SUSE-IU-2025:10-1: Security update of suse/sl-micro/6.0/kvm-os-container

sle-container-updates at lists.suse.com sle-container-updates at lists.suse.com
Tue Jan 7 08:08:43 UTC 2025 

SUSE Image Update Advisory: suse/sl-micro/6.0/kvm-os-container
-----------------------------------------------------------------
Image Advisory ID : SUSE-IU-2025:10-1
Image Tags        : suse/sl-micro/6.0/kvm-os-container:2.1.3 , suse/sl-micro/6.0/kvm-os-container:2.1.3-4.34 , suse/sl-micro/6.0/kvm-os-container:latest
Image Release     : 4.34
Severity          : moderate
Type              : security
References        : 1233078 1234068 CVE-2024-10963 CVE-2024-11053 
-----------------------------------------------------------------

The container suse/sl-micro/6.0/kvm-os-container was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: 164
Released:    Mon Jan  6 11:11:02 2025
Summary:     Security update for pam
Type:        security
Severity:    moderate
References:  1233078,CVE-2024-10963
This update for pam fixes the following issues:

- CVE-2024-10963: Fixed improper hostname interpretation in pam_access that could lead to access control bypass (bsc#1233078).

-----------------------------------------------------------------
Advisory ID: 166
Released:    Mon Jan  6 11:20:47 2025
Summary:     Security update for curl
Type:        security
Severity:    moderate
References:  1234068,CVE-2024-11053
This update for curl fixes the following issues:

- CVE-2024-11053: Fixed password leak used for the first host to the followed-to host under certain circumstances (bsc#1234068)

-----------------------------------------------------------------
Advisory ID: 168
Released:    Mon Jan  6 12:20:58 2025
Summary:     Recommended update for liburing
Type:        recommended
Severity:    moderate
References:  
This update for liburing fixes the following issues:

Update to 2.6:

  * Add getsockopt and setsockopt socket commands
  * Add test cases to test/hardlink
  * Man page fixes
  * Add futex support, and test cases
  * Add waitid support, and test cases
  * Add read multishot, and test cases
  * Add support for IORING_SETUP_NO_SQARRAY
  * Use IORING_SETUP_NO_SQARRAY as the default
  * Add support for IORING_OP_FIXED_FD_INSTALL
  * Add io_uring_prep_fixed_fd_install() helper
  * Support for napi busy polling
  * Improve/add test cases
  * Man page fixes
  * Add sample 'proxy' example

Update to 2.5:

  * Add support for io_uring_prep_cmd_sock()
  * Add support for application allocated ring memory, for placing rings
    in huge mem. Available through io_uring_queue_init_mem().
  * Add support for registered ring fds
  * Various documentation updates
  * Various fixes


The following package changes have been done:

- pam-1.6.0-4.1 updated
- SL-Micro-release-6.0-24.39 updated
- liburing2-2.6-1.1 updated
- libcurl4-8.6.0-5.1 updated
- container:SL-Micro-base-container-2.1.3-4.32 updated

More information about the sle-container-updates mailing list