From sle-container-updates at lists.suse.com Wed Jul 1 07:07:33 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 1 Jul 2026 09:07:33 +0200 (CEST) Subject: SUSE-IU-2026:5206-1: Security update of suse/sle-micro/base-5.5 Message-ID: <20260701070733.B73F9FF21@maintenance.suse.de> SUSE Image Update Advisory: suse/sle-micro/base-5.5 ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5206-1 Image Tags : suse/sle-micro/base-5.5:2.0.4 , suse/sle-micro/base-5.5:2.0.4-5.8.289 , suse/sle-micro/base-5.5:latest Image Release : 5.8.289 Severity : important Type : security References : 1261900 1265450 1267189 CVE-2026-5704 ----------------------------------------------------------------- The container suse/sle-micro/base-5.5 was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2714-1 Released: Tue Jun 30 14:02:53 2026 Summary: Security update for tar Type: security Severity: important References: 1261900,1265450,1267189,CVE-2026-5704 This update for tar fixes the following issues Security fixes: - CVE-2026-5704: crafted archives can be used to to hide file injection (bsc#1261900). Other fixes: - Fix tar changing dir permissions temporarily even when using --no-overwrite-dir. - Fix --dereference/-h not working properly after CVE-2025-45582 fix (bsc#1265450). - Fix extraction failure for paths like 'a/./b' caused by the gnulib openat2 implementation (bsc#1267189). The following package changes have been done: - tar-1.34-150000.3.42.1 updated From sle-container-updates at lists.suse.com Wed Jul 1 07:20:01 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 1 Jul 2026 09:20:01 +0200 (CEST) Subject: SUSE-CU-2026:6567-1: Security update of private-registry/1.2/harbor-trivy-adapter Message-ID: <20260701072001.CEB53FF02@maintenance.suse.de> SUSE Container Update Advisory: private-registry/1.2/harbor-trivy-adapter ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6567-1 Container Tags : private-registry/1.2/harbor-trivy-adapter:1.2.0 , private-registry/1.2/harbor-trivy-adapter:1.2.0-1.43 , private-registry/1.2/harbor-trivy-adapter:latest Container Release : 1.43 Severity : important Type : security References : 1267268 1268356 1268399 1268400 1268403 1268404 1268440 1269269 1269271 CVE-2026-44740 CVE-2026-46680 CVE-2026-47262 CVE-2026-50195 CVE-2026-53488 CVE-2026-53489 CVE-2026-53492 CVE-2026-54448 CVE-2026-55092 ----------------------------------------------------------------- The container private-registry/1.2/harbor-trivy-adapter was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2708-1 Released: Tue Jun 30 12:55:22 2026 Summary: Security update for trivy Type: security Severity: important References: 1267268,1268356,1268399,1268400,1268403,1268404,1268440,1269269,1269271,CVE-2026-44740,CVE-2026-46680,CVE-2026-47262,CVE-2026-50195,CVE-2026-53488,CVE-2026-53489,CVE-2026-53492,CVE-2026-54448,CVE-2026-55092 This update for trivy fixes the following issues: - CVE-2026-50195: containerd: fails to validate the image references specified within a checkpoint image's configuration (bsc#1268399). - CVE-2026-53488: Update github.com/containerd/containerd/v2/client dependency (bsc#1268400). - CVE-2026-53492: containerd: improperly trusts Container Device Interface (CDI) annotations found within untrusted checkpoint image metadata during container restoration (bsc#1268403). - CVE-2026-53489: containerd: CRI plugin restores container.log from a checkpoint image without validating a symlinked path (bsc#1268404). - CVE-2026-47262: Update github.com/containerd/containerd/v2/pkg/oci dependency (bsc#1268440). - CVE-2026-55092: Arbitrary file writes via `org.opencontainers.image.title` annotation from OCI artifact manifest (bsc#1269269). - CVE-2026-44740: Update github.com/go-git/go-billy/v5 dependency (bsc#1267268). - CVE-2026-46680: Update github.com/containerd/containerd/v2/pkg/oci dependency (bsc#1268356). - CVE-2026-54448: tar unpacker reads scanned Helm chart archives (.tgz) with `io.ReadAll(tr)` and defines no size limit (bsc#1269271). The following package changes have been done: - trivy-0.71.2-150000.1.24.1 updated - system-user-harbor-2.15.1-150700.1.14 updated - container:suse-sle15-15.7-4d81126fa653178328136a0e8e92cebf0854d60a118a21867f074affb3afeaa2-0 updated From sle-container-updates at lists.suse.com Wed Jul 1 07:25:01 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 1 Jul 2026 09:25:01 +0200 (CEST) Subject: SUSE-CU-2026:6570-1: Security update of private-registry/harbor-jobservice Message-ID: <20260701072501.8B7B1FF02@maintenance.suse.de> SUSE Container Update Advisory: private-registry/harbor-jobservice ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6570-1 Container Tags : private-registry/harbor-jobservice:1.1.3 , private-registry/harbor-jobservice:1.1.3-2.56 , private-registry/harbor-jobservice:latest Container Release : 2.56 Severity : important Type : security References : 1266340 1266341 1266342 1266343 1266345 1266349 1266350 1266351 1266352 1266353 1266355 1266356 1266357 CVE-2026-34180 CVE-2026-34181 CVE-2026-34183 CVE-2026-42766 CVE-2026-42767 CVE-2026-42768 CVE-2026-42769 CVE-2026-42770 CVE-2026-45445 CVE-2026-45446 CVE-2026-45447 CVE-2026-7383 CVE-2026-9076 ----------------------------------------------------------------- The container private-registry/harbor-jobservice was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2648-1 Released: Fri Jun 26 13:05:57 2026 Summary: Security update for openssl-3 Type: security Severity: important References: 1266340,1266341,1266342,1266343,1266345,1266349,1266350,1266351,1266352,1266353,1266355,1266356,1266357,CVE-2026-34180,CVE-2026-34181,CVE-2026-34183,CVE-2026-42766,CVE-2026-42767,CVE-2026-42768,CVE-2026-42769,CVE-2026-42770,CVE-2026-45445,CVE-2026-45446,CVE-2026-45447,CVE-2026-7383,CVE-2026-9076 This update for openssl-3 fixes the following issues - CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion (bsc#1266340). - CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption (bsc#1266341). - CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing (bsc#1266342). - CVE-2026-34181: PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys (bsc#1266343). - CVE-2026-34183: Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler (bsc#1266345). - CVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryption (bsc#1266349). - CVE-2026-42767: NULL Pointer Dereference in CRMF EncryptedValue Decryption (bsc#1266350). - CVE-2026-42768: Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt() (bsc#1266351). - CVE-2026-42769: Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate (bsc#1266352). - CVE-2026-42770: FFC-DH Peer Validation Uses Attacker-Supplied q (bsc#1266353). - CVE-2026-45445: AES-OCB IV Ignored on EVP_Cipher() Path (bsc#1266355). - CVE-2026-45446: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes (bsc#1266356). - CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357). The following package changes have been done: - libopenssl3-3.2.3-150700.5.36.1 updated - openssl-3-3.2.3-150700.5.36.1 updated - system-user-harbor-2.14.4-150700.1.13 updated - harbor-jobservice-2.14.4-150700.1.13 updated - container:suse-sle15-15.7-4d81126fa653178328136a0e8e92cebf0854d60a118a21867f074affb3afeaa2-0 updated From sle-container-updates at lists.suse.com Wed Jul 1 07:30:05 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 1 Jul 2026 09:30:05 +0200 (CEST) Subject: SUSE-CU-2026:6574-1: Security update of private-registry/harbor-trivy-adapter Message-ID: <20260701073005.90EDAFF02@maintenance.suse.de> SUSE Container Update Advisory: private-registry/harbor-trivy-adapter ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6574-1 Container Tags : private-registry/harbor-trivy-adapter:1.1.3 , private-registry/harbor-trivy-adapter:1.1.3-2.64 , private-registry/harbor-trivy-adapter:latest Container Release : 2.64 Severity : important Type : security References : 1267268 1268356 1268399 1268400 1268403 1268404 1268440 1269269 1269271 CVE-2026-44740 CVE-2026-46680 CVE-2026-47262 CVE-2026-50195 CVE-2026-53488 CVE-2026-53489 CVE-2026-53492 CVE-2026-54448 CVE-2026-55092 ----------------------------------------------------------------- The container private-registry/harbor-trivy-adapter was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2708-1 Released: Tue Jun 30 12:55:22 2026 Summary: Security update for trivy Type: security Severity: important References: 1267268,1268356,1268399,1268400,1268403,1268404,1268440,1269269,1269271,CVE-2026-44740,CVE-2026-46680,CVE-2026-47262,CVE-2026-50195,CVE-2026-53488,CVE-2026-53489,CVE-2026-53492,CVE-2026-54448,CVE-2026-55092 This update for trivy fixes the following issues: - CVE-2026-50195: containerd: fails to validate the image references specified within a checkpoint image's configuration (bsc#1268399). - CVE-2026-53488: Update github.com/containerd/containerd/v2/client dependency (bsc#1268400). - CVE-2026-53492: containerd: improperly trusts Container Device Interface (CDI) annotations found within untrusted checkpoint image metadata during container restoration (bsc#1268403). - CVE-2026-53489: containerd: CRI plugin restores container.log from a checkpoint image without validating a symlinked path (bsc#1268404). - CVE-2026-47262: Update github.com/containerd/containerd/v2/pkg/oci dependency (bsc#1268440). - CVE-2026-55092: Arbitrary file writes via `org.opencontainers.image.title` annotation from OCI artifact manifest (bsc#1269269). - CVE-2026-44740: Update github.com/go-git/go-billy/v5 dependency (bsc#1267268). - CVE-2026-46680: Update github.com/containerd/containerd/v2/pkg/oci dependency (bsc#1268356). - CVE-2026-54448: tar unpacker reads scanned Helm chart archives (.tgz) with `io.ReadAll(tr)` and defines no size limit (bsc#1269271). The following package changes have been done: - trivy-0.71.2-150000.1.24.1 updated - system-user-harbor-2.14.4-150700.1.13 updated - container:suse-sle15-15.7-4d81126fa653178328136a0e8e92cebf0854d60a118a21867f074affb3afeaa2-0 updated From sle-container-updates at lists.suse.com Wed Jul 1 07:30:16 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 1 Jul 2026 09:30:16 +0200 (CEST) Subject: SUSE-CU-2026:6581-1: Security update of private-registry/harbor-trivy-adapter Message-ID: <20260701073016.53554FF02@maintenance.suse.de> SUSE Container Update Advisory: private-registry/harbor-trivy-adapter ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6581-1 Container Tags : private-registry/harbor-trivy-adapter:0.35.1 , private-registry/harbor-trivy-adapter:0.35.1-1.7 , private-registry/harbor-trivy-adapter:latest Container Release : 1.7 Severity : important Type : security References : 1267268 1268356 1268399 1268400 1268403 1268404 1268440 1269269 1269271 CVE-2026-44740 CVE-2026-46680 CVE-2026-47262 CVE-2026-50195 CVE-2026-53488 CVE-2026-53489 CVE-2026-53492 CVE-2026-54448 CVE-2026-55092 ----------------------------------------------------------------- The container private-registry/harbor-trivy-adapter was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2708-1 Released: Tue Jun 30 12:55:22 2026 Summary: Security update for trivy Type: security Severity: important References: 1267268,1268356,1268399,1268400,1268403,1268404,1268440,1269269,1269271,CVE-2026-44740,CVE-2026-46680,CVE-2026-47262,CVE-2026-50195,CVE-2026-53488,CVE-2026-53489,CVE-2026-53492,CVE-2026-54448,CVE-2026-55092 This update for trivy fixes the following issues: - CVE-2026-50195: containerd: fails to validate the image references specified within a checkpoint image's configuration (bsc#1268399). - CVE-2026-53488: Update github.com/containerd/containerd/v2/client dependency (bsc#1268400). - CVE-2026-53492: containerd: improperly trusts Container Device Interface (CDI) annotations found within untrusted checkpoint image metadata during container restoration (bsc#1268403). - CVE-2026-53489: containerd: CRI plugin restores container.log from a checkpoint image without validating a symlinked path (bsc#1268404). - CVE-2026-47262: Update github.com/containerd/containerd/v2/pkg/oci dependency (bsc#1268440). - CVE-2026-55092: Arbitrary file writes via `org.opencontainers.image.title` annotation from OCI artifact manifest (bsc#1269269). - CVE-2026-44740: Update github.com/go-git/go-billy/v5 dependency (bsc#1267268). - CVE-2026-46680: Update github.com/containerd/containerd/v2/pkg/oci dependency (bsc#1268356). - CVE-2026-54448: tar unpacker reads scanned Helm chart archives (.tgz) with `io.ReadAll(tr)` and defines no size limit (bsc#1269271). The following package changes have been done: - trivy-0.71.2-150000.1.24.1 updated - system-user-harbor-2.13.5-150700.1.5 updated - container:suse-sle15-15.7-4d81126fa653178328136a0e8e92cebf0854d60a118a21867f074affb3afeaa2-0 updated From sle-container-updates at lists.suse.com Wed Jul 1 07:42:13 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 1 Jul 2026 09:42:13 +0200 (CEST) Subject: SUSE-CU-2026:6583-1: Security update of suse/sle-micro/5.3/toolbox Message-ID: <20260701074213.95EF3FF02@maintenance.suse.de> SUSE Container Update Advisory: suse/sle-micro/5.3/toolbox ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6583-1 Container Tags : suse/sle-micro/5.3/toolbox:16.3 , suse/sle-micro/5.3/toolbox:16.3-6.11.243 , suse/sle-micro/5.3/toolbox:latest Container Release : 6.11.243 Severity : important Type : security References : 1261900 1265450 1267189 CVE-2026-5704 ----------------------------------------------------------------- The container suse/sle-micro/5.3/toolbox was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2714-1 Released: Tue Jun 30 14:02:53 2026 Summary: Security update for tar Type: security Severity: important References: 1261900,1265450,1267189,CVE-2026-5704 This update for tar fixes the following issues Security fixes: - CVE-2026-5704: crafted archives can be used to to hide file injection (bsc#1261900). Other fixes: - Fix tar changing dir permissions temporarily even when using --no-overwrite-dir. - Fix --dereference/-h not working properly after CVE-2025-45582 fix (bsc#1265450). - Fix extraction failure for paths like 'a/./b' caused by the gnulib openat2 implementation (bsc#1267189). The following package changes have been done: - tar-1.34-150000.3.42.1 updated From sle-container-updates at lists.suse.com Wed Jul 1 07:48:53 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 1 Jul 2026 09:48:53 +0200 (CEST) Subject: SUSE-CU-2026:6584-1: Security update of suse/sle-micro-rancher/5.4 Message-ID: <20260701074853.391A1FF02@maintenance.suse.de> SUSE Container Update Advisory: suse/sle-micro-rancher/5.4 ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6584-1 Container Tags : suse/sle-micro-rancher/5.4:5.4.4.5.139 , suse/sle-micro-rancher/5.4:latest Container Release : 4.5.139 Severity : important Type : security References : 1261900 1265450 1267189 1267823 CVE-2026-5704 ----------------------------------------------------------------- The container suse/sle-micro-rancher/5.4 was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2691-1 Released: Tue Jun 30 10:24:30 2026 Summary: Security update for sg3_utils Type: security Severity: important References: 1267823 This update for sg3_utils fixes the following issue Update to version 1.47+16.aad0b411: - sg_inq: --export output conformance for SCSI name string and ATA fields (bsc#1267823). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2714-1 Released: Tue Jun 30 14:02:53 2026 Summary: Security update for tar Type: security Severity: important References: 1261900,1265450,1267189,CVE-2026-5704 This update for tar fixes the following issues Security fixes: - CVE-2026-5704: crafted archives can be used to to hide file injection (bsc#1261900). Other fixes: - Fix tar changing dir permissions temporarily even when using --no-overwrite-dir. - Fix --dereference/-h not working properly after CVE-2025-45582 fix (bsc#1265450). - Fix extraction failure for paths like 'a/./b' caused by the gnulib openat2 implementation (bsc#1267189). The following package changes have been done: - libsgutils2-1_47-2-1.47+16.aad0b411-150400.3.14.1 updated - sg3_utils-1.47+16.aad0b411-150400.3.14.1 updated - tar-1.34-150000.3.42.1 updated From sle-container-updates at lists.suse.com Wed Jul 1 07:52:43 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 1 Jul 2026 09:52:43 +0200 (CEST) Subject: SUSE-CU-2026:6585-1: Security update of suse/sle-micro/5.4/toolbox Message-ID: <20260701075243.0AAA5FF02@maintenance.suse.de> SUSE Container Update Advisory: suse/sle-micro/5.4/toolbox ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6585-1 Container Tags : suse/sle-micro/5.4/toolbox:16.3 , suse/sle-micro/5.4/toolbox:16.3-5.19.244 , suse/sle-micro/5.4/toolbox:latest Container Release : 5.19.244 Severity : important Type : security References : 1261900 1265450 1267189 CVE-2026-5704 ----------------------------------------------------------------- The container suse/sle-micro/5.4/toolbox was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2714-1 Released: Tue Jun 30 14:02:53 2026 Summary: Security update for tar Type: security Severity: important References: 1261900,1265450,1267189,CVE-2026-5704 This update for tar fixes the following issues Security fixes: - CVE-2026-5704: crafted archives can be used to to hide file injection (bsc#1261900). Other fixes: - Fix tar changing dir permissions temporarily even when using --no-overwrite-dir. - Fix --dereference/-h not working properly after CVE-2025-45582 fix (bsc#1265450). - Fix extraction failure for paths like 'a/./b' caused by the gnulib openat2 implementation (bsc#1267189). The following package changes have been done: - tar-1.34-150000.3.42.1 updated From sle-container-updates at lists.suse.com Wed Jul 1 07:56:02 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 1 Jul 2026 09:56:02 +0200 (CEST) Subject: SUSE-CU-2026:6586-1: Security update of suse/sle-micro/5.5/toolbox Message-ID: <20260701075602.13BBAFF02@maintenance.suse.de> SUSE Container Update Advisory: suse/sle-micro/5.5/toolbox ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6586-1 Container Tags : suse/sle-micro/5.5/toolbox:16.3 , suse/sle-micro/5.5/toolbox:16.3-3.12.152 , suse/sle-micro/5.5/toolbox:latest Container Release : 3.12.152 Severity : important Type : security References : 1261900 1265450 1267189 CVE-2026-5704 ----------------------------------------------------------------- The container suse/sle-micro/5.5/toolbox was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2714-1 Released: Tue Jun 30 14:02:53 2026 Summary: Security update for tar Type: security Severity: important References: 1261900,1265450,1267189,CVE-2026-5704 This update for tar fixes the following issues Security fixes: - CVE-2026-5704: crafted archives can be used to to hide file injection (bsc#1261900). Other fixes: - Fix tar changing dir permissions temporarily even when using --no-overwrite-dir. - Fix --dereference/-h not working properly after CVE-2025-45582 fix (bsc#1265450). - Fix extraction failure for paths like 'a/./b' caused by the gnulib openat2 implementation (bsc#1267189). The following package changes have been done: - tar-1.34-150000.3.42.1 updated From sle-container-updates at lists.suse.com Wed Jul 1 07:59:16 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 1 Jul 2026 09:59:16 +0200 (CEST) Subject: SUSE-IU-2026:5209-1: Security update of suse/sl-micro/6.0/base-os-container Message-ID: <20260701075916.1936EFF02@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.0/base-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5209-1 Image Tags : suse/sl-micro/6.0/base-os-container:2.1.3 , suse/sl-micro/6.0/base-os-container:2.1.3-7.162 , suse/sl-micro/6.0/base-os-container:latest Image Release : 7.162 Severity : important Type : security References : 1256668 1261256 1262085 1262392 1262617 1262620 1262674 1262748 1262798 1262993 1263123 1263137 1263178 1263563 1263568 1263578 1263879 1263880 1263930 1263934 1263993 1263996 1264045 1264076 1264080 1264084 1264116 1264137 1264145 1264239 1264263 1264266 1264437 1264444 1264470 1264549 1264561 1264595 1264603 1264610 1264741 1264763 1265103 1265143 1265628 1266290 1266390 1266397 1266698 1266704 1266705 1266878 1266895 1266903 1266916 1266922 1266933 1267208 1267361 1267381 1267387 1267431 1267621 1267624 1267628 1267640 1267651 1267654 1267682 1267685 1267697 1267744 1268307 CVE-2025-10263 CVE-2025-68822 CVE-2026-31414 CVE-2026-31429 CVE-2026-31452 CVE-2026-31453 CVE-2026-31469 CVE-2026-31492 CVE-2026-31495 CVE-2026-31499 CVE-2026-31500 CVE-2026-31555 CVE-2026-31592 CVE-2026-31664 CVE-2026-31665 CVE-2026-31674 CVE-2026-31680 CVE-2026-31693 CVE-2026-31697 CVE-2026-31698 CVE-2026-31699 CVE-2026-31752 CVE-2026-31759 CVE-2026-31771 CVE-2026-43023 CVE-2026-43024 CVE-2026-43028 CVE-2026-43035 CVE-2026-43036 CVE-2026-43049 CVE-2026-43053 CVE-2026-43074 CVE-2026-43077 CVE-2026-43083 CVE-2026-43101 CVE-2026-43112 CVE-2026-43119 CVE-2026-43158 CVE-2026-43171 CVE-2026-43187 CVE-2026-43198 CVE-2026-43239 CVE-2026-43339 CVE-2026-43345 CVE-2026-43405 CVE-2026-43469 CVE-2026-43491 CVE-2026-45840 CVE-2026-45841 CVE-2026-45862 CVE-2026-45870 CVE-2026-45894 CVE-2026-45940 CVE-2026-45961 CVE-2026-45964 CVE-2026-45965 CVE-2026-45974 CVE-2026-46005 CVE-2026-46037 CVE-2026-46101 CVE-2026-46119 CVE-2026-46120 CVE-2026-46123 CVE-2026-46150 CVE-2026-46160 CVE-2026-46172 CVE-2026-46197 CVE-2026-46227 CVE-2026-46244 CVE-2026-46259 CVE-2026-46273 ----------------------------------------------------------------- The container suse/sl-micro/6.0/base-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: kernel-496 Released: Wed Jul 1 01:09:03 2026 Summary: Security update for the Linux Kernel Type: security Severity: important References: 1256668,1261256,1262085,1262392,1262617,1262620,1262674,1262748,1262798,1262993,1263123,1263137,1263178,1263563,1263568,1263578,1263879,1263880,1263930,1263934,1263993,1263996,1264045,1264076,1264080,1264084,1264116,1264137,1264145,1264239,1264263,1264266,1264437,1264444,1264470,1264549,1264561,1264595,1264603,1264610,1264741,1264763,1265103,1265143,1265628,1266290,1266390,1266397,1266698,1266704,1266705,1266878,1266895,1266903,1266916,1266922,1266933,1267208,1267361,1267381,1267387,1267431,1267621,1267624,1267628,1267640,1267651,1267654,1267682,1267685,1267697,1267744,1268307,CVE-2025-10263,CVE-2025-68822,CVE-2026-31414,CVE-2026-31429,CVE-2026-31452,CVE-2026-31453,CVE-2026-31469,CVE-2026-31492,CVE-2026-31495,CVE-2026-31499,CVE-2026-31500,CVE-2026-31555,CVE-2026-31592,CVE-2026-31664,CVE-2026-31665,CVE-2026-31674,CVE-2026-31680,CVE-2026-31693,CVE-2026-31697,CVE-2026-31698,CVE-2026-31699,CVE-2026-31752,CVE-2026-31759,CVE-2026-31771,CVE-2026-43023,CVE-2026-43024,CVE-2026-43 028,CVE-2026-43035,CVE-2026-43036,CVE-2026-43049,CVE-2026-43053,CVE-2026-43074,CVE-2026-43077,CVE-2026-43083,CVE-2026-43101,CVE-2026-43112,CVE-2026-43119,CVE-2026-43158,CVE-2026-43171,CVE-2026-43187,CVE-2026-43198,CVE-2026-43239,CVE-2026-43339,CVE-2026-43345,CVE-2026-43405,CVE-2026-43469,CVE-2026-43491,CVE-2026-45840,CVE-2026-45841,CVE-2026-45862,CVE-2026-45870,CVE-2026-45894,CVE-2026-45940,CVE-2026-45961,CVE-2026-45964,CVE-2026-45965,CVE-2026-45974,CVE-2026-46005,CVE-2026-46037,CVE-2026-46101,CVE-2026-46119,CVE-2026-46120,CVE-2026-46123,CVE-2026-46150,CVE-2026-46160,CVE-2026-46172,CVE-2026-46197,CVE-2026-46227,CVE-2026-46244,CVE-2026-46259,CVE-2026-46273 The SUSE Linux Enterprise Micro 6.0 and 6.1 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2025-10263: arm64: errata: Mitigate TLBI errata on various Arm CPUs (bsc#1266290). - CVE-2025-68822: Input: alps - fix use-after-free bugs caused by dev3_register_work (bsc#1256668). - CVE-2026-31414: netfilter: nf_conntrack_expect: use expect->helper (bsc#1262085). - CVE-2026-31429: net: skb: fix cross-cache free of KFENCE-allocated skb head (bsc#1262392). - CVE-2026-31452: ext4: convert inline data to extents when truncate exceeds inline size (bsc#1262620). - CVE-2026-31469: virtio_net: Fix UAF on dst_ops when IFF_XMIT_DST_RELEASE is cleared and napi_tx is false - CVE-2026-31492: RDMA/irdma: Initialize free_qp completion before using it (bsc#1262748). - CVE-2026-31495: netfilter: ctnetlink: use netlink policy range checks (bsc#1262798). - CVE-2026-31499: Bluetooth: L2CAP: Fix deadlock in l2cap_conn_del() (bsc#1262674). - CVE-2026-31500: Bluetooth: btintel: serialize btintel_hw_error() with hci_req_sync_lock (bsc#1262993). - CVE-2026-31555: futex: Clear stale exiting pointer in futex_lock_pi() retry path (bsc#1263178). - CVE-2026-31592: KVM: SEV: Protect *all* of sev_mem_enc_register_region() with kvm->lock (bsc#1263123). - CVE-2026-31664: string.h: Introduce memset_after() for wiping trailing members/padding (bsc#1263578). - CVE-2026-31665: kABI: netfilter: nft_ct: fix use-after-free in timeout object destroy (bsc#1263137). - CVE-2026-31674: netfilter: ip6t_rt: reject oversized addrnr in rt_mt6_check() (bsc#1263568). - CVE-2026-31680: net: ipv6: flowlabel: defer exclusive option free until RCU teardown (bsc#1263563). - CVE-2026-31693: cifs: some missing initializations on replay (bsc#1267744). - CVE-2026-31697: crypto: ccp: Don't attempt to copy ID to userspace if PSP command failed (bsc#1264116). - CVE-2026-31698: crypto: ccp: Don't attempt to copy PDH cert to userspace if PSP command failed (bsc#1263880). - CVE-2026-31699: crypto: ccp: Don't attempt to copy CSR to userspace if PSP command failed (bsc#1263879). - CVE-2026-31752: bridge: br_nd_send: validate ND option lengths (bsc#1264045). - CVE-2026-31759: usb: ulpi: fix double free in ulpi_register_interface() error path (bsc#1264076). - CVE-2026-31771: Bluetooth: hci_event: move wake reason storage into validated event handlers (bsc#1264145). - CVE-2026-43023: Bluetooth: SCO: fix race conditions in sco_sock_connect() (bsc#1264137). - CVE-2026-43024: netfilter: nf_tables: reject immediate NF_QUEUE verdict (bsc#1263930). - CVE-2026-43028: netfilter: x_tables: ensure names are nul-terminated (bsc#1263934). - CVE-2026-43035: net: sched: cls_api: fix tc_chain_fill_node to initialize tcm_info to zero to prevent an info-leak (bsc#1263996). - CVE-2026-43036: net: use skb_header_pointer() for TCPv4 GSO frag_off check (bsc#1263993). - CVE-2026-43049: HID: logitech-hidpp: Prevent use-after-free on force feedback initialisation failure (bsc#1264080). - CVE-2026-43053: xfs: close crash window in attr dabtree inactivation (bsc#1264084). - CVE-2026-43074: eventpoll: defer struct eventpoll free to RCU grace period (bsc#1264263). - CVE-2026-43077: crypto: algif_aead - Fix minimum RX size check for decryption (bsc#1264470). - CVE-2026-43083: net: ioam6: fix OOB and missing lock (bsc#1264266). - CVE-2026-43101: ipv6: ioam: fix potential NULL dereferences in __ioam6_fill_trace_data() (bsc#1264239). - CVE-2026-43112: fs/smb/client: fix out-of-bounds read in cifs_sanitize_prepath (bsc#1264437). - CVE-2026-43119: Bluetooth: hci_sync: annotate data-races around hdev->req_status (bsc#1264561). - CVE-2026-43158: xfs: fix freemap adjustments when adding xattrs to leaf blocks (bsc#1264595). - CVE-2026-43171: EFI/CPER: do not dump the entire memory region (bsc#1264549). - CVE-2026-43187: xfs: delete attr leaf freemap entries when empty (bsc#1264603). - CVE-2026-43198: tcp: fix potential race in tcp_v6_syn_recv_sock() (bsc#1264610). - CVE-2026-43239: smb: client: prevent races in ->query_interfaces() (bsc#1264444). - CVE-2026-43339: ipv6: prevent possible UaF in addrconf_permanent_addr() (bsc#1264763). - CVE-2026-43345: net: ipa: fix event ring index not programmed for IPA v5.0+ (bsc#1265103). - CVE-2026-43405: libceph: Use u32 for non-negative values in ceph_monmap_decode() (bsc#1264741). - CVE-2026-43469: xprtrdma: Decrement re_receiving on the early exit paths (bsc#1265143). - CVE-2026-43491: net: qrtr: ns: Limit the maximum server registration per node (bsc#1265628). - CVE-2026-45840: openvswitch: cap upcall PID array size and pre-size vport replies (bsc#1266397). - CVE-2026-45841: netfilter: nfnetlink_osf: fix divide-by-zero in OSF_WSS_MODULO (bsc#1266390). - CVE-2026-45862: iommu/vt-d: Flush cache for PASID table before using it (bsc#1266705). - CVE-2026-45870: SUNRPC: auth_gss: fix memory leaks in XDR decoding error paths (bsc#1266704). - CVE-2026-45894: iommu/vt-d: Clear Present bit before tearing down PASID entry (bsc#1266895). - CVE-2026-45940: net: stmmac: fix oops when split header is enabled (bsc#1266916). - CVE-2026-45961: gfs2: fix memory leaks in gfs2_fill_super error path (bsc#1266933). - CVE-2026-45964: SUNRPC: fix gss_auth kref leak in gss_alloc_msg error path (bsc#1266698). - CVE-2026-45965: apparmor: fix invalid deref of rawdata when export_binary is unset (bsc#1267208). - CVE-2026-45974: btrfs: fix invalid leaf access in btrfs_quota_enable() if ref key not found (bsc#1266922). - CVE-2026-46005: xfs: fix a resource leak in xfs_alloc_buftarg() (bsc#1267431). - CVE-2026-46037: ipv4: icmp: validate reply type before using icmp_pointers (bsc#1267361). - CVE-2026-46101: netfilter: reject zero shift in nft_bitwise (bsc#1266878). - CVE-2026-46119: libceph: Fix slab-out-of-bounds access in auth message processing (bsc#1267628). - CVE-2026-46120: ip6_gre: Use cached t->net in ip6erspan_changelink() (bsc#1267640). - CVE-2026-46123: Bluetooth: virtio_bt: clamp rx length before skb_put (bsc#1267621). - CVE-2026-46150: fanotify: fix false positive on permission events (bsc#1267387). - CVE-2026-46160: btrfs: fix missing last_unlink_trans update when removing a directory (bsc#1267624). - CVE-2026-46172: ipv6: xfrm6: release dst on error in xfrm6_rcv_encap() (bsc#1266903). - CVE-2026-46197: drm/amdkfd: validate SVM ioctl nattr against buffer size (bsc#1267381). - CVE-2026-46227: sctp: revalidate list cursor after sctp_sendmsg_to_asoc() in SCTP_SENDALL (bsc#1267697). - CVE-2026-46244: netfilter: nft_inner: Fix IPv6 inner_thoff desync (bsc#1267654). - CVE-2026-46259: procfs: fix missing RCU protection when reading real_parent in do_task_stat() (bsc#1267685). - CVE-2026-46273: ibmveth: Disable GSO for packets with small MSS (bsc#1267651). The following non-security bugs were fixed: - ACPI: CPPC: Suppress UBSAN warning caused by field misuse (git-fixes). - ACPI: IPMI: Fix message kref handling on dead device (git-fixes). - ACPI: NFIT: core: Fix possible NULL pointer dereference (git-fixes). - ALSA: aloop: Drop superfluous break (git-fixes). - ALSA: cmipci: check snd_ctl_new1() return value (git-fixes). - ALSA: core: Fix unintuitive behavior of snd_power_ref_and_wait() (git-fixes). - ALSA: es1938: check snd_ctl_new1() return value (git-fixes). - ALSA: gus: check snd_ctl_new1() return value (git-fixes). - ALSA: ice1712: check snd_ctl_new1() return value (git-fixes). - ALSA: seq: Clear variable event pointer on read (git-fixes). - ALSA: seq: Fix partial userptr event expansion (git-fixes). - ALSA: seq: midi: Serialize output teardown with event_input (git-fixes). - ALSA: usb-audio: Propagate US-16x08 write errors in route/mix EQ-switch put callbacks (git-fixes). - ALSA: usb-audio: Propagate errors in scarlett_ctl_enum_put() (git-fixes). - ALSA: usb-audio: Roll back quirk control caches on write errors (git-fixes). - ALSA: usb-audio: Update Babyface Pro control caches only after successful writes (git-fixes). - ALSA: usb-audio: Update US-16x08 EQ/comp shadow state after successful writes (git-fixes). - ALSA: virtio: Add missing 384 kHz PCM rate mapping (git-fixes). - ALSA: ymfpci: check snd_ctl_new1() return value (git-fixes). - ASoC: SOF: ipc3-control: Fix TOCTOU in bytes_put and bytes_get (git-fixes). - ASoC: SOF: ipc3-control: Fix heap overflow in bytes_ext put/get (git-fixes). - ASoC: SOF: ipc3-control: Use overflow checks in control_update size calc (git-fixes). - ASoC: SOF: ipc3-control: Validate size in snd_sof_update_control (git-fixes). - ASoC: SOF: ipc4-control: Fix TOCTOU in sof_ipc4_bytes_put (git-fixes). - ASoC: SOF: topology: validate vendor array size before parsing (git-fixes). - ASoC: adau1372: Clear PLL_EN on failed PLL lock without reset GPIO (git-fixes). - ASoC: codecs: hdac_hdmi: Validate written enum value (git-fixes). - ASoC: cs35l56: Cleanup if component_probe fails (git-fixes). - ASoC: cs35l56: Do not leave parent IRQ disabled if system_suspend fails (git-fixes). - ASoC: cs35l56: Fix missing calls to wm_adsp2_remove() (git-fixes). - ASoC: fsl: fsl_audmix: Validate written enum values (git-fixes). - ASoC: meson: aiu: Validate written enum values (git-fixes). - ASoC: tegra: tegra210_ahub: Validate written enum value (git-fixes). - ASoC: topology: Check PCM and DAI name strings before use (git-fixes). - ASoC: wm_adsp: Fix NULL dereference when removing firmware controls (git-fixes). - Bluetooth: btmtksdio: fix infinite loop in btmtksdio_txrx_work() (git-fixes). - Bluetooth: btusb: fix use-after-free on marvell probe failure (git-fixes). - Bluetooth: btusb: fix use-after-free on registration failure (git-fixes). - Bluetooth: btusb: fix wakeup irq devres lifetime (git-fixes). - Bluetooth: btusb: fix wakeup source leak on probe failure (git-fixes). - Bluetooth: eir: Fix stack OOB write when prepending the Flags AD (git-fixes). - Bluetooth: hci: validate codec capability element length (git-fixes). - Bluetooth: vhci: validate devcoredump state before side effects (git-fixes). - Drivers: hv: vmbus: Improve the logic of reserving fb_mmio on Gen2 VMs (git-fixes). - KVM: SEV: Ignore MMIO requests of length '0' (git-fixes). - KVM: SEV: Ignore Port I/O requests of length '0' (git-fixes). - KVM: SVM: Allow KVM_SET_NESTED_STATE to clear GIF when SVME==0 (git-fixes). - KVM: SVM: Do not set GIF when clearing EFER.SVME (git-fixes). - KVM: SVM: Flush the current TLB when transitioning from xAVIC => x2AVIC (git-fixes). - KVM: SVM: check validity of VMCB controls when returning from SMM (git-fixes). - KVM: arm64: Discard PC update state on vcpu reset (git-fixes). - KVM: arm64: Guard against NULL vcpu on VHE hyp panic path (git-fixes). - KVM: arm64: PMU: Preserve AArch32 counter low bits (git-fixes). - KVM: arm64: Treat vCPU with pending SError as runnable (git-fixes). - KVM: arm64: Wake-up from WFI when iqrchip is in userspace (git-fixes). - KVM: arm64: vgic-its: Reject restored DTE with out-of-range num_eventid_bits (git-fixes). - KVM: arm64: vgic: Fix IIDR revision field extracted from wrong value (git-fixes). - KVM: nSVM: Always use vmcb01 in VMLOAD/VMSAVE emulation (git-fixes). - KVM: nSVM: Ensure AVIC is inhibited when restoring a vCPU to guest mode (git-fixes). - KVM: nSVM: Mark all of vmcb02 dirty when restoring nested state (git-fixes). - KVM: nSVM: Set exit_code_hi to -1 when synthesizing SVM_EXIT_ERR (failed VMRUN) (git-fixes). - KVM: x86/mmu: Fix UBSAN warning when reading nx_huge_pages parameter (git-fixes). - PM: sleep: Use complete() in device_pm_sleep_init() (git-fixes). - USB: serial: io_ti: fix heap overflow in build_i2c_fw_hdr() (git-fixes). - USB: serial: io_ti: fix heap overflow in get_manuf_info() (git-fixes). - USB: serial: kl5kusb105: fix bulk-out buffer overflow (git-fixes). - X.509: Fix validation of ASN.1 certificate header (git-fixes). - add bugnumber to existing mana_ib change (bsc#1267682) - agp/amd64: Fix broken error propagation in agp_amd64_probe() (git-fixes). - batman-adv: bla: annotate lasttime access with READ/WRITE_ONCE (git-fixes). - batman-adv: tp_meter: add only finished tp_vars to lists (git-fixes). - batman-adv: tp_meter: avoid divide-by-zero for dec_cwnd (git-fixes). - batman-adv: tp_meter: avoid window underflow (git-fixes). - batman-adv: tp_meter: fix fast recovery precondition (git-fixes). - batman-adv: tp_meter: handle seqno wrap-around for fast recovery detection (git-fixes). - batman-adv: tp_meter: initialize dec_cwnd explicitly (git-fixes). - batman-adv: tp_meter: initialize dup_acks explicitly (git-fixes). - batman-adv: tp_meter: keep unacked list in ascending ordered (git-fixes). - bnxt_en: Fix NULL pointer dereference (bsc#1268307). - crypto: af_alg - Cap AEAD AD length to 0x80000000 (git-fixes). - crypto: amlogic - avoid double cleanup in meson_crypto_probe() (git-fixes). - crypto: asymmetric_keys - fix OOB read in pefile_digest_pe_contents (git-fixes). - crypto: atmel-sha204a - fix blocking and non-blocking rng logic (git-fixes). - crypto: cavium/cpt - fix DMA cleanup using wrong loop index (git-fixes). - crypto: ccp - Fix snp_filter_reserved_mem_regions() off-by-one (git-fixes). - crypto: ccp - Treat zero-length cert chain as query for blob lengths (git-fixes). - crypto: drbg - Fix drbg_max_addtl() on 64-bit kernels (git-fixes). - crypto: drbg - Fix returning success on failure in CTR_DRBG (git-fixes). - crypto: drbg - Fix the fips_enabled priority boost (git-fixes). - crypto: ecc - Fix carry overflow in vli multiplication (git-fixes). - crypto: ecrdsa - fix unknown OID check in ecrdsa_param_curve (git-fixes). - crypto: hisilicon/qm - disable error report before flr (git-fixes). - crypto: marvell/octeontx - fix DMA cleanup using wrong loop index (git-fixes). - crypto: pcrypt - restore callback for non-parallel fallback (git-fixes). - crypto: qat - protect service table iterations with service_lock (git-fixes). - crypto: qat - validate RSA CRT component lengths (git-fixes). - crypto: rng - Free default RNG on module exit (git-fixes). - driver core: reject devices with unregistered buses (git-fixes). - driver core: use READ_ONCE() for dev->driver in dev_has_sync_state() (git-fixes). - drm/amd/display: Add missing kdoc for ALLM parameters (git-fixes). - drm/amdgpu: fix integer overflow in amdgpu_gem_align_pitch() (git-fixes). - drm/amdgpu: set sub_block_index for mca ras sub-blocks (git-fixes). - drm/amdkfd: Validate CRIU-restored IDs before idr_alloc (git-fixes). - drm/bridge: cdns-dsi: Replace deprecated UNIVERSAL_DEV_PM_OPS() (git-fixes). - drm/dp/mst: fix OOB reads in remote DPCD/I2C sideband reply parsers (git-fixes). - drm/dp/mst: fix OOB reads on 2-byte fields in sideband reply parsers (git-fixes). - drm/dp/mst: fix buffer overflows in sideband chunk accumulation (git-fixes). - drm/hisilicon/hibmc: move display contrl config to hibmc_probe() (git-fixes). - drm/hisilicon/hibmc: use clock to look up the PLL value (git-fixes). - drm/hyperv: use VMBUS_RING_SIZE() (git-fixes). - drm/i915/gem: Fix phys BO pread/pwrite with offset (git-fixes). - drm/msm/dp: Fix the ISR_* enum values (git-fixes). - drm/msm/dp: fix HPD state status bit shift value (git-fixes). - drm/nouveau/bios: specify correct display fuse register for Ampere and Ada (git-fixes). - drm/radeon: fix integer overflow in radeon_align_pitch() (git-fixes). - drm/radeon: fix memory leak in radeon_ring_restore() on lock failure (git-fixes). - drm/rockchip: cdn-dp: add missing check in cdn_dp_config_video() (git-fixes). - drm/tegra: Fix iommu_map_sgtable() return value check (git-fixes). - drm/tegra: dc: Fix device node reference leak in tegra_dc_has_output() (git-fixes). - drm/tidss: Drop extra drm_mode_config_reset() call (git-fixes). - drm/tidss: Fix missing drm_bridge_add() call (git-fixes). - drm/vc4: fix krealloc() memory leak (git-fixes). - drm/virtio: Fix driver removal with disabled KMS (git-fixes). - drm/virtio: fix dma_fence refcount leak on error in virtio_gpu_dma_fence_wait() (git-fixes). - ethtool: provide customized dim profile management (bsc#1261256). - fbdev: broadsheetfb: fix potential memory leak in broadsheetfb_probe() (git-fixes). - fbdev: hecubafb: fix potential memory leak in hecubafb_probe() (git-fixes). - fbdev: i740fb: fix potential memory leak in i740fb_probe() (git-fixes). - fbdev: metronomefb: fix potential memory leak in metronomefb_probe() (git-fixes). - fbdev: modedb: Fix misaligned fields in the 1920x1080-60 mode (git-fixes). - fbdev: nvidia: fix potential memory leak in nvidiafb_probe() (git-fixes). - fbdev: radeon: fix potential memory leak in radeonfb_pci_register() (git-fixes). - fbdev: s3fb: fix potential memory leak in s3_pci_probe() (git-fixes). - fbdev: sm501fb: Fix buffer errors in OF binding code (git-fixes). - fbdev: sm712: Fix operator precedence in big_swap macro (git-fixes). - fbdev: tdfxfb: fix potential memory leak in tdfxfb_probe() (git-fixes). - fbdev: tridentfb: fix potential memory leak in trident_pci_probe() (git-fixes). - fbdev: uvesafb: fix potential memory leak in uvesafb_probe() (git-fixes). - fbdev: vesafb: fix memory leak in vesafb_probe() (git-fixes). - firmware: arm_scmi: Fix OOB in scmi_power_name_get() (git-fixes). - firmware: arm_scmi: Read sensor config as 32-bit value (git-fixes). - firmware_loader: Fix recursive lock in device_cache_fw_images() (git-fixes). - firmware_loader: fix device reference leak in firmware_upload_register() (git-fixes). - gpio: mvebu: fix NULL pointer dereference in suspend/resume (git-fixes). - gpu: host1x: Allow entries in BO caches to be freed (git-fixes). - gpu: host1x: Fix iommu_map_sgtable() return value check (git-fixes). - hv: utils: handle and propagate errors in kvp_register (git-fixes). - hwmon: (it87) Clamp negative values to zero in set_fan() (git-fixes). - hwrng: jh7110 - fix refcount leak in starfive_trng_read() (git-fixes). - hwrng: virtio: clamp device-reported used.len at copy_data() (git-fixes). - hyperv: Clean up and fix the guest ID comment in hvgdk.h (git-fixes). - i2c: core: fix irq domain leak on adapter registration failure (git-fixes). - i2c: qcom-cci: Fix NULL pointer dereference in cci_remove() (git-fixes). - i2c: stm32f7: fix timing computation ignoring i2c-analog-filter (git-fixes). - i2c: tegra: Fix NOIRQ suspend/resume (git-fixes). - linux/dim: move useful macros to .h file (bsc#1261256). - misc: fastrpc: Fix NULL pointer dereference in rpmsg callback (git-fixes). - misc: fastrpc: fix DMA address corruption due to find_vma misuse (git-fixes). - misc: fastrpc: fix use-after-free of fastrpc_user in workqueue context (git-fixes). - misc: fastrpc: fix use-after-free race in fastrpc_map_create (git-fixes). - net: ethtool: add ethtool COALESCE_RX_CQE_FRAMES/NSECS (bsc#1261256). - net: mana: Add ethtool counters for RX CQEs in coalesced type (bsc#1261256). - net: mana: Add support for RX CQE Coalescing (bsc#1261256). - of: cpu: add check in __of_find_n_match_cpu_property() (git-fixes). - slimbus: qcom-ngd-ctrl: fix OF node refcount (git-fixes). - soc: fsl: qe: panic on ioremap() failure in qe_reset() (git-fixes). - soc: ti: k3-ringacc: Fix access mode for k3_ringacc_ring_pop_tail_io/proxy (git-fixes). - spi: at91-usart: drop dead runtime pm support (git-fixes). - spi: ep93xx: fix double-free of zeropage on DMA setup failure (git-fixes). - spi: fsl-lpspi: replace dmaengine_terminate_all() with dmaengine_terminate_sync() (git-fixes). - spi: fsl-lpspi: terminate the RX channel on TX prepare failure path (git-fixes). - spi: meson-spifc: fix runtime PM leak on remove (git-fixes). - spi: xilinx: use FIFO occupancy register to determine buffer size (git-fixes). - thermal: hwmon: Fix critical temperature attribute removal (git-fixes). - thunderbolt: Bound root directory content to block size (git-fixes). - thunderbolt: Clamp XDomain response data copy to allocation size (git-fixes). - thunderbolt: Limit XDomain response copy to actual frame size (git-fixes). - thunderbolt: Reject zero-length property entries in validator (git-fixes). - thunderbolt: Validate XDomain request packet size before type cast (git-fixes). - watchdog: apple: Add 'apple,t8103-wdt' compatible (git-fixes). - watchdog: sp5100_tco: Use EFCH MMIO for newer Hygon FCH (git-fixes). - watchdog: sprd_wdt: Remove redundant sprd_wdt_disable() on register failure (git-fixes). - watchdog: unregister PM notifier on watchdog unregister (git-fixes). - wifi: ath11k: fix warning when unbinding (git-fixes). - wifi: ath9k: fix OOB access from firmware tx status queue ID (git-fixes). - wifi: cfg80211: fix grammar in MLO group key error message (git-fixes). - wifi: mac80211: fix monitor mode frame capture for real chanctx drivers (git-fixes). - wifi: mt76: fix argument to ieee80211_is_first_frag() (git-fixes). - wifi: mt76: mt7915: fix potential tx_retries underflow (git-fixes). - wifi: mt76: mt7921: fix potential tx_retries underflow (git-fixes). - wifi: mt76: mt7925: clean up DMA on probe failure (git-fixes). - wifi: mt76: mt7925: fix potential tx_retries underflow (git-fixes). - wifi: mt76: mt7996: fix potential tx_retries underflow (git-fixes). - wifi: rtlwifi: rtl8821ae: Fix C2H bit location in RX descriptor (git-fixes). - wifi: rtw88: fix OOB read from firmware RX descriptor exceeding DMA buffer (git-fixes). - wifi: rtw88: increase TX report timeout to fix race condition (git-fixes). - wifi: rtw88: usb: fix memory leaks on USB write failures (git-fixes). - wifi: rtw89: Correct data type for scan index to avoid infinite loop (git-fixes). - wifi: wcn36xx: fix OOB read from firmware count in PRINT_REG_INFO indication (git-fixes). - wifi: wcn36xx: fix OOB read from short trigger BA firmware response (git-fixes). - wifi: wcn36xx: fix heap overflow from oversized firmware HAL response (git-fixes). The following package changes have been done: - kernel-default-6.4.0-48.1 updated From sle-container-updates at lists.suse.com Wed Jul 1 08:02:52 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 1 Jul 2026 10:02:52 +0200 (CEST) Subject: SUSE-IU-2026:5210-1: Security update of suse/sl-micro/6.0/kvm-os-container Message-ID: <20260701080252.94552FF22@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.0/kvm-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5210-1 Image Tags : suse/sl-micro/6.0/kvm-os-container:2.1.3 , suse/sl-micro/6.0/kvm-os-container:2.1.3-6.176 , suse/sl-micro/6.0/kvm-os-container:latest Image Release : 6.176 Severity : important Type : security References : 1256668 1261256 1262085 1262392 1262617 1262620 1262674 1262748 1262798 1262993 1263123 1263137 1263178 1263563 1263568 1263578 1263879 1263880 1263930 1263934 1263993 1263996 1264045 1264076 1264080 1264084 1264116 1264137 1264145 1264239 1264263 1264266 1264437 1264444 1264470 1264549 1264561 1264595 1264603 1264610 1264741 1264763 1265103 1265143 1265628 1266290 1266390 1266397 1266698 1266704 1266705 1266878 1266895 1266903 1266916 1266922 1266933 1267208 1267361 1267381 1267387 1267431 1267621 1267624 1267628 1267640 1267651 1267654 1267682 1267685 1267697 1267744 1268307 CVE-2025-10263 CVE-2025-68822 CVE-2026-31414 CVE-2026-31429 CVE-2026-31452 CVE-2026-31453 CVE-2026-31469 CVE-2026-31492 CVE-2026-31495 CVE-2026-31499 CVE-2026-31500 CVE-2026-31555 CVE-2026-31592 CVE-2026-31664 CVE-2026-31665 CVE-2026-31674 CVE-2026-31680 CVE-2026-31693 CVE-2026-31697 CVE-2026-31698 CVE-2026-31699 CVE-2026-31752 CVE-2026-31759 CVE-2026-31771 CVE-2026-43023 CVE-2026-43024 CVE-2026-43028 CVE-2026-43035 CVE-2026-43036 CVE-2026-43049 CVE-2026-43053 CVE-2026-43074 CVE-2026-43077 CVE-2026-43083 CVE-2026-43101 CVE-2026-43112 CVE-2026-43119 CVE-2026-43158 CVE-2026-43171 CVE-2026-43187 CVE-2026-43198 CVE-2026-43239 CVE-2026-43339 CVE-2026-43345 CVE-2026-43405 CVE-2026-43469 CVE-2026-43491 CVE-2026-45840 CVE-2026-45841 CVE-2026-45862 CVE-2026-45870 CVE-2026-45894 CVE-2026-45940 CVE-2026-45961 CVE-2026-45964 CVE-2026-45965 CVE-2026-45974 CVE-2026-46005 CVE-2026-46037 CVE-2026-46101 CVE-2026-46119 CVE-2026-46120 CVE-2026-46123 CVE-2026-46150 CVE-2026-46160 CVE-2026-46172 CVE-2026-46197 CVE-2026-46227 CVE-2026-46244 CVE-2026-46259 CVE-2026-46273 ----------------------------------------------------------------- The container suse/sl-micro/6.0/kvm-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: kernel-496 Released: Wed Jul 1 01:09:03 2026 Summary: Security update for the Linux Kernel Type: security Severity: important References: 1256668,1261256,1262085,1262392,1262617,1262620,1262674,1262748,1262798,1262993,1263123,1263137,1263178,1263563,1263568,1263578,1263879,1263880,1263930,1263934,1263993,1263996,1264045,1264076,1264080,1264084,1264116,1264137,1264145,1264239,1264263,1264266,1264437,1264444,1264470,1264549,1264561,1264595,1264603,1264610,1264741,1264763,1265103,1265143,1265628,1266290,1266390,1266397,1266698,1266704,1266705,1266878,1266895,1266903,1266916,1266922,1266933,1267208,1267361,1267381,1267387,1267431,1267621,1267624,1267628,1267640,1267651,1267654,1267682,1267685,1267697,1267744,1268307,CVE-2025-10263,CVE-2025-68822,CVE-2026-31414,CVE-2026-31429,CVE-2026-31452,CVE-2026-31453,CVE-2026-31469,CVE-2026-31492,CVE-2026-31495,CVE-2026-31499,CVE-2026-31500,CVE-2026-31555,CVE-2026-31592,CVE-2026-31664,CVE-2026-31665,CVE-2026-31674,CVE-2026-31680,CVE-2026-31693,CVE-2026-31697,CVE-2026-31698,CVE-2026-31699,CVE-2026-31752,CVE-2026-31759,CVE-2026-31771,CVE-2026-43023,CVE-2026-43024,CVE-2026-43 028,CVE-2026-43035,CVE-2026-43036,CVE-2026-43049,CVE-2026-43053,CVE-2026-43074,CVE-2026-43077,CVE-2026-43083,CVE-2026-43101,CVE-2026-43112,CVE-2026-43119,CVE-2026-43158,CVE-2026-43171,CVE-2026-43187,CVE-2026-43198,CVE-2026-43239,CVE-2026-43339,CVE-2026-43345,CVE-2026-43405,CVE-2026-43469,CVE-2026-43491,CVE-2026-45840,CVE-2026-45841,CVE-2026-45862,CVE-2026-45870,CVE-2026-45894,CVE-2026-45940,CVE-2026-45961,CVE-2026-45964,CVE-2026-45965,CVE-2026-45974,CVE-2026-46005,CVE-2026-46037,CVE-2026-46101,CVE-2026-46119,CVE-2026-46120,CVE-2026-46123,CVE-2026-46150,CVE-2026-46160,CVE-2026-46172,CVE-2026-46197,CVE-2026-46227,CVE-2026-46244,CVE-2026-46259,CVE-2026-46273 The SUSE Linux Enterprise Micro 6.0 and 6.1 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2025-10263: arm64: errata: Mitigate TLBI errata on various Arm CPUs (bsc#1266290). - CVE-2025-68822: Input: alps - fix use-after-free bugs caused by dev3_register_work (bsc#1256668). - CVE-2026-31414: netfilter: nf_conntrack_expect: use expect->helper (bsc#1262085). - CVE-2026-31429: net: skb: fix cross-cache free of KFENCE-allocated skb head (bsc#1262392). - CVE-2026-31452: ext4: convert inline data to extents when truncate exceeds inline size (bsc#1262620). - CVE-2026-31469: virtio_net: Fix UAF on dst_ops when IFF_XMIT_DST_RELEASE is cleared and napi_tx is false - CVE-2026-31492: RDMA/irdma: Initialize free_qp completion before using it (bsc#1262748). - CVE-2026-31495: netfilter: ctnetlink: use netlink policy range checks (bsc#1262798). - CVE-2026-31499: Bluetooth: L2CAP: Fix deadlock in l2cap_conn_del() (bsc#1262674). - CVE-2026-31500: Bluetooth: btintel: serialize btintel_hw_error() with hci_req_sync_lock (bsc#1262993). - CVE-2026-31555: futex: Clear stale exiting pointer in futex_lock_pi() retry path (bsc#1263178). - CVE-2026-31592: KVM: SEV: Protect *all* of sev_mem_enc_register_region() with kvm->lock (bsc#1263123). - CVE-2026-31664: string.h: Introduce memset_after() for wiping trailing members/padding (bsc#1263578). - CVE-2026-31665: kABI: netfilter: nft_ct: fix use-after-free in timeout object destroy (bsc#1263137). - CVE-2026-31674: netfilter: ip6t_rt: reject oversized addrnr in rt_mt6_check() (bsc#1263568). - CVE-2026-31680: net: ipv6: flowlabel: defer exclusive option free until RCU teardown (bsc#1263563). - CVE-2026-31693: cifs: some missing initializations on replay (bsc#1267744). - CVE-2026-31697: crypto: ccp: Don't attempt to copy ID to userspace if PSP command failed (bsc#1264116). - CVE-2026-31698: crypto: ccp: Don't attempt to copy PDH cert to userspace if PSP command failed (bsc#1263880). - CVE-2026-31699: crypto: ccp: Don't attempt to copy CSR to userspace if PSP command failed (bsc#1263879). - CVE-2026-31752: bridge: br_nd_send: validate ND option lengths (bsc#1264045). - CVE-2026-31759: usb: ulpi: fix double free in ulpi_register_interface() error path (bsc#1264076). - CVE-2026-31771: Bluetooth: hci_event: move wake reason storage into validated event handlers (bsc#1264145). - CVE-2026-43023: Bluetooth: SCO: fix race conditions in sco_sock_connect() (bsc#1264137). - CVE-2026-43024: netfilter: nf_tables: reject immediate NF_QUEUE verdict (bsc#1263930). - CVE-2026-43028: netfilter: x_tables: ensure names are nul-terminated (bsc#1263934). - CVE-2026-43035: net: sched: cls_api: fix tc_chain_fill_node to initialize tcm_info to zero to prevent an info-leak (bsc#1263996). - CVE-2026-43036: net: use skb_header_pointer() for TCPv4 GSO frag_off check (bsc#1263993). - CVE-2026-43049: HID: logitech-hidpp: Prevent use-after-free on force feedback initialisation failure (bsc#1264080). - CVE-2026-43053: xfs: close crash window in attr dabtree inactivation (bsc#1264084). - CVE-2026-43074: eventpoll: defer struct eventpoll free to RCU grace period (bsc#1264263). - CVE-2026-43077: crypto: algif_aead - Fix minimum RX size check for decryption (bsc#1264470). - CVE-2026-43083: net: ioam6: fix OOB and missing lock (bsc#1264266). - CVE-2026-43101: ipv6: ioam: fix potential NULL dereferences in __ioam6_fill_trace_data() (bsc#1264239). - CVE-2026-43112: fs/smb/client: fix out-of-bounds read in cifs_sanitize_prepath (bsc#1264437). - CVE-2026-43119: Bluetooth: hci_sync: annotate data-races around hdev->req_status (bsc#1264561). - CVE-2026-43158: xfs: fix freemap adjustments when adding xattrs to leaf blocks (bsc#1264595). - CVE-2026-43171: EFI/CPER: do not dump the entire memory region (bsc#1264549). - CVE-2026-43187: xfs: delete attr leaf freemap entries when empty (bsc#1264603). - CVE-2026-43198: tcp: fix potential race in tcp_v6_syn_recv_sock() (bsc#1264610). - CVE-2026-43239: smb: client: prevent races in ->query_interfaces() (bsc#1264444). - CVE-2026-43339: ipv6: prevent possible UaF in addrconf_permanent_addr() (bsc#1264763). - CVE-2026-43345: net: ipa: fix event ring index not programmed for IPA v5.0+ (bsc#1265103). - CVE-2026-43405: libceph: Use u32 for non-negative values in ceph_monmap_decode() (bsc#1264741). - CVE-2026-43469: xprtrdma: Decrement re_receiving on the early exit paths (bsc#1265143). - CVE-2026-43491: net: qrtr: ns: Limit the maximum server registration per node (bsc#1265628). - CVE-2026-45840: openvswitch: cap upcall PID array size and pre-size vport replies (bsc#1266397). - CVE-2026-45841: netfilter: nfnetlink_osf: fix divide-by-zero in OSF_WSS_MODULO (bsc#1266390). - CVE-2026-45862: iommu/vt-d: Flush cache for PASID table before using it (bsc#1266705). - CVE-2026-45870: SUNRPC: auth_gss: fix memory leaks in XDR decoding error paths (bsc#1266704). - CVE-2026-45894: iommu/vt-d: Clear Present bit before tearing down PASID entry (bsc#1266895). - CVE-2026-45940: net: stmmac: fix oops when split header is enabled (bsc#1266916). - CVE-2026-45961: gfs2: fix memory leaks in gfs2_fill_super error path (bsc#1266933). - CVE-2026-45964: SUNRPC: fix gss_auth kref leak in gss_alloc_msg error path (bsc#1266698). - CVE-2026-45965: apparmor: fix invalid deref of rawdata when export_binary is unset (bsc#1267208). - CVE-2026-45974: btrfs: fix invalid leaf access in btrfs_quota_enable() if ref key not found (bsc#1266922). - CVE-2026-46005: xfs: fix a resource leak in xfs_alloc_buftarg() (bsc#1267431). - CVE-2026-46037: ipv4: icmp: validate reply type before using icmp_pointers (bsc#1267361). - CVE-2026-46101: netfilter: reject zero shift in nft_bitwise (bsc#1266878). - CVE-2026-46119: libceph: Fix slab-out-of-bounds access in auth message processing (bsc#1267628). - CVE-2026-46120: ip6_gre: Use cached t->net in ip6erspan_changelink() (bsc#1267640). - CVE-2026-46123: Bluetooth: virtio_bt: clamp rx length before skb_put (bsc#1267621). - CVE-2026-46150: fanotify: fix false positive on permission events (bsc#1267387). - CVE-2026-46160: btrfs: fix missing last_unlink_trans update when removing a directory (bsc#1267624). - CVE-2026-46172: ipv6: xfrm6: release dst on error in xfrm6_rcv_encap() (bsc#1266903). - CVE-2026-46197: drm/amdkfd: validate SVM ioctl nattr against buffer size (bsc#1267381). - CVE-2026-46227: sctp: revalidate list cursor after sctp_sendmsg_to_asoc() in SCTP_SENDALL (bsc#1267697). - CVE-2026-46244: netfilter: nft_inner: Fix IPv6 inner_thoff desync (bsc#1267654). - CVE-2026-46259: procfs: fix missing RCU protection when reading real_parent in do_task_stat() (bsc#1267685). - CVE-2026-46273: ibmveth: Disable GSO for packets with small MSS (bsc#1267651). The following non-security bugs were fixed: - ACPI: CPPC: Suppress UBSAN warning caused by field misuse (git-fixes). - ACPI: IPMI: Fix message kref handling on dead device (git-fixes). - ACPI: NFIT: core: Fix possible NULL pointer dereference (git-fixes). - ALSA: aloop: Drop superfluous break (git-fixes). - ALSA: cmipci: check snd_ctl_new1() return value (git-fixes). - ALSA: core: Fix unintuitive behavior of snd_power_ref_and_wait() (git-fixes). - ALSA: es1938: check snd_ctl_new1() return value (git-fixes). - ALSA: gus: check snd_ctl_new1() return value (git-fixes). - ALSA: ice1712: check snd_ctl_new1() return value (git-fixes). - ALSA: seq: Clear variable event pointer on read (git-fixes). - ALSA: seq: Fix partial userptr event expansion (git-fixes). - ALSA: seq: midi: Serialize output teardown with event_input (git-fixes). - ALSA: usb-audio: Propagate US-16x08 write errors in route/mix EQ-switch put callbacks (git-fixes). - ALSA: usb-audio: Propagate errors in scarlett_ctl_enum_put() (git-fixes). - ALSA: usb-audio: Roll back quirk control caches on write errors (git-fixes). - ALSA: usb-audio: Update Babyface Pro control caches only after successful writes (git-fixes). - ALSA: usb-audio: Update US-16x08 EQ/comp shadow state after successful writes (git-fixes). - ALSA: virtio: Add missing 384 kHz PCM rate mapping (git-fixes). - ALSA: ymfpci: check snd_ctl_new1() return value (git-fixes). - ASoC: SOF: ipc3-control: Fix TOCTOU in bytes_put and bytes_get (git-fixes). - ASoC: SOF: ipc3-control: Fix heap overflow in bytes_ext put/get (git-fixes). - ASoC: SOF: ipc3-control: Use overflow checks in control_update size calc (git-fixes). - ASoC: SOF: ipc3-control: Validate size in snd_sof_update_control (git-fixes). - ASoC: SOF: ipc4-control: Fix TOCTOU in sof_ipc4_bytes_put (git-fixes). - ASoC: SOF: topology: validate vendor array size before parsing (git-fixes). - ASoC: adau1372: Clear PLL_EN on failed PLL lock without reset GPIO (git-fixes). - ASoC: codecs: hdac_hdmi: Validate written enum value (git-fixes). - ASoC: cs35l56: Cleanup if component_probe fails (git-fixes). - ASoC: cs35l56: Do not leave parent IRQ disabled if system_suspend fails (git-fixes). - ASoC: cs35l56: Fix missing calls to wm_adsp2_remove() (git-fixes). - ASoC: fsl: fsl_audmix: Validate written enum values (git-fixes). - ASoC: meson: aiu: Validate written enum values (git-fixes). - ASoC: tegra: tegra210_ahub: Validate written enum value (git-fixes). - ASoC: topology: Check PCM and DAI name strings before use (git-fixes). - ASoC: wm_adsp: Fix NULL dereference when removing firmware controls (git-fixes). - Bluetooth: btmtksdio: fix infinite loop in btmtksdio_txrx_work() (git-fixes). - Bluetooth: btusb: fix use-after-free on marvell probe failure (git-fixes). - Bluetooth: btusb: fix use-after-free on registration failure (git-fixes). - Bluetooth: btusb: fix wakeup irq devres lifetime (git-fixes). - Bluetooth: btusb: fix wakeup source leak on probe failure (git-fixes). - Bluetooth: eir: Fix stack OOB write when prepending the Flags AD (git-fixes). - Bluetooth: hci: validate codec capability element length (git-fixes). - Bluetooth: vhci: validate devcoredump state before side effects (git-fixes). - Drivers: hv: vmbus: Improve the logic of reserving fb_mmio on Gen2 VMs (git-fixes). - KVM: SEV: Ignore MMIO requests of length '0' (git-fixes). - KVM: SEV: Ignore Port I/O requests of length '0' (git-fixes). - KVM: SVM: Allow KVM_SET_NESTED_STATE to clear GIF when SVME==0 (git-fixes). - KVM: SVM: Do not set GIF when clearing EFER.SVME (git-fixes). - KVM: SVM: Flush the current TLB when transitioning from xAVIC => x2AVIC (git-fixes). - KVM: SVM: check validity of VMCB controls when returning from SMM (git-fixes). - KVM: arm64: Discard PC update state on vcpu reset (git-fixes). - KVM: arm64: Guard against NULL vcpu on VHE hyp panic path (git-fixes). - KVM: arm64: PMU: Preserve AArch32 counter low bits (git-fixes). - KVM: arm64: Treat vCPU with pending SError as runnable (git-fixes). - KVM: arm64: Wake-up from WFI when iqrchip is in userspace (git-fixes). - KVM: arm64: vgic-its: Reject restored DTE with out-of-range num_eventid_bits (git-fixes). - KVM: arm64: vgic: Fix IIDR revision field extracted from wrong value (git-fixes). - KVM: nSVM: Always use vmcb01 in VMLOAD/VMSAVE emulation (git-fixes). - KVM: nSVM: Ensure AVIC is inhibited when restoring a vCPU to guest mode (git-fixes). - KVM: nSVM: Mark all of vmcb02 dirty when restoring nested state (git-fixes). - KVM: nSVM: Set exit_code_hi to -1 when synthesizing SVM_EXIT_ERR (failed VMRUN) (git-fixes). - KVM: x86/mmu: Fix UBSAN warning when reading nx_huge_pages parameter (git-fixes). - PM: sleep: Use complete() in device_pm_sleep_init() (git-fixes). - USB: serial: io_ti: fix heap overflow in build_i2c_fw_hdr() (git-fixes). - USB: serial: io_ti: