SUSE-SU-2025:03545-1

See a problem?
Please try reporting it to the source first.
Source
https://www.suse.com/support/update/announcement/2025/suse-su-202503545-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2025:03545-1.json
JSON Data
https://api.test.osv.dev/v1/vulns/SUSE-SU-2025:03545-1
Upstream
  • CVE-2014-3499
Related
Published
2025-10-11T01:20:50Z
Modified
2026-03-11T07:30:15.984612Z
Summary
Security update for docker-stable
Details

This update for docker-stable fixes the following issues:

Note this update contains a already fixed references mostly.

  • Remove git-core recommends on SLE to avoid pulling it in unnecessary. (bsc#1250508)

    This feature is mostly intended for developers ('docker build git://') so most users already have the dependency installed, and the error when git is missing is fairly straightforward (so they can easily figure out what they need to install).

  • Include historical changelog data from before the docker-stable fork. The initial changelog entry did technically provide all the necessary information, but our CVE tracking tools do not understand how the package is forked and so it seems that this package does not include fixes for ~12 years of updates. So, include a copy of the original package's changelog up until the fork point. bsc#1250596

  • Update to docker-buildx v0.25.0. Upstream changelog: https://github.com/docker/buildx/releases/tag/v0.25.0

  • Update to Go 1.23 for building now that upstream has switched their 23.0.x LTSS to use Go 1.23.

  • Do not try to inject SUSEConnect secrets when in Rootless Docker mode, as Docker does not have permission to access the host zypper credentials in this mode (and unprivileged users cannot disable the feature using /etc/docker/suse-secrets-enable.) bsc#1240150

  • Initial docker-stable fork, forked from Docker 24.0.7-ce release (packaged on 2024-02-14). The original changelog is included below for historical reference.

References

Affected packages

openSUSE:Leap 15.6
docker-stable

Package

Name
docker-stable
Purl
pkg:rpm/opensuse/docker-stable&distro=openSUSE%20Leap%2015.6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
24.0.9_ce-150000.1.25.1

Ecosystem specific 

{
    "binaries": [
        {
            "docker-stable-rootless-extras": "24.0.9_ce-150000.1.25.1",
            "docker-stable-fish-completion": "24.0.9_ce-150000.1.25.1",
            "docker-stable-bash-completion": "24.0.9_ce-150000.1.25.1",
            "docker-stable-zsh-completion": "24.0.9_ce-150000.1.25.1",
            "docker-stable": "24.0.9_ce-150000.1.25.1"
        }
    ]
}

Database specific

source 
"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2025:03545-1.json"
SUSE:Enterprise Storage 7.1
docker-stable

Package

Name
docker-stable
Purl
pkg:rpm/suse/docker-stable&distro=SUSE%20Enterprise%20Storage%207.1

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
24.0.9_ce-150000.1.25.1

Ecosystem specific 

{
    "binaries": [
        {
            "docker-stable-bash-completion": "24.0.9_ce-150000.1.25.1",
            "docker-stable": "24.0.9_ce-150000.1.25.1"
        }
    ]
}

Database specific

source 
"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2025:03545-1.json"
SUSE:Linux Enterprise High Performance Computing 15 SP3-LTSS
docker-stable

Package

Name
docker-stable
Purl
pkg:rpm/suse/docker-stable&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSS

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
24.0.9_ce-150000.1.25.1

Ecosystem specific 

{
    "binaries": [
        {
            "docker-stable-bash-completion": "24.0.9_ce-150000.1.25.1",
            "docker-stable": "24.0.9_ce-150000.1.25.1"
        }
    ]
}

Database specific

source 
"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2025:03545-1.json"
SUSE:Linux Enterprise High Performance Computing 15 SP4-ESPOS
docker-stable

Package

Name
docker-stable
Purl
pkg:rpm/suse/docker-stable&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOS

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
24.0.9_ce-150000.1.25.1

Ecosystem specific 

{
    "binaries": [
        {
            "docker-stable-bash-completion": "24.0.9_ce-150000.1.25.1",
            "docker-stable": "24.0.9_ce-150000.1.25.1"
        }
    ]
}

Database specific

source 
"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2025:03545-1.json"
SUSE:Linux Enterprise High Performance Computing 15 SP4-LTSS
docker-stable

Package

Name
docker-stable
Purl
pkg:rpm/suse/docker-stable&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSS

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
24.0.9_ce-150000.1.25.1

Ecosystem specific 

{
    "binaries": [
        {
            "docker-stable-bash-completion": "24.0.9_ce-150000.1.25.1",
            "docker-stable": "24.0.9_ce-150000.1.25.1"
        }
    ]
}

Database specific

source 
"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2025:03545-1.json"
SUSE:Linux Enterprise High Performance Computing 15 SP5-ESPOS
docker-stable

Package

Name
docker-stable
Purl
pkg:rpm/suse/docker-stable&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-ESPOS

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
24.0.9_ce-150000.1.25.1

Ecosystem specific 

{
    "binaries": [
        {
            "docker-stable-bash-completion": "24.0.9_ce-150000.1.25.1",
            "docker-stable": "24.0.9_ce-150000.1.25.1"
        }
    ]
}

