{"affected":[{"ecosystem_specific":{"binaries":[{"docker":"20.10.23_ce-150000.175.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Micro 5.4","name":"docker","purl":"pkg:rpm/suse/docker&distro=SUSE%20Linux%20Enterprise%20Micro%205.4"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"20.10.23_ce-150000.175.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"\nThis update for docker fixes the following issues:\n\nDocker was updated to 20.10.23-ce.\n\nSee upstream changelog at https://docs.docker.com/engine/release-notes/#201023\n\nDocker was updated to 20.10.21-ce (bsc#1206065)\n\nSee upstream changelog at https://docs.docker.com/engine/release-notes/#201021 \n\nSecurity issues fixed:\n\n- CVE-2022-36109: Fixed supplementary group permissions bypass (bsc#1205375)\n\n- Fix wrong After: in docker.service, fixes bsc#1188447\n- Add apparmor-parser as a Recommends to make sure that most users will end up\n  with it installed even if they are primarily running SELinux.\n- Allow to install container-selinux instead of apparmor-parser.\n- Change to using systemd-sysusers\n","id":"SUSE-SU-2023:0795-2","modified":"2023-04-27T14:06:40Z","published":"2023-04-27T14:06:40Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2023/suse-su-20230795-2/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1205375"},{"type":"REPORT","url":"https://bugzilla.suse.com/1206065"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-36109"}],"related":["CVE-2022-36109"],"summary":"Security update for docker","upstream":["CVE-2022-36109"]}