SUSE-CU-2025:9175-1: Security update of suse/manager/5.0/x86_64/proxy-httpd

sle-container-updates at lists.suse.com sle-container-updates at lists.suse.com
Fri Dec 19 08:26:58 UTC 2025 

SUSE Container Update Advisory: suse/manager/5.0/x86_64/proxy-httpd
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2025:9175-1
Container Tags        : suse/manager/5.0/x86_64/proxy-httpd:5.0.6 , suse/manager/5.0/x86_64/proxy-httpd:5.0.6.7.29.2 , suse/manager/5.0/x86_64/proxy-httpd:latest
Container Release     : 7.29.2
Severity              : important
Type                  : security
References            : 1211373 1213308 1217755 1222128 1224386 1225740 1227577 1227579
                        1229825 1229977 1230876 1233496 1235567 1235847 1237536 1238481
                        1239158 1239636 1240225 1240565 1241013 1241307 1243087 1243183
                        1243679 1243768 1243808 1243876 1243994 1244027 1244065 1244125
                        1244219 1244290 1244298 1244329 1244338 1244400 1244427 1244430
                        1244519 1244542 1244552 1244641 1244648 1244724 1244822 1245027
                        1245240 1245241 1245307 1245398 1245405 1245528 1245987 1246035
                        1246421 1246422 1246436 1246452 1246586 1246638 1246659 1246663
                        1246883 1246957 1246981 1247084 1247111 1247214 1247269 1247305
                        1247322 1247407 1247481 1247544 1247822 1247951 1247983 1247990
                        1248247 1248292 1248403 1248409 1248411 1248448 1248467 1248501
                        1248661 1248741 1248799 1248804 1249055 1249089 1249148 1249359
                        1249384 1249502 1250239 1250318 1250342 1250423 1250427 1250451
                        1251117 1251305 1251796 1251864 1252023 1252160 1252680 1252723
                        1252974 1253741 CVE-2025-6075 CVE-2025-7039 CVE-2025-8291 
-----------------------------------------------------------------

The container suse/manager/5.0/x86_64/proxy-httpd was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2025:3877-1
Released:    Fri Oct 31 05:29:41 2025
Summary:     Recommended update for libselinux
Type:        recommended
Severity:    important
References:  1252160
This update for libselinux fixes the following issues:

- Ship license file (bsc#1252160)

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2025:4138-1
Released:    Wed Nov 19 11:15:12 2025
Summary:     Recommended update for systemd
Type:        recommended
Severity:    moderate
References:  1224386,1248501
This update for systemd fixes the following issues:

- systemd.spec: use %sysusers_generate_pre so that some systemd users are
  already available in %pre. This is important because D-Bus automatically
  reloads its configuration whenever new configuration files are installed,
  i.e. between %pre and %post. (bsc#1248501)
  
  No needs for systemd and udev packages as they are always installed during
  the initial installation.

- Split systemd-network into two new sub-packages: systemd-networkd and
  systemd-resolved (bsc#1224386 jsc#PED-12669)

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2025:4303-1
Released:    Fri Nov 28 14:11:38 2025
Summary:     Recommended update for kmod
Type:        recommended
Severity:    important
References:  1253741
This update for kmod fixes the following issues:

- Fix modprobe.d confusion on man page (bsc#1253741):
    * document the config file order handling

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2025:4308-1
Released:    Fri Nov 28 16:38:46 2025
Summary:     Security update for glib2
Type:        security
Severity:    moderate
References:  1249055,CVE-2025-7039
This update for glib2 fixes the following issues:

- CVE-2025-7039: Fixed buffer under-read on glib through glib/gfileutils.c via get_tmp_file() (bsc#1249055)

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2025:4359-1
Released:    Thu Dec 11 04:06:53 2025
Summary:     Recommended update for apache2
Type:        recommended
Severity:    moderate
References:  1249359
This update for apache2 fixes the following issues:

- Fixed binary path for Apache's MPM that was partially duplicated when it
  can't be invoked/found (bsc#1249359)

