SUSE-IU-2025:2712-1: Recommended update of suse/sl-micro/6.1/baremetal-os-container
sle-container-updates at lists.suse.com
sle-container-updates at lists.suse.com
Wed Oct 15 07:07:12 UTC 2025
SUSE Image Update Advisory: suse/sl-micro/6.1/baremetal-os-container
-----------------------------------------------------------------
Image Advisory ID : SUSE-IU-2025:2712-1
Image Tags : suse/sl-micro/6.1/baremetal-os-container:2.2.1 , suse/sl-micro/6.1/baremetal-os-container:2.2.1-7.14 , suse/sl-micro/6.1/baremetal-os-container:latest
Image Release : 7.14
Severity : moderate
Type : recommended
References : 1220763 1228879 1229238 1229685 1229822 1230078 1231373 1231727
1235695 1236151 1237137 1239092 1240031 1241897 1243923 1244263
CVE-2024-43374 CVE-2024-43790 CVE-2024-43802 CVE-2024-45306 CVE-2024-47814
CVE-2025-1215 CVE-2025-22134 CVE-2025-24014
-----------------------------------------------------------------
The container suse/sl-micro/6.1/baremetal-os-container was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: 217
Released: Thu Aug 14 16:16:22 2025
Summary: Recommended update for libpulp
Type: recommended
Severity: moderate
References: 1220763,1228879,1229238,1229685,1229822,1230078,1231373,1231727,1235695,1236151,1237137,1239092,1240031,1241897,1243923,1244263,CVE-2024-43374,CVE-2024-43790,CVE-2024-43802,CVE-2024-45306,CVE-2024-47814,CVE-2025-1215,CVE-2025-22134,CVE-2025-24014
This update for libpulp fixes the following issues:
Update package with libpulp-0.3.15:
- Fix race condition on ppc64le livepatching (bsc#1244263)
- Fix SIGABRT when non-valid JSON is given at input (bsc#1243923)
- Fix linking against libpthread on older versions of glibc for ppc64le.
Update package with libpulp-0.3.14:
- Remove any linking to GLIBC_PRIVATE symbols.
Update package with libpulp-0.3.13:
- Improve detection of -msplit-patch-nops flag (bsc#1240031).
- Allow `trigger` to disable seccomp in target process while livepaching.
- Make sure libpulp don't crash when calling libc.so.6 (bsc#1241897)
Update package with libpulp-0.3.12:
- Remove TEXTRELs in ppc64le port (bsc#1239092).
- Check for -msplit-patch-nops flag.
Update package with libpulp-0.3.11:
- Detect whenever the process was loaded in a custom starting address.
- ulp_stack now allocates multiples of page size.
- Fix livepatching of `malloc` in ppc64le (jsc#PED-11850).
Update package with libpulp-0.3.10:
- Fix livepatching on Debian systems.
- Improve error message when ptrace_scope is active.
- Avoid saving unecessary registers in ppc64le.
- Fix failing tests when libpulp is loaded system-wide.
- Correct TOC loading in ppc64le (jsc#PED-11850).
Update package with libpulp-0.3.9:
- Fix limitation in ppc64le not being able to livepatch functions with more
than 8 parameters (jsc#PED-11850).
- Re-enable support for userspace livepatching in ppc64le (jsc#PED-11850).
- Disable build on ppc64le until gcc-13 pfe patch reaches SP7.
- Update package with libpulp-0.3.8:
- Fix livepatching failure in glibc 2.40.
- Force compilation with gcc-13 for SP7 and Tumbleweed (jsc#PED-10952).
- Add ppc64le as supported architecture (jsc#PED-10952).
- Cleanup /var/livepatches on boot time.
- Add timestamps on each message.
- Update rpm-helper script for SLE Micro (bsc#1228879).
- Update macros.userspace-livepatch for SLE Micro (bsc#1228879).
- Guard macros behind sle_version >= 1600.
- Add SELinux policy for /var/livepatches (bsc#1228879).
- Update rpm-helper script for SLE Micro.
Update package with libpulp-0.3.7
- Fix fails due to realpath returning NULL in SLE-Micro.
- Return insn_queue because of permission errors on /proc/self/mem.
- Fix livepatch of malloc (bsc#1231727).
The following package changes have been done:
- vim-data-common-9.1.1629-slfo.1.1_1.1 updated
- vim-small-9.1.1629-slfo.1.1_1.1 updated
- container:SL-Micro-base-container-2.2.1-5.38 updated
More information about the sle-container-updates
mailing list