SUSE-IU-2025:2131-1: Security update of suse/sl-micro/6.0/baremetal-os-container

sle-container-updates at lists.suse.com sle-container-updates at lists.suse.com
Tue Jul 29 07:18:48 UTC 2025 

SUSE Image Update Advisory: suse/sl-micro/6.0/baremetal-os-container
-----------------------------------------------------------------
Image Advisory ID : SUSE-IU-2025:2131-1
Image Tags        : suse/sl-micro/6.0/baremetal-os-container:2.1.3 , suse/sl-micro/6.0/baremetal-os-container:2.1.3-6.61 , suse/sl-micro/6.0/baremetal-os-container:latest
Image Release     : 6.61
Severity          : important
Type              : security
References        : 1216091 1218459 1241052 1242844 1243450 1244596 CVE-2024-23337
                        CVE-2025-4373 CVE-2025-6052 
-----------------------------------------------------------------

The container suse/sl-micro/6.0/baremetal-os-container was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: 388
Released:    Mon Jul 21 11:01:26 2025
Summary:     Recommended update for rpm
Type:        recommended
Severity:    important
References:  1216091,1218459,1241052
This update for rpm fixes the following issues:

- fix --runposttrans not working correctly with the --root
  option [bsc#1216091]

  * added 'rpm_fixed_runposttrans' provides for libzypp

- print scriptlet messages in --runposttrans
  * needed to fix leaking tmp files [bsc#1218459]

- fix memory leak in str2locale [bsc#1241052]


-----------------------------------------------------------------
Advisory ID: 393
Released:    Thu Jul 24 13:41:34 2025
Summary:     Security update for jq
Type:        security
Severity:    moderate
References:  1243450,CVE-2024-23337
This update for jq fixes the following issues:

- CVE-2024-23337: Fixed signed integer overflow in jv.c:jvp_array_write (bsc#1243450)

-----------------------------------------------------------------
Advisory ID: 395
Released:    Thu Jul 24 13:51:08 2025
Summary:     Security update for glib2
Type:        security
Severity:    important
References:  1242844,1244596,CVE-2025-4373,CVE-2025-6052
This update for glib2 fixes the following issues:

- CVE-2025-4373: Fixed buffer underflow through glib/gstring.c via 
  function g_string_insert_unichar (bsc#1242844)
- CVE-2025-6052: Fixed integer overflow in g_string_maybe_expand() 
  leads to potential buffer overflow in GString (bsc#1244596)


The following package changes have been done:

- rpm-4.18.0-7.1 updated
- SL-Micro-release-6.0-25.38 updated
- libglib-2_0-0-2.76.2-9.1 updated
- libgobject-2_0-0-2.76.2-9.1 updated
- libgmodule-2_0-0-2.76.2-9.1 updated
- libgio-2_0-0-2.76.2-9.1 updated
- glib2-tools-2.76.2-9.1 updated
- libjq1-1.6-4.1 updated
- jq-1.6-4.1 updated
- container:SL-Micro-base-container-2.1.3-7.29 updated

More information about the sle-container-updates mailing list