Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

SUSE Linux Micro 6.0: Helm Important Security Patch 2025:20516-1

suse
Calendar Grey August 4, 2025
Dist Suse Esm H88
Essential revision for helm in SUSE addresses significant vulnerabilities and bolsters system reliability via prompt updates.
* bsc#1241802 * bsc#1246152 Cross-References: * CVE-2025-22872

Summary

## This update for helm fixes the following issues: Update to version 3.18.4 (bsc#1246152, CVE-2025-53547): * Disabling linter due to unknown issue f20a4ad (Matt Farina) * build(deps): bump the k8s-io group with 7 updates 563b094 (dependabot[bot]) * Updating link handling 00de613 (Matt Farina) Update to version 3.18.3: * build(deps): bump golang.org/x/crypto from 0.38.0 to 0.39.0 6838ebc (dependabot[bot]) * fix: user username password for login 5b9e2f6 (Terry Howe) * Update pkg/registry/transport.go 2782412 (Terry Howe) * Update pkg/registry/transport.go e66cf6a (Terry Howe) * fix: add debug logging to oci transport 191f05c (Terry Howe) Update to version 3.18.2: * fix: legacy docker support broken for login 04cad46 (Terry Howe) * Handle an empty registry config file. bc9f8a2 (Matt Farina)

Topics%20covered

Topics Covered

security advisory security issue SuSE important system threat helm

References

* bsc#1241802

* bsc#1246152

Cross-

* CVE-2025-22872

* CVE-2025-53547

CVSS scores:

* CVE-2025-22872 ( SUSE ): 6.3

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L

* CVE-2025-22872 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L

* CVE-2025-22872 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L

* CVE-2025-53547 ( SUSE ): 8.4

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:L/VI:H/VA:H/SC:L/SI:H/SA:H

* CVE-2025-53547 ( SUSE ): 8.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:H

* CVE-2025-53547 ( NVD ): 8.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:H

Affected Products:

* SUSE Linux Micro 6.0

An update that solves two vulnerabilities can now be installed.

##

* https://www.suse.com/security/cve/CVE-2025-22872.html

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2025:20516-1
Release Date: 2025-07-30T09:26:37Z
Rating: important

Topics%20covered

Topics Covered

security advisory security issue SuSE important system threat helm

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here