemanager-4.3.10.9.33.5
Container Release : 9.33.5
Severity : important
Type : security

Related News

News

Powered By

Footer Logo

Linux Security - Your source for Top Linux News, Advisories, HowTo's and Feature Release.

Powered By

Footer Logo