SUSE-CU-2025:4820-1: Security update of suse/kiosk/firefox-esr
sle-container-updates at lists.suse.com
sle-container-updates at lists.suse.com
Tue Jul 1 13:10:13 UTC 2025
SUSE Container Update Advisory: suse/kiosk/firefox-esr
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2025:4820-1
Container Tags : suse/kiosk/firefox-esr:128.12 , suse/kiosk/firefox-esr:128.12-61.10 , suse/kiosk/firefox-esr:esr , suse/kiosk/firefox-esr:latest
Container Release : 61.10
Severity : important
Type : security
References : 1242844 1244596 CVE-2025-4373 CVE-2025-6052
-----------------------------------------------------------------
The container suse/kiosk/firefox-esr was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2025:2167-1
Released: Mon Jun 30 09:14:40 2025
Summary: Security update for glib2
Type: security
Severity: important
References: 1242844,1244596,CVE-2025-4373,CVE-2025-6052
This update for glib2 fixes the following issues:
- CVE-2025-6052: Fixed integer overflow in g_string_maybe_expand() leads to potential buffer overflow in GString (bsc#1244596).
- CVE-2025-4373: Fixed buffer underflow through glib/gstring.c via function g_string_insert_unichar (bsc#1242844).
The following package changes have been done:
- libglib-2_0-0-2.78.6-150600.4.16.1 updated
- libgthread-2_0-0-2.78.6-150600.4.16.1 updated
- libgobject-2_0-0-2.78.6-150600.4.16.1 updated
- libgmodule-2_0-0-2.78.6-150600.4.16.1 updated
- libgio-2_0-0-2.78.6-150600.4.16.1 updated
- glib2-tools-2.78.6-150600.4.16.1 updated
More information about the sle-container-updates
mailing list