SUSE-CU-2026:2267-1: Security update of suse/sl-micro/6.0/toolbox
sle-container-updates at lists.suse.com
sle-container-updates at lists.suse.com
Wed Apr 1 07:20:14 UTC 2026
SUSE Container Update Advisory: suse/sl-micro/6.0/toolbox
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2026:2267-1
Container Tags : suse/sl-micro/6.0/toolbox:13.2 , suse/sl-micro/6.0/toolbox:13.2-9.86 , suse/sl-micro/6.0/toolbox:latest
Container Release : 9.86
Severity : important
Type : security
References : 1257181 1259240 CVE-2026-1299 CVE-2026-2297
-----------------------------------------------------------------
The container suse/sl-micro/6.0/toolbox was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: 647
Released: Tue Mar 31 11:07:43 2026
Summary: Security update for python311
Type: security
Severity: important
References: 1257181,1259240,CVE-2026-1299,CVE-2026-2297
This update for python311 fixes the following issues:
- CVE-2026-1299: header injection when an email is serialized due to improper newline quoting (bsc#1257181).
- CVE-2026-2297: validation bypass via incorrectly handled hook in FileLoader (bsc#1259240).
The following package changes have been done:
- SL-Micro-release-6.0-25.80 updated
- libpython3_11-1_0-3.11.15-2.1 updated
- python311-base-3.11.15-2.1 updated
- skelcd-EULA-SL-Micro-2024.01.19-8.79 updated
More information about the sle-container-updates
mailing list