SUSE-CU-2026:1227-1: Security update of suse/sl-micro/6.0/toolbox
sle-container-updates at lists.suse.com
sle-container-updates at lists.suse.com
Fri Feb 27 08:13:18 UTC 2026
SUSE Container Update Advisory: suse/sl-micro/6.0/toolbox
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2026:1227-1
Container Tags : suse/sl-micro/6.0/toolbox:13.2 , suse/sl-micro/6.0/toolbox:13.2-9.68 , suse/sl-micro/6.0/toolbox:latest
Container Release : 9.68
Severity : important
Type : security
References : 1246965 1256766 1256822 1257005 CVE-2025-15281 CVE-2025-8058
CVE-2026-0861 CVE-2026-0915
-----------------------------------------------------------------
The container suse/sl-micro/6.0/toolbox was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: 597
Released: Thu Feb 26 12:33:53 2026
Summary: Security update for glibc
Type: security
Severity: important
References: 1246965,1256766,1256822,1257005,CVE-2025-15281,CVE-2025-8058,CVE-2026-0861,CVE-2026-0915
This update for glibc fixes the following issues:
- CVE-2026-0861: inadequate size check in the memalign suite may result in an integer overflow (bsc#1256766).
- CVE-2026-0915: uninitialized stack buffer used as DNS query name when net==0 in _nss_dns_getnetbyaddr_r (bsc#1256822).
- CVE-2025-15281: uninitialized memory may cause the process abort (bsc#1257005).
- CVE-2025-8058: a malloc failure in regcomp function can lead to a double free (bsc#1246965).
The following package changes have been done:
- SL-Micro-release-6.0-25.70 updated
- glibc-locale-base-2.38-11.1 updated
- glibc-locale-2.38-11.1 updated
- glibc-2.38-11.1 updated
- skelcd-EULA-SL-Micro-2024.01.19-8.69 updated
More information about the sle-container-updates
mailing list