SUSE-CU-2025:8068-1: Security update of suse/kiosk/firefox-esr
sle-container-updates at lists.suse.com
sle-container-updates at lists.suse.com
Sat Nov 8 08:42:56 UTC 2025
SUSE Container Update Advisory: suse/kiosk/firefox-esr
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2025:8068-1
Container Tags : suse/kiosk/firefox-esr:140.4 , suse/kiosk/firefox-esr:140.4-68.12 , suse/kiosk/firefox-esr:esr , suse/kiosk/firefox-esr:latest
Container Release : 68.12
Severity : important
Type : security
References : 1248278 1250413 1250750 CVE-2021-42523 CVE-2025-8851 CVE-2025-9900
-----------------------------------------------------------------
The container suse/kiosk/firefox-esr was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2025:3949-1
Released: Wed Nov 5 11:04:35 2025
Summary: Security update for colord
Type: security
Severity: moderate
References: 1250750,CVE-2021-42523
This update for colord fixes the following issues:
- CVE-2021-42523: The original fix was wrong and did not properly free the error, resulting in a crash that has now been addressed (bsc#1250750).
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2025:3957-1
Released: Wed Nov 5 16:45:18 2025
Summary: Security update for tiff
Type: security
Severity: important
References: 1248278,1250413,CVE-2025-8851,CVE-2025-9900
This update for tiff fixes the following issues:
Update to 4.7.1:
- CVE-2025-8851: Fixed stack-based buffer overflow (bsc#1248278).
- CVE-2025-9900: Fixed write-what-where via TIFFReadRGBAImageOriented (bsc#1250413).
The following package changes have been done:
- libtiff6-4.7.1-150600.3.23.1 updated
- libcolord2-1.4.6-150600.3.8.1 updated
More information about the sle-container-updates
mailing list