SUSE-IU-2025:704-1: Security update of suse/sl-micro/6.1/kvm-os-container

sle-container-updates at lists.suse.com sle-container-updates at lists.suse.com
Sat Mar 8 08:06:01 UTC 2025 

SUSE Image Update Advisory: suse/sl-micro/6.1/kvm-os-container
-----------------------------------------------------------------
Image Advisory ID : SUSE-IU-2025:704-1
Image Tags        : suse/sl-micro/6.1/kvm-os-container:2.2.0 , suse/sl-micro/6.1/kvm-os-container:2.2.0-4.7 , suse/sl-micro/6.1/kvm-os-container:latest
Image Release     : 4.7
Severity          : moderate
Type              : security
References        : 1215628 1219823 1219826 1221164 1221482 1221940 1222992 1223423
                        1223424 1223425 1228041 1236136 1236282 CVE-2023-50387 CVE-2023-50868
                        CVE-2024-13176 CVE-2024-1931 CVE-2024-2961 CVE-2024-33599 CVE-2024-33600
                        CVE-2024-33601 CVE-2024-33602 CVE-2024-33655 CVE-2025-0395 
-----------------------------------------------------------------

The container suse/sl-micro/6.1/kvm-os-container was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: 31
Released:    Fri Mar  7 17:28:37 2025
Summary:     Security update for openssl-3
Type:        security
Severity:    moderate
References:  1215628,1219823,1219826,1221164,1236136,CVE-2023-50387,CVE-2023-50868,CVE-2024-13176,CVE-2024-1931,CVE-2024-33655
This update for openssl-3 fixes the following issues:

- CVE-2024-13176: Fixed timing side-channel in the ECDSA signature computation(bsc#1236136).

-----------------------------------------------------------------
Advisory ID: 32
Released:    Fri Mar  7 18:05:51 2025
Summary:     Security update for glibc
Type:        security
Severity:    moderate
References:  1221482,1221940,1222992,1223423,1223424,1223425,1228041,1236282,CVE-2024-2961,CVE-2024-33599,CVE-2024-33600,CVE-2024-33601,CVE-2024-33602,CVE-2025-0395
This update for glibc fixes the following issues:

- CVE-2025-0395: Fixed buffer overflow in the assert() function (bsc#1236282).


The following package changes have been done:

- glibc-2.38-slfo.1.1_3.1 updated
- libopenssl3-3.1.4-slfo.1.1_4.1 updated
- SL-Micro-release-6.1-slfo.1.11.8 updated
- glibc-locale-base-2.38-slfo.1.1_3.1 updated
- container:SL-Micro-base-container-2.2.0-4.8 updated

More information about the sle-container-updates mailing list