SUSE-CU-2026:362-1: Security update of suse/kiosk/firefox-esr
sle-container-updates at lists.suse.com
sle-container-updates at lists.suse.com
Thu Jan 22 08:27:05 UTC 2026
SUSE Container Update Advisory: suse/kiosk/firefox-esr
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2026:362-1
Container Tags : suse/kiosk/firefox-esr:140.6 , suse/kiosk/firefox-esr:140.6-70.7 , suse/kiosk/firefox-esr:esr , suse/kiosk/firefox-esr:latest
Container Release : 70.7
Severity : important
Type : security
References : 1220545 1255392 CVE-2023-6601 CVE-2025-63757
-----------------------------------------------------------------
The container suse/kiosk/firefox-esr was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2026:198-1
Released: Wed Jan 21 11:16:17 2026
Summary: Security update for ffmpeg-4
Type: security
Severity: important
References: 1220545,1255392,CVE-2023-6601,CVE-2025-63757
This update for ffmpeg-4 fixes the following issues:
- CVE-2023-6601: Fixed HLS Unsafe File Extension Bypass (bsc#1220545).
- CVE-2025-63757: Fixed integer overflow in yuv2ya16_X_c_template() (bsc#1255392).
The following package changes have been done:
- libavutil56_70-4.4.6-150600.13.38.1 updated
- libswresample3_9-4.4.6-150600.13.38.1 updated
- libavcodec58_134-4.4.6-150600.13.38.1 updated
- container:suse-sle15-15.7-7970b1398395a13b38e858c60a7b75db5f5265dd7c0ecdabe8919a458b2f34e5-0 updated
More information about the sle-container-updates
mailing list