fix heap overflow in get_manuf_info() (git-fixes). - USB: serial: kl5kusb105: fix bulk-out buffer overflow (git-fixes). - X.509: Fix validation of ASN.1 certificate header (git-fixes). - add bugnumber to existing mana_ib change (bsc#1267682) - agp/amd64: Fix broken error propagation in agp_amd64_probe() (git-fixes). - batman-adv: bla: annotate lasttime access with READ/WRITE_ONCE (git-fixes). - batman-adv: tp_meter: add only finished tp_vars to lists (git-fixes). - batman-adv: tp_meter: avoid divide-by-zero for dec_cwnd (git-fixes). - batman-adv: tp_meter: avoid window underflow (git-fixes). - batman-adv: tp_meter: fix fast recovery precondition (git-fixes). - batman-adv: tp_meter: handle seqno wrap-around for fast recovery detection (git-fixes). - batman-adv: tp_meter: initialize dec_cwnd explicitly (git-fixes). - batman-adv: tp_meter: initialize dup_acks explicitly (git-fixes). - batman-adv: tp_meter: keep unacked list in ascending ordered (git-fixes). - bnxt_en: Fix NULL pointer dereference (bsc#1268307). - crypto: af_alg - Cap AEAD AD length to 0x80000000 (git-fixes). - crypto: amlogic - avoid double cleanup in meson_crypto_probe() (git-fixes). - crypto: asymmetric_keys - fix OOB read in pefile_digest_pe_contents (git-fixes). - crypto: atmel-sha204a - fix blocking and non-blocking rng logic (git-fixes). - crypto: cavium/cpt - fix DMA cleanup using wrong loop index (git-fixes). - crypto: ccp - Fix snp_filter_reserved_mem_regions() off-by-one (git-fixes). - crypto: ccp - Treat zero-length cert chain as query for blob lengths (git-fixes). - crypto: drbg - Fix drbg_max_addtl() on 64-bit kernels (git-fixes). - crypto: drbg - Fix returning success on failure in CTR_DRBG (git-fixes). - crypto: drbg - Fix the fips_enabled priority boost (git-fixes). - crypto: ecc - Fix carry overflow in vli multiplication (git-fixes). - crypto: ecrdsa - fix unknown OID check in ecrdsa_param_curve (git-fixes). - crypto: hisilicon/qm - disable error report before flr (git-fixes). - crypto: marvell/octeontx - fix DMA cleanup using wrong loop index (git-fixes). - crypto: pcrypt - restore callback for non-parallel fallback (git-fixes). - crypto: qat - protect service table iterations with service_lock (git-fixes). - crypto: qat - validate RSA CRT component lengths (git-fixes). - crypto: rng - Free default RNG on module exit (git-fixes). - driver core: reject devices with unregistered buses (git-fixes). - driver core: use READ_ONCE() for dev->driver in dev_has_sync_state() (git-fixes). - drm/amd/display: Add missing kdoc for ALLM parameters (git-fixes). - drm/amdgpu: fix integer overflow in amdgpu_gem_align_pitch() (git-fixes). - drm/amdgpu: set sub_block_index for mca ras sub-blocks (git-fixes). - drm/amdkfd: Validate CRIU-restored IDs before idr_alloc (git-fixes). - drm/bridge: cdns-dsi: Replace deprecated UNIVERSAL_DEV_PM_OPS() (git-fixes). - drm/dp/mst: fix OOB reads in remote DPCD/I2C sideband reply parsers (git-fixes). - drm/dp/mst: fix OOB reads on 2-byte fields in sideband reply parsers (git-fixes). - drm/dp/mst: fix buffer overflows in sideband chunk accumulation (git-fixes). - drm/hisilicon/hibmc: move display contrl config to hibmc_probe() (git-fixes). - drm/hisilicon/hibmc: use clock to look up the PLL value (git-fixes). - drm/hyperv: use VMBUS_RING_SIZE() (git-fixes). - drm/i915/gem: Fix phys BO pread/pwrite with offset (git-fixes). - drm/msm/dp: Fix the ISR_* enum values (git-fixes). - drm/msm/dp: fix HPD state status bit shift value (git-fixes). - drm/nouveau/bios: specify correct display fuse register for Ampere and Ada (git-fixes). - drm/radeon: fix integer overflow in radeon_align_pitch() (git-fixes). - drm/radeon: fix memory leak in radeon_ring_restore() on lock failure (git-fixes). - drm/rockchip: cdn-dp: add missing check in cdn_dp_config_video() (git-fixes). - drm/tegra: Fix iommu_map_sgtable() return value check (git-fixes). - drm/tegra: dc: Fix device node reference leak in tegra_dc_has_output() (git-fixes). - drm/tidss: Drop extra drm_mode_config_reset() call (git-fixes). - drm/tidss: Fix missing drm_bridge_add() call (git-fixes). - drm/vc4: fix krealloc() memory leak (git-fixes). - drm/virtio: Fix driver removal with disabled KMS (git-fixes). - drm/virtio: fix dma_fence refcount leak on error in virtio_gpu_dma_fence_wait() (git-fixes). - ethtool: provide customized dim profile management (bsc#1261256). - fbdev: broadsheetfb: fix potential memory leak in broadsheetfb_probe() (git-fixes). - fbdev: hecubafb: fix potential memory leak in hecubafb_probe() (git-fixes). - fbdev: i740fb: fix potential memory leak in i740fb_probe() (git-fixes). - fbdev: metronomefb: fix potential memory leak in metronomefb_probe() (git-fixes). - fbdev: modedb: Fix misaligned fields in the 1920x1080-60 mode (git-fixes). - fbdev: nvidia: fix potential memory leak in nvidiafb_probe() (git-fixes). - fbdev: radeon: fix potential memory leak in radeonfb_pci_register() (git-fixes). - fbdev: s3fb: fix potential memory leak in s3_pci_probe() (git-fixes). - fbdev: sm501fb: Fix buffer errors in OF binding code (git-fixes). - fbdev: sm712: Fix operator precedence in big_swap macro (git-fixes). - fbdev: tdfxfb: fix potential memory leak in tdfxfb_probe() (git-fixes). - fbdev: tridentfb: fix potential memory leak in trident_pci_probe() (git-fixes). - fbdev: uvesafb: fix potential memory leak in uvesafb_probe() (git-fixes). - fbdev: vesafb: fix memory leak in vesafb_probe() (git-fixes). - firmware: arm_scmi: Fix OOB in scmi_power_name_get() (git-fixes). - firmware: arm_scmi: Read sensor config as 32-bit value (git-fixes). - firmware_loader: Fix recursive lock in device_cache_fw_images() (git-fixes). - firmware_loader: fix device reference leak in firmware_upload_register() (git-fixes). - gpio: mvebu: fix NULL pointer dereference in suspend/resume (git-fixes). - gpu: host1x: Allow entries in BO caches to be freed (git-fixes). - gpu: host1x: Fix iommu_map_sgtable() return value check (git-fixes). - hv: utils: handle and propagate errors in kvp_register (git-fixes). - hwmon: (it87) Clamp negative values to zero in set_fan() (git-fixes). - hwrng: jh7110 - fix refcount leak in starfive_trng_read() (git-fixes). - hwrng: virtio: clamp device-reported used.len at copy_data() (git-fixes). - hyperv: Clean up and fix the guest ID comment in hvgdk.h (git-fixes). - i2c: core: fix irq domain leak on adapter registration failure (git-fixes). - i2c: qcom-cci: Fix NULL pointer dereference in cci_remove() (git-fixes). - i2c: stm32f7: fix timing computation ignoring i2c-analog-filter (git-fixes). - i2c: tegra: Fix NOIRQ suspend/resume (git-fixes). - linux/dim: move useful macros to .h file (bsc#1261256). - misc: fastrpc: Fix NULL pointer dereference in rpmsg callback (git-fixes). - misc: fastrpc: fix DMA address corruption due to find_vma misuse (git-fixes). - misc: fastrpc: fix use-after-free of fastrpc_user in workqueue context (git-fixes). - misc: fastrpc: fix use-after-free race in fastrpc_map_create (git-fixes). - net: ethtool: add ethtool COALESCE_RX_CQE_FRAMES/NSECS (bsc#1261256). - net: mana: Add ethtool counters for RX CQEs in coalesced type (bsc#1261256). - net: mana: Add support for RX CQE Coalescing (bsc#1261256). - of: cpu: add check in __of_find_n_match_cpu_property() (git-fixes). - slimbus: qcom-ngd-ctrl: fix OF node refcount (git-fixes). - soc: fsl: qe: panic on ioremap() failure in qe_reset() (git-fixes). - soc: ti: k3-ringacc: Fix access mode for k3_ringacc_ring_pop_tail_io/proxy (git-fixes). - spi: at91-usart: drop dead runtime pm support (git-fixes). - spi: ep93xx: fix double-free of zeropage on DMA setup failure (git-fixes). - spi: fsl-lpspi: replace dmaengine_terminate_all() with dmaengine_terminate_sync() (git-fixes). - spi: fsl-lpspi: terminate the RX channel on TX prepare failure path (git-fixes). - spi: meson-spifc: fix runtime PM leak on remove (git-fixes). - spi: xilinx: use FIFO occupancy register to determine buffer size (git-fixes). - thermal: hwmon: Fix critical temperature attribute removal (git-fixes). - thunderbolt: Bound root directory content to block size (git-fixes). - thunderbolt: Clamp XDomain response data copy to allocation size (git-fixes). - thunderbolt: Limit XDomain response copy to actual frame size (git-fixes). - thunderbolt: Reject zero-length property entries in validator (git-fixes). - thunderbolt: Validate XDomain request packet size before type cast (git-fixes). - watchdog: apple: Add 'apple,t8103-wdt' compatible (git-fixes). - watchdog: sp5100_tco: Use EFCH MMIO for newer Hygon FCH (git-fixes). - watchdog: sprd_wdt: Remove redundant sprd_wdt_disable() on register failure (git-fixes). - watchdog: unregister PM notifier on watchdog unregister (git-fixes). - wifi: ath11k: fix warning when unbinding (git-fixes). - wifi: ath9k: fix OOB access from firmware tx status queue ID (git-fixes). - wifi: cfg80211: fix grammar in MLO group key error message (git-fixes). - wifi: mac80211: fix monitor mode frame capture for real chanctx drivers (git-fixes). - wifi: mt76: fix argument to ieee80211_is_first_frag() (git-fixes). - wifi: mt76: mt7915: fix potential tx_retries underflow (git-fixes). - wifi: mt76: mt7921: fix potential tx_retries underflow (git-fixes). - wifi: mt76: mt7925: clean up DMA on probe failure (git-fixes). - wifi: mt76: mt7925: fix potential tx_retries underflow (git-fixes). - wifi: mt76: mt7996: fix potential tx_retries underflow (git-fixes). - wifi: rtlwifi: rtl8821ae: Fix C2H bit location in RX descriptor (git-fixes). - wifi: rtw88: fix OOB read from firmware RX descriptor exceeding DMA buffer (git-fixes). - wifi: rtw88: increase TX report timeout to fix race condition (git-fixes). - wifi: rtw88: usb: fix memory leaks on USB write failures (git-fixes). - wifi: rtw89: Correct data type for scan index to avoid infinite loop (git-fixes). - wifi: wcn36xx: fix OOB read from firmware count in PRINT_REG_INFO indication (git-fixes). - wifi: wcn36xx: fix OOB read from short trigger BA firmware response (git-fixes). - wifi: wcn36xx: fix heap overflow from oversized firmware HAL response (git-fixes). The following package changes have been done: - kernel-default-base-6.4.0-48.1.21.25 updated - container:SL-Micro-base-container-2.1.3-7.162 updated From sle-container-updates at lists.suse.com Wed Jul 1 08:05:29 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 1 Jul 2026 10:05:29 +0200 (CEST) Subject: SUSE-IU-2026:5211-1: Security update of suse/sl-micro/6.1/baremetal-os-container Message-ID: <20260701080529.CB572FF02@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.1/baremetal-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5211-1 Image Tags : suse/sl-micro/6.1/baremetal-os-container:2.2.1 , suse/sl-micro/6.1/baremetal-os-container:2.2.1-7.129 , suse/sl-micro/6.1/baremetal-os-container:latest Image Release : 7.129 Severity : important Type : security References : 1229129 1240751 1244057 1244485 1249049 1249128 1252555 1253783 1253904 1254353 1256818 1257692 1258046 1258120 1258170 1258508 1262856 1263656 1263658 1266125 1266350 1268131 1268903 CVE-2024-24853 CVE-2025-12105 CVE-2025-22869 CVE-2025-31648 CVE-2025-32049 CVE-2025-47913 CVE-2025-47914 CVE-2025-52881 CVE-2025-58060 CVE-2025-58181 CVE-2025-58364 CVE-2025-58436 CVE-2025-6032 CVE-2025-61732 CVE-2025-61915 CVE-2025-68121 CVE-2025-9566 CVE-2026-11850 CVE-2026-2369 CVE-2026-2443 CVE-2026-2708 CVE-2026-34986 CVE-2026-39827 CVE-2026-39828 CVE-2026-39829 CVE-2026-39830 CVE-2026-39831 CVE-2026-39832 CVE-2026-39833 CVE-2026-39834 CVE-2026-39835 CVE-2026-42508 CVE-2026-42767 CVE-2026-46595 CVE-2026-46597 CVE-2026-46598 CVE-2026-5435 CVE-2026-6238 CVE-2026-9539 ----------------------------------------------------------------- The container suse/sl-micro/6.1/baremetal-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 599 Released: Tue Jun 30 10:42:14 2026 Summary: Security update for openssl-3 Type: security Severity: moderate References: 1244485,1256818,1257692,1266350,CVE-2025-61732,CVE-2025-68121,CVE-2026-42767 This update for openssl-3 fixes the following issue - CVE-2026-42767: NULL Pointer Dereference in CRMF EncryptedValue Decryption (bsc#1266350). ----------------------------------------------------------------- Advisory ID: 602 Released: Tue Jun 30 11:20:36 2026 Summary: Security update for krb5 Type: security Severity: important References: 1253904,1268131,CVE-2025-58181,CVE-2026-11850 This update for krb5 fixes the following issue - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). ----------------------------------------------------------------- Advisory ID: 600 Released: Tue Jun 30 11:31:12 2026 Summary: Security update for libslirp Type: security Severity: moderate References: 1244057,1249049,1249128,1253783,1254353,1268903,CVE-2025-58060,CVE-2025-58364,CVE-2025-58436,CVE-2025-61915,CVE-2026-9539 This update for libslirp fixes the following issue - CVE-2026-9539: TCP URG out of bounds heap read information leak (bsc#1268903). ----------------------------------------------------------------- Advisory ID: 598 Released: Tue Jun 30 11:31:12 2026 Summary: Security update for podman Type: security Severity: important References: 1229129,1258046,1262856,1266125,CVE-2024-24853,CVE-2025-22869,CVE-2025-31648,CVE-2025-47913,CVE-2025-47914,CVE-2025-52881,CVE-2025-6032,CVE-2025-9566,CVE-2026-34986,CVE-2026-39827,CVE-2026-39828,CVE-2026-39829,CVE-2026-39830,CVE-2026-39831,CVE-2026-39832,CVE-2026-39833,CVE-2026-39834,CVE-2026-39835,CVE-2026-42508,CVE-2026-46595,CVE-2026-46597,CVE-2026-46598 This update for podman fixes the following issues - CVE-2026-34986: github.com/go-jose/go-jose/v4,github.com/go-jose/go-jose/v3: crafted JWE input with a missing encrypted key can lead to a denial of service (bsc#1262856). - CVE-2026-39827: Invoking memory leak when rejecting channels can lead to DoS in golang.org/x/crypto/ssh (bsc#1266125). - CVE-2026-39828: Invoking bypass of certificate restrictions in golang.org/x/crypto/ssh (bsc#1266125). - CVE-2026-39829: Invoking pathological RSA/DSA parameters may cause DoS in golang.org/x/crypto/ssh (bsc#1266125). - CVE-2026-39830: Invoking client can cause server deadlock on unexpected responses in golang.org/x/crypto/ssh (bsc#1266125). - CVE-2026-39831: Invoking bypass of FIDO/U2F security keys physical interaction in golang.org/x/crypto/ssh (bsc#1266125). - CVE-2026-39832: Invoking agent constraints dropped when forwarding keys in golang.org/x/crypto/ssh/agent (bsc#1266125). - CVE-2026-39833: Invoking key constraints not enforced in golang.org/x/crypto/ssh/agent (bsc#1266125). - CVE-2026-39834: Invoking infinite loop on large channel writes in golang.org/x/crypto/ssh (bsc#1266125). - CVE-2026-39835: Invoking server panic during CheckHostKey/Authenticate in golang.org/x/crypto/ssh (bsc#1266125). - CVE-2026-42508: Invoking auth bypass via unenforced @revoked status in golang.org/x/crypto/ssh/knownhosts (bsc#1266125). - CVE-2026-46595: Invoking VerifiedPublicKeyCallback permissions skip enforcement in golang.org/x/crypto/ssh (bsc#1266125). - CVE-2026-46597: Invoking byte arithmetic causes underflow and panic in golang.org/x/crypto/ssh (bsc#1266125). - CVE-2026-46598: Invoking pathological inputs can lead to client panic in golang.org/x/crypto/ssh/agent (bsc#1266125). ----------------------------------------------------------------- Advisory ID: 601 Released: Tue Jun 30 11:54:13 2026 Summary: Security update for glibc Type: security Severity: moderate References: 1240751,1252555,1258120,1258170,1258508,1263656,1263658,CVE-2025-12105,CVE-2025-32049,CVE-2026-2369,CVE-2026-2443,CVE-2026-2708,CVE-2026-5435,CVE-2026-6238 This update for glibc fixes the following issues - CVE-2026-5435: unchecked buffer writing in TSIG handling can lead to an out-of-bounds write (bsc#1263656). - CVE-2026-6238: insufficient RDATA length validation can lead to application crashes or uninitialized memory disclosure (bsc#1263658). The following package changes have been done: - glibc-2.38-slfo.1.1_9.1 updated - libopenssl3-3.1.4-slfo.1.1_11.1 updated - SL-Micro-release-6.1-slfo.1.12.49 updated - krb5-1.21.3-slfo.1.1_5.1 updated - glibc-locale-base-2.38-slfo.1.1_9.1 updated - libslirp0-4.8.0+2-slfo.1.1_2.1 updated - podman-5.4.2-slfo.1.1_5.1 updated - container:SL-Micro-base-container-2.2.1-5.148 updated From sle-container-updates at lists.suse.com Wed Jul 1 08:08:04 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 1 Jul 2026 10:08:04 +0200 (CEST) Subject: SUSE-IU-2026:5212-1: Security update of suse/sl-micro/6.1/base-os-container Message-ID: <20260701080804.DF52BFF02@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.1/base-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5212-1 Image Tags : suse/sl-micro/6.1/base-os-container:2.2.1 , suse/sl-micro/6.1/base-os-container:2.2.1-5.148 , suse/sl-micro/6.1/base-os-container:latest Image Release : 5.148 Severity : important Type : security References : 1240751 1244485 1252555 1253904 1256668 1256818 1257692 1258120 1258170 1258508 1261256 1262085 1262392 1262617 1262620 1262674 1262748 1262798 1262993 1263123 1263137 1263178 1263563 1263568 1263578 1263656 1263658 1263879 1263880 1263930 1263934 1263993 1263996 1264045 1264076 1264080 1264084 1264116 1264137 1264145 1264239 1264263 1264266 1264437 1264444 1264470 1264549 1264561 1264595 1264603 1264610 1264741 1264763 1265103 1265143 1265628 1266290 1266350 1266390 1266397 1266698 1266704 1266705 1266878 1266895 1266903 1266916 1266922 1266933 1267208 1267361 1267381 1267387 1267431 1267621 1267624 1267628 1267640 1267651 1267654 1267682 1267685 1267697 1267744 1268131 1268307 CVE-2025-10263 CVE-2025-12105 CVE-2025-32049 CVE-2025-58181 CVE-2025-61732 CVE-2025-68121 CVE-2025-68822 CVE-2026-11850 CVE-2026-2369 CVE-2026-2443 CVE-2026-2708 CVE-2026-31414 CVE-2026-31429 CVE-2026-31452 CVE-2026-31453 CVE-2026-31469 CVE-2026-31492 CVE-2026-31495 CVE-2026-31499 CVE-2026-31500 CVE-2026-31555 CVE-2026-31592 CVE-2026-31664 CVE-2026-31665 CVE-2026-31674 CVE-2026-31680 CVE-2026-31693 CVE-2026-31697 CVE-2026-31698 CVE-2026-31699 CVE-2026-31752 CVE-2026-31759 CVE-2026-31771 CVE-2026-42767 CVE-2026-43023 CVE-2026-43024 CVE-2026-43028 CVE-2026-43035 CVE-2026-43036 CVE-2026-43049 CVE-2026-43053 CVE-2026-43074 CVE-2026-43077 CVE-2026-43083 CVE-2026-43101 CVE-2026-43112 CVE-2026-43119 CVE-2026-43158 CVE-2026-43171 CVE-2026-43187 CVE-2026-43198 CVE-2026-43239 CVE-2026-43339 CVE-2026-43345 CVE-2026-43405 CVE-2026-43469 CVE-2026-43491 CVE-2026-45840 CVE-2026-45841 CVE-2026-45862 CVE-2026-45870 CVE-2026-45894 CVE-2026-45940 CVE-2026-45961 CVE-2026-45964 CVE-2026-45965 CVE-2026-45974 CVE-2026-46005 CVE-2026-46037 CVE-2026-46101 CVE-2026-46119 CVE-2026-46120 CVE-2026-46123 CVE-2026-46150 CVE-2026-46160 CVE-2026-46172 CVE-2026-46197 CVE-2026-46227 CVE-2026-46244 CVE-2026-46259 CVE-2026-46273 CVE-2026-5435 CVE-2026-6238 ----------------------------------------------------------------- The container suse/sl-micro/6.1/base-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 599 Released: Tue Jun 30 10:42:14 2026 Summary: Security update for openssl-3 Type: security Severity: moderate References: 1244485,1256818,1257692,1266350,CVE-2025-61732,CVE-2025-68121,CVE-2026-42767 This update for openssl-3 fixes the following issue - CVE-2026-42767: NULL Pointer Dereference in CRMF EncryptedValue Decryption (bsc#1266350). ----------------------------------------------------------------- Advisory ID: 602 Released: Tue Jun 30 11:20:36 2026 Summary: Security update for krb5 Type: security Severity: important References: 1253904,1268131,CVE-2025-58181,CVE-2026-11850 This update for krb5 fixes the following issue - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). ----------------------------------------------------------------- Advisory ID: 601 Released: Tue Jun 30 11:54:13 2026 Summary: Security update for glibc Type: security Severity: moderate References: 1240751,1252555,1258120,1258170,1258508,1263656,1263658,CVE-2025-12105,CVE-2025-32049,CVE-2026-2369,CVE-2026-2443,CVE-2026-2708,CVE-2026-5435,CVE-2026-6238 This update for glibc fixes the following issues - CVE-2026-5435: unchecked buffer writing in TSIG handling can lead to an out-of-bounds write (bsc#1263656). - CVE-2026-6238: insufficient RDATA length validation can lead to application crashes or uninitialized memory disclosure (bsc#1263658). ----------------------------------------------------------------- Advisory ID: kernel-496 Released: Wed Jul 1 01:09:03 2026 Summary: Security update for the Linux Kernel Type: security Severity: important References: 1256668,1261256,1262085,1262392,1262617,1262620,1262674,1262748,1262798,1262993,1263123,1263137,1263178,1263563,1263568,1263578,1263879,1263880,1263930,1263934,1263993,1263996,1264045,1264076,1264080,1264084,1264116,1264137,1264145,1264239,1264263,1264266,1264437,1264444,1264470,1264549,1264561,1264595,1264603,1264610,1264741,1264763,1265103,1265143,1265628,1266290,1266390,1266397,1266698,1266704,1266705,1266878,1266895,1266903,1266916,1266922,1266933,1267208,1267361,1267381,1267387,1267431,1267621,1267624,1267628,1267640,1267651,1267654,1267682,1267685,1267697,1267744,1268307,CVE-2025-10263,CVE-2025-68822,CVE-2026-31414,CVE-2026-31429,CVE-2026-31452,CVE-2026-31453,CVE-2026-31469,CVE-2026-31492,CVE-2026-31495,CVE-2026-31499,CVE-2026-31500,CVE-2026-31555,CVE-2026-31592,CVE-2026-31664,CVE-2026-31665,CVE-2026-31674,CVE-2026-31680,CVE-2026-31693,CVE-2026-31697,CVE-2026-31698,CVE-2026-31699,CVE-2026-31752,CVE-2026-31759,CVE-2026-31771,CVE-2026-43023,CVE-2026-43024,CVE-2026-43 028,CVE-2026-43035,CVE-2026-43036,CVE-2026-43049,CVE-2026-43053,CVE-2026-43074,CVE-2026-43077,CVE-2026-43083,CVE-2026-43101,CVE-2026-43112,CVE-2026-43119,CVE-2026-43158,CVE-2026-43171,CVE-2026-43187,CVE-2026-43198,CVE-2026-43239,CVE-2026-43339,CVE-2026-43345,CVE-2026-43405,CVE-2026-43469,CVE-2026-43491,CVE-2026-45840,CVE-2026-45841,CVE-2026-45862,CVE-2026-45870,CVE-2026-45894,CVE-2026-45940,CVE-2026-45961,CVE-2026-45964,CVE-2026-45965,CVE-2026-45974,CVE-2026-46005,CVE-2026-46037,CVE-2026-46101,CVE-2026-46119,CVE-2026-46120,CVE-2026-46123,CVE-2026-46150,CVE-2026-46160,CVE-2026-46172,CVE-2026-46197,CVE-2026-46227,CVE-2026-46244,CVE-2026-46259,CVE-2026-46273 The SUSE Linux Enterprise Micro 6.0 and 6.1 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2025-10263: arm64: errata: Mitigate TLBI errata on various Arm CPUs (bsc#1266290). - CVE-2025-68822: Input: alps - fix use-after-free bugs caused by dev3_register_work (bsc#1256668). - CVE-2026-31414: netfilter: nf_conntrack_expect: use expect->helper (bsc#1262085). - CVE-2026-31429: net: skb: fix cross-cache free of KFENCE-allocated skb head (bsc#1262392). - CVE-2026-31452: ext4: convert inline data to extents when truncate exceeds inline size (bsc#1262620). - CVE-2026-31469: virtio_net: Fix UAF on dst_ops when IFF_XMIT_DST_RELEASE is cleared and napi_tx is false - CVE-2026-31492: RDMA/irdma: Initialize free_qp completion before using it (bsc#1262748). - CVE-2026-31495: netfilter: ctnetlink: use netlink policy range checks (bsc#1262798). - CVE-2026-31499: Bluetooth: L2CAP: Fix deadlock in l2cap_conn_del() (bsc#1262674). - CVE-2026-31500: Bluetooth: btintel: serialize btintel_hw_error() with hci_req_sync_lock (bsc#1262993). - CVE-2026-31555: futex: Clear stale exiting pointer in futex_lock_pi() retry path (bsc#1263178). - CVE-2026-31592: KVM: SEV: Protect *all* of sev_mem_enc_register_region() with kvm->lock (bsc#1263123). - CVE-2026-31664: string.h: Introduce memset_after() for wiping trailing members/padding (bsc#1263578). - CVE-2026-31665: kABI: netfilter: nft_ct: fix use-after-free in timeout object destroy (bsc#1263137). - CVE-2026-31674: netfilter: ip6t_rt: reject oversized addrnr in rt_mt6_check() (bsc#1263568). - CVE-2026-31680: net: ipv6: flowlabel: defer exclusive option free until RCU teardown (bsc#1263563). - CVE-2026-31693: cifs: some missing initializations on replay (bsc#1267744). - CVE-2026-31697: crypto: ccp: Don't attempt to copy ID to userspace if PSP command failed (bsc#1264116). - CVE-2026-31698: crypto: ccp: Don't attempt to copy PDH cert to userspace if PSP command failed (bsc#1263880). - CVE-2026-31699: crypto: ccp: Don't attempt to copy CSR to userspace if PSP command failed (bsc#1263879). - CVE-2026-31752: bridge: br_nd_send: validate ND option lengths (bsc#1264045). - CVE-2026-31759: usb: ulpi: fix double free in ulpi_register_interface() error path (bsc#1264076). - CVE-2026-31771: Bluetooth: hci_event: move wake reason storage into validated event handlers (bsc#1264145). - CVE-2026-43023: Bluetooth: SCO: fix race conditions in sco_sock_connect() (bsc#1264137). - CVE-2026-43024: netfilter: nf_tables: reject immediate NF_QUEUE verdict (bsc#1263930). - CVE-2026-43028: netfilter: x_tables: ensure names are nul-terminated (bsc#1263934). - CVE-2026-43035: net: sched: cls_api: fix tc_chain_fill_node to initialize tcm_info to zero to prevent an info-leak (bsc#1263996). - CVE-2026-43036: net: use skb_header_pointer() for TCPv4 GSO frag_off check (bsc#1263993). - CVE-2026-43049: HID: logitech-hidpp: Prevent use-after-free on force feedback initialisation failure (bsc#1264080). - CVE-2026-43053: xfs: close crash window in attr dabtree inactivation (bsc#1264084). - CVE-2026-43074: eventpoll: defer struct eventpoll free to RCU grace period (bsc#1264263). - CVE-2026-43077: crypto: algif_aead - Fix minimum RX size check for decryption (bsc#1264470). - CVE-2026-43083: net: ioam6: fix OOB and missing lock (bsc#1264266). - CVE-2026-43101: ipv6: ioam: fix potential NULL dereferences in __ioam6_fill_trace_data() (bsc#1264239). - CVE-2026-43112: fs/smb/client: fix out-of-bounds read in cifs_sanitize_prepath (bsc#1264437). - CVE-2026-43119: Bluetooth: hci_sync: annotate data-races around hdev->req_status (bsc#1264561). - CVE-2026-43158: xfs: fix freemap adjustments when adding xattrs to leaf blocks (bsc#1264595). - CVE-2026-43171: EFI/CPER: do not dump the entire memory region (bsc#1264549). - CVE-2026-43187: xfs: delete attr leaf freemap entries when empty (bsc#1264603). - CVE-2026-43198: tcp: fix potential race in tcp_v6_syn_recv_sock() (bsc#1264610). - CVE-2026-43239: smb: client: prevent races in ->query_interfaces() (bsc#1264444). - CVE-2026-43339: ipv6: prevent possible UaF in addrconf_permanent_addr() (bsc#1264763). - CVE-2026-43345: net: ipa: fix event ring index not programmed for IPA v5.0+ (bsc#1265103). - CVE-2026-43405: libceph: Use u32 for non-negative values in ceph_monmap_decode() (bsc#1264741). - CVE-2026-43469: xprtrdma: Decrement re_receiving on the early exit paths (bsc#1265143). - CVE-2026-43491: net: qrtr: ns: Limit the maximum server registration per node (bsc#1265628). - CVE-2026-45840: openvswitch: cap upcall PID array size and pre-size vport replies (bsc#1266397). - CVE-2026-45841: netfilter: nfnetlink_osf: fix divide-by-zero in OSF_WSS_MODULO (bsc#1266390). - CVE-2026-45862: iommu/vt-d: Flush cache for PASID table before using it (bsc#1266705). - CVE-2026-45870: SUNRPC: auth_gss: fix memory leaks in XDR decoding error paths (bsc#1266704). - CVE-2026-45894: iommu/vt-d: Clear Present bit before tearing down PASID entry (bsc#1266895). - CVE-2026-45940: net: stmmac: fix oops when split header is enabled (bsc#1266916). - CVE-2026-45961: gfs2: fix memory leaks in gfs2_fill_super error path (bsc#1266933). - CVE-2026-45964: SUNRPC: fix gss_auth kref leak in gss_alloc_msg error path (bsc#1266698). - CVE-2026-45965: apparmor: fix invalid deref of rawdata when export_binary is unset (bsc#1267208). - CVE-2026-45974: btrfs: fix invalid leaf access in btrfs_quota_enable() if ref key not found (bsc#1266922). - CVE-2026-46005: xfs: fix a resource leak in xfs_alloc_buftarg() (bsc#1267431). - CVE-2026-46037: ipv4: icmp: validate reply type before using icmp_pointers (bsc#1267361). - CVE-2026-46101: netfilter: reject zero shift in nft_bitwise (bsc#1266878). - CVE-2026-46119: libceph: Fix slab-out-of-bounds access in auth message processing (bsc#1267628). - CVE-2026-46120: ip6_gre: Use cached t->net in ip6erspan_changelink() (bsc#1267640). - CVE-2026-46123: Bluetooth: virtio_bt: clamp rx length before skb_put (bsc#1267621). - CVE-2026-46150: fanotify: fix false positive on permission events (bsc#1267387). - CVE-2026-46160: btrfs: fix missing last_unlink_trans update when removing a directory (bsc#1267624). - CVE-2026-46172: ipv6: xfrm6: release dst on error in xfrm6_rcv_encap() (bsc#1266903). - CVE-2026-46197: drm/amdkfd: validate SVM ioctl nattr against buffer size (bsc#1267381). - CVE-2026-46227: sctp: revalidate list cursor after sctp_sendmsg_to_asoc() in SCTP_SENDALL (bsc#1267697). - CVE-2026-46244: netfilter: nft_inner: Fix IPv6 inner_thoff desync (bsc#1267654). - CVE-2026-46259: procfs: fix missing RCU protection when reading real_parent in do_task_stat() (bsc#1267685). - CVE-2026-46273: ibmveth: Disable GSO for packets with small MSS (bsc#1267651). The following non-security bugs were fixed: - ACPI: CPPC: Suppress UBSAN warning caused by field misuse (git-fixes). - ACPI: IPMI: Fix message kref handling on dead device (git-fixes). - ACPI: NFIT: core: Fix possible NULL pointer dereference (git-fixes). - ALSA: aloop: Drop superfluous break (git-fixes). - ALSA: cmipci: check snd_ctl_new1() return value (git-fixes). - ALSA: core: Fix unintuitive behavior of snd_power_ref_and_wait() (git-fixes). - ALSA: es1938: check snd_ctl_new1() return value (git-fixes). - ALSA: gus: check snd_ctl_new1() return value (git-fixes). - ALSA: ice1712: check snd_ctl_new1() return value (git-fixes). - ALSA: seq: Clear variable event pointer on read (git-fixes). - ALSA: seq: Fix partial userptr event expansion (git-fixes). - ALSA: seq: midi: Serialize output teardown with event_input (git-fixes). - ALSA: usb-audio: Propagate US-16x08 write errors in route/mix EQ-switch put callbacks (git-fixes). - ALSA: usb-audio: Propagate errors in scarlett_ctl_enum_put() (git-fixes). - ALSA: usb-audio: Roll back quirk control caches on write errors (git-fixes). - ALSA: usb-audio: Update Babyface Pro control caches only after successful writes (git-fixes). - ALSA: usb-audio: Update US-16x08 EQ/comp shadow state after successful writes (git-fixes). - ALSA: virtio: Add missing 384 kHz PCM rate mapping (git-fixes). - ALSA: ymfpci: check snd_ctl_new1() return value (git-fixes). - ASoC: SOF: ipc3-control: Fix TOCTOU in bytes_put and bytes_get (git-fixes). - ASoC: