Описание
Security update for coreutils
This update for coreutils fixes the following issues:
- CVE-2025-5278: Fixed heap buffer under-read may lead to a crash or leak sensitive data (bsc#1243767)
Список пакетов
Container bci/bci-base-fips:15.6
coreutils-8.32-150400.9.9.1
Container bci/bci-base-fips:latest
coreutils-8.32-150400.9.9.1
Container bci/bci-micro-fips:15.6
coreutils-8.32-150400.9.9.1
Container bci/bci-micro-fips:latest
coreutils-8.32-150400.9.9.1
Container bci/bci-micro:15.6
coreutils-8.32-150400.9.9.1
Container bci/bci-micro:latest
coreutils-8.32-150400.9.9.1
Container bci/bci-minimal:15.6
coreutils-8.32-150400.9.9.1
Container bci/bci-minimal:latest
coreutils-8.32-150400.9.9.1
Container bci/dotnet-aspnet:8.0
coreutils-8.32-150400.9.9.1
Container bci/dotnet-aspnet:latest
coreutils-8.32-150400.9.9.1
Container bci/dotnet-runtime:8.0
coreutils-8.32-150400.9.9.1
Container bci/dotnet-runtime:latest
coreutils-8.32-150400.9.9.1
Container bci/dotnet-sdk:8.0
coreutils-8.32-150400.9.9.1
Container bci/dotnet-sdk:latest
coreutils-8.32-150400.9.9.1
Container containers/open-webui-pipelines:0
coreutils-8.32-150400.9.9.1
Container suse/ltss/sle15.4/bci-base-fips:latest
coreutils-8.32-150400.9.9.1
Container suse/ltss/sle15.4/bci-base:latest
coreutils-8.32-150400.9.9.1
Container suse/manager/4.3/proxy-httpd:latest
coreutils-8.32-150400.9.9.1
Container suse/manager/4.3/proxy-salt-broker:latest
coreutils-8.32-150400.9.9.1
Container suse/manager/4.3/proxy-squid:latest
coreutils-8.32-150400.9.9.1
Container suse/manager/4.3/proxy-ssh:latest
coreutils-8.32-150400.9.9.1
Container suse/manager/4.3/proxy-tftpd:latest
coreutils-8.32-150400.9.9.1
Container suse/mariadb:latest
coreutils-8.32-150400.9.9.1
Container suse/postgres:16
coreutils-8.32-150400.9.9.1
Container suse/postgres:latest
coreutils-8.32-150400.9.9.1
Container suse/sle-micro-rancher/5.3:latest
coreutils-8.32-150400.9.9.1
Container suse/sle-micro-rancher/5.4:latest
coreutils-8.32-150400.9.9.1
Container suse/sle-micro/5.3/toolbox:latest
coreutils-8.32-150400.9.9.1
Container suse/sle-micro/5.4/toolbox:latest
coreutils-8.32-150400.9.9.1
Container suse/sle-micro/5.5/toolbox:latest
coreutils-8.32-150400.9.9.1
Container suse/sle-micro/5.5:latest
coreutils-8.32-150400.9.9.1
Container suse/sle-micro/base-5.5:latest
coreutils-8.32-150400.9.9.1
Container suse/sle-micro/kvm-5.5:latest
coreutils-8.32-150400.9.9.1
Container suse/sle-micro/rt-5.5:latest
coreutils-8.32-150400.9.9.1
Container suse/sle15:15.6
coreutils-8.32-150400.9.9.1
Container suse/sle15:latest
coreutils-8.32-150400.9.9.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS
coreutils-8.32-150400.9.9.1
coreutils-doc-8.32-150400.9.9.1
coreutils-lang-8.32-150400.9.9.1
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS
coreutils-8.32-150400.9.9.1
coreutils-doc-8.32-150400.9.9.1
coreutils-lang-8.32-150400.9.9.1
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS
coreutils-8.32-150400.9.9.1
coreutils-doc-8.32-150400.9.9.1
coreutils-lang-8.32-150400.9.9.1
SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS
coreutils-8.32-150400.9.9.1
coreutils-doc-8.32-150400.9.9.1
coreutils-lang-8.32-150400.9.9.1
SUSE Linux Enterprise Micro 5.3
coreutils-8.32-150400.9.9.1
SUSE Linux Enterprise Micro 5.4
coreutils-8.32-150400.9.9.1
SUSE Linux Enterprise Micro 5.5
coreutils-8.32-150400.9.9.1
SUSE Linux Enterprise Module for Basesystem 15 SP6
coreutils-8.32-150400.9.9.1
coreutils-doc-8.32-150400.9.9.1
coreutils-lang-8.32-150400.9.9.1
SUSE Linux Enterprise Module for Basesystem 15 SP7
coreutils-8.32-150400.9.9.1
coreutils-doc-8.32-150400.9.9.1
coreutils-lang-8.32-150400.9.9.1
SUSE Linux Enterprise Server 15 SP4-LTSS
coreutils-8.32-150400.9.9.1
coreutils-doc-8.32-150400.9.9.1
coreutils-lang-8.32-150400.9.9.1
SUSE Linux Enterprise Server 15 SP5-LTSS
coreutils-8.32-150400.9.9.1
coreutils-doc-8.32-150400.9.9.1
coreutils-lang-8.32-150400.9.9.1
SUSE Linux Enterprise Server for SAP Applications 15 SP4
coreutils-8.32-150400.9.9.1
coreutils-doc-8.32-150400.9.9.1
coreutils-lang-8.32-150400.9.9.1
SUSE Linux Enterprise Server for SAP Applications 15 SP5
coreutils-8.32-150400.9.9.1
coreutils-doc-8.32-150400.9.9.1
coreutils-lang-8.32-150400.9.9.1
SUSE Manager Proxy 4.3
coreutils-8.32-150400.9.9.1
coreutils-doc-8.32-150400.9.9.1
coreutils-lang-8.32-150400.9.9.1
SUSE Manager Server 4.3
coreutils-8.32-150400.9.9.1
coreutils-doc-8.32-150400.9.9.1
coreutils-lang-8.32-150400.9.9.1
openSUSE Leap 15.6
coreutils-8.32-150400.9.9.1
coreutils-doc-8.32-150400.9.9.1
coreutils-lang-8.32-150400.9.9.1
coreutils-single-8.32-150400.9.9.1
coreutils-testsuite-8.32-150400.9.9.1
Ссылки
- Link for SUSE-SU-2025:02362-1
- E-Mail link for SUSE-SU-2025:02362-1
- SUSE Security Ratings
- SUSE Bug 1243767
- SUSE CVE CVE-2025-5278 page
Описание
A flaw was found in GNU Coreutils. The sort utility's begfield() function is vulnerable to a heap buffer under-read. The program may access memory outside the allocated buffer if a user runs a crafted command using the traditional key format. A malicious input could lead to a crash or leak sensitive data.
Затронутые продукты
Container bci/bci-base-fips:15.6:coreutils-8.32-150400.9.9.1
Container bci/bci-base-fips:latest:coreutils-8.32-150400.9.9.1
Container bci/bci-micro-fips:15.6:coreutils-8.32-150400.9.9.1
Container bci/bci-micro-fips:latest:coreutils-8.32-150400.9.9.1
Ссылки
- CVE-2025-5278
- SUSE Bug 1243767