SUSE-CU-2025:2611-1: Security update of suse/sles/15.7/libguestfs-tools
sle-container-updates at lists.suse.com
sle-container-updates at lists.suse.com
Thu Apr 17 07:08:11 UTC 2025
SUSE Container Update Advisory: suse/sles/15.7/libguestfs-tools
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2025:2611-1
Container Tags : suse/sles/15.7/libguestfs-tools:1.4.0 , suse/sles/15.7/libguestfs-tools:1.4.0-150700.1.9 , suse/sles/15.7/libguestfs-tools:1.4.0.28.160
Container Release : 28.160
Severity : important
Type : security
References : 1227637 1233307 1234015 1236165 1236643 1236886 CVE-2024-11168
-----------------------------------------------------------------
The container suse/sles/15.7/libguestfs-tools was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: SUSE-RU-2025:969-1
Released: Thu Mar 20 14:28:47 2025
Summary: Recommended update for crypto-policies
Type: recommended
Severity: moderate
References: 1227637,1236165
This update for crypto-policies fixes the following issues:
- Fix fips-mode-setup in EFI or Secure Boot mode (bsc#1227637).
- tolerate fips dracut module presence w/o FIPS
* Fixes the 'Inconsistent state detected' warning when disabling the FIPS mode
(bsc#1236165).
-----------------------------------------------------------------
Advisory ID: SUSE-RU-2025:1016-1
Released: Tue Mar 25 15:59:05 2025
Summary: Recommended update for systemd
Type: recommended
Severity: important
References: 1234015,1236643,1236886
This update for systemd fixes the following issues:
- udev: allow/denylist for reading sysfs attributes when composing a NIC name (bsc#1234015)
- journald: close runtime journals before their parent directory removed
- journald: reset runtime seqnum data when flushing to system journal (bsc#1236886)
- Move systemd-userwork from the experimental sub-package to the main package (bsc#1236643)
It is likely an oversight from when systemd-userdb was migrated from the
experimental package to the main one.
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2025:1056-1
Released: Fri Mar 28 18:06:22 2025
Summary: Security update for python3
Type: security
Severity: moderate
References: 1233307,CVE-2024-11168
This update for python3 fixes the following issues:
- CVE-2024-11168: Fixed improper validation of IPv6 and IPvFuture addresses (bsc#1233307).
The following package changes have been done:
- crypto-policies-20230920.570ea89-150600.3.9.2 updated
- libuuid1-2.40.4-150700.2.1 updated
- libsmartcols1-2.40.4-150700.2.1 updated
- libudev1-254.24-150600.4.28.1 updated
- libgcrypt20-1.11.0-150700.3.2 updated
- libblkid1-2.40.4-150700.2.1 updated
- libopenssl3-3.2.3-150700.3.13 updated
- libmount1-2.40.4-150700.2.1 updated
- libfdisk1-2.40.4-150700.2.1 updated
- libopenssl-3-fips-provider-3.2.3-150700.3.13 updated
- patterns-base-fips-20200124-150700.36.1 updated
- sles-release-15.7-150700.24.9 updated
- util-linux-2.40.4-150700.2.1 updated
- libguestfs-winsupport-1.55.6-150700.1.3 updated
- libnettle8-3.10.1-150700.2.12 updated
- libopenssl1_1-1.1.1w-150700.9.29 updated
- mdadm-4.4-150700.2.1 updated
- osinfo-db-20250124-150700.3.1 updated
- libsystemd0-254.24-150600.4.28.1 updated
- libhogweed6-3.10.1-150700.2.12 updated
- python3-base-3.6.15-150300.10.84.1 updated
- libpython3_6m1_0-3.6.15-150300.10.84.1 updated
- xen-libs-4.20.0_08-150700.2.7 updated
- systemd-254.24-150600.4.28.1 updated
- util-linux-systemd-2.40.4-150700.2.1 updated
- udev-254.24-150600.4.28.1 updated
- dracut-059+suse.562.g5ab4efaa-150700.1.2 updated
- dracut-fips-059+suse.562.g5ab4efaa-150700.1.2 updated
- libguestfs0-1.55.6-150700.1.3 updated
- libguestfs-devel-1.55.6-150700.1.3 updated
- libguestfs-appliance-1.55.6-150700.1.3 updated
- libguestfs-1.55.6-150700.1.3 updated
- container:sles15-image-15.7.0-3.52 updated
More information about the sle-container-updates
mailing list