SUSE-SU-2022:2866-2

Source
https://www.suse.com/support/update/announcement/2022/suse-su-20222866-2/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2022:2866-2.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2022:2866-2
Related
Published
2022-08-22T13:36:48Z
Modified
2022-08-22T13:36:48Z
Summary
Security update for systemd-presets-common-SUSE
Details

This update for systemd-presets-common-SUSE fixes the following issues:

  • CVE-2022-1706: Fixed accessible configs from unprivileged containers in VMs running on VMware products (bsc#1199524).

The following non-security bugs were fixed:

  • Modify branding-preset-states to fix systemd-presets-common-SUSE not enabling new user systemd service preset configuration just as it handles system service presets. By passing an (optional) second parameter 'user', the save/apply-changes commands now work with user services instead of system ones (bsc#1200485)

  • Add the wireplumber user service preset to enable it by default in SLE15-SP4 where it replaced pipewire-media-session, but keep pipewire-media-session preset so we don't have to branch the systemd-presets-common-SUSE package for SP4 (bsc#1200485)

References

Affected packages

openSUSE:Leap Micro 5.2 / systemd-presets-common-SUSE

Package

Name
systemd-presets-common-SUSE
Purl
purl:rpm/suse/systemd-presets-common-SUSE&distro=openSUSE%20Leap%20Micro%205.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
15-150100.8.17.1

Ecosystem specific

{
    "binaries": [
        {
            "systemd-presets-common-SUSE": "15-150100.8.17.1"
        }
    ]
}