Описание
Recommended update for aws-nitro-enclaves-cli
This update for aws-nitro-enclaves-cli fixes the following issues:
- Fix idna accepts Punycode labels that do not produce any non-ASCII when decoded (bsc#1243859)
- Update to version 1.4.2
- Update aws-nitro-enclaves-sdk-bootstrap to version f718dea6
- Update to version 1.3.3~git0.afb7264
- Update aws-nitro-enclaves-sdk-bootstrap to version 7797d39a
Список пакетов
SUSE Linux Enterprise Module for Public Cloud 15 SP6
aws-nitro-enclaves-binaryblobs-upstream-1.4.2~git0.6e8512e-150600.10.6.1
aws-nitro-enclaves-cli-1.4.2~git0.6e8512e-150600.10.6.1
system-group-ne-1.4.2~git0.6e8512e-150600.10.6.1
SUSE Linux Enterprise Module for Public Cloud 15 SP7
aws-nitro-enclaves-binaryblobs-upstream-1.4.2~git0.6e8512e-150600.10.6.1
aws-nitro-enclaves-cli-1.4.2~git0.6e8512e-150600.10.6.1
system-group-ne-1.4.2~git0.6e8512e-150600.10.6.1
openSUSE Leap 15.6
aws-nitro-enclaves-binaryblobs-upstream-1.4.2~git0.6e8512e-150600.10.6.1
aws-nitro-enclaves-cli-1.4.2~git0.6e8512e-150600.10.6.1
system-group-ne-1.4.2~git0.6e8512e-150600.10.6.1
Ссылки
- Link for SUSE-RU-2025:02204-1
- E-Mail link for SUSE-RU-2025:02204-1
- SUSE Security Ratings
- SUSE Bug 1243859
- SUSE CVE CVE-2024-12224 page
Описание
Improper Validation of Unsafe Equivalence in punycode by the idna crate from Servo rust-url allows an attacker to create a punycode hostname that one part of a system might treat as distinct while another part of that system would treat as equivalent to another hostname.
Затронутые продукты
SUSE Linux Enterprise Module for Public Cloud 15 SP6:aws-nitro-enclaves-binaryblobs-upstream-1.4.2~git0.6e8512e-150600.10.6.1
SUSE Linux Enterprise Module for Public Cloud 15 SP6:aws-nitro-enclaves-cli-1.4.2~git0.6e8512e-150600.10.6.1
SUSE Linux Enterprise Module for Public Cloud 15 SP6:system-group-ne-1.4.2~git0.6e8512e-150600.10.6.1
SUSE Linux Enterprise Module for Public Cloud 15 SP7:aws-nitro-enclaves-binaryblobs-upstream-1.4.2~git0.6e8512e-150600.10.6.1
Ссылки
- CVE-2024-12224
- SUSE Bug 1243848