SUSE-IU-2025:3587-1: Security update of suse/sle-micro/5.5
sle-container-updates at lists.suse.com
sle-container-updates at lists.suse.com
Fri Nov 7 08:11:31 UTC 2025
SUSE Image Update Advisory: suse/sle-micro/5.5
-----------------------------------------------------------------
Image Advisory ID : SUSE-IU-2025:3587-1
Image Tags : suse/sle-micro/5.5:2.0.4 , suse/sle-micro/5.5:2.0.4-5.5.398 , suse/sle-micro/5.5:latest
Image Release : 5.5.398
Severity : important
Type : security
References : 1252232 CVE-2025-31133 CVE-2025-52565 CVE-2025-52881
-----------------------------------------------------------------
The container suse/sle-micro/5.5 was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2025:3950-1
Released: Wed Nov 5 11:22:31 2025
Summary: Security update for runc
Type: security
Severity: important
References: 1252232,CVE-2025-31133,CVE-2025-52565,CVE-2025-52881
This update for runc fixes the following issues:
- CVE-2025-31133: Fixed container escape via 'masked path' abuse due to mount race conditions (bsc#1252232).
- CVE-2025-52565: Fixed container escape with malicious config due to /dev/console mount and related races (bsc#1252232).
- CVE-2025-52881: Fixed container escape and denial of service due to arbitrary write gadgets and procfs write redirects (bsc#1252232).
Update to runc v1.2.7.
- Upstream changelog is available from <https://github.com/opencontainers/runc/releases/tag/v1.2.7>
The following package changes have been done:
- runc-1.2.7-150000.80.1 updated
More information about the sle-container-updates
mailing list