openSUSE-Leap-Micro-5.3-2022-4081 low SUSE Updates openSUSE-Leap-Micro 5.3 This update for dpkg fixes the following issues: - CVE-2022-1664: Fixed a directory traversal vulnerability in Dpkg::Source::Archive (bsc#1199944). update-alternatives-1.19.0.4-150000.4.4.1.src.rpm update-alternatives-1.19.0.4-150000.4.4.1.x86_64.rpm update-alternatives-1.19.0.4-150000.4.4.1.aarch64.rpm openSUSE-Leap-Micro-5.3-2022-4226 moderate SUSE Updates openSUSE-Leap-Micro 5.3 This update for suseconnect-ng fixes the following issues: - Fix System-Token support in ruby binding (bsc#1203341) - Use system-wide proxy settings (bsc#1200994) - Add timer for SUSEConnect --keepalive (bsc#1196076) - Added support for the System-Token header - Add Keepalive command line option - Print nested zypper errors (bsc#1200803) - Fix migration json error with SMT (bsc#1198625) - Packaging adjustments (bsc#1204821) - Add option to run local scc tests suseconnect-ng-1.0.0~git0.faee7c196dc1-150400.3.7.3.src.rpm suseconnect-ng-1.0.0~git0.faee7c196dc1-150400.3.7.3.x86_64.rpm suseconnect-ng-1.0.0~git0.faee7c196dc1-150400.3.7.3.aarch64.rpm openSUSE-Leap-Micro-5.3-2022-4256 moderate SUSE Updates openSUSE-Leap-Micro 5.3 This update for gcc12 fixes the following issues: This update ship the GCC 12 compiler suite and its base libraries. The compiler baselibraries are provided for all SUSE Linux Enterprise 15 versions and replace the same named GCC 11 ones. The new compilers for C, C++, and Fortran are provided for SUSE Linux Enterprise 15 SP3 and SP4, and provided in the "Development Tools" module. The Go, D and Ada language compiler parts are available unsupported via the PackageHub repositories. To use gcc12 compilers use: - install "gcc12" or "gcc12-c++" or one of the other "gcc12-COMPILER" frontend packages. - override your Makefile to use CC=gcc12, CXX=g++12 and similar overrides for the other languages. For a full changelog with all new GCC12 features, check out https://gcc.gnu.org/gcc-12/changes.html gcc12-12.2.1+git416-150000.1.5.1.src.rpm libgcc_s1-12.2.1+git416-150000.1.5.1.x86_64.rpm libstdc++6-12.2.1+git416-150000.1.5.1.x86_64.rpm libgcc_s1-12.2.1+git416-150000.1.5.1.aarch64.rpm libstdc++6-12.2.1+git416-150000.1.5.1.aarch64.rpm openSUSE-Leap-Micro-5.3-2022-4153 important SUSE Updates openSUSE-Leap-Micro 5.3 This update for krb5 fixes the following issues: - CVE-2022-42898: Fixed integer overflow in PAC parsing (bsc#1205126). krb5-1.19.2-150400.3.3.1.src.rpm krb5-1.19.2-150400.3.3.1.x86_64.rpm krb5-1.19.2-150400.3.3.1.aarch64.rpm openSUSE-Leap-Micro-5.3-2022-4206 important SUSE Updates openSUSE-Leap-Micro 5.3 This update for pixman fixes the following issues: - CVE-2022-44638: Fixed an integer overflow in pixman_sample_floor_y leading to heap out-of-bounds write (bsc#1205033). libpixman-1-0-0.40.0-150400.3.3.1.x86_64.rpm pixman-0.40.0-150400.3.3.1.src.rpm libpixman-1-0-0.40.0-150400.3.3.1.aarch64.rpm openSUSE-Leap-Micro-5.3-2022-4141 important SUSE Updates openSUSE-Leap-Micro 5.3 This update for grub2 fixes the following issues: - CVE-2022-2601: Fixed buffer overflow in grub_font_construct_glyph (bsc#1205178). - CVE-2022-3775: Fixed integer underflow in blit_comb() (bsc#1205182). Other: - Bump upstream SBAT generation to 3 grub2-2.06-150400.11.17.1.src.rpm grub2-2.06-150400.11.17.1.x86_64.rpm grub2-i386-pc-2.06-150400.11.17.1.noarch.rpm grub2-snapper-plugin-2.06-150400.11.17.1.noarch.rpm grub2-x86_64-efi-2.06-150400.11.17.1.noarch.rpm