SUSE-IU-2026:11-1: Security update of suse/sle-micro/kvm-5.5

sle-container-updates at lists.suse.com sle-container-updates at lists.suse.com
Tue Jan 6 16:05:21 UTC 2026 

SUSE Image Update Advisory: suse/sle-micro/kvm-5.5
-----------------------------------------------------------------
Image Advisory ID : SUSE-IU-2026:11-1
Image Tags        : suse/sle-micro/kvm-5.5:2.0.4 , suse/sle-micro/kvm-5.5:2.0.4-3.5.443 , suse/sle-micro/kvm-5.5:latest
Image Release     : 3.5.443
Severity          : important
Type              : security
References        : 1227397 1250984 1252768 1253002 1254286 1254441 CVE-2024-6505
                        CVE-2025-10158 CVE-2025-11234 CVE-2025-12464 
-----------------------------------------------------------------

The container suse/sle-micro/kvm-5.5 was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2026:39-1
Released:    Tue Jan  6 11:31:07 2026
Summary:     Security update for qemu
Type:        security
Severity:    important
References:  1227397,1250984,1252768,1253002,1254286,CVE-2024-6505,CVE-2025-11234,CVE-2025-12464
This update for qemu fixes the following issues:

- CVE-2024-6505: qemu-kvm: virtio-net: Fixed queue index 
  out-of-bounds access in software RSS (bsc#1227397)
- CVE-2025-12464: net: pad packets to minimum length in 
  qemu_receive_packet() (bsc#1253002)
- CVE-2025-11234: qemu-kvm: Fixed use-after-free in websocket 
  handshake code leading to denial of service (bsc#1250984)

Other fixes:
- Fixed *-virtio-gpu-pci dependency on ARM (bsc#1254286)
- block/curl: Fixed curl internal handles handling (bsc#1252768)

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2026:41-1
Released:    Tue Jan  6 11:33:23 2026
Summary:     Security update for rsync
Type:        security
Severity:    moderate
References:  1254441,CVE-2025-10158
This update for rsync fixes the following issues:

- CVE-2025-10158: Fixed out of bounds array access via negative index (bsc#1254441)


The following package changes have been done:

- qemu-guest-agent-7.1.0-150500.49.36.2 updated
- rsync-3.2.3-150400.3.26.1 updated
- container:suse-sle-micro-base-5.5-latest-2.0.4-5.8.231 updated

More information about the sle-container-updates mailing list