Vulnerability Scan Report for registry.suse.com/bci/bci-init:15.5.18.3

Systemd environment for containers based on the SLE Base Container Image. This container is only supported with podman.

registry.suse.com/bci/bci-init:15.5.18.3

Last scanned on: June 04, 2025 04:22

Package Name	Severity	Status	Description	Reference links
libprotobuf-lite25_1_0	HIGH	fixed	Security update for protobuf Vulnerability ID: SUSE-SU-2024:3747-1 Installed Version: 25.1-150400.9.6.1 Fixed Version: 25.1-150500.12.5.1 This update for protobuf fixes the following issues: - CVE-2024-7254: Fixed stack overflow vulnerability in Protocol Buffer (bsc#1230778)	CVE-2024-7254 SU-20243747-1 SUSE Bug#1230778 SUSE Mailing List [sle-security-updates] 2024-October#019665 SUSE Security Rating
libsystemd0	MEDIUM	fixed	Security update for systemd Vulnerability ID: SUSE-SU-2024:3149-1 Installed Version: 249.17-150400.8.40.1 Fixed Version: 249.17-150400.8.43.1 This update for systemd fixes the following issues: - CVE-2023-7008: Fixed man-in-the-middle due to unsigned name response in signed zone not refused when DNSSEC=yes (bsc#1218297) Other fixes: - Unit: drop ProtectClock=yes from systemd-udevd.service (bsc#1226414) - Don't mention any rpm macros inside comments, even if escaped (bsc#1228091) - Skip redundant dependencies specified the LSB description that references the file name of the service itself for early boot scripts (bsc#1221479).	CVE-2023-7008 SU-20243149-1 SUSE Bug#1218297 SUSE Bug#1221479 SUSE Bug#1226414 SUSE Bug#1228091 SUSE Mailing List [sle-security-updates] 2024-September#019374 SUSE Security Rating
libtasn1	HIGH	fixed	Security update for libtasn1 Vulnerability ID: SUSE-SU-2025:0548-1 Installed Version: 4.13-150000.4.8.1 Fixed Version: 4.13-150000.4.11.1 This update for libtasn1 fixes the following issues: - CVE-2024-12133: the processing of input DER data containing a large number of SEQUENCE OF or SET OF elements takes quadratic time to complete. (bsc#1236878)	CVE-2024-12133 SU-20250548-1 SUSE Bug#1236878 SUSE Mailing List [sle-security-updates] 2025-February#020349 SUSE Security Rating
libtasn1-6	HIGH	fixed	Security update for libtasn1 Vulnerability ID: SUSE-SU-2025:0548-1 Installed Version: 4.13-150000.4.8.1 Fixed Version: 4.13-150000.4.11.1 This update for libtasn1 fixes the following issues: - CVE-2024-12133: the processing of input DER data containing a large number of SEQUENCE OF or SET OF elements takes quadratic time to complete. (bsc#1236878)	CVE-2024-12133 SU-20250548-1 SUSE Bug#1236878 SUSE Mailing List [sle-security-updates] 2025-February#020349 SUSE Security Rating
libudev1	MEDIUM	fixed	Security update for systemd Vulnerability ID: SUSE-SU-2024:3149-1 Installed Version: 249.17-150400.8.40.1 Fixed Version: 249.17-150400.8.43.1 This update for systemd fixes the following issues: - CVE-2023-7008: Fixed man-in-the-middle due to unsigned name response in signed zone not refused when DNSSEC=yes (bsc#1218297) Other fixes: - Unit: drop ProtectClock=yes from systemd-udevd.service (bsc#1226414) - Don't mention any rpm macros inside comments, even if escaped (bsc#1228091) - Skip redundant dependencies specified the LSB description that references the file name of the service itself for early boot scripts (bsc#1221479).	CVE-2023-7008 SU-20243149-1 SUSE Bug#1218297 SUSE Bug#1221479 SUSE Bug#1226414 SUSE Bug#1228091 SUSE Mailing List [sle-security-updates] 2024-September#019374 SUSE Security Rating