SUSE-CU-2026:3874-1: Security update of suse/sl-micro/6.0/toolbox
sle-container-updates at lists.suse.com
sle-container-updates at lists.suse.com
Fri Apr 10 07:24:29 UTC 2026
SUSE Container Update Advisory: suse/sl-micro/6.0/toolbox
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2026:3874-1
Container Tags : suse/sl-micro/6.0/toolbox:13.2 , suse/sl-micro/6.0/toolbox:13.2-9.93 , suse/sl-micro/6.0/toolbox:latest
Container Release : 9.93
Severity : important
Type : security
References : 1260078 1260082 CVE-2026-4437 CVE-2026-4438
-----------------------------------------------------------------
The container suse/sl-micro/6.0/toolbox was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: 658
Released: Thu Apr 9 12:16:32 2026
Summary: Recommended update for suse-build-key
Type: recommended
Severity: moderate
References:
This update for suse-build-key fixes the following issues:
- Add the auto import framework
- Added post quantum cryptographic keys for SLES 15 and SLES 16:
* build-pqc-15.pem
* build-pqc-16.pem
-----------------------------------------------------------------
Advisory ID: 659
Released: Thu Apr 9 13:02:01 2026
Summary: Security update for glibc
Type: security
Severity: important
References: 1260078,1260082,CVE-2026-4437,CVE-2026-4438
This update for glibc fixes the following issues:
- CVE-2026-4437: incorrect DNS response parsing via crafted DNS server response (bsc#1260078).
- CVE-2026-4438: invalid DNS hostname returned via gethostbyaddr functions (bsc#1260082).
The following package changes have been done:
- SL-Micro-release-6.0-25.84 updated
- glibc-locale-base-2.38-12.1 updated
- glibc-locale-2.38-12.1 updated
- glibc-2.38-12.1 updated
- skelcd-EULA-SL-Micro-2024.01.19-8.83 updated
- suse-build-key-12.0-7.1 updated
More information about the sle-container-updates
mailing list