SOF: ipc3-control: Fix heap overflow in bytes_ext put/get (git-fixes). - ASoC: SOF: ipc3-control: Use overflow checks in control_update size calc (git-fixes). - ASoC: SOF: ipc3-control: Validate size in snd_sof_update_control (git-fixes). - ASoC: SOF: ipc4-control: Fix TOCTOU in sof_ipc4_bytes_put (git-fixes). - ASoC: SOF: topology: validate vendor array size before parsing (git-fixes). - ASoC: adau1372: Clear PLL_EN on failed PLL lock without reset GPIO (git-fixes). - ASoC: codecs: hdac_hdmi: Validate written enum value (git-fixes). - ASoC: cs35l56: Cleanup if component_probe fails (git-fixes). - ASoC: cs35l56: Do not leave parent IRQ disabled if system_suspend fails (git-fixes). - ASoC: cs35l56: Fix missing calls to wm_adsp2_remove() (git-fixes). - ASoC: fsl: fsl_audmix: Validate written enum values (git-fixes). - ASoC: meson: aiu: Validate written enum values (git-fixes). - ASoC: tegra: tegra210_ahub: Validate written enum value (git-fixes). - ASoC: topology: Check PCM and DAI name strings before use (git-fixes). - ASoC: wm_adsp: Fix NULL dereference when removing firmware controls (git-fixes). - Bluetooth: btmtksdio: fix infinite loop in btmtksdio_txrx_work() (git-fixes). - Bluetooth: btusb: fix use-after-free on marvell probe failure (git-fixes). - Bluetooth: btusb: fix use-after-free on registration failure (git-fixes). - Bluetooth: btusb: fix wakeup irq devres lifetime (git-fixes). - Bluetooth: btusb: fix wakeup source leak on probe failure (git-fixes). - Bluetooth: eir: Fix stack OOB write when prepending the Flags AD (git-fixes). - Bluetooth: hci: validate codec capability element length (git-fixes). - Bluetooth: vhci: validate devcoredump state before side effects (git-fixes). - Drivers: hv: vmbus: Improve the logic of reserving fb_mmio on Gen2 VMs (git-fixes). - KVM: SEV: Ignore MMIO requests of length '0' (git-fixes). - KVM: SEV: Ignore Port I/O requests of length '0' (git-fixes). - KVM: SVM: Allow KVM_SET_NESTED_STATE to clear GIF when SVME==0 (git-fixes). - KVM: SVM: Do not set GIF when clearing EFER.SVME (git-fixes). - KVM: SVM: Flush the current TLB when transitioning from xAVIC => x2AVIC (git-fixes). - KVM: SVM: check validity of VMCB controls when returning from SMM (git-fixes). - KVM: arm64: Discard PC update state on vcpu reset (git-fixes). - KVM: arm64: Guard against NULL vcpu on VHE hyp panic path (git-fixes). - KVM: arm64: PMU: Preserve AArch32 counter low bits (git-fixes). - KVM: arm64: Treat vCPU with pending SError as runnable (git-fixes). - KVM: arm64: Wake-up from WFI when iqrchip is in userspace (git-fixes). - KVM: arm64: vgic-its: Reject restored DTE with out-of-range num_eventid_bits (git-fixes). - KVM: arm64: vgic: Fix IIDR revision field extracted from wrong value (git-fixes). - KVM: nSVM: Always use vmcb01 in VMLOAD/VMSAVE emulation (git-fixes). - KVM: nSVM: Ensure AVIC is inhibited when restoring a vCPU to guest mode (git-fixes). - KVM: nSVM: Mark all of vmcb02 dirty when restoring nested state (git-fixes). - KVM: nSVM: Set exit_code_hi to -1 when synthesizing SVM_EXIT_ERR (failed VMRUN) (git-fixes). - KVM: x86/mmu: Fix UBSAN warning when reading nx_huge_pages parameter (git-fixes). - PM: sleep: Use complete() in device_pm_sleep_init() (git-fixes). - USB: serial: io_ti: fix heap overflow in build_i2c_fw_hdr() (git-fixes). - USB: serial: io_ti: fix heap overflow in get_manuf_info() (git-fixes). - USB: serial: kl5kusb105: fix bulk-out buffer overflow (git-fixes). - X.509: Fix validation of ASN.1 certificate header (git-fixes). - add bugnumber to existing mana_ib change (bsc#1267682) - agp/amd64: Fix broken error propagation in agp_amd64_probe() (git-fixes). - batman-adv: bla: annotate lasttime access with READ/WRITE_ONCE (git-fixes). - batman-adv: tp_meter: add only finished tp_vars to lists (git-fixes). - batman-adv: tp_meter: avoid divide-by-zero for dec_cwnd (git-fixes). - batman-adv: tp_meter: avoid window underflow (git-fixes). - batman-adv: tp_meter: fix fast recovery precondition (git-fixes). - batman-adv: tp_meter: handle seqno wrap-around for fast recovery detection (git-fixes). - batman-adv: tp_meter: initialize dec_cwnd explicitly (git-fixes). - batman-adv: tp_meter: initialize dup_acks explicitly (git-fixes). - batman-adv: tp_meter: keep unacked list in ascending ordered (git-fixes). - bnxt_en: Fix NULL pointer dereference (bsc#1268307). - crypto: af_alg - Cap AEAD AD length to 0x80000000 (git-fixes). - crypto: amlogic - avoid double cleanup in meson_crypto_probe() (git-fixes). - crypto: asymmetric_keys - fix OOB read in pefile_digest_pe_contents (git-fixes). - crypto: atmel-sha204a - fix blocking and non-blocking rng logic (git-fixes). - crypto: cavium/cpt - fix DMA cleanup using wrong loop index (git-fixes). - crypto: ccp - Fix snp_filter_reserved_mem_regions() off-by-one (git-fixes). - crypto: ccp - Treat zero-length cert chain as query for blob lengths (git-fixes). - crypto: drbg - Fix drbg_max_addtl() on 64-bit kernels (git-fixes). - crypto: drbg - Fix returning success on failure in CTR_DRBG (git-fixes). - crypto: drbg - Fix the fips_enabled priority boost (git-fixes). - crypto: ecc - Fix carry overflow in vli multiplication (git-fixes). - crypto: ecrdsa - fix unknown OID check in ecrdsa_param_curve (git-fixes). - crypto: hisilicon/qm - disable error report before flr (git-fixes). - crypto: marvell/octeontx - fix DMA cleanup using wrong loop index (git-fixes). - crypto: pcrypt - restore callback for non-parallel fallback (git-fixes). - crypto: qat - protect service table iterations with service_lock (git-fixes). - crypto: qat - validate RSA CRT component lengths (git-fixes). - crypto: rng - Free default RNG on module exit (git-fixes). - driver core: reject devices with unregistered buses (git-fixes). - driver core: use READ_ONCE() for dev->driver in dev_has_sync_state() (git-fixes). - drm/amd/display: Add missing kdoc for ALLM parameters (git-fixes). - drm/amdgpu: fix integer overflow in amdgpu_gem_align_pitch() (git-fixes). - drm/amdgpu: set sub_block_index for mca ras sub-blocks (git-fixes). - drm/amdkfd: Validate CRIU-restored IDs before idr_alloc (git-fixes). - drm/bridge: cdns-dsi: Replace deprecated UNIVERSAL_DEV_PM_OPS() (git-fixes). - drm/dp/mst: fix OOB reads in remote DPCD/I2C sideband reply parsers (git-fixes). - drm/dp/mst: fix OOB reads on 2-byte fields in sideband reply parsers (git-fixes). - drm/dp/mst: fix buffer overflows in sideband chunk accumulation (git-fixes). - drm/hisilicon/hibmc: move display contrl config to hibmc_probe() (git-fixes). - drm/hisilicon/hibmc: use clock to look up the PLL value (git-fixes). - drm/hyperv: use VMBUS_RING_SIZE() (git-fixes). - drm/i915/gem: Fix phys BO pread/pwrite with offset (git-fixes). - drm/msm/dp: Fix the ISR_* enum values (git-fixes). - drm/msm/dp: fix HPD state status bit shift value (git-fixes). - drm/nouveau/bios: specify correct display fuse register for Ampere and Ada (git-fixes). - drm/radeon: fix integer overflow in radeon_align_pitch() (git-fixes). - drm/radeon: fix memory leak in radeon_ring_restore() on lock failure (git-fixes). - drm/rockchip: cdn-dp: add missing check in cdn_dp_config_video() (git-fixes). - drm/tegra: Fix iommu_map_sgtable() return value check (git-fixes). - drm/tegra: dc: Fix device node reference leak in tegra_dc_has_output() (git-fixes). - drm/tidss: Drop extra drm_mode_config_reset() call (git-fixes). - drm/tidss: Fix missing drm_bridge_add() call (git-fixes). - drm/vc4: fix krealloc() memory leak (git-fixes). - drm/virtio: Fix driver removal with disabled KMS (git-fixes). - drm/virtio: fix dma_fence refcount leak on error in virtio_gpu_dma_fence_wait() (git-fixes). - ethtool: provide customized dim profile management (bsc#1261256). - fbdev: broadsheetfb: fix potential memory leak in broadsheetfb_probe() (git-fixes). - fbdev: hecubafb: fix potential memory leak in hecubafb_probe() (git-fixes). - fbdev: i740fb: fix potential memory leak in i740fb_probe() (git-fixes). - fbdev: metronomefb: fix potential memory leak in metronomefb_probe() (git-fixes). - fbdev: modedb: Fix misaligned fields in the 1920x1080-60 mode (git-fixes). - fbdev: nvidia: fix potential memory leak in nvidiafb_probe() (git-fixes). - fbdev: radeon: fix potential memory leak in radeonfb_pci_register() (git-fixes). - fbdev: s3fb: fix potential memory leak in s3_pci_probe() (git-fixes). - fbdev: sm501fb: Fix buffer errors in OF binding code (git-fixes). - fbdev: sm712: Fix operator precedence in big_swap macro (git-fixes). - fbdev: tdfxfb: fix potential memory leak in tdfxfb_probe() (git-fixes). - fbdev: tridentfb: fix potential memory leak in trident_pci_probe() (git-fixes). - fbdev: uvesafb: fix potential memory leak in uvesafb_probe() (git-fixes). - fbdev: vesafb: fix memory leak in vesafb_probe() (git-fixes). - firmware: arm_scmi: Fix OOB in scmi_power_name_get() (git-fixes). - firmware: arm_scmi: Read sensor config as 32-bit value (git-fixes). - firmware_loader: Fix recursive lock in device_cache_fw_images() (git-fixes). - firmware_loader: fix device reference leak in firmware_upload_register() (git-fixes). - gpio: mvebu: fix NULL pointer dereference in suspend/resume (git-fixes). - gpu: host1x: Allow entries in BO caches to be freed (git-fixes). - gpu: host1x: Fix iommu_map_sgtable() return value check (git-fixes). - hv: utils: handle and propagate errors in kvp_register (git-fixes). - hwmon: (it87) Clamp negative values to zero in set_fan() (git-fixes). - hwrng: jh7110 - fix refcount leak in starfive_trng_read() (git-fixes). - hwrng: virtio: clamp device-reported used.len at copy_data() (git-fixes). - hyperv: Clean up and fix the guest ID comment in hvgdk.h (git-fixes). - i2c: core: fix irq domain leak on adapter registration failure (git-fixes). - i2c: qcom-cci: Fix NULL pointer dereference in cci_remove() (git-fixes). - i2c: stm32f7: fix timing computation ignoring i2c-analog-filter (git-fixes). - i2c: tegra: Fix NOIRQ suspend/resume (git-fixes). - linux/dim: move useful macros to .h file (bsc#1261256). - misc: fastrpc: Fix NULL pointer dereference in rpmsg callback (git-fixes). - misc: fastrpc: fix DMA address corruption due to find_vma misuse (git-fixes). - misc: fastrpc: fix use-after-free of fastrpc_user in workqueue context (git-fixes). - misc: fastrpc: fix use-after-free race in fastrpc_map_create (git-fixes). - net: ethtool: add ethtool COALESCE_RX_CQE_FRAMES/NSECS (bsc#1261256). - net: mana: Add ethtool counters for RX CQEs in coalesced type (bsc#1261256). - net: mana: Add support for RX CQE Coalescing (bsc#1261256). - of: cpu: add check in __of_find_n_match_cpu_property() (git-fixes). - slimbus: qcom-ngd-ctrl: fix OF node refcount (git-fixes). - soc: fsl: qe: panic on ioremap() failure in qe_reset() (git-fixes). - soc: ti: k3-ringacc: Fix access mode for k3_ringacc_ring_pop_tail_io/proxy (git-fixes). - spi: at91-usart: drop dead runtime pm support (git-fixes). - spi: ep93xx: fix double-free of zeropage on DMA setup failure (git-fixes). - spi: fsl-lpspi: replace dmaengine_terminate_all() with dmaengine_terminate_sync() (git-fixes). - spi: fsl-lpspi: terminate the RX channel on TX prepare failure path (git-fixes). - spi: meson-spifc: fix runtime PM leak on remove (git-fixes). - spi: xilinx: use FIFO occupancy register to determine buffer size (git-fixes). - thermal: hwmon: Fix critical temperature attribute removal (git-fixes). - thunderbolt: Bound root directory content to block size (git-fixes). - thunderbolt: Clamp XDomain response data copy to allocation size (git-fixes). - thunderbolt: Limit XDomain response copy to actual frame size (git-fixes). - thunderbolt: Reject zero-length property entries in validator (git-fixes). - thunderbolt: Validate XDomain request packet size before type cast (git-fixes). - watchdog: apple: Add 'apple,t8103-wdt' compatible (git-fixes). - watchdog: sp5100_tco: Use EFCH MMIO for newer Hygon FCH (git-fixes). - watchdog: sprd_wdt: Remove redundant sprd_wdt_disable() on register failure (git-fixes). - watchdog: unregister PM notifier on watchdog unregister (git-fixes). - wifi: ath11k: fix warning when unbinding (git-fixes). - wifi: ath9k: fix OOB access from firmware tx status queue ID (git-fixes). - wifi: cfg80211: fix grammar in MLO group key error message (git-fixes). - wifi: mac80211: fix monitor mode frame capture for real chanctx drivers (git-fixes). - wifi: mt76: fix argument to ieee80211_is_first_frag() (git-fixes). - wifi: mt76: mt7915: fix potential tx_retries underflow (git-fixes). - wifi: mt76: mt7921: fix potential tx_retries underflow (git-fixes). - wifi: mt76: mt7925: clean up DMA on probe failure (git-fixes). - wifi: mt76: mt7925: fix potential tx_retries underflow (git-fixes). - wifi: mt76: mt7996: fix potential tx_retries underflow (git-fixes). - wifi: rtlwifi: rtl8821ae: Fix C2H bit location in RX descriptor (git-fixes). - wifi: rtw88: fix OOB read from firmware RX descriptor exceeding DMA buffer (git-fixes). - wifi: rtw88: increase TX report timeout to fix race condition (git-fixes). - wifi: rtw88: usb: fix memory leaks on USB write failures (git-fixes). - wifi: rtw89: Correct data type for scan index to avoid infinite loop (git-fixes). - wifi: wcn36xx: fix OOB read from firmware count in PRINT_REG_INFO indication (git-fixes). - wifi: wcn36xx: fix OOB read from short trigger BA firmware response (git-fixes). - wifi: wcn36xx: fix heap overflow from oversized firmware HAL response (git-fixes). The following package changes have been done: - glibc-2.38-slfo.1.1_9.1 updated - libopenssl3-3.1.4-slfo.1.1_11.1 updated - SL-Micro-release-6.1-slfo.1.12.49 updated - kernel-default-6.4.0-48.1 updated - krb5-1.21.3-slfo.1.1_5.1 updated - openssl-3-3.1.4-slfo.1.1_11.1 updated - glibc-locale-base-2.38-slfo.1.1_9.1 updated - container:suse-toolbox-image-1.0.0-5.69 updated From sle-container-updates at lists.suse.com Wed Jul 1 08:10:38 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 1 Jul 2026 10:10:38 +0200 (CEST) Subject: SUSE-IU-2026:5213-1: Security update of suse/sl-micro/6.1/kvm-os-container Message-ID: <20260701081038.5D787FF02@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.1/kvm-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5213-1 Image Tags : suse/sl-micro/6.1/kvm-os-container:2.2.1 , suse/sl-micro/6.1/kvm-os-container:2.2.1-5.148 , suse/sl-micro/6.1/kvm-os-container:latest Image Release : 5.148 Severity : important Type : security References : 1240751 1244485 1252555 1253904 1256668 1256818 1257692 1258120 1258170 1258508 1261256 1262085 1262392 1262617 1262620 1262674 1262748 1262798 1262993 1263123 1263137 1263178 1263563 1263568 1263578 1263656 1263658 1263879 1263880 1263930 1263934 1263993 1263996 1264045 1264076 1264080 1264084 1264116 1264137 1264145 1264239 1264263 1264266 1264437 1264444 1264470 1264549 1264561 1264595 1264603 1264610 1264741 1264763 1265103 1265143 1265628 1266290 1266350 1266390 1266397 1266698 1266704 1266705 1266878 1266895 1266903 1266916 1266922 1266933 1267208 1267361 1267381 1267387 1267431 1267621 1267624 1267628 1267640 1267651 1267654 1267682 1267685 1267697 1267744 1268131 1268307 CVE-2025-10263 CVE-2025-12105 CVE-2025-32049 CVE-2025-58181 CVE-2025-61732 CVE-2025-68121 CVE-2025-68822 CVE-2026-11850 CVE-2026-2369 CVE-2026-2443 CVE-2026-2708 CVE-2026-31414 CVE-2026-31429 CVE-2026-31452 CVE-2026-31453 CVE-2026-31469 CVE-2026-31492 CVE-2026-31495 CVE-2026-31499 CVE-2026-31500 CVE-2026-31555 CVE-2026-31592 CVE-2026-31664 CVE-2026-31665 CVE-2026-31674 CVE-2026-31680 CVE-2026-31693 CVE-2026-31697 CVE-2026-31698 CVE-2026-31699 CVE-2026-31752 CVE-2026-31759 CVE-2026-31771 CVE-2026-42767 CVE-2026-43023 CVE-2026-43024 CVE-2026-43028 CVE-2026-43035 CVE-2026-43036 CVE-2026-43049 CVE-2026-43053 CVE-2026-43074 CVE-2026-43077 CVE-2026-43083 CVE-2026-43101 CVE-2026-43112 CVE-2026-43119 CVE-2026-43158 CVE-2026-43171 CVE-2026-43187 CVE-2026-43198 CVE-2026-43239 CVE-2026-43339 CVE-2026-43345 CVE-2026-43405 CVE-2026-43469 CVE-2026-43491 CVE-2026-45840 CVE-2026-45841 CVE-2026-45862 CVE-2026-45870 CVE-2026-45894 CVE-2026-45940 CVE-2026-45961 CVE-2026-45964 CVE-2026-45965 CVE-2026-45974 CVE-2026-46005 CVE-2026-46037 CVE-2026-46101 CVE-2026-46119 CVE-2026-46120 CVE-2026-46123 CVE-2026-46150 CVE-2026-46160 CVE-2026-46172 CVE-2026-46197 CVE-2026-46227 CVE-2026-46244 CVE-2026-46259 CVE-2026-46273 CVE-2026-5435 CVE-2026-6238 ----------------------------------------------------------------- The container suse/sl-micro/6.1/kvm-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 599 Released: Tue Jun 30 10:42:14 2026 Summary: Security update for openssl-3 Type: security Severity: moderate References: 1244485,1256818,1257692,1266350,CVE-2025-61732,CVE-2025-68121,CVE-2026-42767 This update for openssl-3 fixes the following issue - CVE-2026-42767: NULL Pointer Dereference in CRMF EncryptedValue Decryption (bsc#1266350). ----------------------------------------------------------------- Advisory ID: 602 Released: Tue Jun 30 11:20:36 2026 Summary: Security update for krb5 Type: security Severity: important References: 1253904,1268131,CVE-2025-58181,CVE-2026-11850 This update for krb5 fixes the following issue - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). ----------------------------------------------------------------- Advisory ID: 601 Released: Tue Jun 30 11:54:13 2026 Summary: Security update for glibc Type: security Severity: moderate References: 1240751,1252555,1258120,1258170,1258508,1263656,1263658,CVE-2025-12105,CVE-2025-32049,CVE-2026-2369,CVE-2026-2443,CVE-2026-2708,CVE-2026-5435,CVE-2026-6238 This update for glibc fixes the following issues - CVE-2026-5435: unchecked buffer writing in TSIG handling can lead to an out-of-bounds write (bsc#1263656). - CVE-2026-6238: insufficient RDATA length validation can lead to application crashes or uninitialized memory disclosure (bsc#1263658). ----------------------------------------------------------------- Advisory ID: kernel-496 Released: Wed Jul 1 01:09:03 2026 Summary: Security update for the Linux Kernel Type: security Severity: important References: 1256668,1261256,1262085,1262392,1262617,1262620,1262674,1262748,1262798,1262993,1263123,1263137,1263178,1263563,1263568,1263578,1263879,1263880,1263930,1263934,1263993,1263996,1264045,1264076,1264080,1264084,1264116,1264137,1264145,1264239,1264263,1264266,1264437,1264444,1264470,1264549,1264561,1264595,1264603,1264610,1264741,1264763,1265103,1265143,1265628,1266290,1266390,1266397,1266698,1266704,1266705,1266878,1266895,1266903,1266916,1266922,1266933,1267208,1267361,1267381,1267387,1267431,1267621,1267624,1267628,1267640,1267651,1267654,1267682,1267685,1267697,1267744,1268307,CVE-2025-10263,CVE-2025-68822,CVE-2026-31414,CVE-2026-31429,CVE-2026-31452,CVE-2026-31453,CVE-2026-31469,CVE-2026-31492,CVE-2026-31495,CVE-2026-31499,CVE-2026-31500,CVE-2026-31555,CVE-2026-31592,CVE-2026-31664,CVE-2026-31665,CVE-2026-31674,CVE-2026-31680,CVE-2026-31693,CVE-2026-31697,CVE-2026-31698,CVE-2026-31699,CVE-2026-31752,CVE-2026-31759,CVE-2026-31771,CVE-2026-43023,CVE-2026-43024,CVE-2026-43 028,CVE-2026-43035,CVE-2026-43036,CVE-2026-43049,CVE-2026-43053,CVE-2026-43074,CVE-2026-43077,CVE-2026-43083,CVE-2026-43101,CVE-2026-43112,CVE-2026-43119,CVE-2026-43158,CVE-2026-43171,CVE-2026-43187,CVE-2026-43198,CVE-2026-43239,CVE-2026-43339,CVE-2026-43345,CVE-2026-43405,CVE-2026-43469,CVE-2026-43491,CVE-2026-45840,CVE-2026-45841,CVE-2026-45862,CVE-2026-45870,CVE-2026-45894,CVE-2026-45940,CVE-2026-45961,CVE-2026-45964,CVE-2026-45965,CVE-2026-45974,CVE-2026-46005,CVE-2026-46037,CVE-2026-46101,CVE-2026-46119,CVE-2026-46120,CVE-2026-46123,CVE-2026-46150,CVE-2026-46160,CVE-2026-46172,CVE-2026-46197,CVE-2026-46227,CVE-2026-46244,CVE-2026-46259,CVE-2026-46273 The SUSE Linux Enterprise Micro 6.0 and 6.1 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2025-10263: arm64: errata: Mitigate TLBI errata on various Arm CPUs (bsc#1266290). - CVE-2025-68822: Input: alps - fix use-after-free bugs caused by dev3_register_work (bsc#1256668). - CVE-2026-31414: netfilter: nf_conntrack_expect: use expect->helper (bsc#1262085). - CVE-2026-31429: net: skb: fix cross-cache free of KFENCE-allocated skb head (bsc#1262392). - CVE-2026-31452: ext4: convert inline data to extents when truncate exceeds inline size (bsc#1262620). - CVE-2026-31469: virtio_net: Fix UAF on dst_ops when IFF_XMIT_DST_RELEASE is cleared and napi_tx is false - CVE-2026-31492: RDMA/irdma: Initialize free_qp completion before using it (bsc#1262748). - CVE-2026-31495: netfilter: ctnetlink: use netlink policy range checks (bsc#1262798). - CVE-2026-31499: Bluetooth: L2CAP: Fix deadlock in l2cap_conn_del() (bsc#1262674). - CVE-2026-31500: Bluetooth: btintel: serialize btintel_hw_error() with hci_req_sync_lock (bsc#1262993). - CVE-2026-31555: futex: Clear stale exiting pointer in futex_lock_pi() retry path (bsc#1263178). - CVE-2026-31592: KVM: SEV: Protect *all* of sev_mem_enc_register_region() with kvm->lock (bsc#1263123). - CVE-2026-31664: string.h: Introduce memset_after() for wiping trailing members/padding (bsc#1263578). - CVE-2026-31665: kABI: netfilter: nft_ct: fix use-after-free in timeout object destroy (bsc#1263137). - CVE-2026-31674: netfilter: ip6t_rt: reject oversized addrnr in rt_mt6_check() (bsc#1263568). - CVE-2026-31680: net: ipv6: flowlabel: defer exclusive option free until RCU teardown (bsc#1263563). - CVE-2026-31693: cifs: some missing initializations on replay (bsc#1267744). - CVE-2026-31697: crypto: ccp: Don't attempt to copy ID to userspace if PSP command failed (bsc#1264116). - CVE-2026-31698: crypto: ccp: Don't attempt to copy PDH cert to userspace if PSP command failed (bsc#1263880). - CVE-2026-31699: crypto: ccp: Don't attempt to copy CSR to userspace if PSP command failed (bsc#1263879). - CVE-2026-31752: bridge: br_nd_send: validate ND option lengths (bsc#1264045). - CVE-2026-31759: usb: ulpi: fix double free in ulpi_register_interface() error path (bsc#1264076). - CVE-2026-31771: Bluetooth: hci_event: move wake reason storage into validated event handlers (bsc#1264145). - CVE-2026-43023: Bluetooth: SCO: fix race conditions in sco_sock_connect() (bsc#1264137). - CVE-2026-43024: netfilter: nf_tables: reject immediate NF_QUEUE verdict (bsc#1263930). - CVE-2026-43028: netfilter: x_tables: ensure names are nul-terminated (bsc#1263934). - CVE-2026-43035: net: sched: cls_api: fix tc_chain_fill_node to initialize tcm_info to zero to prevent an info-leak (bsc#1263996). - CVE-2026-43036: net: use skb_header_pointer() for TCPv4 GSO frag_off check (bsc#1263993). - CVE-2026-43049: HID: logitech-hidpp: Prevent use-after-free on force feedback initialisation failure (bsc#1264080). - CVE-2026-43053: xfs: close crash window in attr dabtree inactivation (bsc#1264084). - CVE-2026-43074: eventpoll: defer struct eventpoll free to RCU grace period (bsc#1264263). - CVE-2026-43077: crypto: algif_aead - Fix minimum RX size check for decryption (bsc#1264470). - CVE-2026-43083: net: ioam6: fix OOB and missing lock (bsc#1264266). - CVE-2026-43101: ipv6: ioam: fix potential NULL dereferences in __ioam6_fill_trace_data() (bsc#1264239). - CVE-2026-43112: fs/smb/client: fix out-of-bounds read in cifs_sanitize_prepath (bsc#1264437). - CVE-2026-43119: Bluetooth: hci_sync: annotate data-races around hdev->req_status (bsc#1264561). - CVE-2026-43158: xfs: fix freemap adjustments when adding xattrs to leaf blocks (bsc#1264595). - CVE-2026-43171: EFI/CPER: do not dump the entire memory region (bsc#1264549). - CVE-2026-43187: xfs: delete attr leaf freemap entries when empty (bsc#1264603). - CVE-2026-43198: tcp: fix potential race in tcp_v6_syn_recv_sock() (bsc#1264610). - CVE-2026-43239: smb: client: prevent races in ->query_interfaces() (bsc#1264444). - CVE-2026-43339: ipv6: prevent possible UaF in addrconf_permanent_addr() (bsc#1264763). - CVE-2026-43345: net: ipa: fix event ring index not programmed for IPA v5.0+ (bsc#1265103). - CVE-2026-43405: libceph: Use u32 for non-negative values in ceph_monmap_decode() (bsc#1264741). - CVE-2026-43469: xprtrdma: Decrement re_receiving on the early exit paths (bsc#1265143). - CVE-2026-43491: net: qrtr: ns: Limit the maximum server registration per node (bsc#1265628). - CVE-2026-45840: openvswitch: cap upcall PID array size and pre-size vport replies (bsc#1266397). - CVE-2026-45841: netfilter: nfnetlink_osf: fix divide-by-zero in OSF_WSS_MODULO (bsc#1266390). - CVE-2026-45862: iommu/vt-d: Flush cache for PASID table before using it (bsc#1266705). - CVE-2026-45870: SUNRPC: auth_gss: fix memory leaks in XDR decoding error paths (bsc#1266704). - CVE-2026-45894: iommu/vt-d: Clear Present bit before tearing down PASID entry (bsc#1266895). - CVE-2026-45940: net: stmmac: fix oops when split header is enabled (bsc#1266916). - CVE-2026-45961: gfs2: fix memory leaks in gfs2_fill_super error path (bsc#1266933). - CVE-2026-45964: SUNRPC: fix gss_auth kref leak in gss_alloc_msg error path (bsc#1266698). - CVE-2026-45965: apparmor: fix invalid deref of rawdata when export_binary is unset (bsc#1267208). - CVE-2026-45974: btrfs: fix invalid leaf access in btrfs_quota_enable() if ref key not found (bsc#1266922). - CVE-2026-46005: xfs: fix a resource leak in xfs_alloc_buftarg() (bsc#1267431). - CVE-2026-46037: ipv4: icmp: validate reply type before using icmp_pointers (bsc#1267361). - CVE-2026-46101: netfilter: reject zero shift in nft_bitwise (bsc#1266878). - CVE-2026-46119: libceph: Fix slab-out-of-bounds access in auth message processing (bsc#1267628). - CVE-2026-46120: ip6_gre: Use cached t->net in ip6erspan_changelink() (bsc#1267640). - CVE-2026-46123: Bluetooth: virtio_bt: clamp rx length before skb_put (bsc#1267621). - CVE-2026-46150: fanotify: fix false positive on permission events (bsc#1267387). - CVE-2026-46160: btrfs: fix missing last_unlink_trans update when removing a directory (bsc#1267624). - CVE-2026-46172: ipv6: xfrm6: release dst on error in xfrm6_rcv_encap() (bsc#1266903). - CVE-2026-46197: drm/amdkfd: validate SVM ioctl nattr against buffer size (bsc#1267381). - CVE-2026-46227: sctp: revalidate list cursor after sctp_sendmsg_to_asoc() in SCTP_SENDALL (bsc#1267697). - CVE-2026-46244: netfilter: nft_inner: Fix IPv6 inner_thoff desync (bsc#1267654). - CVE-2026-46259: procfs: fix missing RCU protection when reading real_parent in do_task_stat() (bsc#1267685). - CVE-2026-46273: ibmveth: Disable GSO for packets with small MSS (bsc#1267651). The following non-security bugs were fixed: - ACPI: CPPC: Suppress UBSAN warning caused by field misuse (git-fixes). - ACPI: IPMI: Fix message kref handling on dead device (git-fixes). - ACPI: NFIT: core: Fix possible NULL pointer dereference (git-fixes). - ALSA: aloop: Drop superfluous break (git-fixes). - ALSA: cmipci: check snd_ctl_new1() return value (git-fixes). - ALSA: core: Fix unintuitive behavior of snd_power_ref_and_wait() (git-fixes). - ALSA: es1938: check snd_ctl_new1() return value (git-fixes). - ALSA: gus: check snd_ctl_new1() return value (git-fixes). - ALSA: ice1712: check snd_ctl_new1() return value (git-fixes). - ALSA: seq: Clear variable event pointer on read (git-fixes). - ALSA: seq: Fix partial userptr event expansion (git-fixes). - ALSA: seq: midi: Serialize output teardown with event_input (git-fixes). - ALSA: usb-audio: Propagate US-16x08 write errors in route/mix EQ-switch put callbacks (git-fixes). - ALSA: usb-audio: Propagate errors in scarlett_ctl_enum_put() (git-fixes). - ALSA: usb-audio: Roll back quirk control caches on write errors (git-fixes). - ALSA: usb-audio: Update Babyface Pro control caches only after successful writes (git-fixes). - ALSA: usb-audio: Update US-16x08 EQ/comp shadow state after successful writes (git-fixes). - ALSA: virtio: Add missing 384 kHz PCM rate mapping (git-fixes). - ALSA: ymfpci: check snd_ctl_new1() return value (git-fixes). - ASoC: SOF: ipc3-control: Fix TOCTOU in bytes_put and bytes_get (git-fixes). - ASoC: SOF: ipc3-control: Fix heap overflow in bytes_ext put/get (git-fixes). - ASoC: SOF: ipc3-control: Use overflow checks in control_update size calc (git-fixes). - ASoC: SOF: ipc3-control: Validate size in snd_sof_update_control (git-fixes). - ASoC: SOF: ipc4-control: Fix TOCTOU in sof_ipc4_bytes_put (git-fixes). - ASoC: SOF: topology: validate vendor array size before parsing (git-fixes). - ASoC: adau1372: Clear PLL_EN on failed PLL lock without reset GPIO (git-fixes). - ASoC: codecs: hdac_hdmi: Validate written enum value (git-fixes). - ASoC: cs35l56: Cleanup if component_probe fails (git-fixes). - ASoC: cs35l56: Do not leave parent IRQ disabled if system_suspend fails (git-fixes). - ASoC: cs35l56: Fix missing calls to wm_adsp2_remove() (git-fixes). - ASoC: fsl: fsl_audmix: Validate written enum values (git-fixes). - ASoC: meson: aiu: Validate written enum values (git-fixes). - ASoC: tegra: tegra210_ahub: Validate written enum value (git-fixes). - ASoC: topology: Check PCM and DAI name strings before use (git-fixes). - ASoC: wm_adsp: Fix NULL dereference when removing firmware controls (git-fixes). - Bluetooth: btmtksdio: fix infinite loop in btmtksdio_txrx_work() (git-fixes). - Bluetooth: btusb: fix use-after-free on marvell probe failure (git-fixes). - Bluetooth: btusb: fix use-after-free on registration failure (git-fixes). - Bluetooth: btusb: fix wakeup irq devres lifetime (git-fixes). - Bluetooth: btusb: fix wakeup source leak on probe failure (git-fixes). - Bluetooth: eir: Fix stack OOB write when prepending the Flags AD (git-fixes). - Bluetooth: hci: validate codec capability element length (git-fixes). - Bluetooth: vhci: validate devcoredump state before side effects (git-fixes). - Drivers: hv: vmbus: Improve the logic of reserving fb_mmio on Gen2 VMs (git-fixes). - KVM: SEV: Ignore MMIO requests of length '0' (git-fixes). - KVM: SEV: Ignore Port I/O requests of length '0' (git-fixes). - KVM: SVM: Allow KVM_SET_NESTED_STATE to clear GIF when SVME==0 (git-fixes). - KVM: SVM: Do not set GIF when clearing EFER.SVME (git-fixes). - KVM: SVM: Flush the current TLB when transitioning from xAVIC => x2AVIC (git-fixes). - KVM: SVM: check validity of VMCB controls when returning from SMM (git-fixes). - KVM: arm64: Discard PC update state on vcpu reset (git-fixes). - KVM: arm64: Guard against NULL vcpu on VHE hyp panic path (git-fixes). - KVM: arm64: PMU: Preserve AArch32 counter low bits (git-fixes). - KVM: arm64: Treat vCPU with pending