Alerts This Week
Warning Icon 1 640
Alerts This Week
Warning Icon 1 640

SUSE Linux Micro: 2025:20080-1 moderate: podman multiple fixes

suse
Calendar Grey June 4, 2025
Dist Suse Esm H88
Significant podman upgrade for SUSE Linux Micro 6.0 tackles multiple concerns including service disruption and input sanitation vulnerabilities
* bsc#1231208 * bsc#1231230 * bsc#1231499 * bsc#1231698

Summary

## This update for podman fixes the following issues: * CVE-2024-9676: Fixed a denial of service via a symlink traversal in the containers/storage library (bsc#1231698) * CVE-2024-9341: Fixed FIPS Crypto-Policy Directory Mounting Issue in containers/common Go Library (bsc#1231230) * CVE-2024-9675: Fixed caching of arbitrary directory mount (bsc#1231499) * CVE-2024-9407: Fixed improper input validation in bind-propagation option of Dockerfile RUN --mount instruction (bsc#1231208) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-95=1 ## Package List:

References

* bsc#1231208

* bsc#1231230

* bsc#1231499

* bsc#1231698

Cross-

* CVE-2024-6104

* CVE-2024-9341

* CVE-2024-9407

* CVE-2024-9675

* CVE-2024-9676

CVSS scores:

* CVE-2024-6104 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N

* CVE-2024-6104 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

* CVE-2024-9341 ( SUSE ): 5.8

CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:A/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N

* CVE-2024-9341 ( SUSE ): 5.4 CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:L/A:N

* CVE-2024-9341 ( NVD ): 5.4 CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:L/A:N

* CVE-2024-9341 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:N

* CVE-2024-9407 ( SUSE ): 5.6

CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N

Announcement ID: SUSE-SU-2025:20080-1
Release Date: 2025-02-03T09:06:01Z
Rating: moderate

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here