SUSE-CU-2025:3575-1: Security update of suse/sl-micro/6.0/kvm-iso-image
sle-container-updates at lists.suse.com
sle-container-updates at lists.suse.com
Wed May 21 15:28:57 UTC 2025
SUSE Container Update Advisory: suse/sl-micro/6.0/kvm-iso-image
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2025:3575-1
Container Tags : suse/sl-micro/6.0/kvm-iso-image:2.1.4 , suse/sl-micro/6.0/kvm-iso-image:2.1.4-6.28 , suse/sl-micro/6.0/kvm-iso-image:latest
Container Release : 6.28
Severity : critical
Type : security
References : 1234128 1239883 1243317 CVE-2025-4802
-----------------------------------------------------------------
The container suse/sl-micro/6.0/kvm-iso-image was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: 328
Released: Wed May 21 13:04:20 2025
Summary: Security update for glibc
Type: security
Severity: critical
References: 1234128,1239883,1243317,CVE-2025-4802
This update for glibc fixes the following issues:
- CVE-2025-4802: Fixed local root exploits when using static built setuid root applications. (elf: Ignore LD_LIBRARY_PATH and debug env var for setuid for static) (bsc#1243317)
- pthreads NPTL: lost wakeup fix 2 (bsc#1234128, BZ #25847)
- Mark functions in libc_nonshared.a as hidden (bsc#1239883)
The following package changes have been done:
- glibc-2.38-9.1 updated
- container:SL-Micro-kvm-container-2.1.3-6.29 updated
- container:SL-Micro-container-2.1.3-6.29 updated
More information about the sle-container-updates
mailing list