SUSE-IU-2026:1666-1: Security update of suse/sl-micro/6.1/baremetal-os-container

sle-container-updates at lists.suse.com sle-container-updates at lists.suse.com
Wed Apr 1 07:21:16 UTC 2026 

SUSE Image Update Advisory: suse/sl-micro/6.1/baremetal-os-container
-----------------------------------------------------------------
Image Advisory ID : SUSE-IU-2026:1666-1
Image Tags        : suse/sl-micro/6.1/baremetal-os-container:2.2.1 , suse/sl-micro/6.1/baremetal-os-container:2.2.1-7.81 , suse/sl-micro/6.1/baremetal-os-container:latest
Image Release     : 7.81
Severity          : important
Type              : security
References        : 1244485 1246118 1247719 1247720 1247816 1248082 1249141 1257181
                        1258008 1258009 1258010 1258011 1258754 1259240 CVE-2025-4674
                        CVE-2025-47906 CVE-2025-47907 CVE-2025-47910 CVE-2026-1299 CVE-2026-2003
                        CVE-2026-2004 CVE-2026-2005 CVE-2026-2006 CVE-2026-2297 
-----------------------------------------------------------------

The container suse/sl-micro/6.1/baremetal-os-container was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: 465
Released:    Tue Mar 31 11:07:06 2026
Summary:     Security update for python311
Type:        security
Severity:    important
References:  1244485,1246118,1247719,1247720,1247816,1248082,1249141,1257181,1258008,1258009,1258010,1258011,1258754,1259240,CVE-2025-4674,CVE-2025-47906,CVE-2025-47907,CVE-2025-47910,CVE-2026-1299,CVE-2026-2003,CVE-2026-2004,CVE-2026-2005,CVE-2026-2006,CVE-2026-2297
This update for python311 fixes the following issues:

- CVE-2026-1299: header injection when an email is serialized due to improper newline quoting (bsc#1257181).
- CVE-2026-2297: validation bypass via incorrectly handled hook in FileLoader (bsc#1259240).


The following package changes have been done:

- SL-Micro-release-6.1-slfo.1.12.23 updated
- python311-base-3.11.15-slfo.1.1_2.1 updated
- libpython3_11-1_0-3.11.15-slfo.1.1_2.1 updated
- python311-3.11.15-slfo.1.1_2.1 updated
- container:SL-Micro-base-container-2.2.1-5.104 updated

More information about the sle-container-updates mailing list