Database specific

source 
"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2025:03545-1.json"
SUSE:Linux Enterprise High Performance Computing 15 SP5-LTSS
docker-stable

Package

Name
docker-stable
Purl
pkg:rpm/suse/docker-stable&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-LTSS

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
24.0.9_ce-150000.1.25.1

Ecosystem specific 

{
    "binaries": [
        {
            "docker-stable-bash-completion": "24.0.9_ce-150000.1.25.1",
            "docker-stable": "24.0.9_ce-150000.1.25.1"
        }
    ]
}

Database specific

source 
"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2025:03545-1.json"
SUSE:Linux Enterprise Module for Containers 15 SP6
docker-stable

Package

Name
docker-stable
Purl
pkg:rpm/suse/docker-stable&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Containers%2015%20SP6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
24.0.9_ce-150000.1.25.1

Ecosystem specific 

{
    "binaries": [
        {
            "docker-stable-bash-completion": "24.0.9_ce-150000.1.25.1",
            "docker-stable-zsh-completion": "24.0.9_ce-150000.1.25.1",
            "docker-stable": "24.0.9_ce-150000.1.25.1"
        }
    ]
}

Database specific

source 
"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2025:03545-1.json"
SUSE:Linux Enterprise Module for Containers 15 SP7
docker-stable

Package

Name
docker-stable
Purl
pkg:rpm/suse/docker-stable&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Containers%2015%20SP7

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
24.0.9_ce-150000.1.25.1

Ecosystem specific 

{
    "binaries": [
        {
            "docker-stable-bash-completion": "24.0.9_ce-150000.1.25.1",
            "docker-stable-zsh-completion": "24.0.9_ce-150000.1.25.1",
            "docker-stable": "24.0.9_ce-150000.1.25.1"
        }
    ]
}

Database specific

source 
"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2025:03545-1.json"
SUSE:Linux Enterprise Server 15 SP3-LTSS
docker-stable

Package

Name
docker-stable
Purl
pkg:rpm/suse/docker-stable&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSS

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
24.0.9_ce-150000.1.25.1

Ecosystem specific 

{
    "binaries": [
        {
            "docker-stable-bash-completion": "24.0.9_ce-150000.1.25.1",
            "docker-stable": "24.0.9_ce-150000.1.25.1"
        }
    ]
}

Database specific

source 
"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2025:03545-1.json"
SUSE:Linux Enterprise Server 15 SP4-LTSS
docker-stable

Package

Name
docker-stable
Purl
pkg:rpm/suse/docker-stable&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSS

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
24.0.9_ce-150000.1.25.1

Ecosystem specific 

{
    "binaries": [
        {
            "docker-stable-bash-completion": "24.0.9_ce-150000.1.25.1",
            "docker-stable": "24.0.9_ce-150000.1.25.1"
        }
    ]
}

Database specific

source 
"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2025:03545-1.json"
SUSE:Linux Enterprise Server 15 SP5-LTSS
docker-stable

Package

Name
docker-stable
Purl
pkg:rpm/suse/docker-stable&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP5-LTSS

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
24.0.9_ce-150000.1.25.1

Ecosystem specific 

{
    "binaries": [
        {
            "docker-stable-bash-completion": "24.0.9_ce-150000.1.25.1",
            "docker-stable": "24.0.9_ce-150000.1.25.1"
        }
    ]
}

Database specific

source 
"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2025:03545-1.json"
SUSE:Linux Enterprise Server for SAP Applications 15 SP3
docker-stable

Package

Name
docker-stable
Purl
pkg:rpm/suse/docker-stable&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
24.0.9_ce-150000.1.25.1

Ecosystem specific 

{
    "binaries": [
        {
            "docker-stable-bash-completion": "24.0.9_ce-150000.1.25.1",
            "docker-stable": "24.0.9_ce-150000.1.25.1"
        }
    ]
}

Database specific

source 
"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2025:03545-1.json"
SUSE:Linux Enterprise Server for SAP Applications 15 SP4
docker-stable

Package

Name
docker-stable
Purl
pkg:rpm/suse/docker-stable&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
24.0.9_ce-150000.1.25.1

Ecosystem specific 

{
    "binaries": [
        {
            "docker-stable-bash-completion": "24.0.9_ce-150000.1.25.1",
            "docker-stable": "24.0.9_ce-150000.1.25.1"
        }
    ]
}

Database specific

source 
"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2025:03545-1.json"
SUSE:Linux Enterprise Server for SAP Applications 15 SP5
docker-stable

Package

Name
docker-stable
Purl
pkg:rpm/suse/docker-stable&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
24.0.9_ce-150000.1.25.1

Ecosystem specific 

{
    "binaries": [
        {
            "docker-stable-bash-completion": "24.0.9_ce-150000.1.25.1",
            "docker-stable": "24.0.9_ce-150000.1.25.1"
        }
    ]
}

Database specific

source 
"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2025:03545-1.json"