SUSE-CU-2025:2717-1: Security update of suse/389-ds
sle-container-updates at lists.suse.com
sle-container-updates at lists.suse.com
Sat Apr 19 07:08:12 UTC 2025
SUSE Container Update Advisory: suse/389-ds
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2025:2717-1
Container Tags : suse/389-ds:2.2 , suse/389-ds:2.2.10 , suse/389-ds:2.2.10-36.28 , suse/389-ds:latest
Container Release : 36.28
Severity : important
Type : security
References : 1232234 1234128 1234713 1239883 CVE-2024-10041
-----------------------------------------------------------------
The container suse/389-ds was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: SUSE-RU-2025:1198-1
Released: Fri Apr 11 09:46:09 2025
Summary: Recommended update for glibc
Type: recommended
Severity: important
References: 1234128,1234713,1239883
This update for glibc fixes the following issues:
- Fix the lost wakeup from a bug in signal stealing (bsc#1234128)
- Mark functions in libc_nonshared.a as hidden (bsc#1239883)
- Bump minimal kernel version to 4.3 to enable use of direct socketcalls
on x86-32 and s390x (bsc#1234713)
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2025:1334-1
Released: Thu Apr 17 09:03:05 2025
Summary: Security update for pam
Type: security
Severity: moderate
References: 1232234,CVE-2024-10041
This update for pam fixes the following issues:
- CVE-2024-10041: sensitive data exposure while performing authentications. (bsc#1232234)
The following package changes have been done:
- glibc-2.38-150600.14.26.1 updated
- pam-1.3.0-150000.6.76.1 updated
- container:registry.suse.com-bci-bci-base-15.6-34a982ded6ebd3e50f0f7544bef2522f75e3c6eac47a2cfc107c848dd15e94e7-0 updated
More information about the sle-container-updates
mailing list