SUSE-CU-2026:416-1: Security update of suse/samba-server

sle-container-updates at lists.suse.com sle-container-updates at lists.suse.com
Wed Jan 28 08:21:36 UTC 2026 

SUSE Container Update Advisory: suse/samba-server
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2026:416-1
Container Tags        : suse/samba-server:4.21 , suse/samba-server:4.21 , suse/samba-server:4.21-71.8 , suse/samba-server:latest
Container Release     : 71.8
Severity              : important
Type                  : security
References            : 1234210 1254439 1254586 1254926 1256341 1256498 1256499 1256500
                        CVE-2025-13151 CVE-2025-68276 CVE-2025-68468 CVE-2025-68471 
-----------------------------------------------------------------

The container suse/samba-server was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2026:224-1
Released:    Thu Jan 22 13:18:20 2026
Summary:     Security update for libtasn1
Type:        security
Severity:    moderate
References:  1256341,CVE-2025-13151

This update for libtasn1 fixes the following issues:

- CVE-2025-13151: stack-based buffer overflow in `asn1_expend_octet_string` (bsc#1256341).

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2026:259-1
Released:    Thu Jan 22 17:10:44 2026
Summary:     Security update for avahi
Type:        security
Severity:    moderate
References:  1256498,1256499,1256500,CVE-2025-68276,CVE-2025-68468,CVE-2025-68471
This update for avahi fixes the following issues:

- CVE-2025-68276: Fixed refuse to create wide-area record browsers when 
  wide-area is off (bsc#1256498)
- CVE-2025-68471: Fixed DoS bug by changing assert to return (bsc#1256500)
- CVE-2025-68468: Fixed DoS bug by removing incorrect assertion (bsc#1256499)

-----------------------------------------------------------------
Advisory ID: SUSE-RU-2026:261-1
Released:    Thu Jan 22 17:13:51 2026
Summary:     Recommended update for samba
Type:        recommended
Severity:    important
References:  1234210,1254439,1254586,1254926
This update for samba fixes the following issues:

- Fix testparm error handling the 'sync machine password to keytab' option (bsc#1254439)
- Fix Samba printers reporting invalid sid during print jobs (bsc#1234210, bsc#1254926)
- samba-bgqd can't find [printers] share (bsc#1254586)


The following package changes have been done:

- patterns-base-fips-20200124-150700.36.1 added
- libavahi-common3-0.8-150600.15.12.1 updated
- libldb2-4.21.10+git.449.dcced69e1b5-150700.3.19.1 updated
- libopenssl-3-fips-provider-3.2.3-150700.5.21.1 added
- libtasn1-6-4.13-150000.4.14.1 updated
- libtasn1-4.13-150000.4.14.1 updated
- libavahi-client3-0.8-150600.15.12.1 updated
- samba-client-libs-4.21.10+git.449.dcced69e1b5-150700.3.19.1 updated
- samba-libs-4.21.10+git.449.dcced69e1b5-150700.3.19.1 updated
- samba-client-4.21.10+git.449.dcced69e1b5-150700.3.19.1 updated
- samba-dcerpc-4.21.10+git.449.dcced69e1b5-150700.3.19.1 updated
- samba-4.21.10+git.449.dcced69e1b5-150700.3.19.1 updated
- container:suse-sle15-15.7-7970b1398395a13b38e858c60a7b75db5f5265dd7c0ecdabe8919a458b2f34e5-0 updated
- container:registry.suse.com-bci-bci-micro-15.7-55883c76f750bdb0fa8cf3fe2e43f19f9babc501efce9801e94a9c0c8d115a20-0 updated

More information about the sle-container-updates mailing list