SError as runnable (git-fixes). - KVM: arm64: Wake-up from WFI when iqrchip is in userspace (git-fixes). - KVM: arm64: vgic-its: Reject restored DTE with out-of-range num_eventid_bits (git-fixes). - KVM: arm64: vgic: Fix IIDR revision field extracted from wrong value (git-fixes). - KVM: nSVM: Always use vmcb01 in VMLOAD/VMSAVE emulation (git-fixes). - KVM: nSVM: Ensure AVIC is inhibited when restoring a vCPU to guest mode (git-fixes). - KVM: nSVM: Mark all of vmcb02 dirty when restoring nested state (git-fixes). - KVM: nSVM: Set exit_code_hi to -1 when synthesizing SVM_EXIT_ERR (failed VMRUN) (git-fixes). - KVM: x86/mmu: Fix UBSAN warning when reading nx_huge_pages parameter (git-fixes). - PM: sleep: Use complete() in device_pm_sleep_init() (git-fixes). - USB: serial: io_ti: fix heap overflow in build_i2c_fw_hdr() (git-fixes). - USB: serial: io_ti: fix heap overflow in get_manuf_info() (git-fixes). - USB: serial: kl5kusb105: fix bulk-out buffer overflow (git-fixes). - X.509: Fix validation of ASN.1 certificate header (git-fixes). - add bugnumber to existing mana_ib change (bsc#1267682) - agp/amd64: Fix broken error propagation in agp_amd64_probe() (git-fixes). - batman-adv: bla: annotate lasttime access with READ/WRITE_ONCE (git-fixes). - batman-adv: tp_meter: add only finished tp_vars to lists (git-fixes). - batman-adv: tp_meter: avoid divide-by-zero for dec_cwnd (git-fixes). - batman-adv: tp_meter: avoid window underflow (git-fixes). - batman-adv: tp_meter: fix fast recovery precondition (git-fixes). - batman-adv: tp_meter: handle seqno wrap-around for fast recovery detection (git-fixes). - batman-adv: tp_meter: initialize dec_cwnd explicitly (git-fixes). - batman-adv: tp_meter: initialize dup_acks explicitly (git-fixes). - batman-adv: tp_meter: keep unacked list in ascending ordered (git-fixes). - bnxt_en: Fix NULL pointer dereference (bsc#1268307). - crypto: af_alg - Cap AEAD AD length to 0x80000000 (git-fixes). - crypto: amlogic - avoid double cleanup in meson_crypto_probe() (git-fixes). - crypto: asymmetric_keys - fix OOB read in pefile_digest_pe_contents (git-fixes). - crypto: atmel-sha204a - fix blocking and non-blocking rng logic (git-fixes). - crypto: cavium/cpt - fix DMA cleanup using wrong loop index (git-fixes). - crypto: ccp - Fix snp_filter_reserved_mem_regions() off-by-one (git-fixes). - crypto: ccp - Treat zero-length cert chain as query for blob lengths (git-fixes). - crypto: drbg - Fix drbg_max_addtl() on 64-bit kernels (git-fixes). - crypto: drbg - Fix returning success on failure in CTR_DRBG (git-fixes). - crypto: drbg - Fix the fips_enabled priority boost (git-fixes). - crypto: ecc - Fix carry overflow in vli multiplication (git-fixes). - crypto: ecrdsa - fix unknown OID check in ecrdsa_param_curve (git-fixes). - crypto: hisilicon/qm - disable error report before flr (git-fixes). - crypto: marvell/octeontx - fix DMA cleanup using wrong loop index (git-fixes). - crypto: pcrypt - restore callback for non-parallel fallback (git-fixes). - crypto: qat - protect service table iterations with service_lock (git-fixes). - crypto: qat - validate RSA CRT component lengths (git-fixes). - crypto: rng - Free default RNG on module exit (git-fixes). - driver core: reject devices with unregistered buses (git-fixes). - driver core: use READ_ONCE() for dev->driver in dev_has_sync_state() (git-fixes). - drm/amd/display: Add missing kdoc for ALLM parameters (git-fixes). - drm/amdgpu: fix integer overflow in amdgpu_gem_align_pitch() (git-fixes). - drm/amdgpu: set sub_block_index for mca ras sub-blocks (git-fixes). - drm/amdkfd: Validate CRIU-restored IDs before idr_alloc (git-fixes). - drm/bridge: cdns-dsi: Replace deprecated UNIVERSAL_DEV_PM_OPS() (git-fixes). - drm/dp/mst: fix OOB reads in remote DPCD/I2C sideband reply parsers (git-fixes). - drm/dp/mst: fix OOB reads on 2-byte fields in sideband reply parsers (git-fixes). - drm/dp/mst: fix buffer overflows in sideband chunk accumulation (git-fixes). - drm/hisilicon/hibmc: move display contrl config to hibmc_probe() (git-fixes). - drm/hisilicon/hibmc: use clock to look up the PLL value (git-fixes). - drm/hyperv: use VMBUS_RING_SIZE() (git-fixes). - drm/i915/gem: Fix phys BO pread/pwrite with offset (git-fixes). - drm/msm/dp: Fix the ISR_* enum values (git-fixes). - drm/msm/dp: fix HPD state status bit shift value (git-fixes). - drm/nouveau/bios: specify correct display fuse register for Ampere and Ada (git-fixes). - drm/radeon: fix integer overflow in radeon_align_pitch() (git-fixes). - drm/radeon: fix memory leak in radeon_ring_restore() on lock failure (git-fixes). - drm/rockchip: cdn-dp: add missing check in cdn_dp_config_video() (git-fixes). - drm/tegra: Fix iommu_map_sgtable() return value check (git-fixes). - drm/tegra: dc: Fix device node reference leak in tegra_dc_has_output() (git-fixes). - drm/tidss: Drop extra drm_mode_config_reset() call (git-fixes). - drm/tidss: Fix missing drm_bridge_add() call (git-fixes). - drm/vc4: fix krealloc() memory leak (git-fixes). - drm/virtio: Fix driver removal with disabled KMS (git-fixes). - drm/virtio: fix dma_fence refcount leak on error in virtio_gpu_dma_fence_wait() (git-fixes). - ethtool: provide customized dim profile management (bsc#1261256). - fbdev: broadsheetfb: fix potential memory leak in broadsheetfb_probe() (git-fixes). - fbdev: hecubafb: fix potential memory leak in hecubafb_probe() (git-fixes). - fbdev: i740fb: fix potential memory leak in i740fb_probe() (git-fixes). - fbdev: metronomefb: fix potential memory leak in metronomefb_probe() (git-fixes). - fbdev: modedb: Fix misaligned fields in the 1920x1080-60 mode (git-fixes). - fbdev: nvidia: fix potential memory leak in nvidiafb_probe() (git-fixes). - fbdev: radeon: fix potential memory leak in radeonfb_pci_register() (git-fixes). - fbdev: s3fb: fix potential memory leak in s3_pci_probe() (git-fixes). - fbdev: sm501fb: Fix buffer errors in OF binding code (git-fixes). - fbdev: sm712: Fix operator precedence in big_swap macro (git-fixes). - fbdev: tdfxfb: fix potential memory leak in tdfxfb_probe() (git-fixes). - fbdev: tridentfb: fix potential memory leak in trident_pci_probe() (git-fixes). - fbdev: uvesafb: fix potential memory leak in uvesafb_probe() (git-fixes). - fbdev: vesafb: fix memory leak in vesafb_probe() (git-fixes). - firmware: arm_scmi: Fix OOB in scmi_power_name_get() (git-fixes). - firmware: arm_scmi: Read sensor config as 32-bit value (git-fixes). - firmware_loader: Fix recursive lock in device_cache_fw_images() (git-fixes). - firmware_loader: fix device reference leak in firmware_upload_register() (git-fixes). - gpio: mvebu: fix NULL pointer dereference in suspend/resume (git-fixes). - gpu: host1x: Allow entries in BO caches to be freed (git-fixes). - gpu: host1x: Fix iommu_map_sgtable() return value check (git-fixes). - hv: utils: handle and propagate errors in kvp_register (git-fixes). - hwmon: (it87) Clamp negative values to zero in set_fan() (git-fixes). - hwrng: jh7110 - fix refcount leak in starfive_trng_read() (git-fixes). - hwrng: virtio: clamp device-reported used.len at copy_data() (git-fixes). - hyperv: Clean up and fix the guest ID comment in hvgdk.h (git-fixes). - i2c: core: fix irq domain leak on adapter registration failure (git-fixes). - i2c: qcom-cci: Fix NULL pointer dereference in cci_remove() (git-fixes). - i2c: stm32f7: fix timing computation ignoring i2c-analog-filter (git-fixes). - i2c: tegra: Fix NOIRQ suspend/resume (git-fixes). - linux/dim: move useful macros to .h file (bsc#1261256). - misc: fastrpc: Fix NULL pointer dereference in rpmsg callback (git-fixes). - misc: fastrpc: fix DMA address corruption due to find_vma misuse (git-fixes). - misc: fastrpc: fix use-after-free of fastrpc_user in workqueue context (git-fixes). - misc: fastrpc: fix use-after-free race in fastrpc_map_create (git-fixes). - net: ethtool: add ethtool COALESCE_RX_CQE_FRAMES/NSECS (bsc#1261256). - net: mana: Add ethtool counters for RX CQEs in coalesced type (bsc#1261256). - net: mana: Add support for RX CQE Coalescing (bsc#1261256). - of: cpu: add check in __of_find_n_match_cpu_property() (git-fixes). - slimbus: qcom-ngd-ctrl: fix OF node refcount (git-fixes). - soc: fsl: qe: panic on ioremap() failure in qe_reset() (git-fixes). - soc: ti: k3-ringacc: Fix access mode for k3_ringacc_ring_pop_tail_io/proxy (git-fixes). - spi: at91-usart: drop dead runtime pm support (git-fixes). - spi: ep93xx: fix double-free of zeropage on DMA setup failure (git-fixes). - spi: fsl-lpspi: replace dmaengine_terminate_all() with dmaengine_terminate_sync() (git-fixes). - spi: fsl-lpspi: terminate the RX channel on TX prepare failure path (git-fixes). - spi: meson-spifc: fix runtime PM leak on remove (git-fixes). - spi: xilinx: use FIFO occupancy register to determine buffer size (git-fixes). - thermal: hwmon: Fix critical temperature attribute removal (git-fixes). - thunderbolt: Bound root directory content to block size (git-fixes). - thunderbolt: Clamp XDomain response data copy to allocation size (git-fixes). - thunderbolt: Limit XDomain response copy to actual frame size (git-fixes). - thunderbolt: Reject zero-length property entries in validator (git-fixes). - thunderbolt: Validate XDomain request packet size before type cast (git-fixes). - watchdog: apple: Add 'apple,t8103-wdt' compatible (git-fixes). - watchdog: sp5100_tco: Use EFCH MMIO for newer Hygon FCH (git-fixes). - watchdog: sprd_wdt: Remove redundant sprd_wdt_disable() on register failure (git-fixes). - watchdog: unregister PM notifier on watchdog unregister (git-fixes). - wifi: ath11k: fix warning when unbinding (git-fixes). - wifi: ath9k: fix OOB access from firmware tx status queue ID (git-fixes). - wifi: cfg80211: fix grammar in MLO group key error message (git-fixes). - wifi: mac80211: fix monitor mode frame capture for real chanctx drivers (git-fixes). - wifi: mt76: fix argument to ieee80211_is_first_frag() (git-fixes). - wifi: mt76: mt7915: fix potential tx_retries underflow (git-fixes). - wifi: mt76: mt7921: fix potential tx_retries underflow (git-fixes). - wifi: mt76: mt7925: clean up DMA on probe failure (git-fixes). - wifi: mt76: mt7925: fix potential tx_retries underflow (git-fixes). - wifi: mt76: mt7996: fix potential tx_retries underflow (git-fixes). - wifi: rtlwifi: rtl8821ae: Fix C2H bit location in RX descriptor (git-fixes). - wifi: rtw88: fix OOB read from firmware RX descriptor exceeding DMA buffer (git-fixes). - wifi: rtw88: increase TX report timeout to fix race condition (git-fixes). - wifi: rtw88: usb: fix memory leaks on USB write failures (git-fixes). - wifi: rtw89: Correct data type for scan index to avoid infinite loop (git-fixes). - wifi: wcn36xx: fix OOB read from firmware count in PRINT_REG_INFO indication (git-fixes). - wifi: wcn36xx: fix OOB read from short trigger BA firmware response (git-fixes). - wifi: wcn36xx: fix heap overflow from oversized firmware HAL response (git-fixes). The following package changes have been done: - glibc-2.38-slfo.1.1_9.1 updated - libopenssl3-3.1.4-slfo.1.1_11.1 updated - SL-Micro-release-6.1-slfo.1.12.49 updated - kernel-default-base-6.4.0-48.1.21.25 updated - krb5-1.21.3-slfo.1.1_5.1 updated - glibc-locale-base-2.38-slfo.1.1_9.1 updated - container:SL-Micro-base-container-2.2.1-5.148 updated From sle-container-updates at lists.suse.com Wed Jul 1 08:15:36 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 1 Jul 2026 10:15:36 +0200 (CEST) Subject: SUSE-CU-2026:6587-1: Security update of suse/sl-micro/6.1/base-iso-image Message-ID: <20260701081536.3B2F1FF02@maintenance.suse.de> SUSE Container Update Advisory: suse/sl-micro/6.1/base-iso-image ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6587-1 Container Tags : suse/sl-micro/6.1/base-iso-image:2.2.1 , suse/sl-micro/6.1/base-iso-image:2.2.1-5.154 , suse/sl-micro/6.1/base-iso-image:latest Container Release : 5.154 Severity : moderate Type : security References : 1240751 1252555 1258120 1258170 1258508 1263656 1263658 CVE-2025-12105 CVE-2025-32049 CVE-2026-2369 CVE-2026-2443 CVE-2026-2708 CVE-2026-5435 CVE-2026-6238 ----------------------------------------------------------------- The container suse/sl-micro/6.1/base-iso-image was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 601 Released: Tue Jun 30 11:54:13 2026 Summary: Security update for glibc Type: security Severity: moderate References: 1240751,1252555,1258120,1258170,1258508,1263656,1263658,CVE-2025-12105,CVE-2025-32049,CVE-2026-2369,CVE-2026-2443,CVE-2026-2708,CVE-2026-5435,CVE-2026-6238 This update for glibc fixes the following issues - CVE-2026-5435: unchecked buffer writing in TSIG handling can lead to an out-of-bounds write (bsc#1263656). - CVE-2026-6238: insufficient RDATA length validation can lead to application crashes or uninitialized memory disclosure (bsc#1263658). The following package changes have been done: - glibc-2.38-slfo.1.1_9.1 updated - container:SL-Micro-base-container-2.2.1-5.148 updated - container:SL-Micro-container-2.2.1-7.129 updated From sle-container-updates at lists.suse.com Wed Jul 1 08:18:14 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 1 Jul 2026 10:18:14 +0200 (CEST) Subject: SUSE-CU-2026:6588-1: Security update of suse/sl-micro/6.1/kvm-iso-image Message-ID: <20260701081814.7994DFF02@maintenance.suse.de> SUSE Container Update Advisory: suse/sl-micro/6.1/kvm-iso-image ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6588-1 Container Tags : suse/sl-micro/6.1/kvm-iso-image:2.2.1 , suse/sl-micro/6.1/kvm-iso-image:2.2.1-5.169 , suse/sl-micro/6.1/kvm-iso-image:latest Container Release : 5.169 Severity : moderate Type : security References : 1240751 1252555 1258120 1258170 1258508 1263656 1263658 CVE-2025-12105 CVE-2025-32049 CVE-2026-2369 CVE-2026-2443 CVE-2026-2708 CVE-2026-5435 CVE-2026-6238 ----------------------------------------------------------------- The container suse/sl-micro/6.1/kvm-iso-image was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 601 Released: Tue Jun 30 11:54:13 2026 Summary: Security update for glibc Type: security Severity: moderate References: 1240751,1252555,1258120,1258170,1258508,1263656,1263658,CVE-2025-12105,CVE-2025-32049,CVE-2026-2369,CVE-2026-2443,CVE-2026-2708,CVE-2026-5435,CVE-2026-6238 This update for glibc fixes the following issues - CVE-2026-5435: unchecked buffer writing in TSIG handling can lead to an out-of-bounds write (bsc#1263656). - CVE-2026-6238: insufficient RDATA length validation can lead to application crashes or uninitialized memory disclosure (bsc#1263658). The following package changes have been done: - glibc-2.38-slfo.1.1_9.1 updated - container:SL-Micro-kvm-container-2.2.1-5.148 updated - container:SL-Micro-container-2.2.1-7.129 updated From sle-container-updates at lists.suse.com Wed Jul 1 08:21:02 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 1 Jul 2026 10:21:02 +0200 (CEST) Subject: SUSE-CU-2026:6589-1: Security update of suse/sl-micro/6.1/rt-iso-image Message-ID: <20260701082102.E418FFF02@maintenance.suse.de> SUSE Container Update Advisory: suse/sl-micro/6.1/rt-iso-image ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6589-1 Container Tags : suse/sl-micro/6.1/rt-iso-image:2.2.1 , suse/sl-micro/6.1/rt-iso-image:2.2.1-5.142 , suse/sl-micro/6.1/rt-iso-image:latest Container Release : 5.142 Severity : moderate Type : security References : 1240751 1252555 1258120 1258170 1258508 1263656 1263658 CVE-2025-12105 CVE-2025-32049 CVE-2026-2369 CVE-2026-2443 CVE-2026-2708 CVE-2026-5435 CVE-2026-6238 ----------------------------------------------------------------- The container suse/sl-micro/6.1/rt-iso-image was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 601 Released: Tue Jun 30 11:54:13 2026 Summary: Security update for glibc Type: security Severity: moderate References: 1240751,1252555,1258120,1258170,1258508,1263656,1263658,CVE-2025-12105,CVE-2025-32049,CVE-2026-2369,CVE-2026-2443,CVE-2026-2708,CVE-2026-5435,CVE-2026-6238 This update for glibc fixes the following issues - CVE-2026-5435: unchecked buffer writing in TSIG handling can lead to an out-of-bounds write (bsc#1263656). - CVE-2026-6238: insufficient RDATA length validation can lead to application crashes or uninitialized memory disclosure (bsc#1263658). The following package changes have been done: - glibc-2.38-slfo.1.1_9.1 updated - container:SL-Micro-rt-container-2.2.1-5.143 updated - container:SL-Micro-container-2.2.1-7.129 updated From sle-container-updates at lists.suse.com Wed Jul 1 08:13:27 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 1 Jul 2026 10:13:27 +0200 (CEST) Subject: SUSE-IU-2026:5214-1: Security update of suse/sl-micro/6.1/rt-os-container Message-ID: <20260701081327.B728DFF02@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.1/rt-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5214-1 Image Tags : suse/sl-micro/6.1/rt-os-container:2.2.1 , suse/sl-micro/6.1/rt-os-container:2.2.1-5.143 , suse/sl-micro/6.1/rt-os-container:latest Image Release : 5.143 Severity : important Type : security References : 1240751 1244485 1248235 1252555 1253904 1255416 1256668 1256818 1257692 1258120 1258170 1258508 1258538 1260502 1260584 1261256 1261619 1261791 1262085 1262392 1262606 1262615 1262617 1262619 1262620 1262622 1262624 1262634 1262649 1262656 1262663 1262668 1262674 1262748 1262755 1262798 1262993 1263006 1263068 1263115 1263123 1263137 1263143 1263152 1263178 1263319 1263562 1263563 1263568 1263578 1263656 1263658 1263724 1263769 1263774 1263790 1263879 1263880 1263883 1263930 1263932 1263934 1263945 1263993 1263996 1264000 1264011 1264045 1264063 1264076 1264080 1264084 1264093 1264116 1264124 1264137 1264145 1264184 1264239 1264243 1264245 1264255 1264263 1264266 1264300 1264409 1264430 1264437 1264444 1264449 1264470 1264476 1264484 1264549 1264551 1264561 1264595 1264603 1264610 1264669 1264671 1264672 1264716 1264719 1264720 1264722 1264726 1264741 1264763 1264765 1264805 1264989 1265020 1265044 1265073 1265103 1265110 1265128 1265143 1265170 1265240 1265579 1265628 1265928 1265960 1266001 1266009 1266214 1266238 1266290 1266307 1266350 1266390 1266394 1266395 1266397 1266400 1266402 1266414 1266452 1266696 1266697 1266698 1266704 1266705 1266711 1266720 1266759 1266765 1266767 1266810 1266816 1266826 1266827 1266878 1266889 1266895 1266901 1266903 1266916 1266922 1266927 1266933 1266969 1266972 1267205 1267208 1267214 1267218 1267220 1267222 1267361 1267381 1267387 1267431 1267531 1267621 1267624 1267626 1267628 1267640 1267651 1267652 1267654 1267663 1267682 1267685 1267697 1267726 1267732 1267744 1268131 1268307 CVE-2025-10263 CVE-2025-12105 CVE-2025-32049 CVE-2025-38549 CVE-2025-58181 CVE-2025-61732 CVE-2025-68121 CVE-2025-68324 CVE-2025-68822 CVE-2026-11850 CVE-2026-23303 CVE-2026-23327 CVE-2026-23359 CVE-2026-23438 CVE-2026-23444 CVE-2026-2369 CVE-2026-2443 CVE-2026-2708 CVE-2026-31396 CVE-2026-31414 CVE-2026-31429 CVE-2026-31446 CVE-2026-31448 CVE-2026-31452 CVE-2026-31453 CVE-2026-31454 CVE-2026-31455 CVE-2026-31464 CVE-2026-31469 CVE-2026-31473 CVE-2026-31480 CVE-2026-31492 CVE-2026-31493 CVE-2026-31495 CVE-2026-31499 CVE-2026-31500 CVE-2026-31516 CVE-2026-31518 CVE-2026-31546 CVE-2026-31555 CVE-2026-31580 CVE-2026-31590 CVE-2026-31592 CVE-2026-31596 CVE-2026-31613 CVE-2026-31614 CVE-2026-31629 CVE-2026-31655 CVE-2026-31664 CVE-2026-31665 CVE-2026-31671 CVE-2026-31673 CVE-2026-31674 CVE-2026-31678 CVE-2026-31680 CVE-2026-31693 CVE-2026-31697 CVE-2026-31698 CVE-2026-31699 CVE-2026-31703 CVE-2026-31752 CVE-2026-31758 CVE-2026-31759 CVE-2026-31767 CVE-2026-31771 CVE-2026-42767 CVE-2026-43013 CVE-2026-43023 CVE-2026-43024 CVE-2026-43026 CVE-2026-43028 CVE-2026-43030 CVE-2026-43035 CVE-2026-43036 CVE-2026-43040 CVE-2026-43049 CVE-2026-43052 CVE-2026-43053 CVE-2026-43054 CVE-2026-43059 CVE-2026-43065 CVE-2026-43066 CVE-2026-43068 CVE-2026-43074 CVE-2026-43077 CVE-2026-43083 CVE-2026-43101 CVE-2026-43109 CVE-2026-43112 CVE-2026-43119 CVE-2026-43158 CVE-2026-43171 CVE-2026-43187 CVE-2026-43198 CVE-2026-43206 CVE-2026-43234 CVE-2026-43239 CVE-2026-43249 CVE-2026-43252 CVE-2026-43261 CVE-2026-43284 CVE-2026-43296 CVE-2026-43325 CVE-2026-43333 CVE-2026-43338 CVE-2026-43339 CVE-2026-43341 CVE-2026-43345 CVE-2026-43359 CVE-2026-43360 CVE-2026-43361 CVE-2026-43362 CVE-2026-43405 CVE-2026-43406 CVE-2026-43407 CVE-2026-43411 CVE-2026-43413 CVE-2026-43414 CVE-2026-43455 CVE-2026-43469 CVE-2026-43470 CVE-2026-43483 CVE-2026-43491 CVE-2026-43499 CVE-2026-43501 CVE-2026-43503 CVE-2026-45840 CVE-2026-45841 CVE-2026-45842 CVE-2026-45843 CVE-2026-45846 CVE-2026-45852 CVE-2026-45856 CVE-2026-45862 CVE-2026-45870 CVE-2026-45878 CVE-2026-45886 CVE-2026-45894 CVE-2026-45910 CVE-2026-45932 CVE-2026-45940 CVE-2026-45961 CVE-2026-45964 CVE-2026-45965 CVE-2026-45970 CVE-2026-45974 CVE-2026-45983 CVE-2026-45984 CVE-2026-46004 CVE-2026-46005 CVE-2026-46021 CVE-2026-46024 CVE-2026-46037 CVE-2026-46043 CVE-2026-46079 CVE-2026-46083 CVE-2026-46090 CVE-2026-46094 CVE-2026-46101 CVE-2026-46110 CVE-2026-46111 CVE-2026-46113 CVE-2026-46114 CVE-2026-46119 CVE-2026-46120 CVE-2026-46123 CVE-2026-46150 CVE-2026-46157 CVE-2026-46159 CVE-2026-46160 CVE-2026-46172 CVE-2026-46176 CVE-2026-46181 CVE-2026-46197 CVE-2026-46209 CVE-2026-46227 CVE-2026-46244 CVE-2026-46259 CVE-2026-46273 CVE-2026-5435 CVE-2026-6238 ----------------------------------------------------------------- The container suse/sl-micro/6.1/rt-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 599 Released: Tue Jun 30 10:42:14 2026 Summary: Security update for openssl-3 Type: security Severity: moderate References: 1244485,1256818,1257692,1266350,CVE-2025-61732,CVE-2025-68121,CVE-2026-42767 This update for openssl-3 fixes the following issue - CVE-2026-42767: NULL Pointer Dereference in CRMF EncryptedValue Decryption (bsc#1266350). ----------------------------------------------------------------- Advisory ID: 602 Released: Tue Jun 30 11:20:36 2026 Summary: Security update for krb5 Type: security Severity: important References: 1253904,1268131,CVE-2025-58181,CVE-2026-11850 This update for krb5 fixes the following issue - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). ----------------------------------------------------------------- Advisory ID: 601 Released: Tue Jun 30 11:54:13 2026 Summary: Security update for glibc Type: security Severity: moderate References: 1240751,1252555,1258120,1258170,1258508,1263656,1263658,CVE-2025-12105,CVE-2025-32049,CVE-2026-2369,CVE-2026-2443,CVE-2026-2708,CVE-2026-5435,CVE-2026-6238 This update for glibc fixes the following issues - CVE-2026-5435: unchecked buffer writing in TSIG handling can lead to an out-of-bounds write (bsc#1263656). - CVE-2026-6238: insufficient RDATA length validation can lead to application crashes or uninitialized memory disclosure (bsc#1263658). ----------------------------------------------------------------- Advisory ID: kernel-498 Released: Tue Jun 30 19:41:36 2026 Summary: Security update for the Linux Kernel Type: security Severity: important References: 1248235,1255416,1256668,1258538,1260502,1260584,1261256,1261619,1261791,1262085,1262392,1262606,1262615,1262617,1262619,1262620,1262622,1262624,1262634,1262649,1262656,1262663,1262668,1262674,1262748,1262755,1262798,1262993,1263006,1263068,1263115,1263123,1263137,1263143,1263152,1263178,1263319,1263562,1263563,1263568,1263578,1263724,1263769,1263774,1263790,1263879,1263880,1263883,1263930,1263932,1263934,1263945,1263993,1263996,1264000,1264011,1264045,1264063,1264076,1264080,1264084,1264093,1264116,1264124,1264137,1264145,1264184,1264239,1264243,1264245,1264255,1264263,1264266,1264300,1264409,1264430,1264437,1264444,1264449,1264470,1264476,1264484,1264549,1264551,1264561,1264595,1264603,1264610,1264669,1264671,1264672,1264716,1264719,1264720,1264722,1264726,1264741,1264763,1264765,1264805,1264989,1265020,1265044,1265073,1265103,1265110,1265128,1265143,1265170,1265240,1265579,1265628,1265928,1265960,1266001,1266009,1266214,1266238,1266290,1266307,1266390,1266394,1266395,1 266397,1266400,1266402,1266414,1266452,1266696,1266697,1266698,1266704,1266705,1266711,1266720,1266759,1266765,1266767,1266810,1266816,1266826,1266827,1266878,1266889,1266895,1266901,1266903,1266916,1266922,1266927,1266933,1266969,1266972,1267205,1267208,1267214,1267218,1267220,1267222,1267361,1267381,1267387,1267431,1267531,1267621,1267624,1267626,1267628,1267640,1267651,1267652,1267654,1267663,1267682,1267685,1267697,1267726,1267732,1267744,1268307,CVE-2025-10263,CVE-2025-38549,CVE-2025-68324,CVE-2025-68822,CVE-2026-23303,CVE-2026-23327,CVE-2026-23359,CVE-2026-23438,CVE-2026-23444,CVE-2026-31396,CVE-2026-31414,CVE-2026-31429,CVE-2026-31446,CVE-2026-31448,CVE-2026-31452,CVE-2026-31453,CVE-2026-31454,CVE-2026-31455,CVE-2026-31464,CVE-2026-31469,CVE-2026-31473,CVE-2026-31480,CVE-2026-31492,CVE-2026-31493,CVE-2026-31495,CVE-2026-31499,CVE-2026-31500,CVE-2026-31516,CVE-2026-31518,CVE-2026-31546,CVE-2026-31555,CVE-2026-31580,CVE-2026-31590,CVE-2026-31592,CVE-2026-31596,CVE-2026-31613,CV E-2026-31614,CVE-2026-31629,CVE-2026-31655,CVE-2026-31664,CVE-2026-31665,CVE-2026-31671,CVE-2026-31673,CVE-2026-31674,CVE-2026-31678,CVE-2026-31680,CVE-2026-31693,CVE-2026-31697,CVE-2026-31698,CVE-2026-31699,CVE-2026-31703,CVE-2026-31752,CVE-2026-31758,CVE-2026-31759,CVE-2026-31767,CVE-2026-31771,CVE-2026-43013,CVE-2026-43023,CVE-2026-43024,CVE-2026-43026,CVE-2026-43028,CVE-2026-43030,CVE-2026-43035,CVE-2026-43036,CVE-2026-43040,CVE-2026-43049,CVE-2026-43052,CVE-2026-43053,CVE-2026-43054,CVE-2026-43059,CVE-2026-43065,CVE-2026-43066,CVE-2026-43068,CVE-2026-43074,CVE-2026-43077,CVE-2026-43083,CVE-2026-43101,CVE-2026-43109,CVE-2026-43112,CVE-2026-43119,CVE-2026-43158,CVE-2026-43171,CVE-2026-43187,CVE-2026-43198,CVE-2026-43206,CVE-2026-43234,CVE-2026-43239,CVE-2026-43249,CVE-2026-43252,CVE-2026-43261,CVE-2026-43284,CVE-2026-43296,CVE-2026-43325,CVE-2026-43333,CVE-2026-43338,CVE-2026-43339,CVE-2026-43341,CVE-2026-43345,CVE-2026-43359,CVE-2026-43360,CVE-2026-43361,CVE-2026-43362,CVE-2026- 43405,CVE-2026-43406,CVE-2026-43407,CVE-2026-43411,CVE-2026-43413,CVE-2026-43414,CVE-2026-43455,CVE-2026-43469,CVE-2026-43470,CVE-2026-43483,CVE-2026-43491,CVE-2026-43499,CVE-2026-43501,CVE-2026-43503,CVE-2026-45840,CVE-2026-45841,CVE-2026-45842,CVE-2026-45843,CVE-2026-45846,CVE-2026-45852,CVE-2026-45856,CVE-2026-45862,CVE-2026-45870,CVE-2026-45878,CVE-2026-45886,CVE-2026-45894,CVE-2026-45910,CVE-2026-45932,CVE-2026-45940,CVE-2026-45961,CVE-2026-45964,CVE-2026-45965,CVE-2026-45970,CVE-2026-45974,CVE-2026-45983,CVE-2026-45984,CVE-2026-46004,CVE-2026-46005,CVE-2026-46021,CVE-2026-46024,CVE-2026-46037,CVE-2026-46043,CVE-2026-46079,CVE-2026-46083,CVE-2026-46090,CVE-2026-46094,CVE-2026-46101,CVE-2026-46110,CVE-2026-46111,CVE-2026-46113,CVE-2026-46114,CVE-2026-46119,CVE-2026-46120,CVE-2026-46123,CVE-2026-46150,CVE-2026-46157,CVE-2026-46159,CVE-2026-46160,CVE-2026-46172,CVE-2026-46176,CVE-2026-46181,CVE-2026-46197,CVE-2026-46209,CVE-2026-46227,CVE-2026-46244,CVE-2026-46259,CVE-2026-46273 The SUSE Linux Enterprise Micro 6.0 and 6.1 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2025-10263: arm64: errata: Mitigate TLBI errata on various Arm CPUs (bsc#1266290). - CVE-2025-38549: efivarfs: Fix memory leak of efivarfs_fs_info in fs_context error paths (bsc#1248235). - CVE-2025-68324: scsi: imm: Fix use-after-free bug caused by unfinished delayed work (bsc#1255416). - CVE-2025-68822: Input: alps - fix use-after-free bugs caused by dev3_register_work (bsc#1256668). - CVE-2026-23303: smb: client: Don't log plaintext credentials in cifs_set_cifscreds (bsc#1260502). - CVE-2026-23327: cxl/mbox: validate payload size before accessing contents in cxl_payload_from_user_allowed() - CVE-2026-23359: bpf: Fix stack-out-of-bounds write in devmap (bsc#1260584). - CVE-2026-23438: net: mvpp2: guard flow control update with global_tx_fc in buffer switching (bsc#1261619). - CVE-2026-23444: wifi: mac80211: always free skb on ieee80211_tx_prepare_skb() failure (bsc#1266307). - CVE-2026-31396: net: macb: fix use-after-free access to PTP clock (bsc#1261791). - CVE-2026-31414: netfilter: nf_conntrack_expect: use expect->helper (bsc#1262085). - CVE-2026-31429: net: skb: fix cross-cache free of KFENCE-allocated skb head (bsc#1262392). - CVE-2026-31446: ext4: fix use-after-free in update_super_work when racing with umount (bsc#1262619). - CVE-2026-31448: ext4: avoid infinite loops caused by residual data (bsc#1262622). - CVE-2026-31452: ext4: convert inline data to extents when truncate exceeds inline size (bsc#1262620). - CVE-2026-31454: xfs: save ailp before dropping the AIL lock in push callbacks (bsc#1262624). - CVE-2026-31455: xfs: stop reclaim before pushing AIL during unmount (bsc#1262615). - CVE-2026-31464: scsi: ibmvfc: Fix OOB access in ibmvfc_discover_targets_done() (bsc#1262656). - CVE-2026-31469: virtio_net: Fix UAF on dst_ops when IFF_XMIT_DST_RELEASE is cleared and napi_tx is false - CVE-2026-31473: media: mc, v4l2: serialize REINIT and REQBUFS with req_queue_mutex (bsc#1262663). - CVE-2026-31480: tracing: Fix potential deadlock in cpu hotplug with osnoise (bsc#1262634). - CVE-2026-31492: RDMA/irdma: Initialize free_qp completion before using it (bsc#1262748). - CVE-2026-31493: RDMA/efa: Fix use of completion ctx after free (bsc#1262668). - CVE-2026-31495: netfilter: ctnetlink: use netlink policy range checks (bsc#1262798). - CVE-2026-31499: Bluetooth: L2CAP: Fix deadlock in l2cap_conn_del() (bsc#1262674). - CVE-2026-31500: Bluetooth: btintel: serialize btintel_hw_error() with hci_req_sync_lock (bsc#1262993). - CVE-2026-31516: xfrm: prevent policy_hthresh.work from racing with netns teardown (bsc#1262755). - CVE-2026-31518: esp: fix skb leak with espintcp and async crypto (bsc#1262606). - CVE-2026-31546: net: bonding: fix NULL deref in bond_debug_rlb_hash_show (bsc#1263006). - CVE-2026-31555: futex: Clear stale exiting pointer in futex_lock_pi() retry path (bsc#1263178). - CVE-2026-31590: KVM: SEV: Drop WARN on large size for KVM_MEMORY_ENCRYPT_REG_REGION (bsc#1263152). - CVE-2026-31592: KVM: SEV: Protect *all* of sev_mem_enc_register_region() with kvm->lock (bsc#1263123). - CVE-2026-31596: ocfs2: handle invalid dinode in ocfs2_group_extend (bsc#1263319). - CVE-2026-31613: smb: client: fix OOB reads parsing symlink error response (bsc#1263769). - CVE-2026-31614: smb: client: fix off-by-8 bounds check in