SUSE-IU-2026:640-1: Security update of suse/sl-micro/6.2/kvm-os-container

sle-container-updates at lists.suse.com sle-container-updates at lists.suse.com
Tue Feb 3 08:25:15 UTC 2026 

SUSE Image Update Advisory: suse/sl-micro/6.2/kvm-os-container
-----------------------------------------------------------------
Image Advisory ID : SUSE-IU-2026:640-1
Image Tags        : suse/sl-micro/6.2/kvm-os-container:2.3.0 , suse/sl-micro/6.2/kvm-os-container:2.3.0-7.27 , suse/sl-micro/6.2/kvm-os-container:latest
Image Release     : 7.27
Severity          : moderate
Type              : security
References        : 1232024 1236217 1238572 1256829 1256830 1256831 1256832 1256833
                        1256834 1256835 1256836 1256837 1256838 1256839 1256840 1257049
                        1257274 1257353 1257354 1257355 CVE-2025-11187 CVE-2025-15467
                        CVE-2025-15468 CVE-2025-15469 CVE-2025-22870 CVE-2025-66199 CVE-2025-68160
                        CVE-2025-69418 CVE-2025-69419 CVE-2025-69420 CVE-2025-69421 CVE-2026-0988
                        CVE-2026-1484 CVE-2026-1485 CVE-2026-1489 CVE-2026-22795 CVE-2026-22796
-----------------------------------------------------------------

The container suse/sl-micro/6.2/kvm-os-container was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: 235
Released:    Tue Mar 11 12:10:55 2025
Summary:     Security update for go1.24
Type:        security
Severity:    moderate
References:  1236217,1238572,1257049,1257353,1257354,1257355,CVE-2025-22870,CVE-2026-0988,CVE-2026-1484,CVE-2026-1485,CVE-2026-1489
This update for go1.24 fixes the following issues:

- go1.24.1 (released 2025-03-04) includes security fixes to the
  net/http, x/net/proxy, and x/net/http/httpproxy packages, as well
  as bug fixes to the compiler, the runtime, the go command and the
  crypto, debug, os and reflect packages.  ( bsc#1236217 )
  CVE-2025-22870
  * go#71986 go#71984 bsc#1238572 security: fix CVE-2025-22870 net/http, x/net/proxy, x/net/http/httpproxy: proxy bypass using IPv6 zone IDs
  * go#71687 cmd/go: panics with GOAUTH='git dir' go get -x
  * go#71705 runtime: add linkname of runtime.lastmoduledatap for cloudwego/sonic
  * go#71728 runtime: usleep computes wrong tv_nsec on s390x
  * go#71745 crypto: add fips140 as an opaque GODEBUG setting and add documentation for it
  * go#71829 cmd/compile: fail to compile package in 1.24
  * go#71836 os: possible regression from Go 1.23 to Go 1.24 when opening DevNull with O_TRUNC
  * go#71840 runtime: recover added in range-over-func loop body doesn't stop panic propagation / segfaults printing error
  * go#71849 os: spurious SIGCHILD on running child process
  * go#71855 cmd/compile: Pow10 freeze the compiler on certain condition on Go 1.24
  * go#71858 debug/buildinfo: false positives with external scanners flag for go117 binary in testdata
  * go#71876 reflect: Value.Seq panicking on functional iterator methods
  * go#71904 cmd/compile: nil dereference when storing field of non-nil struct value
  * go#71916 reflect: Value.Seq iteration value types not matching the type of given int types
  * go#71938 cmd/compile: 'fatal error: found pointer to free object' on arm64
  * go#71955 proposal: runtime: allow cleanups to run concurrently
  * go#71963 runtime/cgo: does not build with -Wdeclaration-after-statement
  * go#71977 syscall: js/wasm file operations fail on windows / node.js


-----------------------------------------------------------------
Advisory ID: 237
Released:    Tue Mar 11 15:12:04 2025
Summary:     Recommended update for amazon-dracut-config
Type:        recommended
Severity:    moderate
References:  1232024,1256829,1256830,1256831,1256832,1256833,1256834,1256835,1256836,1256837,1256838,1256839,1256840,1257274,CVE-2025-11187,CVE-2025-15467,CVE-2025-15468,CVE-2025-15469,CVE-2025-66199,CVE-2025-68160,CVE-2025-69418,CVE-2025-69419,CVE-2025-69420,CVE-2025-69421,CVE-2026-22795,CVE-2026-22796
This update for amazon-dracut-config fixes the following issues:

- Initial release for amazon-dracut config on Micro 6.0: 

Already include the following fixes: 

- Update to 0.0.4:
  + Move dracut config files to usr/lib/ dir
- Update to 0.0.3:
  + Add provides and conflicts on generic name dracut-instance-change-config
- Update to 0.0.2:
  + Rename config for nvme for consistency
  + Add dracut build requirement

- Initial release v0.0.1 (PED-11572)



The following package changes have been done:

- libopenssl3-3.5.0-160000.5.1 updated
- libglib-2_0-0-2.84.4-160000.2.1 updated
- libgobject-2_0-0-2.84.4-160000.2.1 updated
- libgmodule-2_0-0-2.84.4-160000.2.1 updated
- libgio-2_0-0-2.84.4-160000.2.1 updated
- glib2-tools-2.84.4-160000.2.1 updated
- container:suse-sl-micro-6.2-base-os-container-latest-ae3514d0b84fd71a2430abd3bf6e671516a25b3cde81072842e48c11b68cefc8-0 updated

More information about the sle-container-updates mailing list