SUSE-IU-2026:1007-1: Security update of suse/sl-micro/6.0/kvm-os-container

Tue Feb 17 08:07:47 UTC 2026

SUSE Image Update Advisory: suse/sl-micro/6.0/kvm-os-container
-----------------------------------------------------------------
Image Advisory ID : SUSE-IU-2026:1007-1
Image Tags        : suse/sl-micro/6.0/kvm-os-container:2.1.3 , suse/sl-micro/6.0/kvm-os-container:2.1.3-6.112 , suse/sl-micro/6.0/kvm-os-container:latest
Image Release     : 6.112
Severity          : important
Type              : security
References        : 1257049 1257353 1257354 1257355 CVE-2026-0988 CVE-2026-1484 CVE-2026-1485
                        CVE-2026-1489 
-----------------------------------------------------------------

The container suse/sl-micro/6.0/kvm-os-container was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: 579
Released:    Mon Feb 16 15:25:53 2026
Summary:     Security update for glib2
Type:        security
Severity:    important
References:  1257049,1257353,1257354,1257355,CVE-2026-0988,CVE-2026-1484,CVE-2026-1485,CVE-2026-1489
This update for glib2 fixes the following issues:

- CVE-2026-1485: Fixed buffer underflow and out-of-bounds access due to integer wraparound in content type parsing (bsc#1257354).
- CVE-2026-1484: Fixed buffer underflow and out-of-bounds access due to miscalculated buffer boundaries in the Base64 encoding routine (bsc#1257355).
- CVE-2026-1489: Fixed undersized heap allocation followed by out-of-bounds access due to integer overflow in Unicode case conversion (bsc#1257353).
- CVE-2026-0988: Fixed a potential integer overflow in g_buffered_input_stream_peek (bsc#1257049).

The following package changes have been done:

- SL-Micro-release-6.0-25.69 updated
- libglib-2_0-0-2.76.2-12.1 updated
- libgobject-2_0-0-2.76.2-12.1 updated
- libgmodule-2_0-0-2.76.2-12.1 updated
- libgio-2_0-0-2.76.2-12.1 updated
- glib2-tools-2.76.2-12.1 updated
- container:SL-Micro-base-container-2.1.3-7.94 updated