SUSE-CU-2025:2-1: Security update of containers/open-webui

sle-container-updates at lists.suse.com sle-container-updates at lists.suse.com
Sat Jan 4 08:03:06 UTC 2025 

SUSE Container Update Advisory: containers/open-webui
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2025:2-1
Container Tags        : containers/open-webui:0.3 , containers/open-webui:0.3.32 , containers/open-webui:0.3.32-6.10
Container Release     : 6.10
Severity              : important
Type                  : security
References            : 1212476 1218701 1219405 1221183 1229868 1232906 1233220 1234808
                        1234809 CVE-2024-56201 CVE-2024-56326 
-----------------------------------------------------------------

The container containers/open-webui was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2025:4-1
Released:    Thu Jan  2 06:27:01 2025
Summary:     Recommended update for llvm17
Type:        recommended
Severity:    important
References:  1212476,1218701,1219405,1221183,1229868,1232906,1233220
This update for llvm17 fixes the following issues:

- Add symbol versions to libclang-cpp.so similar to libLLVM.so. This is required when multiple versions of the library are loaded into the same process (bsc#1219405, bsc#1221183, bsc#1233220)
- Update llvm17.keyring from upstream
- Correct target name for libomptarget in file list
- Enable lldb on s390x and ppc64le (bsc#1232906)
- Add minor version to Python shebangs (bsc#1212476)
- Require 8 GB memory for 64-bit architectures to prevent OOM

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2025:6-1
Released:    Thu Jan  2 09:45:11 2025
Summary:     Security update for python-Jinja2
Type:        security
Severity:    important
References:  1234808,1234809,CVE-2024-56201,CVE-2024-56326
This update for python-Jinja2 fixes the following issues:

  - CVE-2024-56201: Fixed sandbox breakout through malicious content and filename of a template (bsc#1234808)
  - CVE-2024-56326: Fixed sandbox breakout through indirect reference to format method (bsc#1234809)



The following package changes have been done:

- libLLVM17-17.0.6-150600.3.5.1 updated
- python311-Jinja2-3.1.2-150400.12.11.1 updated
- python311-open-webui-0.3.32-150600.1.28 updated

More information about the sle-container-updates mailing list