SUSE-CU-2025:3091-1: Security update of suse/nginx

sle-container-updates at lists.suse.com sle-container-updates at lists.suse.com
Sat May 3 15:57:09 UTC 2025 

SUSE Container Update Advisory: suse/nginx
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2025:3091-1
Container Tags        : suse/nginx:1.21 , suse/nginx:1.21-52.4 , suse/nginx:latest
Container Release     : 52.4
Severity              : important
Type                  : security
References            : 1175825 1241453 1241551 CVE-2020-8927 CVE-2025-32414 CVE-2025-32415
-----------------------------------------------------------------

The container suse/nginx was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2021:3942-1
Released:    Mon Dec  6 14:46:05 2021
Summary:     Security update for brotli
Type:        security
Severity:    moderate
References:  1175825,CVE-2020-8927
This update for brotli fixes the following issues:

- CVE-2020-8927: Fixed integer overflow when input chunk is larger than 2GiB (bsc#1175825).

-----------------------------------------------------------------
Advisory ID: 38402
Released:    Fri Apr 25 11:05:30 2025
Summary:     Recommended update for freetype2
Type:        recommended
Severity:    important
References:  
This update for freetype2 fixes the following issue:

- enable brotli support (jsc#PED-12258)

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2025:1438-1
Released:    Fri May  2 15:44:07 2025
Summary:     Security update for libxml2
Type:        security
Severity:    moderate
References:  1241453,1241551,CVE-2025-32414,CVE-2025-32415
This update for libxml2 fixes the following issues:

- CVE-2025-32414: Fixed an out-of-bounds read when parsing text via the Python API. (bsc#1241551)
- CVE-2025-32415: Fixed a crafted XML document may lead to a heap-based buffer under-read. (bsc#1241453)


The following package changes have been done:

- libbrotlicommon1-1.0.7-3.3.1 added
- libbrotlidec1-1.0.7-3.3.1 added
- libxml2-2-2.10.3-150500.5.26.1 updated
- libfreetype6-2.10.4-150000.4.22.1 updated
- container:registry.suse.com-bci-bci-base-15.6-50358a4079af6d4b80ef656f9ae1c8f61d1da12c04b02f14f9a094c13917cb66-0 updated

More information about the sle-container-updates mailing list