SUSE-CU-2025:5620-1: Security update of suse/manager/5.0/x86_64/proxy-httpd

sle-container-updates at lists.suse.com sle-container-updates at lists.suse.com
Wed Jul 23 20:18:06 UTC 2025 

SUSE Container Update Advisory: suse/manager/5.0/x86_64/proxy-httpd
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2025:5620-1
Container Tags        : suse/manager/5.0/x86_64/proxy-httpd:5.0.5 , suse/manager/5.0/x86_64/proxy-httpd:5.0.5.7.23.1 , suse/manager/5.0/x86_64/proxy-httpd:latest
Container Release     : 7.23.1
Severity              : critical
Type                  : security
References            : 1157520 1229825 1230282 1230403 1230908 1233371 1234608 1235847
                        1236565 1236621 1236779 1236877 1236910 1237294 1237710 1237770
                        1237938 1238173 1238320 1238514 1238827 1238922 1239154 1239558
                        1239559 1239604 1239621 1239743 1239744 1239747 1239801 1239826
                        1239868 1239903 1239907 1240010 1240023 1240038 1240050 1240076
                        1240124 1240131 1240160 1240386 1240604 1240635 1240666 1240901
                        1240984 1241034 1241094 1241239 1241286 1241455 1241490 1241880
                        1242004 1242010 1242030 1242135 1242148 1242561 1242827 1242844
                        1242916 1243226 1243239 1243241 1243268 1243292 1243375 1243460
                        1243724 1243765 1243821 1243825 1243935 1244554 1244555 1244557
                        1244561 1244564 1244565 1244566 1244567 1244568 1244570 1244571
                        1244572 1244574 1244575 1244590 1244596 1244700 1245005 1245222
                        1245368 1246119 CVE-2024-38822 CVE-2024-38823 CVE-2024-38824
                        CVE-2024-38825 CVE-2025-22236 CVE-2025-22237 CVE-2025-22238 CVE-2025-22239
                        CVE-2025-22240 CVE-2025-22241 CVE-2025-22242 CVE-2025-23392 CVE-2025-23393
                        CVE-2025-4373 CVE-2025-4598 CVE-2025-46809 CVE-2025-46811 CVE-2025-47287
                        CVE-2025-49794 CVE-2025-49795 CVE-2025-49796 CVE-2025-6018 CVE-2025-6021
                        CVE-2025-6052 CVE-2025-6170 
-----------------------------------------------------------------

The container suse/manager/5.0/x86_64/proxy-httpd was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2025:2080-1
Released:    Tue Jun 24 12:26:23 2025
Summary:     Security update for pam-config
Type:        security
Severity:    important
References:  1243226,CVE-2025-6018
This update for pam-config fixes the following issues:

- CVE-2025-6018: Stop adding pam_env in AUTH stack, and be sure to put this module at the really end of the SESSION stack (bsc#1243226).

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2025:2167-1
Released:    Mon Jun 30 09:14:40 2025
Summary:     Security update for glib2
Type:        security
Severity:    important
References:  1242844,1244596,CVE-2025-4373,CVE-2025-6052
This update for glib2 fixes the following issues:

- CVE-2025-6052: Fixed integer overflow in g_string_maybe_expand() leads to potential buffer overflow in GString (bsc#1244596).
- CVE-2025-4373: Fixed buffer underflow through glib/gstring.c via function g_string_insert_unichar (bsc#1242844).

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2025:2244-1
Released:    Tue Jul  8 10:44:02 2025
Summary:     Security update for systemd
Type:        security
Severity:    moderate
References:  1242827,1243935,CVE-2025-4598
This update for systemd fixes the following issues:

- CVE-2025-4598: Fixed race condition that allows a local attacker to crash a SUID program and gain read access to the resulting core dump (bsc#1243935).

Other bugfixes:

- logs-show: get timestamp and boot ID only when necessary (bsc#1242827).

