SUSE-CU-2025:6343-1: Security update of suse/sle15

sle-container-updates at lists.suse.com sle-container-updates at lists.suse.com
Wed Aug 20 07:34:17 UTC 2025 

SUSE Container Update Advisory: suse/sle15
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2025:6343-1
Container Tags        : bci/bci-base:15.6 , bci/bci-base:15.6.47.23.25 , suse/sle15:15.6 , suse/sle15:15.6.47.23.25
Container Release     : 47.23.25
Severity              : important
Type                  : security
References            : 1218459 1245220 1245223 1245985 1246038 1246149 1246466 1247054
                        1247690 
-----------------------------------------------------------------

The container suse/sle15 was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2025:2838-1
Released:    Mon Aug 18 10:56:16 2025
Summary:     Recommended update for suse-build-key
Type:        recommended
Severity:    moderate
References:  1245223
This update for suse-build-key fixes the following issue:

- adjust SLES16 signing key UID (name,email) with official names (bsc#1245223).
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2025:2889-1
Released:    Tue Aug 19 09:53:30 2025
Summary:     Security update for container-suseconnect
Type:        security
Severity:    important
References:  

This update for container-suseconnect rebuilds it with the last go1.24 security release.

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2025:2921-1
Released:    Tue Aug 19 16:54:12 2025
Summary:     Recommended update for libzypp, zypper
Type:        recommended
Severity:    important
References:  1218459,1245220,1245985,1246038,1246149,1246466,1247054,1247690
This update for libzypp, zypper fixes the following issues:

- Fix evaluation of libproxy results (bsc#1247690)
- Replace URL variables inside mirrorlist/metalink files
- Append RepoInfo::path() to the mirror URLs in Preloader (bsc#1247054)
- During installation indicate the backend being used (bsc#1246038)
  If some package actually needs to know, it should test for
  ZYPP_CLASSIC_RPMTRANS being set in the environment.
  Otherwise the transaction is driven by librpm.
- Workaround 'rpm -vv' leaving scriptlets /var/tmp (bsc#1218459)
- Verbose log libproxy results if PX_DEBUG=1 is set.
- BuildRequires:  cmake >= 3.17.
- Allow explicit request to probe an added repo's URL (bsc#1246466)
- Fix tests with -DISABLE_MEDIABACKEND_TESTS=1 
- Add runtime check for a broken rpm-4.18.0 --runpostrans (bsc#1246149)
- Add regression test for (bsc#1245220) and some other filesize related tests.
- Fix addrepo to handle explicit --check and --no-check requests (bsc#1246466)
- Accept 'show' as alias for 'info' (bsc#1245985)


The following package changes have been done:

- container-suseconnect-2.5.5-150000.4.69.1 updated
- libzypp-17.37.16-150600.3.79.1 updated
- suse-build-key-12.0-150000.8.61.2 updated
- zypper-1.14.93-150600.10.49.2 updated

More information about the sle-container-updates mailing list