openSUSE sdbootutil Important Patch CVE-2026-25701 Security Update

This update for sdbootutil fixes the following issues

Security issue:

- CVE-2026-25701: use of fixed directory /tmp/pcrlock.d.back in sdbootutil-update-predictions.service (bsc#1258241).

Non security issues:

Update to version 1+git20260506.25d47bf:

- TPM based system does not auto-unlock encryption (bsc#1257612).

- openQA test fails in reboot_after_installation - sdbootutil does not honor timeout set by user

(bsc#1258944).

- Installation with Systemd-boot fails when Turkish language is selected (bsc#1253652).

- armv7 installer requires sdbootutil and shim on armv7 (bsc#1254865).

- sdbootutil default entry not updated after update from 20250411 to 20250522 (bsc#1243889).

- sdbootutil: consistent naming conventions used for key/pin ? (bsc#1252871).

- UPDATE_NVRAM is NO when BLS bootloader is used (bsc#1247952).

- Use tmpfiles.d for /var directories (jsc#PED-14900).

- yast reports "Cannot enroll authentication" during fresh install of tumbleweed (bsc#1256775).

Patch...