check_wsl_eas() (bsc#1263774). - CVE-2026-31629: nfc: llcp: add missing return after LLCP_CLOSED checks (bsc#1263790). - CVE-2026-31655: pmdomain: imx8mp-blk-ctrl: Keep the NOC_HDCP clock enabled (bsc#1263724). - CVE-2026-31664: string.h: Introduce memset_after() for wiping trailing members/padding (bsc#1263578). - CVE-2026-31665: kABI: netfilter: nft_ct: fix use-after-free in timeout object destroy (bsc#1263137). - CVE-2026-31671: xfrm_user: fix info leak in build_report() (bsc#1263115). - CVE-2026-31673: af_unix: read UNIX_DIAG_VFS data under unix_state_lock (bsc#1263143). - CVE-2026-31674: netfilter: ip6t_rt: reject oversized addrnr in rt_mt6_check() (bsc#1263568). - CVE-2026-31678: openvswitch: defer tunnel netdev_put to RCU release (bsc#1263562). - CVE-2026-31680: net: ipv6: flowlabel: defer exclusive option free until RCU teardown (bsc#1263563). - CVE-2026-31693: cifs: some missing initializations on replay (bsc#1267744). - CVE-2026-31697: crypto: ccp: Don't attempt to copy ID to userspace if PSP command failed (bsc#1264116). - CVE-2026-31698: crypto: ccp: Don't attempt to copy PDH cert to userspace if PSP command failed (bsc#1263880). - CVE-2026-31699: crypto: ccp: Don't attempt to copy CSR to userspace if PSP command failed (bsc#1263879). - CVE-2026-31703: writeback: Fix use after free in inode_switch_wbs_work_fn() (bsc#1263883). - CVE-2026-31752: bridge: br_nd_send: validate ND option lengths (bsc#1264045). - CVE-2026-31758: usb: usbtmc: Flush anchored URBs in usbtmc_release (bsc#1264093). - CVE-2026-31759: usb: ulpi: fix double free in ulpi_register_interface() error path (bsc#1264076). - CVE-2026-31767: drm/i915/dsi: Don't do DSC horizontal timing adjustments in command mode (bsc#1264124). - CVE-2026-31771: Bluetooth: hci_event: move wake reason storage into validated event handlers (bsc#1264145). - CVE-2026-43013: net/mlx5: lag: Check for LAG device before creating debugfs (bsc#1264011). - CVE-2026-43023: Bluetooth: SCO: fix race conditions in sco_sock_connect() (bsc#1264137). - CVE-2026-43024: netfilter: nf_tables: reject immediate NF_QUEUE verdict (bsc#1263930). - CVE-2026-43026: netfilter: ctnetlink: zero expect NAT fields when CTA_EXPECT_NAT absent (bsc#1263932). - CVE-2026-43028: netfilter: x_tables: ensure names are nul-terminated (bsc#1263934). - CVE-2026-43030: bpf: Fix regsafe() for pointers to packet (bsc#1264000). - CVE-2026-43035: net: sched: cls_api: fix tc_chain_fill_node to initialize tcm_info to zero to prevent an info-leak (bsc#1263996). - CVE-2026-43036: net: use skb_header_pointer() for TCPv4 GSO frag_off check (bsc#1263993). - CVE-2026-43040: net: ipv6: ndisc: fix ndisc_ra_useropt to initialize nduseropt_padX fields to zero to prevent an info- - CVE-2026-43049: HID: logitech-hidpp: Prevent use-after-free on force feedback initialisation failure (bsc#1264080). - CVE-2026-43052: wifi: mac80211: check tdls flag in ieee80211_tdls_oper (bsc#1263945). - CVE-2026-43053: xfs: close crash window in attr dabtree inactivation (bsc#1264084). - CVE-2026-43054: scsi: target: tcm_loop: Drain commands in target_reset handler (bsc#1264063). - CVE-2026-43059: Bluetooth: MGMT: fix crash in set_mesh_sync and set_mesh_complete (bsc#1264184). - CVE-2026-43065: ext4: always drain queued discard work in ext4_mb_release() (bsc#1264243). - CVE-2026-43066: ext4: fix iloc.bh leak in ext4_fc_replay_inode() error paths (bsc#1264245). - CVE-2026-43068: ext4: avoid allocate block from corrupted group in ext4_mb_find_by_goal() (bsc#1264255). - CVE-2026-43074: eventpoll: defer struct eventpoll free to RCU grace period (bsc#1264263). - CVE-2026-43077: crypto: algif_aead - Fix minimum RX size check for decryption (bsc#1264470). - CVE-2026-43083: net: ioam6: fix OOB and missing lock (bsc#1264266). - CVE-2026-43101: ipv6: ioam: fix potential NULL dereferences in __ioam6_fill_trace_data() (bsc#1264239). - CVE-2026-43109: x86: shadow stacks: proper error handling for mmap lock (bsc#1264484). - CVE-2026-43112: fs/smb/client: fix out-of-bounds read in cifs_sanitize_prepath (bsc#1264437). - CVE-2026-43119: Bluetooth: hci_sync: annotate data-races around hdev->req_status (bsc#1264561). - CVE-2026-43158: xfs: fix freemap adjustments when adding xattrs to leaf blocks (bsc#1264595). - CVE-2026-43171: EFI/CPER: do not dump the entire memory region (bsc#1264549). - CVE-2026-43187: xfs: delete attr leaf freemap entries when empty (bsc#1264603). - CVE-2026-43198: tcp: fix potential race in tcp_v6_syn_recv_sock() (bsc#1264610). - CVE-2026-43206: drm/amdkfd: Fix out-of-bounds write in kfd_event_page_set() (bsc#1264551). - CVE-2026-43234: team: avoid NETDEV_CHANGEMTU event when unregistering slave (bsc#1264409). - CVE-2026-43239: smb: client: prevent races in ->query_interfaces() (bsc#1264444). - CVE-2026-43249: 9p/xen: protect xen_9pfs_front_free against concurrent calls (bsc#1264476). - CVE-2026-43252: mptcp: pm: in-kernel: always set ID as avail when rm endp (bsc#1264300). - CVE-2026-43261: arm64: Add support for TSV110 Spectre-BHB mitigation (bsc#1264430). - CVE-2026-43296: octeontx2-af: Workaround SQM/PSE stalls by disabling sticky (bsc#1264805). - CVE-2026-43325: wifi: iwlwifi: mvm: don't send a 6E related command when not supported (bsc#1265110). - CVE-2026-43333: bpf: reject direct access to nullable PTR_TO_BUF pointers (bsc#1264726). - CVE-2026-43338: btrfs: reserve enough transaction items for qgroup ioctls (bsc#1264716). - CVE-2026-43339: ipv6: prevent possible UaF in addrconf_permanent_addr() (bsc#1264763). - CVE-2026-43341: net/ipv6: ioam6: prevent schema length wraparound in trace fill (bsc#1265044). - CVE-2026-43345: net: ipa: fix event ring index not programmed for IPA v5.0+ (bsc#1265103). - CVE-2026-43359: btrfs: fix transaction abort on set received ioctl due to item overflow (bsc#1264719). - CVE-2026-43360: btrfs: fix transaction abort on file creation due to name hash collision (bsc#1264720). - CVE-2026-43361: btrfs: fix transaction abort when snapshotting received subvolumes (bsc#1264722). - CVE-2026-43362: smb: client: fix in-place encryption corruption in SMB2_write() (bsc#1264989). - CVE-2026-43405: libceph: Use u32 for non-negative values in ceph_monmap_decode() (bsc#1264741). - CVE-2026-43406: libceph: prevent potential out-of-bounds reads in process_message_header() (bsc#1265073). - CVE-2026-43407: libceph: Fix potential out-of-bounds access in ceph_handle_auth_reply() (bsc#1265020). - CVE-2026-43411: tipc: fix divide-by-zero in tipc_sk_filter_connect() (bsc#1264672). - CVE-2026-43413: scsi: hisi_sas: Fix NULL pointer exception during user_scan() (bsc#1264671). - CVE-2026-43414: scsi: qla2xxx: Completely fix fcport double free (bsc#1264669). - CVE-2026-43455: net: mctp: Ensure keys maintain only one ref to corresponding dev (bsc#1264765). - CVE-2026-43469: xprtrdma: Decrement re_receiving on the early exit paths (bsc#1265143). - CVE-2026-43470: nfs: return EISDIR on nfs3_proc_create if d_alias is a dir (bsc#1265128). - CVE-2026-43483: KVM: SVM: Set/clear CR8 write interception when AVIC is (de)activated (bsc#1265240). - CVE-2026-43491: net: qrtr: ns: Limit the maximum server registration per node (bsc#1265628). - CVE-2026-43499: rtmutex: Use waiter::task instead of current in remove_waiter() (bsc#1266001). - CVE-2026-43501: ipv6: rpl: reserve mac_len headroom when recompressed SRH grows (bsc#1266009). - CVE-2026-45840: openvswitch: cap upcall PID array size and pre-size vport replies (bsc#1266397). - CVE-2026-45841: netfilter: nfnetlink_osf: fix divide-by-zero in OSF_WSS_MODULO (bsc#1266390). - CVE-2026-45842: slip: reject VJ receive packets on instances with no rstate array (bsc#1266400). - CVE-2026-45843: slip: bound decode() reads against the compressed packet length (bsc#1266395). - CVE-2026-45846: bareudp: fix NULL pointer dereference in bareudp_fill_metadata_dst() (bsc#1266394). - CVE-2026-45852: RDMA/rxe: Fix double free in rxe_srq_from_init (bsc#1266711). - CVE-2026-45856: RDMA/uverbs: Validate wqe_size before using it in ib_uverbs_post_send (bsc#1266720). - CVE-2026-45862: iommu/vt-d: Flush cache for PASID table before using it (bsc#1266705). - CVE-2026-45870: SUNRPC: auth_gss: fix memory leaks in XDR decoding error paths (bsc#1266704). - CVE-2026-45878: drm/amdkfd: Fix watch_id bounds checking in debug address watch v2 (bsc#1266767). - CVE-2026-45886: bpf: Fix bpf_xdp_store_bytes proto for read-only arg (bsc#1266810). - CVE-2026-45894: iommu/vt-d: Clear Present bit before tearing down PASID entry (bsc#1266895). - CVE-2026-45910: RDMA/rxe: Fix race condition in QP timer handlers (bsc#1266889). - CVE-2026-45932: bpf: Fix tcx/netkit detach permissions when prog fd isn't given (bsc#1266827). - CVE-2026-45940: net: stmmac: fix oops when split header is enabled (bsc#1266916). - CVE-2026-45961: gfs2: fix memory leaks in gfs2_fill_super error path (bsc#1266933). - CVE-2026-45964: SUNRPC: fix gss_auth kref leak in gss_alloc_msg error path (bsc#1266698). - CVE-2026-45965: apparmor: fix invalid deref of rawdata when export_binary is unset (bsc#1267208). - CVE-2026-45970: bonding: alb: fix UAF in rlb_arp_recv during bond up/down (bsc#1267205). - CVE-2026-45974: btrfs: fix invalid leaf access in btrfs_quota_enable() if ref key not found (bsc#1266922). - CVE-2026-45983: nfsd: never defer requests during idmap lookup (bsc#1266697). - CVE-2026-45984: gfs2: Move the inode glock locking to gfs2_file_buffered_write (bsc#1267214). - CVE-2026-46004: ALSA: caiaq: Handle probe errors properly (bsc#1267222). - CVE-2026-46005: xfs: fix a resource leak in xfs_alloc_buftarg() (bsc#1267431). - CVE-2026-46021: thermal: core: Fix thermal zone governor cleanup issues (bsc#1267220). - CVE-2026-46024: libceph: Prevent potential null-ptr-deref in ceph_handle_auth_reply() (bsc#1267218). - CVE-2026-46037: ipv4: icmp: validate reply type before using icmp_pointers (bsc#1267361). - CVE-2026-46043: RDMA/rxe: Validate pad and ICRC before payload_size() in rxe_rcv (bsc#1266901). - CVE-2026-46079: rbd: fix null-ptr-deref when device_add_disk() fails (bsc#1266452). - CVE-2026-46083: spi: fix resource leaks on device setup failure (bsc#1266696). - CVE-2026-46090: ALSA: aloop: Use guard() for spin locks (bsc#1267531). - CVE-2026-46094: ext4: fix bounds check in check_xattrs() to prevent out-of-bounds access (bsc#1266927). - CVE-2026-46101: netfilter: reject zero shift in nft_bitwise (bsc#1266878). - CVE-2026-46110: net: stmmac: rename STMMAC_GET_ENTRY() -> STMMAC_NEXT_ENTRY() (bsc#1266759). - CVE-2026-46111: Bluetooth: hci_conn: fix potential UAF in create_big_sync (bsc#1267626). - CVE-2026-46113: KVM: x86/mmu: Add helper to convert SPTE value to its shadow page (bsc#1266969). - CVE-2026-46114: RDMA/rxe: Reject non-8-byte ATOMIC_WRITE payloads (bsc#1266972). - CVE-2026-46119: libceph: Fix slab-out-of-bounds access in auth message processing (bsc#1267628). - CVE-2026-46120: ip6_gre: Use cached t->net in ip6erspan_changelink() (bsc#1267640). - CVE-2026-46123: Bluetooth: virtio_bt: clamp rx length before skb_put (bsc#1267621). - CVE-2026-46150: fanotify: fix false positive on permission events (bsc#1267387). - CVE-2026-46157: ALSA: pcm: oss: Fix data race at accessing runtime.oss.trigger (bsc#1267726). - CVE-2026-46159: btrfs: fix btrfs_ioctl_space_info() slot_count TOCTOU which can lead to info-leak (bsc#1267652). - CVE-2026-46160: btrfs: fix missing last_unlink_trans update when removing a directory (bsc#1267624). - CVE-2026-46172: ipv6: xfrm6: release dst on error in xfrm6_rcv_encap() (bsc#1266903). - CVE-2026-46176: RDMA/mlx5: Fix error path fall-through in mlx5_ib_dev_res_srq_init() (bsc#1266816). - CVE-2026-46181: RDMA/mlx4: Fix mis-use of RCU in mlx4_srq_event() (bsc#1266826). - CVE-2026-46197: drm/amdkfd: validate SVM ioctl nattr against buffer size (bsc#1267381). - CVE-2026-46209: drm/gem: Fix inconsistent plane dimension calculation in drm_gem_fb_init_with_funcs() (bsc#1267663). - CVE-2026-46227: sctp: revalidate list cursor after sctp_sendmsg_to_asoc() in SCTP_SENDALL (bsc#1267697). - CVE-2026-46244: netfilter: nft_inner: Fix IPv6 inner_thoff desync (bsc#1267654). - CVE-2026-46259: procfs: fix missing RCU protection when reading real_parent in do_task_stat() (bsc#1267685). - CVE-2026-46273: ibmveth: Disable GSO for packets with small MSS (bsc#1267651). The following non-security bugs were fixed: - ACPI: CPPC: Suppress UBSAN warning caused by field misuse (git-fixes). - ACPI: IPMI: Fix message kref handling on dead device (git-fixes). - ACPI: NFIT: core: Fix possible NULL pointer dereference (git-fixes). - ALSA: PCM: Fix wait queue list corruption in snd_pcm_drain() on linked streams (git-fixes). - ALSA: aloop: Drop superfluous break (git-fixes). - ALSA: asihpi: Fix potential OOB array access at reading cache (stable-fixes). - ALSA: cmipci: check snd_ctl_new1() return value (git-fixes). - ALSA: core: Fix unintuitive behavior of snd_power_ref_and_wait() (git-fixes). - ALSA: es1938: check snd_ctl_new1() return value (git-fixes). - ALSA: gus: check snd_ctl_new1() return value (git-fixes). - ALSA: hda/conexant: Renaming the codec with device ID 0x1f86 and 0x1f87 (stable-fixes). - ALSA: ice1712: check snd_ctl_new1() return value (git-fixes). - ALSA: sc6000: Keep the programmed board state in card-private data (git-fixes). - ALSA: sc6000: Use standard print API (stable-fixes). - ALSA: seq: Clear variable event pointer on read (git-fixes). - ALSA: seq: Fix partial userptr event expansion (git-fixes). - ALSA: seq: midi: Serialize output teardown with event_input (git-fixes). - ALSA: ua101: Reject too-short USB descriptors (git-fixes). - ALSA: usb-audio: Bound MIDI 2.0 endpoint descriptor scans (git-fixes). - ALSA: usb-audio: Bound MIDI endpoint descriptor scans (git-fixes). - ALSA: usb-audio: Propagate US-16x08 write errors in route/mix EQ-switch put callbacks (git-fixes). - ALSA: usb-audio: Propagate errors in scarlett_ctl_enum_put() (git-fixes). - ALSA: usb-audio: Roll back quirk control caches on write errors (git-fixes). - ALSA: usb-audio: Update Babyface Pro control caches only after successful writes (git-fixes). - ALSA: usb-audio: Update US-16x08 EQ/comp shadow state after successful writes (git-fixes). - ALSA: virtio: Add missing 384 kHz PCM rate mapping (git-fixes). - ALSA: ymfpci: check snd_ctl_new1() return value (git-fixes). - ASoC: SOF: Intel: hda-dai: add support for dspless mode beyond HDAudio (stable-fixes). - ASoC: SOF: Intel: hda-dai: remove dspless special case (stable-fixes). - ASoC: SOF: Intel: hda: Fix NULL pointer dereference (stable-fixes). - ASoC: SOF: ipc3-control: Fix TOCTOU in bytes_put and bytes_get (git-fixes). - ASoC: SOF: ipc3-control: Fix heap overflow in bytes_ext put/get (git-fixes). - ASoC: SOF: ipc3-control: Use overflow checks in control_update size calc (git-fixes). - ASoC: SOF: ipc3-control: Validate size in snd_sof_update_control (git-fixes). - ASoC: SOF: ipc4-control: Fix TOCTOU in sof_ipc4_bytes_put (git-fixes). - ASoC: SOF: topology: validate vendor array size before parsing (git-fixes). - ASoC: adau1372: Clear PLL_EN on failed PLL lock without reset GPIO (git-fixes). - ASoC: codecs: hdac_hdmi: Validate written enum value (git-fixes). - ASoC: codecs: simple-mux: Fix enum control bounds check (git-fixes). - ASoC: cs35l56: Cleanup if component_probe fails (git-fixes). - ASoC: cs35l56: Do not leave parent IRQ disabled if system_suspend fails (git-fixes). - ASoC: cs35l56: Fix flushing of IRQ work in cs35l56_sdw_remove() (git-fixes). - ASoC: cs35l56: Fix missing calls to wm_adsp2_remove() (git-fixes). - ASoC: fsl: fsl_audmix: Validate written enum values (git-fixes). - ASoC: meson: aiu: Validate written enum values (git-fixes). - ASoC: qcom: q6asm-dai: close stream only when running (git-fixes). - ASoC: qcom: q6asm-dai: do not set stream state in event and trigger callbacks (git-fixes). - ASoC: qcom: q6asm-dai: fix error handling in prepare and set_params (git-fixes). - ASoC: tegra: tegra210_ahub: Validate written enum value (git-fixes). - ASoC: topology: Check PCM and DAI name strings before use (git-fixes). - ASoC: wm_adsp: Fix NULL dereference when removing firmware controls (git-fixes). - Bluetooth: 6lowpan: check skb_clone() return value in send_mcast_pkt() (git-fixes). - Bluetooth: HIDP: fix missing length checks in hidp_input_report() (git-fixes). - Bluetooth: ISO: drop ISO_END frames received without prior ISO_START (git-fixes). - Bluetooth: ISO: fix UAF in iso_recv_frame (git-fixes). - Bluetooth: ISO: serialize iso_sock_clear_timer with socket lock (git-fixes). - Bluetooth: L2CAP: Fix possible crash on l2cap_ecred_conn_rsp (git-fixes). - Bluetooth: L2CAP: fix chan ref leak in l2cap_chan_timeout() on !conn (git-fixes). - Bluetooth: L2CAP: use chan timer to close channels in cleanup_listen() (git-fixes). - Bluetooth: MGMT: Fix backward compatibility with userspace (git-fixes). - Bluetooth: MGMT: validate Add Extended Advertising Data length (git-fixes). - Bluetooth: MGMT: validate advertising TLV before type checks (git-fixes). - Bluetooth: RFCOMM: hold listener socket in rfcomm_connect_ind() (git-fixes). - Bluetooth: RFCOMM: validate skb length in MCC handlers (git-fixes). - Bluetooth: bnep: Fix UAF read of dev->name (git-fixes). - Bluetooth: bnep: reject short frames before parsing (git-fixes). - Bluetooth: btmtksdio: fix infinite loop in btmtksdio_txrx_work() (git-fixes). - Bluetooth: btusb: Allow firmware re-download when version matches (git-fixes). - Bluetooth: btusb: fix use-after-free on marvell probe failure (git-fixes). - Bluetooth: btusb: fix use-after-free on registration failure (git-fixes). - Bluetooth: btusb: fix wakeup irq devres lifetime (git-fixes). - Bluetooth: btusb: fix wakeup source leak on probe failure (git-fixes). - Bluetooth: eir: Fix stack OOB write when prepending the Flags AD (git-fixes). - Bluetooth: fix UAF in l2cap_sock_cleanup_listen() vs l2cap_conn_del() (git-fixes). - Bluetooth: hci: validate codec capability element length (git-fixes). - Bluetooth: hci_sync: Set HCI_CMD_DRAIN_WORKQUEUE during device close (git-fixes). - Bluetooth: hci_sync: reject oversized Broadcast Announcement prepend (git-fixes). - Bluetooth: hci_uart: fix UAFs and race conditions in close and init paths (git-fixes). - Bluetooth: l2cap: clear chan->ident on ECRED reconfiguration success (git-fixes). - Bluetooth: vhci: validate devcoredump state before side effects (git-fixes). - Drivers: hv: vmbus: Improve the logic of reserving fb_mmio on Gen2 VMs (git-fixes). - HID: quirks: really enable the intended work around for appledisplay (git-fixes). - HID: uclogic: Fix regression of input name assignment (git-fixes). - HID: wacom: Fix OOB write in wacom_hid_set_device_mode() (git-fixes). - Improve compatibility with awk 2.4.0 (bsc#1266214). - Input: atkbd - skip deactivate for HONOR BCC-N's internal keyboard (git-fixes). - Input: atmel_mxt_ts - fix boundary check in mxt_prepare_cfg_mem (git-fixes). - Input: ims-pcu - fix usb_free_coherent() size in ims_pcu_buffers_free() (git-fixes). - Input: usbtouchscreen - clamp NEXIO data_len/x_len to URB buffer size (git-fixes). - Input: xpad - fix out-of-bounds access for Share button (git-fixes). - KVM: SEV: Ignore MMIO requests of length '0' (git-fixes). - KVM: SEV: Ignore Port I/O requests of length '0' (git-fixes). - KVM: SVM: Allow KVM_SET_NESTED_STATE to clear GIF when SVME==0 (git-fixes). - KVM: SVM: Do not set GIF when clearing EFER.SVME (git-fixes). - KVM: SVM: Flush the current TLB when transitioning from xAVIC => x2AVIC (git-fixes). - KVM: SVM: Initialize AVIC VMCB fields if AVIC is enabled with in-kernel APIC (git-fixes). - KVM: SVM: check validity of VMCB controls when returning from SMM (git-fixes). - KVM: X86: Fix array_index_nospec protection in __pv_send_ipi (git-fixes). - KVM: arm64: Discard PC update state on vcpu reset (git-fixes). - KVM: arm64: Guard against NULL vcpu on VHE hyp panic path (git-fixes). - KVM: arm64: PMU: Preserve AArch32 counter low bits (git-fixes). - KVM: arm64: Treat vCPU with pending SError as runnable (git-fixes). - KVM: arm64: Wake-up from WFI when iqrchip is in userspace (git-fixes). - KVM: arm64: vgic-its: Reject restored DTE with out-of-range num_eventid_bits (git-fixes). - KVM: arm64: vgic: Fix IIDR revision field extracted from wrong value (git-fixes). - KVM: nSVM: Always use vmcb01 in VMLOAD/VMSAVE emulation (git-fixes). - KVM: nSVM: Ensure AVIC is inhibited when restoring a vCPU to guest mode (git-fixes). - KVM: nSVM: Mark all of vmcb02 dirty when restoring nested state (git-fixes). - KVM: nSVM: Set exit_code_hi to -1 when synthesizing SVM_EXIT_ERR (failed VMRUN) (git-fixes). - KVM: nSVM: Use vcpu->arch.cr2 when updating vmcb12 on nested #VMEXIT (git-fixes). - KVM: x86/mmu: Fix UBSAN warning when reading nx_huge_pages parameter (git-fixes). - KVM: x86: Fix Xen hypercall tracepoint argument assignment (git-fixes). - PM: sleep: Use complete() in device_pm_sleep_init() (git-fixes). - RDMA/efa: Check stored completion CTX command ID with received one (git-fixes) - RDMA/efa: Extend admin timeout error print (git-fixes) - RDMA/efa: Fix possible deadlock (git-fixes) - RDMA/efa: Improve admin completion context state machine (git-fixes) - RDMA/mana_ib: Report max_msg_sz in mana_ib_query_port (git-fixes). - wicked test: Added missing locking in backport (bsc#1267732). - USB: cdc-acm: Fix bit overlap and move quirk definitions to header (git-fixes). - USB: serial: belkin_sa: validate interrupt status length (git-fixes). - USB: serial: cypress_m8: validate interrupt packet headers (git-fixes). - USB: serial: io_ti: fix heap overflow in build_i2c_fw_hdr() (git-fixes). - USB: serial: io_ti: fix heap overflow in get_manuf_info() (git-fixes). - USB: serial: keyspan: fix missing indat transfer sanity check (git-fixes). - USB: serial: kl5kusb105: fix bulk-out buffer overflow (git-fixes). - USB: serial: mct_u232: fix missing interrupt-in transfer sanity check (git-fixes). - USB: serial: mxuport: fix memory corruption with small endpoint (git-fixes). - USB: serial: omninet: fix memory corruption with small endpoint (git-fixes). - USB: serial: option: add missing RSVD(5) flag for Rolling RW135R-GL (git-fixes). - USB: serial: safe_serial: fix memory corruption with small endpoint (git-fixes). - X.509: Fix validation of ASN.1 certificate header (git-fixes). - add bugnumber to existing mana_ib change (bsc#1267682) - agp/amd64: Fix broken error propagation in agp_amd64_probe() (git-fixes). - arm64: tlb: Allow XZR argument to TLBI ops (git-fixes) - arm64: tlb: Optimize ARM64_WORKAROUND_REPEAT_TLBI (git-fixes) - auxdisplay: line-display: fix OOB read on zero-length message_store() (git-fixes). - batman-adv: bla: annotate lasttime access with READ/WRITE_ONCE (git-fixes). - batman-adv: bla: fix report_work leak on backbone_gw purge (git-fixes). - batman-adv: clear current gateway during teardown (git-fixes). - batman-adv: dat: handle forward allocation error (git-fixes). - batman-adv: fix batadv_skb_is_frag() kernel-doc (git-fixes). - batman-adv: fix fragment reassembly length accounting (git-fixes). - batman-adv: fix tp_meter counter underflow during shutdown (git-fixes). - batman-adv: frag: disallow unicast fragment in fragment (git-fixes). - batman-adv: tp_meter: add only finished tp_vars to lists (git-fixes). - batman-adv: tp_meter: avoid divide-by-zero for dec_cwnd (git-fixes). - batman-adv: tp_meter: avoid use of uninit sender vars (git-fixes). - batman-adv: tp_meter: avoid window underflow (git-fixes). - batman-adv: tp_meter: fix fast recovery precondition (git-fixes). - batman-adv: tp_meter: handle seqno wrap-around for fast recovery detection (git-fixes). - batman-adv: tp_meter: initialize dec_cwnd explicitly (git-fixes). - batman-adv: tp_meter: initialize dup_acks explicitly (git-fixes). - batman-adv: tp_meter: keep unacked list in ascending ordered (git-fixes). - batman-adv: tt: fix negative last_changeset_len (git-fixes). - batman-adv: tt: fix negative tt_buff_len (git-fixes). - bcache: fix uninitialized closure object (git-fixes). - bnxt_en: Fix NULL pointer dereference (bsc#1268307). - comedi: comedi_test: Fix limiting of convert_arg in waveform_ai_cmdtest() (git-fixes). - comedi: comedi_test: fix check for valid scan_begin_src in waveform_ai_cmdtest() (git-fixes). - crypto: af_alg - Cap AEAD AD length to 0x80000000 (git-fixes). - crypto: amlogic - avoid double cleanup in meson_crypto_probe() (git-fixes). - crypto: asymmetric_keys - fix OOB read in pefile_digest_pe_contents (git-fixes). - crypto: atmel-sha204a - fix blocking and non-blocking rng logic (git-fixes). - crypto: cavium/cpt - fix DMA cleanup using wrong loop index (git-fixes). - crypto: ccp - Fix snp_filter_reserved_mem_regions() off-by-one (git-fixes). - crypto: ccp - Treat zero-length cert chain as query for blob lengths (git-fixes). - crypto: drbg - Fix drbg_max_addtl() on 64-bit kernels (git-fixes). - crypto: drbg - Fix returning success on failure in CTR_DRBG (git-fixes). - crypto: drbg - Fix the fips_enabled priority boost (git-fixes). - crypto: ecc - Fix carry overflow in vli multiplication (git-fixes). - crypto: ecrdsa - fix unknown OID check in ecrdsa_param_curve (git-fixes). - crypto: hisilicon/qm - disable error report before flr (git-fixes). - crypto: marvell/octeontx - fix DMA cleanup using wrong loop index (git-fixes). - crypto: pcrypt - restore callback for non-parallel fallback (git-fixes). - crypto: qat - protect service table iterations with service_lock (git-fixes). - crypto: qat - validate RSA CRT component lengths (git-fixes). - crypto: rng - Free default RNG on module exit (git-fixes). - device property: set fwnode->secondary to NULL in fwnode_init() (git-fixes). - driver core: reject devices with unregistered buses (git-fixes). - driver core: use READ_ONCE() for dev->driver in dev_has_sync_state() (git-fixes). - drivers/base/memory: fix memory block reference leak in poison accounting (git-fixes). - drm/amd/display: Add missing kdoc for ALLM parameters (git-fixes). - drm/amd/display: Clamp HDMI HDCP2 rx_id_list read to buffer size (git-fixes). - drm/amd/display: Fix NULL deref and buffer over-read in SDP debugfs (git-fixes). - drm/amd/display: Fix integer overflow in bios_get_image() (stable-fixes). - drm/amd/display: Reject gpio_bitshift >= 32 in bios_parser_get_gpio_pin_info() (git-fixes). - drm/amd/display: Use krealloc_array() in dal_vector_reserve() (git-fixes). - drm/amd/display: Validate GPIO pin LUT table size before iterating (stable-fixes). - drm/amd/display: Validate payload length and link_index in dc_process_dmub_aux_transfer_async (stable-fixes). - drm/amd/pm/si: Disregard vblank time when no displays are connected (git-fixes). - drm/amdgpu/uvd3.1: Do not validate the firmware when already validated (git-fixes). - drm/amdgpu/vce2: Fix VCE 2 firmware size and offsets (git-fixes). - drm/amdgpu/vce3: Fix VCE 3 firmware size and offsets (git-fixes). - drm/amdgpu: fix integer overflow in amdgpu_gem_align_pitch() (git-fixes). - drm/amdgpu: fix spelling typos (stable-fixes). - drm/amdgpu: set sub_block_index for mca ras sub-blocks (git-fixes). - drm/amdkfd: Fix buffer overflow in SDMA queue checkpoint/restore on GFX11 (git-fixes). - drm/amdkfd: Validate CRIU-restored IDs before idr_alloc (git-fixes). - drm/amdkfd: fix NULL dereference in get_queue_ids() (git-fixes). - drm/bridge: cdns-dsi: Replace deprecated UNIVERSAL_DEV_PM_OPS() (git-fixes). - drm/bridge: chipone-icn6211: use devm_drm_bridge_add in i2c probe (git-fixes). - drm/bridge: it66121: acquire reset GPIO in probe (git-fixes). - drm/bridge: megachips: remove bridge when irq request fails (git-fixes). - drm/dp/mst: fix OOB reads in remote DPCD/I2C sideband reply parsers (git-fixes). - drm/dp/mst: fix OOB reads on 2-byte fields in sideband reply parsers (git-fixes). - drm/dp/mst: fix buffer overflows in sideband chunk accumulation (git-fixes). - drm/hisilicon/hibmc: move display contrl config to hibmc_probe() (git-fixes). - drm/hisilicon/hibmc: use clock to look up the PLL value (git-fixes). - drm/hyperv: use VMBUS_RING_SIZE() (git-fixes). - drm/hyperv: validate VMBus packet size in receive callback (git-fixes). - drm/hyperv: validate resolution_count and fix WIN8 fallback (git-fixes). - drm/i915/gem: Fix phys BO pread/pwrite with offset (git-fixes). - drm/i915: Extract intel_dbuf_mdclk_cdclk_ratio_update() (stable-fixes). - drm/i915: Fix potential UAF in TTM object purge (git-fixes). - drm/i915: Loop over all active pipes in intel_mbus_dbox_update (stable-fixes). - drm/imx: Fix three kernel-doc warnings in dcss-scaler.c (git-fixes). - drm/msm/dp: Fix the ISR_* enum values (git-fixes). - drm/msm/dp: fix HPD state status bit shift value (git-fixes). - drm/msm/dsi: do not dump registers past the mapped region (git-fixes). - drm/msm/snapshot: fix dumping of the unaligned regions (git-fixes). - drm/nouveau/bios: specify correct display fuse register for Ampere and Ada (git-fixes). - drm/radeon/evergreen_cs: Add missing NULL prefix check in surface check (git-fixes). - drm/radeon: fix integer overflow in radeon_align_pitch() (git-fixes). - drm/radeon: fix memory leak in radeon_ring_restore() on lock failure (git-fixes). - drm/rockchip: cdn-dp: add missing check in cdn_dp_config_video() (git-fixes). - drm/tegra: Fix iommu_map_sgtable() return value check (git-fixes). - drm/tegra: dc: Fix device node reference leak in tegra_dc_has_output() (git-fixes). - drm/tidss: Drop extra drm_mode_config_reset() call (git-fixes). - drm/tidss: Fix missing drm_bridge_add() call (git-fixes). - drm/vc4: fix krealloc() memory leak (git-fixes). - drm/virtio: Fix driver removal with disabled KMS (git-fixes). - drm/virtio: fix dma_fence refcount leak on error in virtio_gpu_dma_fence_wait() (git-fixes). - drm/virtio: use uninterruptible resv lock for plane updates (git-fixes). - efi: Allocate runtime workqueue before ACPI init (git-fixes). - ethtool: provide customized dim profile management (bsc#1261256). - fbdev: broadsheetfb: fix potential memory leak in broadsheetfb_probe() (git-fixes). - fbdev: hecubafb: fix potential memory leak in hecubafb_probe() (git-fixes). - fbdev: i740fb: fix potential memory leak in i740fb_probe() (git-fixes). - fbdev: metronomefb: fix potential memory leak in metronomefb_probe() (git-fixes). - fbdev: modedb: Fix misaligned fields in the 1920x1080-60 mode (git-fixes). - fbdev: nvidia: fix potential memory leak in nvidiafb_probe() (git-fixes). - fbdev: