SUSE-IU-2025:2440-1: Security update of suse/sl-micro/6.1/kvm-os-container

sle-container-updates at lists.suse.com sle-container-updates at lists.suse.com
Wed Sep 10 07:05:22 UTC 2025 

SUSE Image Update Advisory: suse/sl-micro/6.1/kvm-os-container
-----------------------------------------------------------------
Image Advisory ID : SUSE-IU-2025:2440-1
Image Tags        : suse/sl-micro/6.1/kvm-os-container:2.2.1 , suse/sl-micro/6.1/kvm-os-container:2.2.1-5.33 , suse/sl-micro/6.1/kvm-os-container:latest
Image Release     : 5.33
Severity          : important
Type              : security
References        : 1243397 1243706 1243933 1246197 1246597 CVE-2025-4947 CVE-2025-5025
                        CVE-2025-5399 CVE-2025-6965 
-----------------------------------------------------------------

The container suse/sl-micro/6.1/kvm-os-container was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: 253
Released:    Tue Sep  9 12:20:07 2025
Summary:     Security update for sqlite3
Type:        security
Severity:    important
References:  1246597,CVE-2025-6965
This update for sqlite3 fixes the following issues:

- CVE-2025-6965: Fixed integer truncation (bsc#1246597).

-----------------------------------------------------------------
Advisory ID: 254
Released:    Tue Sep  9 12:22:04 2025
Summary:     Security update for curl
Type:        security
Severity:    important
References:  1243397,1243706,1243933,1246197,CVE-2025-4947,CVE-2025-5025,CVE-2025-5399
This update for curl fixes the following issues:

- CVE-2025-5399: libcurl can possibly get trapped in an endless busy-loop when processing specially crafted packets (bsc#1243933).
- CVE-2025-5025: No QUIC certificate pinning with wolfSSL (bsc#1243706).
- CVE-2025-4947: QUIC certificate check skip with wolfSSL (bsc#1243397).

Other bugfixes:

- Fix the --ftp-pasv option in curl v8.14.1 (bsc#1246197).


The following package changes have been done:

- SL-Micro-release-6.1-slfo.1.11.55 updated
- libsqlite3-0-3.50.2-slfo.1.1_1.1 updated
- libcurl4-8.14.1-slfo.1.1_1.1 updated
- container:SL-Micro-base-container-2.2.1-5.30 updated

More information about the sle-container-updates mailing list