Overview

File _patchinfo of Package patchinfo.13035

<patchinfo incident="13035">
  <issue tracker="bnc" id="1142988">networking problems using cloud-init in leap 15.1 images</issue>
  <issue tracker="bnc" id="1144363">cloud-init doesn't call udevadm settle correctly to wait for network device</issue>
  <issue tracker="bnc" id="1099358">OS boot failed when ISO mounted and enable cloud-init services</issue>
  <issue tracker="bnc" id="1129124">VUL-0: CVE-2019-0816: cloud-init: extra ssh keys added to authorized_keys</issue>
  <issue tracker="bnc" id="1154092">cloud-init: datasource ConfigDrive fails</issue>
  <issue tracker="bnc" id="1136440">L3-Question: cloud-init :VIO: unable to detect environment</issue>
  <issue tracker="bnc" id="1151488">L3: cloud-init resolv.conf changes get clobbered by netconfig</issue>
  <issue tracker="cve" id="2019-0816"/>
  <packager>rjschwei</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for cloud-init</summary>
  <description>This update for cloud-init to version 19.2 fixes the following issues:

Security issue fixed:

- CVE-2019-0816: Fixed the unnecessary extra ssh keys that were added to authorized_keys (bsc#1129124).

Non-security issues fixed:

- Short circuit the conditional for identifying the sysconfig renderer (bsc#1154092, bsc#1142988).
- If /etc/resolv.conf is a symlink, break it. This will avoid netconfig from clobbering the changes cloud-init applied (bsc#1151488).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places