SUSE-CU-2025:6121-1: Security update of suse/sl-micro/6.0/toolbox

sle-container-updates at lists.suse.com sle-container-updates at lists.suse.com
Wed Aug 13 07:20:52 UTC 2025 

SUSE Container Update Advisory: suse/sl-micro/6.0/toolbox
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2025:6121-1
Container Tags        : suse/sl-micro/6.0/toolbox:13.2 , suse/sl-micro/6.0/toolbox:13.2-9.23 , suse/sl-micro/6.0/toolbox:latest
Container Release     : 9.23
Severity              : moderate
Type                  : security
References            : 1242827 1243935 1247074 CVE-2025-4598 
-----------------------------------------------------------------

The container suse/sl-micro/6.0/toolbox was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: 416
Released:    Tue Aug 12 16:05:24 2025
Summary:     Security update for systemd
Type:        security
Severity:    moderate
References:  1242827,1243935,1247074,CVE-2025-4598
This update for systemd fixes the following issues:

- Remove the script used to help migrating the language and locale settings
  located in /etc/sysconfig/language on old systems to the systemd default
  locations (bsc#1247074)

  The script was introduced more than 7 years ago and all systems running TW
  should have been migrated since then. Moreover the installer supports the
  systemd default locations since approximately SLE15. 

- triggers.systemd: skip update of hwdb, journal-catalog if executed during an
  offline update.

- logs-show: get timestamp and boot ID only when necessary (bsc#1242827)
- sd-journal: drop to use Hashmap to manage journal files per boot ID
- tree-wide: set SD_JOURNAL_ASSUME_IMMUTABLE where appropriate
- sd-journal: introduce SD_JOURNAL_ASSUME_IMMUTABLE flag
- sd-journal: make journal_file_read_tail_timestamp() notify to the caller that some new journal entries added
- sd-journal: cache last entry offset and journal file state
- sd-journal: fix typo in function name

- coredump: use %d in kernel core pattern (bsc#1243935 CVE-2025-4598)


The following package changes have been done:

- SL-Micro-release-6.0-25.40 updated
- libsystemd0-254.27-1.1 updated
- libudev1-254.27-1.1 updated
- skelcd-EULA-SL-Micro-2024.01.19-8.39 updated
- systemd-254.27-1.1 updated

More information about the sle-container-updates mailing list