SUSE-CU-2025:4815-1: Security update of bci/golang
sle-container-updates at lists.suse.com
sle-container-updates at lists.suse.com
Tue Jul 1 07:33:10 UTC 2025
SUSE Container Update Advisory: bci/golang
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2025:4815-1
Container Tags : bci/golang:1.24 , bci/golang:1.24.4 , bci/golang:1.24.4-1.71.9 , bci/golang:latest , bci/golang:stable , bci/golang:stable-1.71.9
Container Release : 71.9
Severity : important
Type : security
References : 1242844 1244596 CVE-2025-4373 CVE-2025-6052
-----------------------------------------------------------------
The container bci/golang was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2025:2167-1
Released: Mon Jun 30 09:14:40 2025
Summary: Security update for glib2
Type: security
Severity: important
References: 1242844,1244596,CVE-2025-4373,CVE-2025-6052
This update for glib2 fixes the following issues:
- CVE-2025-6052: Fixed integer overflow in g_string_maybe_expand() leads to potential buffer overflow in GString (bsc#1244596).
- CVE-2025-4373: Fixed buffer underflow through glib/gstring.c via function g_string_insert_unichar (bsc#1242844).
The following package changes have been done:
- libglib-2_0-0-2.78.6-150600.4.16.1 updated
- container:registry.suse.com-bci-bci-base-15.7-87a46906f9bf3b6b8a2f5d858598eb70f4d68fe75af274ee20c6c5b5532c6f4d-0 updated
More information about the sle-container-updates
mailing list