grub2-x86_64-xen-2.06-150400.11.17.1.noarch.rpm grub2-2.06-150400.11.17.1.aarch64.rpm grub2-arm64-efi-2.06-150400.11.17.1.noarch.rpm openSUSE-Leap-Micro-5.3-2022-4147 important SUSE Updates openSUSE-Leap-Micro 5.3 This update provides rebuilds of the kubevirt containers with up to date base images, fixing various security issues. kubevirt-0.54.0-150400.3.7.1.src.rpm kubevirt-manifests-0.54.0-150400.3.7.1.x86_64.rpm kubevirt-virtctl-0.54.0-150400.3.7.1.x86_64.rpm openSUSE-Leap-Micro-5.3-2022-4138 important SUSE Updates openSUSE-Leap-Micro 5.3 This update for python-msgpack fixes the following issues: - Fix build failures on SUSE Linux Enterprise 15 Service Pack 5 (bsc#1203743) python-msgpack-0.5.6-150100.3.3.1.src.rpm python3-msgpack-0.5.6-150100.3.3.1.x86_64.rpm python3-msgpack-0.5.6-150100.3.3.1.aarch64.rpm openSUSE-Leap-Micro-5.3-2022-4191 important SUSE Updates openSUSE-Leap-Micro 5.3 This update rebuilds the current containeried data importer images against current base images, to fix security issues. containerized-data-importer-1.51.0-150400.4.7.1.src.rpm containerized-data-importer-manifests-1.51.0-150400.4.7.1.x86_64.rpm openSUSE-Leap-Micro-5.3-2022-4214 low SUSE Updates openSUSE-Leap-Micro 5.3 This update for libdb-4_8 fixes the following issues: - CVE-2019-2708: Fixed partial DoS due to data store execution (bsc#1174414). db48-utils-4.8.30-150000.7.6.1.x86_64.rpm libdb-4_8-4.8.30-150000.7.6.1.src.rpm libdb-4_8-4.8.30-150000.7.6.1.x86_64.rpm db48-utils-4.8.30-150000.7.6.1.aarch64.rpm libdb-4_8-4.8.30-150000.7.6.1.aarch64.rpm openSUSE-Leap-Micro-5.3-2022-4259 important SUSE Updates openSUSE-Leap-Micro 5.3 This update for tiff fixes the following issues: - CVE-2022-3597: Fixed out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix.c (bnc#1204641). - CVE-2022-3599: Fixed out-of-bounds read in writeSingleSection in tools/tiffcrop.c (bnc#1204643). - CVE-2022-3626: Fixed out-of-bounds write in _TIFFmemset in libtiff/tif_unix.c (bnc#1204644) - CVE-2022-3627: Fixed out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix.c (bnc#1204645). - CVE-2022-3970: Fixed unsigned integer overflow in TIFFReadRGBATileExt() (bnc#1205392). libtiff5-4.0.9-150000.45.19.1.x86_64.rpm tiff-4.0.9-150000.45.19.1.src.rpm libtiff5-4.0.9-150000.45.19.1.aarch64.rpm openSUSE-Leap-Micro-5.3-2022-4212 moderate SUSE Updates openSUSE-Leap-Micro 5.3 This update for openssl-1_1 fixes the following issues: - FIPS: Mark PBKDF2 with key shorter than 112 bits as non-approved (bsc#1190651) - FIPS: Consider RSA siggen/sigver with PKCS1 padding also approved (bsc#1190651) - FIPS: Return the correct indicator for a given EC group order bits (bsc#1190651) libopenssl-1_1-devel-1.1.1l-150400.7.16.1.x86_64.rpm libopenssl1_1-1.1.1l-150400.7.16.1.x86_64.rpm libopenssl1_1-hmac-1.1.1l-150400.7.16.1.x86_64.rpm openssl-1_1-1.1.1l-150400.7.16.1.src.rpm openssl-1_1-1.1.1l-150400.7.16.1.x86_64.rpm libopenssl-1_1-devel-1.1.1l-150400.7.16.1.aarch64.rpm libopenssl1_1-1.1.1l-150400.7.16.1.aarch64.rpm libopenssl1_1-hmac-1.1.1l-150400.7.16.1.aarch64.rpm openssl-1_1-1.1.1l-150400.7.16.1.aarch64.rpm openSUSE-Leap-Micro-5.3-2022-4209 low SUSE Updates openSUSE-Leap-Micro 5.3 This update for libarchive fixes the following issues: - CVE-2022-36227: Fixed potential NULL pointer dereference in __archive_write_allocate_filter() (bsc#1205629). libarchive-3.5.1-150400.3.12.1.src.rpm libarchive13-3.5.1-150400.3.12.1.x86_64.rpm libarchive13-3.5.1-150400.3.12.1.aarch64.rpm