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2025:2314-1
Released:    Tue Jul 15 14:34:08 2025
Summary:     Security update for libxml2
Type:        security
Severity:    important
References:  1244554,1244555,1244557,1244590,1244700,CVE-2025-49794,CVE-2025-49795,CVE-2025-49796,CVE-2025-6021,CVE-2025-6170
This update for libxml2 fixes the following issues:

- CVE-2025-49794: Fixed a heap use after free which could lead to denial of service. (bsc#1244554)
- CVE-2025-49796: Fixed type confusion which could lead to denial of service. (bsc#1244557)
- CVE-2025-49795: Fixed a null pointer dereference which could lead to denial of service. (bsc#1244555)
- CVE-2025-6170: Fixed a stack buffer overflow which could lead to a crash. (bsc#1244700)
- CVE-2025-6021: Fixed an integer overflow in xmlBuildQName() which could lead to stack buffer overflow. (bsc#1244590)

-----------------------------------------------------------------
Advisory ID: SUSE-Manager-5.0-2025-2478
Released:    Wed Jul 23 14:39:10 2025
Summary:     Security update for Multi-Linux Manager 5.0: Server, Proxy and Retail Server
Type:        security
Severity:    critical
References:  1157520,1229825,1230282,1230403,1230908,1233371,1234608,1235847,1236565,1236621,1236779,1236877,1236910,1237294,1237710,1237770,1237938,1238173,1238320,1238514,1238827,1238922,1239154,1239558,1239559,1239604,1239621,1239743,1239744,1239747,1239801,1239826,1239868,1239903,1239907,1240010,1240023,1240038,1240050,1240076,1240124,1240131,1240160,1240386,1240604,1240635,1240666,1240901,1240984,1241034,1241094,1241239,1241286,1241455,1241490,1241880,1242004,1242010,1242030,1242135,1242148,1242561,1242916,1243239,1243241,1243268,1243292,1243375,1243460,1243724,1243765,1243821,1243825,1244561,1244564,1244565,1244566,1244567,1244568,1244570,1244571,1244572,1244574,1244575,1245005,1245222,1245368,1246119,CVE-2024-38822,CVE-2024-38823,CVE-2024-38824,CVE-2024-38825,CVE-2025-22236,CVE-2025-22237,CVE-2025-22238,CVE-2025-22239,CVE-2025-22240,CVE-2025-22241,CVE-2025-22242,CVE-2025-23392,CVE-2025-23393,CVE-2025-46809,CVE-2025-46811,CVE-2025-47287
Security update for Multi-Linux Manager 5.0: Server, Proxy and Retail Branch Server:

This is a codestream only update


The following package changes have been done:

- libgmodule-2_0-0-2.78.6-150600.4.16.1 updated
- libgobject-2_0-0-2.78.6-150600.4.16.1 updated
- pam-config-1.1-150600.16.8.1 updated
- release-notes-susemanager-proxy-5.0.5-150600.11.28.1 updated
- libsystemd0-254.25-150600.4.40.1 updated
- python3-uyuni-common-libs-5.0.7-150600.2.9.2 updated
- systemd-254.25-150600.4.40.1 updated
- libgio-2_0-0-2.78.6-150600.4.16.1 updated
- glib2-tools-2.78.6-150600.4.16.1 updated
- python3-libxml2-2.10.3-150500.5.29.1 updated
- spacewalk-backend-5.0.14-150600.4.17.1 updated
- python3-spacewalk-client-tools-5.0.10-150600.4.12.4 updated
- spacewalk-client-tools-5.0.10-150600.4.12.4 updated
- spacewalk-proxy-package-manager-5.0.6-150600.3.9.2 updated
- spacewalk-proxy-common-5.0.6-150600.3.9.2 updated
- spacewalk-proxy-broker-5.0.6-150600.3.9.2 updated
- spacewalk-proxy-redirect-5.0.6-150600.3.9.2 updated

More information about the sle-container-updates mailing list