SUSE-CU-2026:1245-1: Security update of suse/ltss/sle12.5/sles12sp5

sle-container-updates at lists.suse.com sle-container-updates at lists.suse.com
Sat Feb 28 08:16:24 UTC 2026 

SUSE Container Update Advisory: suse/ltss/sle12.5/sles12sp5
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2026:1245-1
Container Tags        : suse/ltss/sle12.5/sles12sp5:8.5.203 , suse/ltss/sle12.5/sles12sp5:latest
Container Release     : 8.5.203
Severity              : important
Type                  : security
References            : 1246965 1256822 1257005 1258002 CVE-2025-15281 CVE-2025-8058
                        CVE-2026-0915 
-----------------------------------------------------------------

The container suse/ltss/sle12.5/sles12sp5 was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2026:672-1
Released:    Thu Feb 26 22:38:01 2026
Summary:     Recommended update for ca-certificates-mozilla
Type:        recommended
Severity:    important
References:  1258002
This update for ca-certificates-mozilla fixes the following issues:

Updated to 2.84 state of Mozilla NSS cert storage (bsc#1258002)

Removed:

    - Baltimore CyberTrust Root
    - CommScope Public Trust ECC Root-01
    - CommScope Public Trust ECC Root-02
    - CommScope Public Trust RSA Root-01
    - CommScope Public Trust RSA Root-02
    - DigiNotar Root CA

Added: 

    - e-Szigno TLS Root CA 2023
    - OISTE Client Root ECC G1
    - OISTE Client Root RSA G1
    - OISTE Server Root ECC G1
    - OISTE Server Root RSA G1
    - SwissSign RSA SMIME Root CA 2022 - 1
    - SwissSign RSA TLS Root CA 2022 - 1
    - TrustAsia SMIME ECC Root CA
    - TrustAsia SMIME RSA Root CA
    - TrustAsia TLS ECC Root CA
    - TrustAsia TLS RSA Root CA

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2026:680-1
Released:    Fri Feb 27 11:17:04 2026
Summary:     Security update for glibc
Type:        security
Severity:    moderate
References:  1246965,1256822,1257005,CVE-2025-15281,CVE-2025-8058,CVE-2026-0915
This update for glibc fixes the following issues:

- CVE-2026-0915: resolv: Fix NSS DNS backend for getnetbyaddr (bsc#1256822, BZ #33802)
- CVE-2025-15281: posix: Reset wordexp_t fields with WRDE_REUSE (bsc#1257005, BZ #33814)
- CVE-2025-8058: posix: Fix double-free after allocation failure in regcomp (bsc#1246965, BZ #33185)


The following package changes have been done:

- ca-certificates-mozilla-2.84-12.54.1 updated
- glibc-2.22-114.43.1 updated

More information about the sle-container-updates mailing list