SUSE-IU-2026:2467-1: Security update of suse/sle-micro/base-5.5

sle-container-updates at lists.suse.com sle-container-updates at lists.suse.com
Sat Apr 25 07:06:28 UTC 2026 

SUSE Image Update Advisory: suse/sle-micro/base-5.5
-----------------------------------------------------------------
Image Advisory ID : SUSE-IU-2026:2467-1
Image Tags        : suse/sle-micro/base-5.5:2.0.4 , suse/sle-micro/base-5.5:2.0.4-5.8.268 , suse/sle-micro/base-5.5:latest
Image Release     : 5.8.268
Severity          : important
Type              : security
References        : 1215492 1246057 1256675 1257773 1259797 1260005 1260009 1260347
                        1260562 CVE-2025-38234 CVE-2025-68818 CVE-2026-23103 CVE-2026-23243
                        CVE-2026-23272 CVE-2026-23274 CVE-2026-23317 
-----------------------------------------------------------------

The container suse/sle-micro/base-5.5 was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2026:1606-1
Released:    Fri Apr 24 13:50:09 2026
Summary:     Security update for the Linux Kernel
Type:        security
Severity:    important
References:  1215492,1246057,1256675,1257773,1259797,1260005,1260009,1260347,1260562,CVE-2025-38234,CVE-2025-68818,CVE-2026-23103,CVE-2026-23243,CVE-2026-23272,CVE-2026-23274,CVE-2026-23317

The SUSE Linux Enterprise 15 SP5 kernel was updated to fix various security issues

The following security issues were fixed:

- CVE-2025-38234: sched/rt: Fix race in push_rt_task (bsc#1246057).
- CVE-2026-23103: ipvlan: Make the addrs_lock be per port (bsc#1257773).
- CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259797).
- CVE-2026-23272: netfilter: nf_tables: unconditionally bump set-nelems before insertion (bsc#1260009).
- CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260005).
- CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260562).

The following non security issues were fixed:

- nvme-fc: use ctrl state getter (git-fixes bsc#1215492).
- nvme-pci: fix queue unquiesce check on slot_reset (git-fixes).
- nvme-pci: skip nvme_write_sq_db on empty rqlist (git-fixes).
- PCI: dwc: ep: Return -ENOMEM for allocation failures (git-fixes).
- PCI: Fix lock symmetry in pci_slot_unlock() (git-fixes).
- PCI: Fix pci_slot_trylock() error handling (git-fixes).
- PCI: tegra194: Fix duplicate PLL disable in pex_ep_event_pex_rst_assert() (git-fixes).
- PCI/ACS: Fix 'pci=config_acs=' parameter (git-fixes).
- x86/platform/uv: Handle deconfigured sockets (bsc#1260347).


The following package changes have been done:

- kernel-default-5.14.21-150500.55.144.1 updated

More information about the sle-container-updates mailing list