SUSE-IU-2025:3718-1: Security update of suse/sl-micro/6.1/base-os-container

[sle-container-updates at lists.suse.com]

SUSE Image Update Advisory: suse/sl-micro/6.1/base-os-container
-----------------------------------------------------------------
Image Advisory ID : SUSE-IU-2025:3718-1
Image Tags        : suse/sl-micro/6.1/base-os-container:2.2.1 , suse/sl-micro/6.1/base-os-container:2.2.1-5.53 , suse/sl-micro/6.1/base-os-container:latest
Image Release     : 5.53
Severity          : moderate
Type              : security
References        : 1249055 1252930 1252931 1252932 1252933 1252934 1252935 CVE-2025-54770
                        CVE-2025-54771 CVE-2025-61661 CVE-2025-61662 CVE-2025-61663 CVE-2025-61664
                        CVE-2025-7039 
-----------------------------------------------------------------

The container suse/sl-micro/6.1/base-os-container was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: 341
Released:    Fri Nov 21 14:08:21 2025
Summary:     Security update for grub2
Type:        security
Severity:    moderate
References:  1252930,1252931,1252932,1252933,1252934,1252935,CVE-2025-54770,CVE-2025-54771,CVE-2025-61661,CVE-2025-61662,CVE-2025-61663,CVE-2025-61664
This update for grub2 fixes the following issues:

- CVE-2025-54770: Missing unregister call for net_set_vlan command may lead to use-after-free (bsc#1252930)
- CVE-2025-54771: grub_file_close() does not properly controls the fs refcount (bsc#1252931)
- CVE-2025-61661: Out-of-bounds write in grub_usb_get_string() function (bsc#1252932)
- CVE-2025-61662: Missing unregister call for gettext command may lead to use-after-free (bsc#1252933)
- CVE-2025-61663: Missing unregister call for normal commands may lead to use-after-free (bsc#1252934)
- CVE-2025-61664: Missing unregister call for normal_exit command may lead to use-after-free (bsc#1252935)

-----------------------------------------------------------------
Advisory ID: 342
Released:    Fri Nov 21 14:15:09 2025
Summary:     Security update for glib2
Type:        security
Severity:    moderate
References:  1249055,CVE-2025-7039
This update for glib2 fixes the following issues:

- CVE-2025-7039: Fixed Buffer Under-read in gfileutils.c (bsc#1249055)


The following package changes have been done:

- grub2-2.12-slfo.1.1_3.1 updated
- grub2-i386-pc-2.12-slfo.1.1_3.1 updated
- grub2-x86_64-efi-2.12-slfo.1.1_3.1 updated
- SL-Micro-release-6.1-slfo.1.11.69 updated
- libglib-2_0-0-2.78.6-slfo.1.1_5.1 updated
- libgobject-2_0-0-2.78.6-slfo.1.1_5.1 updated
- libgmodule-2_0-0-2.78.6-slfo.1.1_5.1 updated
- libgio-2_0-0-2.78.6-slfo.1.1_5.1 updated
- glib2-tools-2.78.6-slfo.1.1_5.1 updated
- container:suse-toolbox-image-1.0.0-4.89 updated