SUSE-CU-2025:774-1: Security update of containers/open-webui
sle-container-updates at lists.suse.com
sle-container-updates at lists.suse.com
Wed Feb 12 08:05:16 UTC 2025
SUSE Container Update Advisory: containers/open-webui
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2025:774-1
Container Tags : containers/open-webui:0.3 , containers/open-webui:0.3.32 , containers/open-webui:0.3.32-7.21
Container Release : 7.21
Severity : moderate
Type : security
References : 1236136 1236619 CVE-2024-13176 CVE-2025-24528
-----------------------------------------------------------------
The container containers/open-webui was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2025:401-1
Released: Mon Feb 10 10:38:28 2025
Summary: Security update for crypto-policies, krb5
Type: security
Severity: moderate
References: 1236619,CVE-2025-24528
This update for crypto-policies and krb5 fixes the following issues:
Security issue fixed:
- CVE-2025-24528: Fixed out-of-bounds write caused by overflow when calculating ulog block size can lead to process crash (bsc#1236619).
Feature addition:
- Add crypto-policies support; (jsc#PED-12018)
* The default krb5.conf has been updated to include config
snippets in the krb5.conf.d directory, where crypto-policies
drops its.
- Allow to use KRB5KDF in FIPS mode; (jsc#PED-12018);
* This key derivation function is used by AES256-CTS-HMAC-SHA1-96
and AES128-CTS-HMAC-SHA1-96 encryption types, used by Active
directory. If these encryption types are allowed or not in
FIPS mode is enforced now by the FIPS:AD-SUPPORT subpolicy.
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2025:430-1
Released: Tue Feb 11 15:13:32 2025
Summary: Security update for openssl-3
Type: security
Severity: moderate
References: 1236136,CVE-2024-13176
This update for openssl-3 fixes the following issues:
- CVE-2024-13176: Fixed timing side-channel in ECDSA signature computation (bsc#1236136).
The following package changes have been done:
- python311-rank-bm25-0.2.2-150600.1.3 updated
- crypto-policies-20230920.570ea89-150600.3.3.1 updated
- libopenssl3-3.1.4-150600.5.24.1 updated
- libopenssl-3-fips-provider-3.1.4-150600.5.24.1 updated
- krb5-1.20.1-150600.11.8.1 updated
- openssl-3-3.1.4-150600.5.24.1 updated
- libgflags2_2-2.2.2-150600.1.5 updated
- libtbb12-2021.13.0-150600.1.4 updated
- libthrift-0_17_0-0.17.0-150600.1.5 updated
- opencv4-cascades-data-4.10.0-150600.1.8 updated
- libprotobuf25_5_0-25.5-150600.2.28 updated
- libglog-4-0-0.4.0-150600.1.5 updated
- python311-xlrd-2.0.1-150600.1.5 updated
- python311-wrapt-1.16.0-150600.1.5 updated
- python311-validators-0.34.0-150600.1.5 updated
- python311-uritemplate-4.1.1-150600.1.4 updated
- python311-tzdata-2024.1-150600.1.4 updated
- python311-typing_extensions-4.12.2-150600.1.4 updated
- python311-tqdm-4.66.4-150600.1.5 updated
- python311-threadpoolctl-3.5.0-150600.1.2 updated
- python311-tenacity-9.0.0-150600.1.3 updated
- python311-sniffio-1.3.1-150600.1.5 updated
- python311-six-1.16.0-150600.1.5 updated
- python311-setuptools-72.1.0-150600.1.4 updated
- python311-safetensors-0.4.3-150600.1.6 updated
- python311-regex-2024.5.15-150600.1.5 updated
- python311-red-black-tree-mod-1.22-150600.1.5 updated
