SUSE-SU-2020:1915-1

Source
https://www.suse.com/support/update/announcement/2020/suse-su-20201915-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2020:1915-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2020:1915-1
Related
Published
2020-07-15T07:34:21Z
Modified
2020-07-15T07:34:21Z
Summary
Security update for slirp4netns
Details

This update for slirp4netns fixes the following issues:

  • Update to 0.4.7 (bsc#1172380)
    • libslirp: update to v4.3.1 (Fix CVE-2020-10756)
    • Fix configfromoptions() to correctly enable ipv6
References

Affected packages

SUSE:Linux Enterprise Module for Containers 15 SP1 / slirp4netns

Package

Name
slirp4netns
Purl
purl:rpm/suse/slirp4netns&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Containers%2015%20SP1

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.4.7-3.12.1

Ecosystem specific

{
    "binaries": [
        {
            "slirp4netns": "0.4.7-3.12.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Containers 15 SP2 / slirp4netns

Package

Name
slirp4netns
Purl
purl:rpm/suse/slirp4netns&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Containers%2015%20SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.4.7-3.12.1

Ecosystem specific

{
    "binaries": [
        {
            "slirp4netns": "0.4.7-3.12.1"
        }
    ]
}