SUSE-CU-2025:5366-1: Security update of suse/rmt-server
sle-container-updates at lists.suse.com
sle-container-updates at lists.suse.com
Thu Jul 17 07:14:54 UTC 2025
SUSE Container Update Advisory: suse/rmt-server
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2025:5366-1
Container Tags : suse/rmt-server:2 , suse/rmt-server:2.23 , suse/rmt-server:2.23-72.3 , suse/rmt-server:latest
Container Release : 72.3
Severity : important
Type : security
References : 1242893 1242898 1244166 CVE-2025-32441 CVE-2025-46727
-----------------------------------------------------------------
The container suse/rmt-server was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2025:2330-1
Released: Wed Jul 16 13:10:05 2025
Summary: Security update for rmt-server
Type: security
Severity: important
References: 1242893,1242898,1244166,CVE-2025-32441,CVE-2025-46727
This update for rmt-server fixes the following issues:
- Update to version 2.23
- CVE-2025-46727: Fixed Unbounded-Parameter DoS in Rack:QueryParser. (bsc#1242893)
- CVE-2025-32441: Fixed a bug where simultaneous rack requests can restore a deleted rack session. (bsc#1242898)
The following package changes have been done:
- rmt-server-config-2.23-150700.3.6.1 updated
- rmt-server-2.23-150700.3.6.1 updated
More information about the sle-container-updates
mailing list