radeon: fix potential memory leak in radeonfb_pci_register() (git-fixes). - fbdev: s3fb: fix potential memory leak in s3_pci_probe() (git-fixes). - fbdev: sm501fb: Fix buffer errors in OF binding code (git-fixes). - fbdev: sm712: Fix operator precedence in big_swap macro (git-fixes). - fbdev: tdfxfb: fix potential memory leak in tdfxfb_probe() (git-fixes). - fbdev: tridentfb: fix potential memory leak in trident_pci_probe() (git-fixes). - fbdev: uvesafb: fix potential memory leak in uvesafb_probe() (git-fixes). - fbdev: vesafb: fix memory leak in vesafb_probe() (git-fixes). - firmware: arm_ffa: Check for NULL FF-A ID table while driver registration (git-fixes). - firmware: arm_ffa: Skip free_pages on RX buffer alloc failure (git-fixes). - firmware: arm_scmi: Fix OOB in scmi_power_name_get() (git-fixes). - firmware: arm_scmi: Read sensor config as 32-bit value (git-fixes). - firmware_loader: Fix recursive lock in device_cache_fw_images() (git-fixes). - firmware_loader: fix device reference leak in firmware_upload_register() (git-fixes). - gpio: mvebu: fix NULL pointer dereference in suspend/resume (git-fixes). - gpu: host1x: Allow entries in BO caches to be freed (git-fixes). - gpu: host1x: Fix iommu_map_sgtable() return value check (git-fixes). - hv: utils: handle and propagate errors in kvp_register (git-fixes). - hwmon: (it87) Clamp negative values to zero in set_fan() (git-fixes). - hwmon: (pmbus/adm1266) bounce blackbox records through a protocol-sized buffer (git-fixes). - hwmon: (pmbus/adm1266) cap PDIO scan in get_multiple at ADM1266_PDIO_NR (git-fixes). - hwmon: (pmbus/adm1266) do not clobber GPIO bits before PDIO read in get_multiple (git-fixes). - hwmon: (pmbus/adm1266) include PEC byte in pmbus_block_xfer read buffer (git-fixes). - hwmon: (pmbus/adm1266) include adapter number in GPIO line label (git-fixes). - hwmon: (pmbus/adm1266) register the gpio_chip after pmbus_do_probe() (git-fixes). - hwmon: (pmbus/adm1266) register the nvmem device after pmbus_do_probe() (git-fixes). - hwmon: (pmbus/adm1266) reject implausible blackbox record_count (git-fixes). - hwmon: (pmbus/adm1266) reject short block-read responses in the GPIO accessors (git-fixes). - hwmon: (pmbus/adm1266) seed timestamp from the real-time clock (git-fixes). - hwmon: (pmbus/adm1266) widen blackbox-info buffer to I2C_SMBUS_BLOCK_MAX (git-fixes). - hwrng: jh7110 - fix refcount leak in starfive_trng_read() (git-fixes). - hwrng: virtio: clamp device-reported used.len at copy_data() (git-fixes). - hyperv: Clean up and fix the guest ID comment in hvgdk.h (git-fixes). - i2c: core: fix irq domain leak on adapter registration failure (git-fixes). - i2c: qcom-cci: Fix NULL pointer dereference in cci_remove() (git-fixes). - i2c: stm32f7: fix timing computation ignoring i2c-analog-filter (git-fixes). - i2c: tegra: Fix NOIRQ suspend/resume (git-fixes). - iio: adc: viperboard: Fix error handling in vprbrd_iio_read_raw (git-fixes). - iio: adc: xilinx-xadc: Fix sequencer mode in postdisable for dual mux (git-fixes). - iio: buffer: hw-consumer: fix use-after-free in error path (git-fixes). - iio: dac: ad5686: acquire lock when doing powerdown control (git-fixes). - iio: dac: ad5686: fix input raw value check (git-fixes). - iio: dac: max5821: fix return value check in powerdown sync (git-fixes). - iio: gyro: itg3200: fix i2c read into the wrong stack location (git-fixes). - iio: imu: st_lsm6dsx: fix stack leak in tagged FIFO buffer (git-fixes). - iio: light: cm3323: fix reg_conf not being initialized correctly (git-fixes). - iio: magnetometer: st_magn: fix default DRDY pin selection for LIS2MDL (git-fixes). - iio: ssp_sensors: cancel delayed work_refresh on remove (git-fixes). - iio: temperature: tsys01: fix broken PROM checksum validation (git-fixes). - kabi: arm64: module: Update missing .init.text.ftrace_trampoline section message (bsc#1265579 bsc#1265170). - linux/dim: move useful macros to .h file (bsc#1261256). - misc: fastrpc: Fix NULL pointer dereference in rpmsg callback (git-fixes). - misc: fastrpc: fix DMA address corruption due to find_vma misuse (git-fixes). - misc: fastrpc: fix use-after-free of fastrpc_user in workqueue context (git-fixes). - misc: fastrpc: fix use-after-free race in fastrpc_map_create (git-fixes). - mmc: core: Fix host controller programming for fixed driver type (git-fixes). - mmc: litex_mmc: Set mandatory idle clocks before CMD0 (git-fixes). - mmc: litex_mmc: Use DIV_ROUND_UP for more accurate clock calculation (git-fixes). - mmc: renesas_sdhi: Add OF entry for RZ/G2H SoC (git-fixes). - mmc: sdhci: add signal voltage switch in sdhci_resume_host (git-fixes). - net: ethtool: add ethtool COALESCE_RX_CQE_FRAMES/NSECS (bsc#1261256). - net: gro: do not merge zcopy skbs (git-fixes). - net: mana: Add NULL guards in teardown path to prevent panic on attach failure (git-fixes). - net: mana: Add ethtool counters for RX CQEs in coalesced type (bsc#1261256). - net: mana: Add support for RX CQE Coalescing (bsc#1261256). - net: mana: Expose hardware diagnostic info via debugfs (bsc#1266414). - net: mana: Fix TOCTOU double-fetch of hwc_msg_id from DMA buffer (bsc#1265928). - net: mana: Skip redundant detach on already-detached port (git-fixes). - net: mana: Use kvmalloc for large RX queue and buffer allocations (bsc#1266765). - net: mana: Use per-queue allocation for tx_qp to reduce allocation size (bsc#1266765). - net: mana: hardening: Reject zero max_num_queues from GDMA_QUERY_MAX_RESOURCES (git-fixes). - net: mana: validate rx_req_idx to prevent out-of-bounds array access (bsc#1266402). - net: wwan: iosm: fix potential memory leaks in ipc_imem_init() (git-fixes). - phy: marvell: mvebu-a3700-utmi: fix incorrect USB2_PHY_CTRL register access (git-fixes). - platform/x86: adv_swbutton: Check ACPI_HANDLE() against NULL (git-fixes). - platform/x86: hp_accel: Check ACPI_COMPANION() against NULL (git-fixes). - platform/x86: intel-hid: Check ACPI_HANDLE() against NULL (git-fixes). - platform/x86: intel-vbtn: Check ACPI_HANDLE() against NULL (git-fixes). - r8152: fix incorrect register write to USB_UPHY_XTAL (git-fixes). - rpm/check-for-config-changes: ignore Rust-related configs (bsc#1258538). - rpm/mkspec: Conditionally set Rust BuildReqs (bsc#1258538). - rpm: Add BuildRequires for Rust enablement (bsc#1258538). - s390/barrier: Make array_index_mask_nospec() __always_inline (bsc#1263068). - s390/entry: Scrub r12 register on kernel entry (bsc#1263068). - s390/syscalls: Add spectre boundary for syscall dispatch table (bsc#1263068). - sched/rt: Skip currently executing CPU in rto_next_cpu() (bsc#1262649). - security/keys: fix missed RCU read section on lookup (stable-fixes). - serial: fsl_lpuart: fix rx buffer and DMA map leaks in start_rx_dma (git-fixes). - serial: qcom-geni: fix UART_RX_PAR_EN bit position (git-fixes). - slimbus: qcom-ngd-ctrl: fix OF node refcount (git-fixes). - smb: client: correctly handle ErrorContextData as a flexible array (git-fixes) - smb: client: reject userspace cifs.spnego descriptions (bsc#1266238). - soc: fsl: qe: panic on ioremap() failure in qe_reset() (git-fixes). - soc: ti: k3-ringacc: Fix access mode for k3_ringacc_ring_pop_tail_io/proxy (git-fixes). - spi: at91-usart: drop dead runtime pm support (git-fixes). - spi: ep93xx: fix double-free of zeropage on DMA setup failure (git-fixes). - spi: fsl-lpspi: replace dmaengine_terminate_all() with dmaengine_terminate_sync() (git-fixes). - spi: fsl-lpspi: terminate the RX channel on TX prepare failure path (git-fixes). - spi: meson-spifc: fix runtime PM leak on remove (git-fixes). - spi: mtk-snfi: Fix resource leak in mtk_snand_read_page_cache() (git-fixes). - spi: sprd: fix error pointer deref after DMA setup failure (git-fixes). - spi: st-ssc4: switch to use modern name (stable-fixes). - spi: ti-qspi: fix use-after-free after DMA setup failure (git-fixes). - spi: xilinx: use FIFO occupancy register to determine buffer size (git-fixes). - string: add mem_is_zero() helper to check if memory area is all zeros (stable-fixes). - thermal: hwmon: Fix critical temperature attribute removal (git-fixes). - thunderbolt: Bound root directory content to block size (git-fixes). - thunderbolt: Clamp XDomain response data copy to allocation size (git-fixes). - thunderbolt: Limit XDomain response copy to actual frame size (git-fixes). - thunderbolt: Reject zero-length property entries in validator (git-fixes). - thunderbolt: Validate XDomain request packet size before type cast (git-fixes). - thunderbolt: property: Reject dir_len < 4 to prevent size_t underflow (git-fixes). - thunderbolt: property: Reject u32 wrap in tb_property_entry_valid() (git-fixes). - tracing: Switch trace_osnoise.c code over to use guard() and __free() (bsc#1262634). - tty: serial: pch_uart: add check for dma_alloc_coherent() (git-fixes). - usb: cdns3: gadget: fix request skipping after clearing halt (git-fixes). - usb: cdns3: plat: fix unbalanced pm_runtime_forbid() call permanently leaks the runtime PM usage counter across bind/unbind cycles (git-fixes). - usb: chipidea: core: convert ci_role_switch to local variable (git-fixes). - usb: dwc2: Fix use after free in debug code (git-fixes). - usb: gadget: composite: fix integer underflow in WebUSB GET_URL handling (git-fixes). - usb: gadget: dummy_hcd: Reject hub port requests for non-existent ports (git-fixes). - usb: gadget: f_fs: copy only received bytes on short ep0 read (git-fixes). - usb: gadget: f_hid: fix device reference leak in hidg_alloc() (git-fixes). - usb: gadget: net2280: Fix double free in probe error path (git-fixes). - usb: usbtmc: check URB actual_length for interrupt-IN notifications (git-fixes). - usb: usbtmc: reject interrupt endpoints with small wMaxPacketSize (git-fixes). - usbip: vudc: Fix use after free bug in vudc_remove due to race condition (git-fixes). - watchdog: apple: Add 'apple,t8103-wdt' compatible (git-fixes). - watchdog: sp5100_tco: Use EFCH MMIO for newer Hygon FCH (git-fixes). - watchdog: sprd_wdt: Remove redundant sprd_wdt_disable() on register failure (git-fixes). - watchdog: unregister PM notifier on watchdog unregister (git-fixes). - wifi: ath10k: skip WMI and beacon transmission when device is wedged (git-fixes). - wifi: ath11k: clear shared SRNG pointer state on restart (git-fixes). - wifi: ath11k: fix error path leak in ath11k_tm_cmd_wmi_ftm() (git-fixes). - wifi: ath11k: fix error path leaks in some WMI WOW calls (git-fixes). - wifi: ath11k: fix error path leaks in some WMI calls (git-fixes). - wifi: ath11k: fix peer resolution on rx path when peer_id=0 (git-fixes). - wifi: ath11k: fix use after free in ath11k_dp_rx_msdu_coalesce() (git-fixes). - wifi: ath11k: fix warning when unbinding (git-fixes). - wifi: ath9k: fix OOB access from firmware tx status queue ID (git-fixes). - wifi: cfg80211: advance loop vars in cfg80211_merge_profile() (git-fixes). - wifi: cfg80211: fix grammar in MLO group key error message (git-fixes). - wifi: mac80211: consume only present negotiated TTLM maps (git-fixes). - wifi: mac80211: fix monitor mode frame capture for real chanctx drivers (git-fixes). - wifi: mac80211: limit injected antenna index in ieee80211_parse_tx_radiotap (git-fixes). - wifi: mt76: fix argument to ieee80211_is_first_frag() (git-fixes). - wifi: mt76: mt7915: fix potential tx_retries underflow (git-fixes). - wifi: mt76: mt7921: fix potential tx_retries underflow (git-fixes). - wifi: mt76: mt7925: clean up DMA on probe failure (git-fixes). - wifi: mt76: mt7925: fix potential tx_retries underflow (git-fixes). - wifi: mt76: mt7996: fix potential tx_retries underflow (git-fixes). - wifi: nl80211: reject oversized EMA RNR lists (git-fixes). - wifi: rtlwifi: rtl8821ae: Fix C2H bit location in RX descriptor (git-fixes). - wifi: rtw88: fix OOB read from firmware RX descriptor exceeding DMA buffer (git-fixes). - wifi: rtw88: increase TX report timeout to fix race condition (git-fixes). - wifi: rtw88: usb: fix memory leaks on USB write failures (git-fixes). - wifi: rtw89: Correct data type for scan index to avoid infinite loop (git-fixes). - wifi: wcn36xx: fix OOB read from firmware count in PRINT_REG_INFO indication (git-fixes). - wifi: wcn36xx: fix OOB read from short trigger BA firmware response (git-fixes). - wifi: wcn36xx: fix heap overflow from oversized firmware HAL response (git-fixes). The following package changes have been done: - glibc-2.38-slfo.1.1_9.1 updated - libopenssl3-3.1.4-slfo.1.1_11.1 updated - SL-Micro-release-6.1-slfo.1.12.49 updated - krb5-1.21.3-slfo.1.1_5.1 updated - glibc-locale-base-2.38-slfo.1.1_9.1 updated - kernel-rt-6.4.0-48.1 updated - container:SL-Micro-container-2.2.1-7.129 updated From sle-container-updates at lists.suse.com Wed Jul 1 08:31:17 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 1 Jul 2026 10:31:17 +0200 (CEST) Subject: SUSE-IU-2026:5205-1: Recommended update of suse/sl-micro/6.2/kvm-os-container Message-ID: <20260701083117.0F313FF02@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.2/kvm-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5205-1 Image Tags : suse/sl-micro/6.2/kvm-os-container:2.3.1 , suse/sl-micro/6.2/kvm-os-container:2.3.1-8.32 , suse/sl-micro/6.2/kvm-os-container:latest Image Release : 8.32 Severity : moderate Type : recommended References : 1256466 ----------------------------------------------------------------- The container suse/sl-micro/6.2/kvm-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1103 Released: Mon Jun 29 10:05:18 2026 Summary: Recommended update for fuse3 Type: recommended Severity: moderate References: 1256466 This update for fuse3 fixes the following issues: - Add dependency from libfuse3-4 to fusermount3 program (bsc#1256466) The following package changes have been done: - libfuse3-3-3.16.2-160000.3.1 updated - fuse3-3.16.2-160000.3.1 added - container:suse-sl-micro-6.2-base-os-container-latest-2ecf32f8c1e5ed6f6c1279d0cdea66ab894c72f3f1d0cdaa2f26385f912843d7-0 updated From sle-container-updates at lists.suse.com Wed Jul 1 08:40:20 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 1 Jul 2026 10:40:20 +0200 (CEST) Subject: SUSE-IU-2026:5221-1: Recommended update of suse/sl-micro/6.2/rt-os-container Message-ID: <20260701084020.8E0B6FF21@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.2/rt-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5221-1 Image Tags : suse/sl-micro/6.2/rt-os-container:2.3.1 , suse/sl-micro/6.2/rt-os-container:2.3.1-7.41 , suse/sl-micro/6.2/rt-os-container:latest Image Release : 7.41 Severity : moderate Type : recommended References : 1256466 ----------------------------------------------------------------- The container suse/sl-micro/6.2/rt-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1103 Released: Mon Jun 29 10:05:18 2026 Summary: Recommended update for fuse3 Type: recommended Severity: moderate References: 1256466 This update for fuse3 fixes the following issues: - Add dependency from libfuse3-4 to fusermount3 program (bsc#1256466) The following package changes have been done: - libfuse3-3-3.16.2-160000.3.1 updated - fuse3-3.16.2-160000.3.1 added - container:suse-sl-micro-6.2-baremetal-os-container-latest-6aef85f99d3fdf1709012bcfa0f6a636845927e241bfc9facf0282b0c9ea6719-0 updated From sle-container-updates at lists.suse.com Wed Jul 1 10:03:11 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 1 Jul 2026 12:03:11 +0200 (CEST) Subject: SUSE-CU-2026:6645-1: Security update of suse/manager/4.3/proxy-httpd Message-ID: <20260701100311.BC600FF22@maintenance.suse.de> SUSE Container Update Advisory: suse/manager/4.3/proxy-httpd ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6645-1 Container Tags : suse/manager/4.3/proxy-httpd:4.3.18 , suse/manager/4.3/proxy-httpd:4.3.18.9.79.15 , suse/manager/4.3/proxy-httpd:latest Container Release : 9.79.15 Severity : important Type : security References : 1207327 1208708 1214357 1263935 1263950 1263951 1263952 1263953 1263954 1263955 1263956 1263957 1264150 1264163 1267503 1267955 1267956 1267962 1267963 1267965 1267969 1267970 1267971 1267972 1267976 1267977 1267978 690734 CVE-2006-20001 CVE-2021-44224 CVE-2021-44790 CVE-2022-22719 CVE-2022-22720 CVE-2022-22721 CVE-2022-23943 CVE-2022-26377 CVE-2022-28614 CVE-2022-28615 CVE-2022-29404 CVE-2022-30522 CVE-2022-30556 CVE-2022-31813 CVE-2022-36760 CVE-2022-37436 CVE-2023-25690 CVE-2023-27522 CVE-2023-31122 CVE-2023-38709 CVE-2023-45802 CVE-2024-24795 CVE-2024-27316 CVE-2024-38473 CVE-2024-38474 CVE-2024-38475 CVE-2024-38476 CVE-2024-38477 CVE-2024-39573 CVE-2024-39884 CVE-2024-40725 CVE-2024-42516 CVE-2024-43204 CVE-2024-47252 CVE-2025-23048 CVE-2025-49630 CVE-2025-49812 CVE-2025-53020 CVE-2025-55753 CVE-2025-58098 CVE-2025-65082 CVE-2025-66200 CVE-2026-23918 CVE-2026-24072 CVE-2026-28780 CVE-2026-29167 CVE-2026-29168 CVE-2026-29169 CVE-2026-29170 CVE-2026-33006 CVE-2026-33007 CVE-2026-33523 CVE-2026-33857 CVE-2026-34032 CVE-2026-34059 CVE-2026-34355 CVE-2026-34356 CVE-2026-42535 CVE-2026-42536 CVE-2026-43951 CVE-2026-44119 CVE-2026-44185 CVE-2026-44186 CVE-2026-44631 CVE-2026-48913 CVE-2026-49975 ----------------------------------------------------------------- The container suse/manager/4.3/proxy-httpd was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2686-1 Released: Tue Jun 30 00:35:37 2026 Summary: Security update for apache2 Type: security Severity: important References: 1207327,1208708,1214357,1263935,1263950,1263951,1263952,1263953,1263954,1263955,1263956,1263957,1264150,1264163,1267503,1267955,1267956,1267962,1267963,1267965,1267969,1267970,1267971,1267972,1267976,1267977,1267978,690734,CVE-2006-20001,CVE-2021-44224,CVE-2021-44790,CVE-2022-22719,CVE-2022-22720,CVE-2022-22721,CVE-2022-23943,CVE-2022-26377,CVE-2022-28614,CVE-2022-28615,CVE-2022-29404,CVE-2022-30522,CVE-2022-30556,CVE-2022-31813,CVE-2022-36760,CVE-2022-37436,CVE-2023-25690,CVE-2023-27522,CVE-2023-31122,CVE-2023-38709,CVE-2023-45802,CVE-2024-24795,CVE-2024-27316,CVE-2024-38473,CVE-2024-38474,CVE-2024-38475,CVE-2024-38476,CVE-2024-38477,CVE-2024-39573,CVE-2024-39884,CVE-2024-40725,CVE-2024-42516,CVE-2024-43204,CVE-2024-47252,CVE-2025-23048,CVE-2025-49630,CVE-2025-49812,CVE-2025-53020,CVE-2025-55753,CVE-2025-58098,CVE-2025-65082,CVE-2025-66200,CVE-2026-23918,CVE-2026-24072,CVE-2026-28780,CVE-2026-29167,CVE-2026-29168,CVE-2026-29169,CVE-2026-29170,CVE-2026-33006,CVE-2026-330 07,CVE-2026-33523,CVE-2026-33857,CVE-2026-34032,CVE-2026-34059,CVE-2026-34355,CVE-2026-34356,CVE-2026-42535,CVE-2026-42536,CVE-2026-43951,CVE-2026-44119,CVE-2026-44185,CVE-2026-44186,CVE-2026-44631,CVE-2026-48913,CVE-2026-49975 This update for apache2 fixes the following issues - CVE-2026-23918: http2: double free and possible RCE on early reset (bsc#1263957). - CVE-2026-24072: mod_rewrite elevation of privileges via ap_expr (bsc#1263935). - CVE-2026-28780: heap buffer overflow in `mod_proxy_ajp` via `ajp_msg_check_header()` (bsc#1264163). - CVE-2026-29167: mod_ldap per-dir use-after-free (bsc#1267976). - CVE-2026-29168: allocation of resources without limits in `mod_md` via OCSP response (bsc#1264150). - CVE-2026-29169: NULL pointer dereference in `mod_dav_lock` allows server crash via malicious requests (bsc#1263956). - CVE-2026-29170: mod_proxy_ftp XSS (bsc#1267977). - CVE-2026-33006: `mod_auth_digest` timing attack allows bypass of Digest authentication (bsc#1263955). - CVE-2026-33007: NULL pointer dereference in `mod_authn_socache` allows unauthenticated remote user to crash a child processes (bsc#1263954). - CVE-2026-33523: HTTP response splitting forwarding malicious status line (bsc#1263953). - CVE-2026-33857: off-by-one OOB reads in AJP getter functions (bsc#1263952). - CVE-2026-34032: heap buffer overread in `mod_proxy_ajp` due to missing null-termination check (bsc#1263951). - CVE-2026-34059: heap buffer overread and memory disclosure via `ajp_parse_data()` (bsc#1263950). - CVE-2026-34355: mod_proxy_html buffer overflow (bsc#1267978). - CVE-2026-34356: malicious backend servers can lead to a heap-based buffer overflow (bsc#1267955). - CVE-2026-42535: malicious path manipulation can lead to child process crashes (bsc#1267956). - CVE-2026-42536: processing untrusted content can lead to a heap-based buffer overflow (bsc#1267962). - CVE-2026-43951: out-of-bound read in `merge_response_headers` can cause crash (bsc#1267963). - CVE-2026-44119: improper privilege management can lead to an unauthorized read (bsc#1267965). - CVE-2026-44185: Stack Buffer Over-Read in mod_ssl OCSP `send_request` (bsc#1267969). - CVE-2026-44186: responses from an attacker-controlled FTP backend can lead to resource exhaustion and a denial of service (bsc#1267970). - CVE-2026-44631: crafted regular expression can lead to a buffer underwrite (bsc#1267971). - CVE-2026-48913: file handle exhaustion during request processing in mod_http2 can lead to a use-after-free (bsc#1267972). - CVE-2026-49975: Fix cookie header accounting against LimitRequestFields (bsc#1267503). Non security issue: - Update to 2.4.66 (jsc#PED-16334). The following package changes have been done: - apache2-utils-2.4.66-150400.6.57.1 updated - apache2-2.4.66-150400.6.57.1 updated - apache2-prefork-2.4.66-150400.6.57.1 updated From sle-container-updates at lists.suse.com Wed Jul 1 11:15:39 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 1 Jul 2026 13:15:39 +0200 (CEST) Subject: SUSE-CU-2026:6649-1: Security update of private-registry/1.2/harbor-exporter Message-ID: <20260701111539.DE7CFFF21@maintenance.suse.de> SUSE Container Update Advisory: private-registry/1.2/harbor-exporter ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6649-1 Container Tags : private-registry/1.2/harbor-exporter:1.2.0 , private-registry/1.2/harbor-exporter:1.2.0-1.41 , private-registry/1.2/harbor-exporter:latest Container Release : 1.41 Severity : important Type : security References : 1266340 1266341 1266342 1266343 1266345 1266349 1266350 1266351 1266352 1266353 1266355 1266356 1266357 CVE-2026-34180 CVE-2026-34181 CVE-2026-34183 CVE-2026-42766 CVE-2026-42767 CVE-2026-42768 CVE-2026-42769 CVE-2026-42770 CVE-2026-45445 CVE-2026-45446 CVE-2026-45447 CVE-2026-7383 CVE-2026-9076 ----------------------------------------------------------------- The container private-registry/1.2/harbor-exporter was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2648-1 Released: Fri Jun 26 13:05:57 2026 Summary: Security update for openssl-3 Type: security Severity: important References: 1266340,1266341,1266342,1266343,1266345,1266349,1266350,1266351,1266352,1266353,1266355,1266356,1266357,CVE-2026-34180,CVE-2026-34181,CVE-2026-34183,CVE-2026-42766,CVE-2026-42767,CVE-2026-42768,CVE-2026-42769,CVE-2026-42770,CVE-2026-45445,CVE-2026-45446,CVE-2026-45447,CVE-2026-7383,CVE-2026-9076 This update for openssl-3 fixes the following issues - CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion (bsc#1266340). - CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption (bsc#1266341). - CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing (bsc#1266342). - CVE-2026-34181: PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys (bsc#1266343). - CVE-2026-34183: Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler (bsc#1266345). - CVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryption (bsc#1266349). - CVE-2026-42767: NULL Pointer Dereference in CRMF EncryptedValue Decryption (bsc#1266350). - CVE-2026-42768: Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt() (bsc#1266351). - CVE-2026-42769: Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate (bsc#1266352). - CVE-2026-42770: FFC-DH Peer Validation Uses Attacker-Supplied q (bsc#1266353). - CVE-2026-45445: AES-OCB IV Ignored on EVP_Cipher() Path (bsc#1266355). - CVE-2026-45446: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes (bsc#1266356). - CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357). The following package changes have been done: - harbor-exporter-2.15.1-150700.1.14 updated - libopenssl3-3.2.3-150700.5.36.1 updated - openssl-3-3.2.3-150700.5.36.1 updated - system-user-harbor-2.15.1-150700.1.14 updated - container:suse-sle15-15.7-d2aab68ae05470b62bbe38c4ca03ff5bf72b405197482ed96e34dd0087d7bde2-0 updated From sle-container-updates at lists.suse.com Wed Jul 1 11:15:49 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 1 Jul 2026 13:15:49 +0200 (CEST) Subject: SUSE-CU-2026:6650-1: Security update of private-registry/1.2/harbor-portal Message-ID: <20260701111549.1D6B1FF21@maintenance.suse.de> SUSE Container Update Advisory: private-registry/1.2/harbor-portal ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6650-1 Container Tags : private-registry/1.2/harbor-portal:1.2.0 , private-registry/1.2/harbor-portal:1.2.0-1.44 , private-registry/1.2/harbor-portal:latest Container Release : 1.44 Severity : important Type : security References : 1266340 1266341 1266342 1266343 1266345 1266349 1266350 1266351 1266352 1266353 1266355 1266356 1266357 CVE-2026-34180 CVE-2026-34181 CVE-2026-34183 CVE-2026-42766 CVE-2026-42767 CVE-2026-42768 CVE-2026-42769 CVE-2026-42770 CVE-2026-45445 CVE-2026-45446 CVE-2026-45447 CVE-2026-7383 CVE-2026-9076 ----------------------------------------------------------------- The container private-registry/1.2/harbor-portal was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2648-1 Released: Fri Jun 26 13:05:57 2026 Summary: Security update for openssl-3 Type: security Severity: important References: 1266340,1266341,1266342,1266343,1266345,1266349,1266350,1266351,1266352,1266353,1266355,1266356,1266357,CVE-2026-34180,CVE-2026-34181,CVE-2026-34183,CVE-2026-42766,CVE-2026-42767,CVE-2026-42768,CVE-2026-42769,CVE-2026-42770,CVE-2026-45445,CVE-2026-45446,CVE-2026-45447,CVE-2026-7383,CVE-2026-9076 This update for openssl-3 fixes the following issues - CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion (bsc#1266340). - CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption (bsc#1266341). - CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing (bsc#1266342). - CVE-2026-34181: PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys (bsc#1266343). - CVE-2026-34183: Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler (bsc#1266345). - CVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryption (bsc#1266349). - CVE-2026-42767: NULL Pointer Dereference in CRMF EncryptedValue Decryption (bsc#1266350). - CVE-2026-42768: Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt() (bsc#1266351). - CVE-2026-42769: Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate (bsc#1266352). - CVE-2026-42770: FFC-DH Peer Validation Uses Attacker-Supplied q (bsc#1266353). - CVE-2026-45445: AES-OCB IV Ignored on EVP_Cipher() Path (bsc#1266355). - CVE-2026-45446: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes (bsc#1266356). - CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357). The following package changes have been done: - libopenssl3-3.2.3-150700.5.36.1 updated - system-user-harbor-2.15.1-150700.1.14 updated - harbor-portal-2.15.1-150700.1.14 updated - container:suse-sle15-15.7-d2aab68ae05470b62bbe38c4ca03ff5bf72b405197482ed96e34dd0087d7bde2-0 updated From sle-container-updates at lists.suse.com Wed Jul 1 12:05:11 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 1 Jul 2026 14:05:11 +0200 (CEST) Subject: SUSE-CU-2026:6645-1: Security update of suse/manager/4.3/proxy-httpd Message-ID: <20260701120511.0D70EFF21@maintenance.suse.de> SUSE Container Update Advisory: suse/manager/4.3/proxy-httpd ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6645-1 Container Tags : suse/manager/4.3/proxy-httpd:4.3.18 , suse/manager/4.3/proxy-httpd:4.3.18.9.79.15 , suse/manager/4.3/proxy-httpd:latest Container Release : 9.79.15 Severity : important Type : security References : 1207327 1208708 1214357 1263935 1263950 1263951 1263952 1263953 1263954 1263955 1263956 1263957 1264150 1264163 1267503 1267955 1267956 1267962 1267963 1267965 1267969 1267970 1267971 1267972 1267976 1267977 1267978 690734 CVE-2006-20001 CVE-2021-44224 CVE-2021-44790 CVE-2022-22719 CVE-2022-22720 CVE-2022-22721 CVE-2022-23943 CVE-2022-26377 CVE-2022-28614 CVE-2022-28615 CVE-2022-29404 CVE-2022-30522 CVE-2022-30556 CVE-2022-31813 CVE-2022-36760 CVE-2022-37436 CVE-2023-25690 CVE-2023-27522 CVE-2023-31122 CVE-2023-38709 CVE-2023-45802 CVE-2024-24795 CVE-2024-27316 CVE-2024-38473 CVE-2024-38474 CVE-2024-38475 CVE-2024-38476 CVE-2024-38477 CVE-2024-39573 CVE-2024-39884 CVE-2024-40725 CVE-2024-42516 CVE-2024-43204 CVE-2024-47252 CVE-2025-23048 CVE-2025-49630 CVE-2025-49812 CVE-2025-53020 CVE-2025-55753 CVE-2025-58098 CVE-2025-65082 CVE-2025-66200 CVE-2026-23918 CVE-2026-24072 CVE-2026-28780 CVE-2026-29167 CVE-2026-29168 CVE-2026-29169 CVE-2026-29170 CVE-2026-33006 CVE-2026-33007 CVE-2026-33523 CVE-2026-33857 CVE-2026-34032 CVE-2026-34059 CVE-2026-34355 CVE-2026-34356 CVE-2026-42535 CVE-2026-42536 CVE-2026-43951 CVE-2026-44119 CVE-2026-44185 CVE-2026-44186 CVE-2026-44631 CVE-2026-48913 CVE-2026-49975 ----------------------------------------------------------------- The container suse/manager/4.3/proxy-httpd was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2686-1 Released: Tue Jun 30 00:35:37 2026 Summary: Security update for apache2 Type: security Severity: important References: 1207327,1208708,1214357,1263935,1263950,1263951,1263952,1263953,1263954,1263955,1263956,1263957,1264150,1264163,1267503,1267955,1267956,1267962,1267963,1267965,1267969,1267970,1267971,1267972,1267976,1267977,1267978,690734,CVE-2006-20001,CVE-2021-44224,CVE-2021-44790,CVE-2022-22719,CVE-2022-22720,CVE-2022-22721,CVE-2022-23943,CVE-2022-26377,CVE-2022-28614,CVE-2022-28615,CVE-2022-29404,CVE-2022-30522,CVE-2022-30556,CVE-2022-31813,CVE-2022-36760,CVE-2022-37436,CVE-2023-25690,CVE-2023-27522,CVE-2023-31122,CVE-2023-38709,CVE-2023-45802,CVE-2024-24795,CVE-2024-27316,CVE-2024-38473,CVE-2024-38474,CVE-2024-38475,CVE-2024-38476,CVE-2024-38477,CVE-2024-39573,CVE-2024-39884,CVE-2024-40725,CVE-2024-42516,CVE-2024-43204,CVE-2024-47252,CVE-2025-23048,CVE-2025-49630,CVE-2025-49812,CVE-2025-53020,CVE-2025-55753,CVE-2025-58098,CVE-2025-65082,CVE-2025-66200,CVE-2026-23918,CVE-2026-24072,CVE-2026-28780,CVE-2026-29167,CVE-2026-29168,CVE-2026-29169,CVE-2026-29170,CVE-2026-33006,CVE-2026-330 07,CVE-2026-33523,CVE-2026-33857,CVE-2026-34032,CVE-2026-34059,CVE-2026-34355,CVE-2026-34356,CVE-2026-42535,CVE-2026-42536,CVE-2026-43951,CVE-2026-44119,CVE-2026-44185,CVE-2026-44186,CVE-2026-44631,CVE-2026-48913,CVE-2026-49975 