SUSE-CU-2025:1709-1: Recommended update of suse/389-ds

sle-container-updates at lists.suse.com sle-container-updates at lists.suse.com
Wed Mar 12 08:22:37 UTC 2025 

SUSE Container Update Advisory: suse/389-ds
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2025:1709-1
Container Tags        : suse/389-ds:2.2 , suse/389-ds:2.2.10 , suse/389-ds:2.2.10-36.8 , suse/389-ds:latest
Container Release     : 36.8
Severity              : moderate
Type                  : recommended
References            : 1222834 
-----------------------------------------------------------------

The container suse/389-ds was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2025:820-1
Released:    Mon Mar 10 15:17:28 2025
Summary:     Recommended update for mozilla-nss
Type:        recommended
Severity:    moderate
References:  1222834
This update for mozilla-nss fixes the following issues:

- FIPS: Do not pass in bad targetKeyLength parameters when checking for
  FIPS approval after keygen. This was causing false rejections.
- FIPS: Approve RSA signature verification  mechanisms with PKCS padding and
  legacy moduli (bsc#1222834).

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2025:832-1
Released:    Tue Mar 11 09:56:30 2025
Summary:     Recommended update for timezone
Type:        recommended
Severity:    moderate
References:  
This update for timezone fixes the following issues:

- Update to 2025a:
    * Paraguay adopts permanent -03 starting spring 2024
    * Improve pre-1991 data for the Philippines
    * Etc/Unknown is now reserved
    * Improve historical data for Mexico, Mongolia, and Portugal
    * System V names are now obsolescent
    * The main data form now uses %z
    * The code now conforms to RFC 8536 for early timestamps
    * Support POSIX.1-2024, which removes asctime_r and ctime_r
    * Assume POSIX.2-1992 or later for shell scripts
    * SUPPORT_C89 now defaults to 1


The following package changes have been done:

- libfreebl3-3.101.2-150400.3.54.1 updated
- timezone-2025a-150600.91.3.1 updated
- mozilla-nss-certs-3.101.2-150400.3.54.1 updated
- mozilla-nss-3.101.2-150400.3.54.1 updated
- libsoftokn3-3.101.2-150400.3.54.1 updated
- mozilla-nss-tools-3.101.2-150400.3.54.1 updated

More information about the sle-container-updates mailing list