SUSE-CU-2025:2748-1: Security update of bci/kiwi

sle-container-updates at lists.suse.com sle-container-updates at lists.suse.com
Wed Apr 23 07:25:42 UTC 2025 

SUSE Container Update Advisory: bci/kiwi
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2025:2748-1
Container Tags        : bci/kiwi:9 , bci/kiwi:9.24 , bci/kiwi:9.24.43 , bci/kiwi:9.24.43-22.42 , bci/kiwi:latest
Container Release     : 22.42
Severity              : important
Type                  : security
References            : 1232234 1235481 1236033 1240343 CVE-2024-10041 
-----------------------------------------------------------------

The container bci/kiwi was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2025:1217-1
Released:    Sun Apr 13 12:16:40 2025
Summary:     Recommended update for ca-certificates-mozilla
Type:        recommended
Severity:    important
References:  1240343
This update for ca-certificates-mozilla fixes the following issues:

- Reenable the distrusted certs for now. as these only
  distrust 'new issued' certs starting after a certain date,
  while old certs should still work. (bsc#1240343)

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2025:1242-1
Released:    Mon Apr 14 12:43:18 2025
Summary:     Recommended update for aaa_base
Type:        recommended
Severity:    moderate
References:  1235481,1236033
This update for aaa_base fixes the following issues:

- SP6 logrotate and rcsyslog binary (bsc#1236033)
- Update detection for systemd in rc.status
- Mountpoint for cgroup changed with cgroup2
- If a user switches the login shell respect the already set PATH
  environment (bsc#1235481)

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2025:1334-1
Released:    Thu Apr 17 09:03:05 2025
Summary:     Security update for pam
Type:        security
Severity:    moderate
References:  1232234,CVE-2024-10041
This update for pam fixes the following issues:

- CVE-2024-10041: sensitive data exposure while performing authentications. (bsc#1232234)


The following package changes have been done:

- glibc-2.38-150600.14.26.1 updated
- pam-1.3.0-150000.6.76.1 updated
- aaa_base-84.87+git20180409.04c9dae-150300.10.28.2 updated
- ca-certificates-mozilla-2.74-150200.41.1 updated
- iproute2-6.4-150600.7.6.1 updated
- container:registry.suse.com-bci-bci-base-15.6-34a982ded6ebd3e50f0f7544bef2522f75e3c6eac47a2cfc107c848dd15e94e7-0 updated

More information about the sle-container-updates mailing list