SUSE-CU-2025:7517-1: Security update of containers/ollama
sle-container-updates at lists.suse.com
sle-container-updates at lists.suse.com
Fri Oct 24 07:06:00 UTC 2025
SUSE Container Update Advisory: containers/ollama
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2025:7517-1
Container Tags : containers/ollama:0 , containers/ollama:0.11.4 , containers/ollama:0.11.4-10.79
Container Release : 10.79
Severity : important
Type : security
References : 1232234 1240058 1241219 1246221 1246965 1247144 1247148 1250232
CVE-2024-10041 CVE-2025-3576 CVE-2025-8058 CVE-2025-9230
-----------------------------------------------------------------
The container containers/ollama was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: SUSE-RU-2025:2956-1
Released: Fri Aug 22 08:57:48 2025
Summary: Recommended update for openssl-3
Type: recommended
Severity: moderate
References: 1247144,1247148
This update for openssl-3 fixes the following issues:
- Increased limit for CRL download (bsc#1247148, bsc#1247144)
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2025:2964-1
Released: Fri Aug 22 14:52:39 2025
Summary: Security update for glibc
Type: security
Severity: moderate
References: 1240058,1246965,CVE-2025-8058
This update for glibc fixes the following issues:
- CVE-2025-8058: Fixed double-free after allocation failure in regcomp. (bsc#1246965)
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2025:2970-1
Released: Mon Aug 25 10:27:57 2025
Summary: Security update for pam
Type: security
Severity: moderate
References: 1232234,1246221,CVE-2024-10041
This update for pam fixes the following issues:
- Improve previous CVE-2024-10041 fix which led to CPU performance issues (bsc#1232234)
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2025:3442-1
Released: Tue Sep 30 16:54:04 2025
Summary: Security update for openssl-3
Type: security
Severity: important
References: 1250232,CVE-2025-9230
This update for openssl-3 fixes the following issues:
- CVE-2025-9230: incorrect check of key size can lead to out-of-bounds read and write in RFC 3211 KEK unwrap
(bsc#1250232).
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2025:3699-1
Released: Tue Oct 21 12:07:47 2025
Summary: Security update for krb5
Type: security
Severity: moderate
References: 1241219,CVE-2025-3576
This update for krb5 fixes the following issues:
- CVE-2025-3576: weakness in the MD5 checksum design allows for spoofing of GSSAPI-protected messages that are using
RC4-HMAC-MD5 (bsc#1241219).
Krb5 as very old protocol supported quite a number of ciphers
that are not longer up to current cryptographic standards.
To avoid problems with those, SUSE has by default now disabled
those alorithms.
The following algorithms have been removed from valid krb5 enctypes:
- des3-cbc-sha1
- arcfour-hmac-md5
To reenable those algorithms, you can use allow options in krb5.conf:
[libdefaults]
allow_des3 = true
allow_rc4 = true
to reenable them.
The following package changes have been done:
- glibc-2.38-150600.14.37.1 updated
- cuda-cccl-12-8-12.8.90-150600.5.1 updated
- cuda-crt-12-8-12.8.93-150600.5.1 updated
- cuda-nvvm-12-8-12.8.93-150600.5.1 updated
- cuda-toolkit-12-8-config-common-12.8.90-150600.5.1 updated
- cuda-toolkit-12-config-common-12.8.90-150600.5.1 updated
- cuda-toolkit-config-common-12.8.90-150600.5.1 updated
- cuda-cudart-12-8-12.8.90-150600.5.1 updated
- libopenssl3-3.1.4-150600.5.39.1 updated
- krb5-1.20.1-150600.11.14.1 updated
- pam-1.3.0-150000.6.86.1 updated
- ollama-nvidia-0.11.4-150600.1.4 updated
- container:registry.suse.com-bci-bci-base-15.6-36f2298f193581751a2641e139e053bcc89441095c3f89d73108e1fdc5bec114-0 updated
- container:registry.suse.com-bci-bci-micro-15.6-223b856a8844c1c69e31fcc4cbd69fb51bee333c717d1f3611f851b323d7945a-0 updated
More information about the sle-container-updates
mailing list