SUSE-CU-2025:4268-1: Security update of suse/ltss/sle15.4/sle15

sle-container-updates at lists.suse.com sle-container-updates at lists.suse.com
Sat Jun 14 07:19:15 UTC 2025 

SUSE Container Update Advisory: suse/ltss/sle15.4/sle15
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2025:4268-1
Container Tags        : suse/ltss/sle15.4/bci-base:15.4 , suse/ltss/sle15.4/bci-base:15.4.2.47 , suse/ltss/sle15.4/bci-base:latest , suse/ltss/sle15.4/sle15:15.4 , suse/ltss/sle15.4/sle15:15.4.2.47 , suse/ltss/sle15.4/sle15:latest
Container Release     : 2.47
Severity              : important
Type                  : security
References            : 1234128 1243317 1243960 CVE-2025-4802 
-----------------------------------------------------------------

The container suse/ltss/sle15.4/sle15 was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2025:1784-1
Released:    Fri May 30 18:09:16 2025
Summary:     Security update for glibc
Type:        security
Severity:    important
References:  1234128,1243317,CVE-2025-4802
This update for glibc fixes the following issues:

Security issues fixed:

- CVE-2025-4802: possible execution of attacker controlled code when statically linked setuid binaries using dlopen
  search for libraries to load in LD_LIBRARY_PATH (bsc#1243317).

Other issues fixed:

- Multi-threaded application hang due to deadlock when `pthread_cond_signal` fails to wake up `pthread_cond_wait`
  as a consequence of a bug related to stealing of signals (bsc#1234128).

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2025:1943-1
Released:    Fri Jun 13 10:33:55 2025
Summary:     Recommended update for container-suseconnect
Type:        recommended
Severity:    moderate
References:  1243960
This update for container-suseconnect fixes the following issues:

- Fix the issue with retrieving
  the repository index file for
  service 'container-suseconnect-zypp' (bsc#1243960)   
- Switch to sha256 from md5
- use go's native fips module on tumbleweed


The following package changes have been done:

- container-suseconnect-2.5.4-150000.4.64.1 updated
- glibc-2.31-150300.95.1 updated

More information about the sle-container-updates mailing list