- python311-rapidocr-onnxruntime-1.3.24-150600.1.2 updated
- python311-pyxlsb-1.0.10-150600.1.5 updated
- python311-pytube-15.0.0-150600.1.5 updated
- python311-python-iso639-2024.4.27-150600.1.4 updated
- python311-pypdf-4.3.1-150600.1.2 updated
- python311-pymongo-4.6.3-150600.1.6 updated
- python311-psycopg2-2.9.9-150600.1.7 updated
- python311-protobuf-4.25.5-150600.2.28 updated
- python311-primp-0.6.3-150600.1.5 updated
- python311-pluggy-1.5.0-150600.1.5 updated
- python311-peewee-3.17.6-150600.1.5 updated
- python311-packaging-24.1-150600.1.4 updated
- python311-overrides-7.7.0-150600.1.5 updated
- python311-orjson-3.10.7-150600.1.6 updated
- python311-onnxruntime-1.19.2-150600.1.3 updated
- python311-olefile-0.47-150600.1.5 updated
- python311-nest-asyncio-1.6.0-150600.1.5 updated
- python311-monotonic-1.6-150600.1.4 updated
- python311-mmh3-4.1.0-150600.1.4 updated
- python311-langsmith-0.1.52-150600.1.2 updated
- python311-langfuse-2.44.0-150600.1.4 updated
- python311-langchain-chroma-0.1.4-150600.1.4 updated
- python311-jsonpath-python-1.0.6-150600.1.5 updated
- python311-jiter-0.5.0-150600.1.5 updated
- python311-jdcal-1.4.1-150600.1.4 updated
- python311-importlib-resources-6.1.1-150600.1.5 updated
- python311-idna-3.8-150600.1.4 updated
- python311-greenlet-3.1.0-150600.1.6 updated
- python311-filetype-1.2.0-150600.1.4 updated
- python311-emoji-2.13.2-150600.1.5 updated
- python311-einops-0.8.0-150600.1.2 updated
- python311-ebcdic-1.1.1-150600.1.4 updated
- python311-easygui-0.98.3-150600.1.4 updated
- python311-docx2txt-0.8-150600.1.5 updated
- python311-django-cache-url-3.4.5-150600.1.3 updated
- python311-dj-email-url-1.0.6-150600.1.4 updated
- python311-distro-1.9.0-150600.1.5 updated
- python311-dill-0.3.8-150600.1.5 updated
- python311-defusedxml-0.7.1-150600.1.4 updated
- python311-compressed_rtf-1.0.6-150600.1.5 updated
- python311-colorclass-2.2.2-150600.1.4 updated
- python311-click-8.1.7-150600.1.5 updated
- python311-charset-normalizer-3.3.2-150600.1.5 updated
- python311-certifi-2024.7.4-150600.1.18 updated
- python311-cchardet-2.1.19-150600.1.15 updated
- python311-bitarray-2.9.2-150600.1.5 updated
- python311-bcrypt-4.2.0-150600.1.6 updated
- python311-backoff-2.2.1-150600.1.3 updated
- python311-appdirs-1.4.4-150600.1.3 updated
- python311-annotated-types-0.7.0-150600.1.4 updated
- python311-aiohappyeyeballs-2.3.7-150600.1.4 updated
- python311-XlsxWriter-3.2.0-150600.1.4 updated
- python311-PyYAML-6.0.1-150600.1.5 updated
- python311-PyPika-0.48.9-150600.1.5 updated
- python311-pypandoc-1.14-150600.1.2 updated
- python311-importlib-metadata-7.1.0-150600.1.5 updated
- python311-ftfy-6.0.3-150600.1.4 updated
- python311-pydantic-core-2.23.4-150600.1.4 updated
- python311-asgiref-3.8.1-150600.1.4 updated
- python311-lark-1.1.9-150600.1.4 updated
- python311-cffi-1.17.0-150600.1.5 updated
- python311-proto-plus-1.24.0-150600.1.3 updated
- python311-opentelemetry-proto-1.27.0-150600.1.2 updated
- python311-Pillow-10.4.0-150600.1.5 updated
- python311-typing-inspect-0.9.0-150600.1.5 updated
- python311-jsonpatch-1.33-150600.1.5 updated
- python311-fake-useragent-1.5.1-150600.1.3 updated
- python311-yarl-1.13.1-150600.1.4 updated
- python311-anyio-4.4.0-150600.1.3 updated
