SUSE-IU-2025:1065-1: Security update of suse/sl-micro/6.0/baremetal-os-container
sle-container-updates at lists.suse.com
sle-container-updates at lists.suse.com
Wed Apr 16 07:13:23 UTC 2025
SUSE Image Update Advisory: suse/sl-micro/6.0/baremetal-os-container
-----------------------------------------------------------------
Image Advisory ID : SUSE-IU-2025:1065-1
Image Tags : suse/sl-micro/6.0/baremetal-os-container:2.1.3 , suse/sl-micro/6.0/baremetal-os-container:2.1.3-6.12 , suse/sl-micro/6.0/baremetal-os-container:latest
Image Release : 6.12
Severity : important
Type : security
References : 1238700 1239335 CVE-2025-22869 CVE-2025-22870
-----------------------------------------------------------------
The container suse/sl-micro/6.0/baremetal-os-container was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: 284
Released: Fri Apr 11 12:57:37 2025
Summary: Security update for elemental-operator
Type: security
Severity: important
References: 1238700,1239335,CVE-2025-22869,CVE-2025-22870
This update for elemental-operator fixes the following issues:
- Updated to version 1.6.8:
* Deactivated e2e workflow
* Updated header year
* CVE-2025-22870: golang.org/x/net/proxy: Fixed proxy bypass using IPv6 zone IDs (bsc#1238700)
* CVE-2025-22869: golang.org/x/crypto/ssh: Fixed Denial of Service in the Key Exchange (bsc#1239335)
The following package changes have been done:
- elemental-register-1.6.8-1.1 updated
- elemental-support-1.6.8-1.1 updated
- container:SL-Micro-base-container-2.1.3-6.9 updated
More information about the sle-container-updates
mailing list