SUSE-CU-2025:4994-1: Security update of bci/golang
sle-container-updates at lists.suse.com
sle-container-updates at lists.suse.com
Tue Jul 8 10:11:51 UTC 2025
SUSE Container Update Advisory: bci/golang
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2025:4994-1
Container Tags : bci/golang:1.24 , bci/golang:1.24.4 , bci/golang:1.24.4-1.71.13 , bci/golang:latest , bci/golang:stable , bci/golang:stable-1.71.13
Container Release : 71.13
Severity : moderate
Type : security
References : 1240366 CVE-2025-27587
-----------------------------------------------------------------
The container bci/golang was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2025:2236-1
Released: Mon Jul 7 14:58:53 2025
Summary: Security update for openssl-3
Type: security
Severity: moderate
References: 1240366,CVE-2025-27587
This update for openssl-3 fixes the following issues:
- CVE-2025-27587: Fixed Minerva side channel vulnerability in P-384 (bsc#1240366).
- Backport mdless cms signing support [jsc#PED-12895]
The following package changes have been done:
- libopenssl3-3.2.3-150700.5.10.1 updated
- libopenssl-3-fips-provider-3.2.3-150700.5.10.1 updated
- container:registry.suse.com-bci-bci-base-15.7-f2b1cfe0af5829ac28493242a7a9b6b5b578979851467643d1bf5c5b4ca69b32-0 updated
More information about the sle-container-updates
mailing list