- python311-SQLAlchemy-2.0.32-150600.1.5 updated
- python311-multiprocess-0.70.16-150600.1.2 updated
- python311-python-oxmsg-0.0.1-150600.1.3 updated
- python311-peewee-migrate-1.13.0-150600.1.4 updated
- python311-pytest-8.3.2-150600.1.5 updated
- python311-redis-5.0.8-150600.1.3 updated
- python311-uvicorn-0.30.6-150600.1.2 updated
- python311-Werkzeug-3.0.4-150600.1.4 updated
- python311-grpcio-1.65.0-150600.1.4 updated
- libarrow1700-17.0.0-150600.2.4 updated
- python311-mpmath-1.3.0-150600.1.5 updated
- libctranslate2-4-4.4.0-150600.1.4 updated
- python311-build-1.2.1-150600.1.4 updated
- python311-Markdown-3.7-150600.1.5 updated
- python311-opentelemetry-api-1.27.0-150600.1.3 updated
- python311-pydantic-2.9.2-150600.1.3 updated
- python311-cryptography-43.0.1-150600.1.8 updated
- python311-opentelemetry-exporter-otlp-proto-common-1.27.0-150600.1.2 updated
- python311-rich-13.7.1-150600.1.4 updated
- python311-starlette-0.38.5-150600.1.3 updated
- python311-httpcore-1.0.5-150600.1.3 updated
- python311-aiohttp-3.10.8-150600.1.3 updated
- python311-python-pptx-1.0.2-150600.1.2 updated
- python311-et_xmlfile-1.0.1-150600.1.4 updated
- python311-beautifulsoup4-4.12.3-150600.1.3 updated
- python311-pytest-docker-3.1.1-150600.1.2 updated
- python311-duckduckgo-search-6.2.13-150600.1.2 updated
- python311-APScheduler-3.10.4-150600.1.3 updated
- python311-alembic-1.13.2-150600.1.2 updated
- python311-Flask-3.0.3-150600.1.3 updated
- python311-googleapis-common-protos-1.63.2-150600.1.3 updated
- libparquet1700-17.0.0-150600.2.4 updated
- libarrow_acero1700-17.0.0-150600.2.4 updated
- python311-psutil-6.0.0-150600.1.5 updated
- python311-python-jose-3.3.0-150600.1.5 updated
- python311-ctranslate2-4.4.0-150600.1.5 updated
- python311-numpy1-1.26.4-150600.1.16 updated
- python311-opentelemetry-semantic-conventions-0.48b0-150600.1.3 updated
- python311-opentelemetry-instrumentation-0.48b0-150600.1.3 updated
- python311-langchain-core-0.2.38-150600.1.4 updated
- python311-dataclasses-json-0.6.7-150600.1.2 updated
- python311-pyOpenSSL-24.2.1-150600.1.3 updated
- python311-msoffcrypto-tool-4.10.2-150600.1.3 updated
- python311-PyMySQL-1.1.1-150600.1.3 updated
- python311-PyJWT-2.9.0-150600.1.3 updated
- python311-argon2-cffi-23.1.0-150600.1.2 updated
- python311-typer-slim-0.12.5-150600.1.2 updated
- python311-fastapi-0.114.2-150600.1.2 updated
- python311-httpx-0.27.2-150600.1.3 updated
- python311-black-24.8.0-150600.1.2 updated
- python311-openpyxl-3.1.5-150600.1.3 updated
- python311-Flask-Cors-5.0.0-150600.1.3 updated
- python311-grpcio-status-1.62.2-150600.1.5 updated
- libarrow_flight1700-17.0.0-150600.2.4 updated
- libarrow_dataset1700-17.0.0-150600.2.4 updated
- python311-sympy-1.12.1-150600.1.4 updated
- python311-scipy-1.14.1-150600.1.11 updated
- python311-pandas-2.2.3-150600.1.17 updated
- python311-joblib-1.4.2-150600.1.3 updated
- python311-chroma-hnswlib-0.7.6-150600.2.2 updated
- python311-opentelemetry-sdk-1.27.0-150600.1.3 updated
- python311-langchain-text_splitters-0.2.16-150600.1.2 updated
- python311-oletools-0.60.2-150600.1.2 updated
- python311-Django-5.1.1-150600.1.2 updated
- python311-typer-0.12.5-150600.1.2 updated
