SUSE-CU-2025:6211-1: Security update of suse/cosign

sle-container-updates at lists.suse.com sle-container-updates at lists.suse.com
Tue Aug 19 07:28:06 UTC 2025 

SUSE Container Update Advisory: suse/cosign
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2025:6211-1
Container Tags        : suse/cosign:2 , suse/cosign:2.5 , suse/cosign:2.5.3 , suse/cosign:2.5.3-13.10 , suse/cosign:latest
Container Release     : 13.10
Severity              : moderate
Type                  : security
References            : 1221107 1246934 CVE-2024-2236 
-----------------------------------------------------------------

The container suse/cosign was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2025:2714-1
Released:    Wed Aug  6 11:36:56 2025
Summary:     Recommended update for systemd
Type:        recommended
Severity:    moderate
References:  
This update for systemd fixes the following issues:

- triggers.systemd: skip update of hwdb, journal-catalog if executed during
  an offline update.

- systemd-repart is no more considered as experimental (jsc#PED-13213)

- Import commit 130293e510ceb4d121d11823e6ebd4b1e8332ea0 (merge of v254.27)
  For a complete list of changes, visit:
  https://github.com/openSUSE/systemd/compare/278fb676146e35a7b4057f52f34a7bbaf1b82369...130293e510ceb4d121d11823e6ebd4b1e8332ea0

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2025:2719-1
Released:    Thu Aug  7 05:38:32 2025
Summary:     Security update for libgcrypt
Type:        security
Severity:    moderate
References:  1221107,1246934,CVE-2024-2236
This update for libgcrypt fixes the following issues:

- CVE-2024-2236: timing-based side-channel flaw in RSA implementation can lead to decryption of RSA ciphertexts (bsc#1221107).


The following package changes have been done:

- libudev1-254.27-150600.4.43.3 updated
- libgcrypt20-1.11.0-150700.5.7.1 updated
- container:suse-sle15-15.7-0cffa22c4781b79b45cb22872b4da4160b01ca1230a476fd7f81b4fdd3714f23-0 updated

More information about the sle-container-updates mailing list