SUSE-IU-2026:2595-1: Security update of suse/sl-micro/6.1/baremetal-os-container

sle-container-updates at lists.suse.com sle-container-updates at lists.suse.com
Tue Apr 28 07:22:21 UTC 2026 

SUSE Image Update Advisory: suse/sl-micro/6.1/baremetal-os-container
-----------------------------------------------------------------
Image Advisory ID : SUSE-IU-2026:2595-1
Image Tags        : suse/sl-micro/6.1/baremetal-os-container:2.2.1 , suse/sl-micro/6.1/baremetal-os-container:2.2.1-7.96 , suse/sl-micro/6.1/baremetal-os-container:latest
Image Release     : 7.96
Severity          : moderate
Type              : security
References        : 1222465 1246934 1250562 1254310 1254666 1256498 1256499 1256500
                        1258859 1261970 CVE-2025-11021 CVE-2025-14104 CVE-2025-68276
                        CVE-2025-68468 CVE-2025-68471 CVE-2026-3184 CVE-2026-3446 
-----------------------------------------------------------------

The container suse/sl-micro/6.1/baremetal-os-container was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: 509
Released:    Mon Apr 27 14:27:43 2026
Summary:     Security update for avahi
Type:        security
Severity:    moderate
References:  1246934,1254310,1256498,1256499,1256500,CVE-2025-68276,CVE-2025-68468,CVE-2025-68471
This update for avahi fixes the following issues:

- CVE-2025-68276: reachable assertion in `avahi_wide_area_scan_cache` can lead to an `avahi-daemon` crash (bsc#1256498).
- CVE-2025-68468: reachable assertion in `lookup_multicast_callback` can lead to an `avahi-daemon` crash (bsc#1256499).
- CVE-2025-68471: reachable assertion in `lookup_start` can lead to an `avahi-daemon` crash (bsc#1256500).

-----------------------------------------------------------------
Advisory ID: 510
Released:    Mon Apr 27 14:30:50 2026
Summary:     Security update for python311
Type:        security
Severity:    moderate
References:  1222465,1250562,1254666,1258859,1261970,CVE-2025-11021,CVE-2025-14104,CVE-2026-3184,CVE-2026-3446
This update for python311 fixes the following issue:

- CVE-2026-3446: base64 decoding stops at first padded quad by default and ignores other information that could be
  processed (bsc#1261970).


The following package changes have been done:

- SL-Micro-release-6.1-slfo.1.12.34 updated
- libavahi-common3-0.8-slfo.1.1_6.1 updated
- libavahi-core7-0.8-slfo.1.1_6.1 updated
- libavahi-client3-0.8-slfo.1.1_6.1 updated
- python311-base-3.11.15-slfo.1.1_4.1 updated
- libpython3_11-1_0-3.11.15-slfo.1.1_4.1 updated
- avahi-0.8-slfo.1.1_6.1 updated
- python311-3.11.15-slfo.1.1_4.1 updated
- container:SL-Micro-base-container-2.2.1-5.120 updated

More information about the sle-container-updates mailing list