- python311-openai-1.40.8-150600.1.2 updated
- python311-pyarrow-17.0.0-150600.2.16 updated
- python311-FontTools-4.53.1-150600.1.5 updated
- python311-scikit-learn-1.5.1-150600.1.12 updated
- python311-opentelemetry-util-http-0.48b0-150600.1.2 updated
- python311-opentelemetry-exporter-otlp-proto-grpc-1.27.0-150600.1.2 updated
- python311-requests-2.32.3-150600.1.5 updated
- python311-RTFDE-0.1.1-150600.1.2 updated
- python311-dj-database-url-2.3.0-150600.1.2 updated
- python311-fpdf2-2.7.9-150600.1.2 updated
- libopencv410-4.10.0-150600.1.8 updated
- python311-opentelemetry-instrumentation-asgi-0.48b0-150600.1.2 updated
- python311-youtube-transcript-api-0.6.2-150600.1.2 updated
- python311-tiktoken-0.7.0-150600.1.5 updated
- python311-python-engineio-4.8.0-150600.1.2 updated
- python311-posthog-3.6.0-150600.1.3 updated
- python311-nltk-3.9.1-150600.1.2 updated
- python311-google-auth-2.34.0-150600.1.3 updated
- python311-fsspec-2024.3.1-150600.1.5 updated
- python311-docker-7.1.0-150600.1.2 updated
- python311-botocore-1.35.21-150600.1.5 updated
- python311-extract-msg-0.49.0-150600.1.2 updated
- python311-environs-11.0.0-150600.1.2 updated
- libopencv_objdetect410-4.10.0-150600.1.8 updated
- libopencv_imgcodecs410-4.10.0-150600.1.8 updated
- python311-opentelemetry-instrumentation-fastapi-0.48b0-150600.1.3 updated
- python311-unstructured-client-0.25.9-150600.1.4 updated
- python311-langchain-community-0.2.12-150600.1.4 updated
- python311-langchain-0.2.16-150600.1.2 updated
- python311-python-socketio-5.11.4-150600.1.2 updated
- python311-kubernetes-28.1.0-150600.1.2 updated
- python311-google-auth-httplib2-0.2.0-150600.1.3 updated
- python311-google-api-core-2.19.2-150600.1.2 updated
- python311-huggingface-hub-0.23.4-150600.1.3 updated
- python311-pymilvus-2.4.7-150600.1.5 updated
- libopencv_face410-4.10.0-150600.1.8 updated
- libopencv_aruco410-4.10.0-150600.1.8 updated
- libopencv_ximgproc410-4.10.0-150600.1.8 updated
- python311-google-api-python-client-2.143.0-150600.1.2 updated
- python311-google-ai-generativelanguage-0.6.10-150600.1.2 updated
- python311-tokenizers-0.20.0-150600.1.5 updated
- python311-boto3-1.35.21-150600.1.3 updated
- python311-av-11.0.0-150600.1.4 updated
- libopencv_optflow410-4.10.0-150600.1.8 updated
- libopencv_highgui410-4.10.0-150600.1.8 updated
- python311-google-generativeai-0.8.2-150600.1.2 updated
- python311-chromadb-0.5.9-150600.1.4 updated
- python311-anthropic-0.33.1-150600.1.2 updated
- python311-faster_whisper-1.0.3-150600.1.5 updated
- python311-pydub-0.25.1-150600.1.2 updated
- libopencv_gapi410-4.10.0-150600.1.8 updated
- libopencv_videoio410-4.10.0-150600.1.8 updated
- python311-torch-2.3.1-150600.1.4 updated
- python311-opencv-4.10.0-150600.1.8 updated
- python311-datasets-3.0.1-150600.1.2 updated
- python311-transformers-4.44.2-150600.1.2 updated
- python311-unstructured-0.15.9-150600.1.4 updated
- python311-sentence-transformers-3.0.1-150600.1.4 updated
- python311-colbert-ai-0.2.21-150600.1.2 updated
- python311-open-webui-0.3.32-150600.1.44 updated
- container:registry.suse.com-bci-bci-base-15.6-6a84d2c0be31aa11bda26eb3f9c125564be351c68d9e85639bdb2428a02e466b-0 updated
More information about the sle-container-updates
mailing list