SUSE-IU-2025:1867-1: Security update of suse/sl-micro/6.1/rt-os-container

[sle-container-updates at lists.suse.com]

SUSE Image Update Advisory: suse/sl-micro/6.1/rt-os-container
-----------------------------------------------------------------
Image Advisory ID : SUSE-IU-2025:1867-1
Image Tags        : suse/sl-micro/6.1/rt-os-container:2.2.1 , suse/sl-micro/6.1/rt-os-container:2.2.1-5.7 , suse/sl-micro/6.1/rt-os-container:latest
Image Release     : 5.7
Severity          : important
Type              : security
References        : 1231463 1240897 1242844 1242987 CVE-2025-3360 CVE-2025-4373 
-----------------------------------------------------------------

The container suse/sl-micro/6.1/rt-os-container was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: 168
Released:    Fri Jul  4 10:41:41 2025
Summary:     Recommended update for elemental-operator
Type:        recommended
Severity:    moderate
References:  
This update for elemental-operator fixes the following issues:

- [v1.7.x] Label Templates: improve Random family processing
- Dockerfile: bump golang container to 1.24
- operator: update RBAC for upgrade plans

-----------------------------------------------------------------
Advisory ID: 170
Released:    Fri Jul  4 16:31:25 2025
Summary:     Recommended update for gptfdisk
Type:        recommended
Severity:    important
References:  1242987
This update for gptfdisk fixes the following issues:

- Fix boot failure with qcow and vmdk images (bsc#1242987)


-----------------------------------------------------------------
Advisory ID: 172
Released:    Mon Jul  7 13:11:11 2025
Summary:     Security update for glib2
Type:        security
Severity:    moderate
References:  1231463,1240897,1242844,CVE-2025-3360,CVE-2025-4373
This update for glib2 fixes the following issues:

Security issues:

- CVE-2025-4373: Fixed handling gssize parameters (bsc#1242844).
- CVE-2025-3360: Fixed integer overflow and buffer underread
  when parsing a very long and invalid ISO 8601 timestamp with
  g_date_time_new_from_iso8601 (bsc#1240897)

Non security issues:

- Trigger glib2-tools postun trigger exit normally if
  glib2-compile-schemas can't be run. Fixes error when uninstalling if
  libgio is uninstalled first (bsc#1231463).


The following package changes have been done:

- SL-Micro-release-6.1-slfo.1.11.42 updated
- libglib-2_0-0-2.78.6-slfo.1.1_3.1 updated
- libgobject-2_0-0-2.78.6-slfo.1.1_3.1 updated
- libgmodule-2_0-0-2.78.6-slfo.1.1_3.1 updated
- libgio-2_0-0-2.78.6-slfo.1.1_3.1 updated
- glib2-tools-2.78.6-slfo.1.1_3.1 updated
- elemental-register-1.7.3-slfo.1.1_1.1 updated
- elemental-support-1.7.3-slfo.1.1_1.1 updated
- gptfdisk-1.0.9-slfo.1.1_2.1 updated
- container:SL-Micro-container-2.2.1-6.7 updated