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2025:4368-1
Released:    Thu Dec 11 16:12:16 2025
Summary:     Security update for python3
Type:        security
Severity:    low
References:  1251305,1252974,CVE-2025-6075,CVE-2025-8291
This update for python3 fixes the following issues:

- CVE-2025-6075: quadratic complexity in `os.path.expandvars()` can lead to performance degradation when values passed
  to it are user-controlled (bsc#1252974).
- CVE-2025-8291: lack of validity checks on the ZIP64 End of Central Directory (EOCD) record allows for the creation of
  ZIP archives that are processed inconsistently by the `zipfile` module (bsc#1251305).

-----------------------------------------------------------------
Advisory ID: SUSE-Manager-5.0-2025-4456
Released:    Thu Dec 18 12:55:55 2025
Summary:     Maintenance update for Multi-Linux Manager 5.0: Server, Proxy and Retail Branch Server
Type:        recommended
Severity:    moderate
References:  1211373,1213308,1217755,1222128,1225740,1227577,1227579,1229825,1229977,1230876,1233496,1235567,1235847,1237536,1238481,1239158,1239636,1240225,1240565,1241013,1241307,1243087,1243183,1243679,1243768,1243808,1243876,1243994,1244027,1244065,1244125,1244219,1244290,1244298,1244329,1244338,1244400,1244427,1244430,1244519,1244542,1244552,1244641,1244648,1244724,1244822,1245027,1245240,1245241,1245307,1245398,1245405,1245528,1245987,1246035,1246421,1246422,1246436,1246452,1246586,1246638,1246659,1246663,1246883,1246957,1246981,1247084,1247111,1247214,1247269,1247305,1247322,1247407,1247481,1247544,1247822,1247951,1247983,1247990,1248247,1248292,1248403,1248409,1248411,1248448,1248467,1248661,1248741,1248799,1248804,1249089,1249148,1249384,1249502,1250239,1250318,1250342,1250423,1250427,1250451,1251117,1251796,1251864,1252023,1252680,1252723
Maintenance update for Multi-Linux Manager 5.0: Server, Proxy and Retail Branch Server

This is a codestream only update


The following package changes have been done:

- libgmodule-2_0-0-2.78.6-150600.4.22.1 updated
- libgobject-2_0-0-2.78.6-150600.4.22.1 updated
- libkmod2-29-150600.13.3.1 updated
- release-notes-susemanager-proxy-5.0.6-150600.11.34.1 updated
- selinux-tools-3.5-150600.3.3.1 updated
- libsystemd0-254.27-150600.4.46.2 updated
- python3-base-3.6.15-150300.10.100.1 updated
- libpython3_6m1_0-3.6.15-150300.10.100.1 updated
- uyuni-base-common-5.0.3-150600.2.3.1 updated
- apache2-prefork-2.4.58-150600.5.38.1 updated
- python3-3.6.15-150300.10.100.1 updated
- systemd-254.27-150600.4.46.2 updated
- libgio-2_0-0-2.78.6-150600.4.22.1 updated
- glib2-tools-2.78.6-150600.4.22.1 updated
- apache2-2.4.58-150600.5.38.1 updated
- spacewalk-proxy-html-5.0.2-150600.3.3.1 updated
- python3-rhnlib-5.0.6-150600.4.9.1 updated
- spacewalk-backend-5.0.16-150600.4.23.7 updated
- python3-spacewalk-client-tools-5.0.11-150600.4.15.5 updated
- spacewalk-client-tools-5.0.11-150600.4.15.5 updated
- mgr-push-5.0.3-150600.2.3.1 updated
- python3-mgr-push-5.0.3-150600.2.3.1 updated
- spacewalk-proxy-package-manager-5.0.7-150600.3.12.1 updated
- spacewalk-proxy-common-5.0.7-150600.3.12.1 updated
- spacewalk-proxy-broker-5.0.7-150600.3.12.1 updated
- spacewalk-proxy-redirect-5.0.7-150600.3.12.1 updated

More information about the sle-container-updates mailing list