SUSE-CU-2025:1829-1: Security update of containers/open-webui

sle-container-updates at lists.suse.com sle-container-updates at lists.suse.com
Tue Mar 18 08:03:31 UTC 2025 

SUSE Container Update Advisory: containers/open-webui
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2025:1829-1
Container Tags        : containers/open-webui:0 , containers/open-webui:0.5.14 , containers/open-webui:0.5.14-9.2
Container Release     : 9.2
Severity              : important
Type                  : security
References            : 1202848 1215945 1223070 1223235 1223256 1223272 1223304 1223437
                        1227296 1229026 1229338 1234028 1235092 1236007 1237351 1237358
                        1237371 1237382 CVE-2023-49502 CVE-2023-50010 CVE-2023-51793
                        CVE-2023-51794 CVE-2023-51798 CVE-2024-12361 CVE-2024-31578 CVE-2024-32230
                        CVE-2024-35368 CVE-2024-36613 CVE-2024-7055 CVE-2025-0518 CVE-2025-22919
                        CVE-2025-22921 CVE-2025-25473 
-----------------------------------------------------------------

The container containers/open-webui was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2025:862-1
Released:    Fri Mar 14 09:45:29 2025
Summary:     Security update for ffmpeg-4
Type:        security
Severity:    important
References:  1202848,1215945,1223070,1223235,1223256,1223272,1223304,1223437,1227296,1229026,1229338,1234028,1235092,1236007,1237351,1237358,1237371,1237382,CVE-2023-49502,CVE-2023-50010,CVE-2023-51793,CVE-2023-51794,CVE-2023-51798,CVE-2024-12361,CVE-2024-31578,CVE-2024-32230,CVE-2024-35368,CVE-2024-36613,CVE-2024-7055,CVE-2025-0518,CVE-2025-22919,CVE-2025-22921,CVE-2025-25473
This update for ffmpeg-4 fixes the following issues:
  
- CVE-2025-22921: Fixed segmentation violation in NULL pointer dereference via the component /libavcodec/jpeg2000dec.c (bsc#1237382).
- CVE-2025-25473: Fixed memory leak in avformat_free_context() (bsc#1237351).
- CVE-2025-0518: Fixed unchecked sscanf return value which leads to memory data leak (bsc#1236007).
- CVE-2025-22919: Fixed denial of service (DoS) via opening a crafted AAC file (bsc#1237371).
- CVE-2024-12361: Fixed NULL Pointer Dereference (bsc#1237358).
- CVE-2024-35368: Fixed Double Free via the rkmpp_retrieve_frame function within libavcodec/rkmppdec.c (bsc#1234028).
- CVE-2024-36613: Fixed Integer overflow in ffmpeg (bsc#1235092).
- CVE-2023-50010: Fixed arbitrary code execution via the set_encoder_id function in /fftools/ffmpeg_enc.c component (bsc#1223256).
- CVE-2023-51794: Fixed heap-buffer-overflow at libavfilter/af_stereowiden.c (bsc#1223437).
- CVE-2023-51793: Fixed heap buffer overflow in the image_copy_plane function in libavutil/imgutils.c (bsc#1223272).
- CVE-2023-49502: Fixed heap buffer overflow via the ff_bwdif_filter_intra_c function in libavfilter/bwdifdsp.c (bsc#1223235).
- CVE-2023-51798: Fixed floating point exception(FPE) via the interpolate function in libavfilter/vf_minterpolate.c (bsc#1223304).
- CVE-2024-31578: Fixed heap use-after-free via the av_hwframe_ctx_init function (bsc#1223070).
- CVE-2024-7055: Fixed heap-based buffer overflow in pnmdec.c (bsc#1229026).
- CVE-2024-32230: Fixed buffer overflow due to negative-size-param bug at libavcodec/mpegvideo_enc.c in load_input_picture (bsc#1227296).

Other fixes:
- Updated to version 4.4.5.
  

The following package changes have been done:

- opencv4-cascades-data-4.11.0-150600.1.4 updated
- libSDL2-2_0-0-2.28.5-150600.1.4 added
- libzvbi0-0.2.35-2.22 added
- python311-rapidocr-onnxruntime-1.3.24-150600.1.16 updated
- libavutil56_70-4.4.5-150600.13.16.1 updated
- python311-torch-2.5.0-150600.1.13 updated
- libswscale5_9-4.4.5-150600.13.16.1 updated
- libswresample3_9-4.4.5-150600.13.16.1 updated
- libpostproc55_9-4.4.5-150600.13.16.1 updated
- libavresample4_0-4.4.5-150600.13.16.1 updated
- libavcodec58_134-4.4.5-150600.13.16.1 updated
- python311-fpdf2-2.8.2-150600.1.6 updated
- libavformat58_76-4.4.5-150600.13.16.1 updated
- libopencv411-4.11.0-150600.1.4 updated
- libavfilter7_110-4.4.5-150600.13.16.1 updated
- libopencv_objdetect411-4.11.0-150600.1.4 updated
- libopencv_imgcodecs411-4.11.0-150600.1.4 updated
- libavdevice58_13-4.4.5-150600.13.16.1 updated
- libopencv_face411-4.11.0-150600.1.4 updated
- libopencv_aruco411-4.11.0-150600.1.4 updated
- libopencv_ximgproc411-4.11.0-150600.1.4 updated
- python311-av-11.0.0-150600.1.16 updated
- ffmpeg-4-4.4.5-150600.13.16.1 updated
- libopencv_optflow411-4.11.0-150600.1.4 updated
- libopencv_highgui411-4.11.0-150600.1.4 updated
- python311-datasets-3.0.1-150600.1.23 updated
- python311-pydub-0.25.1-150600.1.19 updated
- libopencv_gapi411-4.11.0-150600.1.4 updated
- python311-colbert-ai-0.2.21-150600.1.24 updated
- libopencv_videoio411-4.11.0-150600.1.4 updated
- python311-opencv-4.11.0-150600.1.4 updated
- python311-open-webui-0.5.14-150600.1.3 updated
- libcelt0-2-0.11.3-150000.3.5.1 removed
- libvmaf1-2.2.0-150400.1.8 removed

More information about the sle-container-updates mailing list