SUSE-CU-2025:6219-1: Security update of bci/gcc

sle-container-updates at lists.suse.com sle-container-updates at lists.suse.com
Tue Aug 19 07:29:09 UTC 2025 

SUSE Container Update Advisory: bci/gcc
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2025:6219-1
Container Tags        : bci/gcc:14 , bci/gcc:14.3 , bci/gcc:14.3-11.10 , bci/gcc:latest
Container Release     : 11.10
Severity              : moderate
Type                  : security
References            : 1230262 1232526 1237442 1238491 1239566 1239938 1240788 1241549
                        1243991 1244050 1245573 CVE-2025-6297 
-----------------------------------------------------------------

The container bci/gcc was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2025:2714-1
Released:    Wed Aug  6 11:36:56 2025
Summary:     Recommended update for systemd
Type:        recommended
Severity:    moderate
References:  
This update for systemd fixes the following issues:

- triggers.systemd: skip update of hwdb, journal-catalog if executed during
  an offline update.

- systemd-repart is no more considered as experimental (jsc#PED-13213)

- Import commit 130293e510ceb4d121d11823e6ebd4b1e8332ea0 (merge of v254.27)
  For a complete list of changes, visit:
  https://github.com/openSUSE/systemd/compare/278fb676146e35a7b4057f52f34a7bbaf1b82369...130293e510ceb4d121d11823e6ebd4b1e8332ea0

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2025:2734-1
Released:    Fri Aug  8 10:05:10 2025
Summary:     Security update for dpkg
Type:        security
Severity:    moderate
References:  1245573,CVE-2025-6297
This update for dpkg fixes the following issues:

- CVE-2025-6297: Fixed an improper sanitization of directory permissions that could lead to DoS. (bsc#1245573)

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2025:2780-1
Released:    Wed Aug 13 10:28:27 2025
Summary:     Recommended update for gcc14
Type:        recommended
Severity:    moderate
References:  1230262,1232526,1237442,1238491,1239566,1239938,1240788,1241549,1243991,1244050
This update for gcc14 fixes the following issues:

Update to GCC 14.3 release, bb24b4c804f3d95b0ba95b7496, git11799

- Fixed libqt6webengine build.
- Fix build on s390x [bsc#1241549]
- Make sure link editing is done against our own shared library
  copy rather than the installed system runtime.  [bsc#1240788]
- Allow GCC executables to be built PIE.  [bsc#1239938]
- Backport -msplit-patch-nops required for user-space livepatching on powerpc.
- Also record -D_FORTIFY_SOURCE=2 in the DWARF debug info DW_AT_producer string.  [bsc#1239566]
- Disable profiling during build when %want_reproducible_builds is set [bsc#1238491]
- Fixes reported ICE in [bsc#1237442]
- Add larchintrin.h, lasxintrin.h and lsxintrin.h
  headers to gccXY main package in %files section
- libstdc++6 fix for parsing tzdata 2024b [gcc#116657]
- Fix ICE with LTO building openvino on aarch64 [bsc#1230262]
- Exclude shared objects present for link editing in the GCC specific
  subdirectory from provides processing via __provides_exclude_from.
  [bsc#1244050][bsc#1243991]
- Make cross-*-gcc14-bootstrap package conflict with the non-bootstrap
  variant conflict with the unversioned cross-*-gcc package.


The following package changes have been done:

- libatomic1-14.3.0+git11799-150000.1.11.1 updated
- libgcc_s1-14.3.0+git11799-150000.1.11.1 updated
- libgomp1-14.3.0+git11799-150000.1.11.1 updated
- libitm1-14.3.0+git11799-150000.1.11.1 updated
- libquadmath0-14.3.0+git11799-150000.1.11.1 updated
- update-alternatives-1.19.0.4-150000.4.7.1 updated
- libstdc++6-14.3.0+git11799-150000.1.11.1 updated
- libsystemd0-254.27-150600.4.43.3 updated
- libquadmath0-devel-gcc14-14.3.0+git11799-150000.1.11.1 updated
- libgfortran5-14.3.0+git11799-150000.1.11.1 updated
- libubsan1-14.3.0+git11799-150000.1.11.1 updated
- libtsan2-14.3.0+git11799-150000.1.11.1 updated
- liblsan0-14.3.0+git11799-150000.1.11.1 updated
- libhwasan0-14.3.0+git11799-150000.1.11.1 updated
- libasan8-14.3.0+git11799-150000.1.11.1 updated
- cpp14-14.3.0+git11799-150000.1.11.1 updated
- libstdc++6-devel-gcc14-14.3.0+git11799-150000.1.11.1 updated
- gcc14-14.3.0+git11799-150000.1.11.1 updated
- gcc14-fortran-14.3.0+git11799-150000.1.11.1 updated
- gcc14-c++-14.3.0+git11799-150000.1.11.1 updated
- container:registry.suse.com-bci-bci-base-15.7-0cffa22c4781b79b45cb22872b4da4160b01ca1230a476fd7f81b4fdd3714f23-0 updated

More information about the sle-container-updates mailing list