This update for apache2 fixes the following issues - CVE-2026-23918: http2: double free and possible RCE on early reset (bsc#1263957). - CVE-2026-24072: mod_rewrite elevation of privileges via ap_expr (bsc#1263935). - CVE-2026-28780: heap buffer overflow in `mod_proxy_ajp` via `ajp_msg_check_header()` (bsc#1264163). - CVE-2026-29167: mod_ldap per-dir use-after-free (bsc#1267976). - CVE-2026-29168: allocation of resources without limits in `mod_md` via OCSP response (bsc#1264150). - CVE-2026-29169: NULL pointer dereference in `mod_dav_lock` allows server crash via malicious requests (bsc#1263956). - CVE-2026-29170: mod_proxy_ftp XSS (bsc#1267977). - CVE-2026-33006: `mod_auth_digest` timing attack allows bypass of Digest authentication (bsc#1263955). - CVE-2026-33007: NULL pointer dereference in `mod_authn_socache` allows unauthenticated remote user to crash a child processes (bsc#1263954). - CVE-2026-33523: HTTP response splitting forwarding malicious status line (bsc#1263953). - CVE-2026-33857: off-by-one OOB reads in AJP getter functions (bsc#1263952). - CVE-2026-34032: heap buffer overread in `mod_proxy_ajp` due to missing null-termination check (bsc#1263951). - CVE-2026-34059: heap buffer overread and memory disclosure via `ajp_parse_data()` (bsc#1263950). - CVE-2026-34355: mod_proxy_html buffer overflow (bsc#1267978). - CVE-2026-34356: malicious backend servers can lead to a heap-based buffer overflow (bsc#1267955). - CVE-2026-42535: malicious path manipulation can lead to child process crashes (bsc#1267956). - CVE-2026-42536: processing untrusted content can lead to a heap-based buffer overflow (bsc#1267962). - CVE-2026-43951: out-of-bound read in `merge_response_headers` can cause crash (bsc#1267963). - CVE-2026-44119: improper privilege management can lead to an unauthorized read (bsc#1267965). - CVE-2026-44185: Stack Buffer Over-Read in mod_ssl OCSP `send_request` (bsc#1267969). - CVE-2026-44186: responses from an attacker-controlled FTP backend can lead to resource exhaustion and a denial of service (bsc#1267970). - CVE-2026-44631: crafted regular expression can lead to a buffer underwrite (bsc#1267971). - CVE-2026-48913: file handle exhaustion during request processing in mod_http2 can lead to a use-after-free (bsc#1267972). - CVE-2026-49975: Fix cookie header accounting against LimitRequestFields (bsc#1267503). Non security issue: - Update to 2.4.66 (jsc#PED-16334). The following package changes have been done: - apache2-utils-2.4.66-150400.6.57.1 updated - apache2-2.4.66-150400.6.57.1 updated - apache2-prefork-2.4.66-150400.6.57.1 updated From sle-container-updates at lists.suse.com Wed Jul 1 12:05:12 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 1 Jul 2026 14:05:12 +0200 (CEST) Subject: SUSE-CU-2026:6667-1: Security update of suse/manager/4.3/proxy-httpd Message-ID: <20260701120512.26BE5FF21@maintenance.suse.de> SUSE Container Update Advisory: suse/manager/4.3/proxy-httpd ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6667-1 Container Tags : suse/manager/4.3/proxy-httpd:4.3.18 , suse/manager/4.3/proxy-httpd:4.3.18.9.79.16 , suse/manager/4.3/proxy-httpd:latest Container Release : 9.79.16 Severity : important Type : security References : 1158038 1239718 1246504 1247948 1249435 1252744 1253193 1253740 1257068 1257882 1258193 1259311 1259706 1259802 1259842 1265223 1265935 1265938 1266039 1267426 1267874 CVE-2026-25707 CVE-2026-44933 CVE-2026-44941 CVE-2026-44942 CVE-2026-48863 CVE-2026-9149 CVE-2026-9150 ----------------------------------------------------------------- The container suse/manager/4.3/proxy-httpd was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2674-1 Released: Mon Jun 29 11:36:33 2026 Summary: Security update for libsolv, libzypp, zypper Type: security Severity: important References: 1158038,1239718,1246504,1247948,1249435,1252744,1253193,1253740,1257068,1257882,1258193,1259311,1259706,1259802,1259842,1265223,1265935,1265938,1266039,1267426,1267874,CVE-2026-25707,CVE-2026-44933,CVE-2026-44941,CVE-2026-44942,CVE-2026-48863,CVE-2026-9149,CVE-2026-9150 This update for libsolv, libzypp, zypper fixes the following issues - CVE-2026-9149: Heap buffer overflow in libsolv repo_add_solv via negative maxsize from crafted .solv file (bsc#1265935). - CVE-2026-9150: Stack-based buffer overflow in libsolv's Debian metadata parser when handling SHA384/SHA512 checksums (bsc#1265938). - CVE-2026-25707: Handcrafted repo metadata may cause arbitrary local files to be overwritten (bsc#1259802). - CVE-2026-44933: scan of the Mandatory signature verification plugin support (bsc#1265223). - CVE-2026-44941: path traversal via 'keyhint' (bsc#1267426). - CVE-2026-44942: .repo files can have an optional path which can lead to path traversal attacks (bsc#1267874). - CVE-2026-48863: Fix buffer overflow when parsing EdDSA signature (bsc#1266039). Changes in libzypp: Updated to version 17.38.13 (35): - A .repo files 'path=' entry must not refer to a location outside the repo (bsc#1267874, CVE-2026-44942) A 'path=' entry may solely denote a sub-directory of the baseurl where the metadata are located. A relative path trying to access data outside the baseurl is reported and sanitized. - Fix potential crash on malformed or malicious repository metadata (fixes #740) - Repo metadata: discard entries referring to a location outside the repo (bsc#1259802, CVE-2026-25707) Mirroring those data locally would refer to a location outside the repo's local cache directory. Those data entries are reported and discarded. - zypp.conf: Allow [env] section to add environment variables. This feature is designed to enable environment-specific settings or debugging options over an extended period. See zypp.conf(5). - Prevent configured scripts from escaping the sigcheck directory (bsc#1265223, CVE-2026-44933) - StringV: guard hasPrefix/hasPrefixCI against reading past the view end (fixes #735) - Mandatory signature verification plugin support (PED#11922) - Fix purge-kernel -rc kernel handling (bsc#1239718) - Explicitly_set_pool_DISTTYPE_RPM (fixes #726) - Check for trusted key updates when updating the general keyring (bsc#1259706) - Support multiple MirroredOrigin authorities (bsc#1253193) - Workaround doxygen bug: doxygen/doxygen#12057 - libzypp.spec: Add missing graphviz-gd BuildRequires (boo#1259842) - Fix preloader not caching packages from arch specific subrepos (bsc#1253740) - Deprioritize invalid mirrors (fixes openSUSE/zypper#636) - Fix Product::referencePackage lookup (bsc#1259311) Use a provided autoproduct() as hint to the package name of the release package. It might be that not just multiple versions of the same release package provide the same product version, but also different release packages. - specfile: on fedora use %{_prefix}/share as zyppconfdir if %{_distconfdir} is undefined (fixes #693) This will set '-DZYPPCONFDIR=%{zyppconfdir}' for cmake. - Fall back to a writable location when precaching packages without root (bsc#1247948) - Prepare a legacy /etc/zypp/zypp.conf to be installed on old distros. See the ZYPP.CONF(5) man page for details. - Fix runtime check for broken rpm --runposttrans (bsc#1257068) - Avoid libcurl-mini4 when building as it does not support ftp protocol. - Translation: updated .pot file. - zypp.conf: follow the UAPI configuration file specification (PED-14658) In short terms it means we will no longer ship an /etc/zypp/zypp.conf, but store our own defaults in /usr/etc/zypp/zypp.conf. The systems administrator may choose to keep a full copy in /etc/zypp/zypp.conf ignoring our config file settings completely, or - the preferred way - to overwrite specific settings via /etc/zypp/zypp.conf.d/*.conf overlay files. See the ZYPP.CONF(5) man page for details. - cmake: correctly detect rpm6 (fixes #689) - Use 'zypp.tmp' as temp directory component to ease setting up SELinux policies (bsc#1249435) - zyppng: Update Provider to current MediaCurl2 download approach, drop Metalink ( fixes #682 ) Changes in libsolv: Updated to version 0.7.39: - fix solv_chksum_free segfault when called with a NULL pointer - made repo_add_solv more robust against corrupt files [bsc#1265935] [CVE-2026-9149] - fix potential buffer overflow when verifying EdDSA signatures [bsc#1266039] [CVE-2026-48863] - added limit checks in multiple places to catch overflows - reduce the size of the language id cache - fixed Debian canon selection - fixed dbpath detection in repo_rpmdb_librpm - reduced stack usage in repo page compression (needed for musl) - fix parsing of sha512 checksums in debian repositories [bsc#1265938] [CVE-2026-9150] - improve speed of dirpool_add_dir makeing parsing of filelists.xml twice as fast - fix parsing of recommends in the old Mandriva synthesis format - respect the 'default' attribute in environment optionlist in the comps parser - support suse namespace deps in boolean dependencies [bsc#1258193] - support for the Elbrus2000 (e2k) architecture - support language() suse namespace rewriting Changes in zypper: Update to version 1.14.98: - Transactional systems: Delegate rw-commands to transactional-wrapper if available (jsc#PED-13680, jsc#PED-15607) On a transactional system where the root filesystem is mounted read-only, zypper commands that modify the system cannot be executed directly. If the system provides a transactional-wrapper utility, zypper will automatically attempt to invoke it. The wrapper transparently executes the zypper command within a new, writable snapshot and manages the lifecycle of that snapshot based on the command's exit status. On transactional systems lacking a transactional-wrapper, users must manually invoke specialized tools -such as transactional-update- to install, update, or remove software. - Add --filter-version-change to zypper lu. Adds filtering by version change significance to reduce noise in update listings. Supports levels: rebuild (hides rebuild-only changes) and package (hides all release-only changes). - Autorefresh ris-services the way as plugin-services (bsc#1246504) It's actually wrong to treat service refreshes different depending on the service type. For the purpose of a service it makes no difference how the data about the repos to use are acquired. - Report download progress for command line rpms (fixes #613) - Hint to '-vv ref' to see the mirrors used to download the metadata (bsc#1257882) - Service: Allow 'zypper ls SERVICE ...' to test whether a service with this alias is defined (bsc#1252744) The command prints an abstract of all services passed on the command line. It returns 3-ZYPPER_EXIT_ERR_INVALID_ARGS if some argument does not name an existing service. - Keep repo data when updating the service settings (bsc#1252744) - info: Enhance pattern content table (bsc#1158038) Alternatives (multiple packages providing the same requirement) are now listed as a single entry in the content table. The entry shows either the installed package which satisfies the requirement or the requirement itself as type 'Provides'. Listing all potential alternatives was miss leading, especially if the alternatives were mutual exclusive. It looked like an installed pattern had not-installed requirements and it was not possible to install all requirements at the same time. The following package changes have been done: - libsolv-tools-base-0.7.39-150400.3.46.1 updated - libsolv-tools-0.7.39-150400.3.46.1 updated - libzypp-17.38.13-150400.3.158.1 updated - zypper-1.14.98-150400.3.104.1 updated - container:sles15-ltss-image-15.4.0-6.29 updated From sle-container-updates at lists.suse.com Wed Jul 1 12:07:08 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 1 Jul 2026 14:07:08 +0200 (CEST) Subject: SUSE-CU-2026:6668-1: Security update of suse/manager/4.3/proxy-salt-broker Message-ID: <20260701120708.3407FFF21@maintenance.suse.de> SUSE Container Update Advisory: suse/manager/4.3/proxy-salt-broker ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6668-1 Container Tags : suse/manager/4.3/proxy-salt-broker:4.3.18 , suse/manager/4.3/proxy-salt-broker:4.3.18.9.69.16 , suse/manager/4.3/proxy-salt-broker:latest Container Release : 9.69.16 Severity : important Type : security References : 1158038 1239718 1246504 1247948 1249435 1252744 1253193 1253740 1257068 1257882 1258193 1259311 1259706 1259802 1259842 1265223 1265935 1265938 1266039 1267426 1267874 CVE-2026-25707 CVE-2026-44933 CVE-2026-44941 CVE-2026-44942 CVE-2026-48863 CVE-2026-9149 CVE-2026-9150 ----------------------------------------------------------------- The container suse/manager/4.3/proxy-salt-broker was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2674-1 Released: Mon Jun 29 11:36:33 2026 Summary: Security update for libsolv, libzypp, zypper Type: security Severity: important References: 1158038,1239718,1246504,1247948,1249435,1252744,1253193,1253740,1257068,1257882,1258193,1259311,1259706,1259802,1259842,1265223,1265935,1265938,1266039,1267426,1267874,CVE-2026-25707,CVE-2026-44933,CVE-2026-44941,CVE-2026-44942,CVE-2026-48863,CVE-2026-9149,CVE-2026-9150 This update for libsolv, libzypp, zypper fixes the following issues - CVE-2026-9149: Heap buffer overflow in libsolv repo_add_solv via negative maxsize from crafted .solv file (bsc#1265935). - CVE-2026-9150: Stack-based buffer overflow in libsolv's Debian metadata parser when handling SHA384/SHA512 checksums (bsc#1265938). - CVE-2026-25707: Handcrafted repo metadata may cause arbitrary local files to be overwritten (bsc#1259802). - CVE-2026-44933: scan of the Mandatory signature verification plugin support (bsc#1265223). - CVE-2026-44941: path traversal via 'keyhint' (bsc#1267426). - CVE-2026-44942: .repo files can have an optional path which can lead to path traversal attacks (bsc#1267874). - CVE-2026-48863: Fix buffer overflow when parsing EdDSA signature (bsc#1266039). Changes in libzypp: Updated to version 17.38.13 (35): - A .repo files 'path=' entry must not refer to a location outside the repo (bsc#1267874, CVE-2026-44942) A 'path=' entry may solely denote a sub-directory of the baseurl where the metadata are located. A relative path trying to access data outside the baseurl is reported and sanitized. - Fix potential crash on malformed or malicious repository metadata (fixes #740) - Repo metadata: discard entries referring to a location outside the repo (bsc#1259802, CVE-2026-25707) Mirroring those data locally would refer to a location outside the repo's local cache directory. Those data entries are reported and discarded. - zypp.conf: Allow [env] section to add environment variables. This feature is designed to enable environment-specific settings or debugging options over an extended period. See zypp.conf(5). - Prevent configured scripts from escaping the sigcheck directory (bsc#1265223, CVE-2026-44933) - StringV: guard hasPrefix/hasPrefixCI against reading past the view end (fixes #735) - Mandatory signature verification plugin support (PED#11922) - Fix purge-kernel -rc kernel handling (bsc#1239718) - Explicitly_set_pool_DISTTYPE_RPM (fixes #726) - Check for trusted key updates when updating the general keyring (bsc#1259706) - Support multiple MirroredOrigin authorities (bsc#1253193) - Workaround doxygen bug: doxygen/doxygen#12057 - libzypp.spec: Add missing graphviz-gd BuildRequires (boo#1259842) - Fix preloader not caching packages from arch specific subrepos (bsc#1253740) - Deprioritize invalid mirrors (fixes openSUSE/zypper#636) - Fix Product::referencePackage lookup (bsc#1259311) Use a provided autoproduct() as hint to the package name of the release package. It might be that not just multiple versions of the same release package provide the same product version, but also different release packages. - specfile: on fedora use %{_prefix}/share as zyppconfdir if %{_distconfdir} is undefined (fixes #693) This will set '-DZYPPCONFDIR=%{zyppconfdir}' for cmake. - Fall back to a writable location when precaching packages without root (bsc#1247948) - Prepare a legacy /etc/zypp/zypp.conf to be installed on old distros. See the ZYPP.CONF(5) man page for details. - Fix runtime check for broken rpm --runposttrans (bsc#1257068) - Avoid libcurl-mini4 when building as it does not support ftp protocol. - Translation: updated .pot file. - zypp.conf: follow the UAPI configuration file specification (PED-14658) In short terms it means we will no longer ship an /etc/zypp/zypp.conf, but store our own defaults in /usr/etc/zypp/zypp.conf. The systems administrator may choose to keep a full copy in /etc/zypp/zypp.conf ignoring our config file settings completely, or - the preferred way - to overwrite specific settings via /etc/zypp/zypp.conf.d/*.conf overlay files. See the ZYPP.CONF(5) man page for details. - cmake: correctly detect rpm6 (fixes #689) - Use 'zypp.tmp' as temp directory component to ease setting up SELinux policies (bsc#1249435) - zyppng: Update Provider to current MediaCurl2 download approach, drop Metalink ( fixes #682 ) Changes in libsolv: Updated to version 0.7.39: - fix solv_chksum_free segfault when called with a NULL pointer - made repo_add_solv more robust against corrupt files [bsc#1265935] [CVE-2026-9149] - fix potential buffer overflow when verifying EdDSA signatures [bsc#1266039] [CVE-2026-48863] - added limit checks in multiple places to catch overflows - reduce the size of the language id cache - fixed Debian canon selection - fixed dbpath detection in repo_rpmdb_librpm - reduced stack usage in repo page compression (needed for musl) - fix parsing of sha512 checksums in debian repositories [bsc#1265938] [CVE-2026-9150] - improve speed of dirpool_add_dir makeing parsing of filelists.xml twice as fast - fix parsing of recommends in the old Mandriva synthesis format - respect the 'default' attribute in environment optionlist in the comps parser - support suse namespace deps in boolean dependencies [bsc#1258193] - support for the Elbrus2000 (e2k) architecture - support language() suse namespace rewriting Changes in zypper: Update to version 1.14.98: - Transactional systems: Delegate rw-commands to transactional-wrapper if available (jsc#PED-13680, jsc#PED-15607) On a transactional system where the root filesystem is mounted read-only, zypper commands that modify the system cannot be executed directly. If the system provides a transactional-wrapper utility, zypper will automatically attempt to invoke it. The wrapper transparently executes the zypper command within a new, writable snapshot and manages the lifecycle of that snapshot based on the command's exit status. On transactional systems lacking a transactional-wrapper, users must manually invoke specialized tools -such as transactional-update- to install, update, or remove software. - Add --filter-version-change to zypper lu. Adds filtering by version change significance to reduce noise in update listings. Supports levels: rebuild (hides rebuild-only changes) and package (hides all release-only changes). - Autorefresh ris-services the way as plugin-services (bsc#1246504) It's actually wrong to treat service refreshes different depending on the service type. For the purpose of a service it makes no difference how the data about the repos to use are acquired. - Report download progress for command line rpms (fixes #613) - Hint to '-vv ref' to see the mirrors used to download the metadata (bsc#1257882) - Service: Allow 'zypper ls SERVICE ...' to test whether a service with this alias is defined (bsc#1252744) The command prints an abstract of all services passed on the command line. It returns 3-ZYPPER_EXIT_ERR_INVALID_ARGS if some argument does not name an existing service. - Keep repo data when updating the service settings (bsc#1252744) - info: Enhance pattern content table (bsc#1158038) Alternatives (multiple packages providing the same requirement) are now listed as a single entry in the content table. The entry shows either the installed package which satisfies the requirement or the requirement itself as type 'Provides'. Listing all potential alternatives was miss leading, especially if the alternatives were mutual exclusive. It looked like an installed pattern had not-installed requirements and it was not possible to install all requirements at the same time. The following package changes have been done: - libsolv-tools-base-0.7.39-150400.3.46.1 updated - libsolv-tools-0.7.39-150400.3.46.1 updated - libzypp-17.38.13-150400.3.158.1 updated - zypper-1.14.98-150400.3.104.1 updated - container:sles15-ltss-image-15.4.0-6.29 updated From sle-container-updates at lists.suse.com Thu Jul 2 07:05:52 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Thu, 2 Jul 2026 09:05:52 +0200 (CEST) Subject: SUSE-IU-2026:5371-1: Security update of suse/sle-micro/base-5.5 Message-ID: <20260702070552.1DF17FF21@maintenance.suse.de> SUSE Image Update Advisory: suse/sle-micro/base-5.5 ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5371-1 Image Tags : suse/sle-micro/base-5.5:2.0.4 , suse/sle-micro/base-5.5:2.0.4-5.8.290 , suse/sle-micro/base-5.5:latest Image Release : 5.8.290 Severity : important Type : security References : 1268322 CVE-2026-6893 ----------------------------------------------------------------- The container suse/sle-micro/base-5.5 was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2721-1 Released: Wed Jul 1 15:15:34 2026 Summary: Security update for dracut Type: security Severity: important References: 1268322,CVE-2026-6893 This update for dracut fixes the following issue - CVE-2026-6893: Root code execution via DHCP options command injection (bsc#1268322). Changes for dracut: - Update to version 055+suse.402.g2720eea: * fix(network-legacy): sanitize DHCP values in dhclient-script.sh (bsc#1268322, CVE-2026-6893) * fix(network-legacy): add input validation to RFC 3442 route parser The following package changes have been done: - dracut-055+suse.402.g2720eea-150500.3.41.1 updated From sle-container-updates at lists.suse.com Thu Jul 2 07:12:36 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Thu, 2 Jul 2026 09:12:36 +0200 (CEST) Subject: SUSE-IU-2026:5374-1: Security update of suse/sle-micro/5.5 Message-ID: <20260702071236.C5BA5FF21@maintenance.suse.de> SUSE Image Update Advisory: suse/sle-micro/5.5 ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5374-1 Image Tags : suse/sle-micro/5.5:2.0.4 , suse/sle-micro/5.5:2.0.4-5.8.46 , suse/sle-micro/5.5:latest Image Release : 5.8.46 Severity : important Type : security References : 1261900 1262856 1265450 1266125 1267189 1267823 1268322 CVE-2026-34986 CVE-2026-39829 CVE-2026-39830 CVE-2026-42508 CVE-2026-46598 CVE-2026-5704 CVE-2026-6893 ----------------------------------------------------------------- The container suse/sle-micro/5.5 was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2691-1 Released: Tue Jun 30 10:24:30 2026 Summary: Security update for sg3_utils Type: security Severity: important References: 1267823 This update for sg3_utils fixes the following issue Update to version 1.47+16.aad0b411: - sg_inq: --export output conformance for SCSI name string and ATA fields (bsc#1267823). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2714-1 Released: Tue Jun 30 14:02:53 2026 Summary: Security update for tar Type: security Severity: important References: 1261900,1265450,1267189,CVE-2026-5704 This update for tar fixes the following issues Security fixes: - CVE-2026-5704: crafted archives can be used to to hide file injection (bsc#1261900). Other fixes: - Fix tar changing dir permissions temporarily even when using --no-overwrite-dir. - Fix --dereference/-h not working properly after CVE-2025-45582 fix (bsc#1265450). - Fix extraction failure for paths like 'a/./b' caused by the gnulib openat2 implementation (bsc#1267189). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2715-1 Released: Tue Jun 30 14:05:57 2026 Summary: Security update for podman Type: security Severity: important References: 1262856,1266125,CVE-2026-34986,CVE-2026-39829,CVE-2026-39830,CVE-2026-42508,CVE-2026-46598 This update for podman rebuilds it against the current go security release. - CVE-2026-34986: Update github.com/go-jose/go-jose/v3+v4 dependency (bsc#1262856). - CVE-2026-39829, CVE-2026-39830, CVE-2026-42508, CVE-2026-46598: Update golang.org/x/crypto/ssh dependency (bsc#1266125). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2721-1 Released: Wed Jul 1 15:15:34 2026 Summary: Security update for dracut Type: security Severity: important References: 1268322,CVE-2026-6893 This update for dracut fixes the following issue - CVE-2026-6893: Root code execution via DHCP options command injection (bsc#1268322). Changes for dracut: - Update to version 055+suse.402.g2720eea: * fix(network-legacy): sanitize DHCP values in dhclient-script.sh (bsc#1268322, CVE-2026-6893) * fix(network-legacy): add input validation to RFC 3442 route parser The following package changes have been done: - dracut-055+suse.402.g2720eea-150500.3.41.1 updated - tar-1.34-150000.3.42.1 updated - libsgutils2-1_47-2-1.47+16.aad0b411-150400.3.14.1 updated - sg3_utils-1.47+16.aad0b411-150400.3.14.1 updated - podman-4.9.5-150500.3.73.2 updated - container:suse-sle-micro-base-5.5-latest-2.0.4-5.8.290 updated From sle-container-updates at lists.suse.com Thu Jul 2 07:28:08 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Thu, 2 Jul 2026 09:28:08 +0200 (CEST) Subject: SUSE-CU-2026:6676-1: Security update of suse/sle-micro-rancher/5.4 Message-ID: <20260702072808.14B72FF02@maintenance.suse.de> SUSE Container Update Advisory: suse/sle-micro-rancher/5.4 ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6676-1 Container Tags : suse/sle-micro-rancher/5.4:5.4.4.5.140 , suse/sle-micro-rancher/5.4:latest Container Release : 4.5.140 Severity : important Type : security References : 1268322 CVE-2026-6893 ----------------------------------------------------------------- The container suse/sle-micro-rancher/5.4 was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2720-1 Released: Wed Jul 1 15:14:47 2026 Summary: Security update for dracut Type: security Severity: important References: 1268322,CVE-2026-6893 This update for dracut fixes the following issue - CVE-2026-6893: Root code execution via DHCP options command injection (bsc#1268322). Changes for dracut: - Update to version 055+suse.365.g79144c5: * fix(network-legacy): sanitize DHCP values in dhclient-script.sh (bsc#1268322, CVE-2026-6893) * fix(network-legacy): add input validation to RFC 3442 route parser The following package changes have been done: - dracut-mkinitrd-deprecated-055+suse.365.g79144c5-150400.3.49.1 updated - dracut-055+suse.365.g79144c5-150400.3.49.1 updated From sle-container-updates at lists.suse.com Thu Jul 2 07:30:28 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Thu, 2 Jul 2026 09:30:28 +0200 (CEST) Subject: SUSE-IU-2026:5375-1: Security update of suse/sl-micro/6.0/baremetal-os-container Message-ID: <20260702073028.17C19FF02@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.0/baremetal-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5375-1 Image Tags : suse/sl-micro/6.0/baremetal-os-container:2.1.3 , suse/sl-micro/6.0/baremetal-os-container:2.1.3-6.198 , suse/sl-micro/6.0/baremetal-os-container:latest Image Release : 6.198 Severity : moderate Type : security References : 1266350 CVE-2026-42767 ----------------------------------------------------------------- The container suse/sl-micro/6.0/baremetal-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 776 Released: Wed Jul 1 11:32:56 2026 Summary: Security update for openssl-3 Type: security Severity: moderate References: 1266350,CVE-2026-42767 This update for openssl-3 fixes the following issue - CVE-2026-42767: NULL Pointer Dereference in CRMF EncryptedValue Decryption (bsc#1266350). The following package changes have been done: - libopenssl3-3.1.4-15.1 updated - SL-Micro-release-6.0-25.105 updated - container:SL-Micro-base-container-2.1.3-7.163 updated From sle-container-updates at lists.suse.com Thu Jul 2 07:32:21 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Thu, 2 Jul 2026 09:32:21 +0200 (CEST) Subject: SUSE-IU-2026:5376-1: Security update of suse/sl-micro/6.0/base-os-container Message-ID: <20260702073221.87FDCFF02@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.0/base-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5376-1 Image Tags : suse/sl-micro/6.0/base-os-container:2.1.3 , suse/sl-micro/6.0/base-os-container:2.1.3-7.163 , suse/sl-micro/6.0/base-os-container:latest Image Release : 7.163 Severity : moderate Type : security References : 1266350 CVE-2026-42767 ----------------------------------------------------------------- The container suse/sl-micro/6.0/base-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 776 Released: Wed Jul 1 11:32:56 2026 Summary: Security update for openssl-3 Type: security Severity: moderate References: 1266350,CVE-2026-42767 This update for openssl-3 fixes the following issue - CVE-2026-42767: NULL Pointer Dereference in CRMF EncryptedValue Decryption (bsc#1266350). The following package changes have been done: - libopenssl3-3.1.4-15.1 updated - SL-Micro-release-6.0-25.105 updated - openssl-3-3.1.4-15.1 updated - container:suse-toolbox-image-1.0.0-9.126 updated From sle-container-updates at lists.suse.com Thu Jul 2 07:34:12 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Thu, 2 Jul 2026 09:34:12 +0200 (CEST) Subject: SUSE-IU-2026:5377-1: Security update of suse/sl-micro/6.0/kvm-os-container Message-ID: <20260702073412.83FC5FF02@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.0/kvm-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5377-1 Image Tags : suse/sl-micro/6.0/kvm-os-container:2.1.3 , suse/sl-micro/6.0/kvm-os-container:2.1.3-6.177 , suse/sl-micro/6.0/kvm-os-container:latest Image Release : 6.177 Severity : moderate Type : security References : 1266350 CVE-2026-42767 ----------------------------------------------------------------- The container suse/sl-micro/6.0/kvm-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 776 Released: Wed Jul 1 11:32:56 2026 Summary: Security update for openssl-3 Type: security Severity: moderate References: 1266350,CVE-2026-42767 This update for openssl-3 fixes the following issue - CVE-2026-42767: NULL Pointer Dereference in CRMF EncryptedValue Decryption (bsc#1266350). The following package changes have been done: - libopenssl3-3.1.4-15.1 updated - SL-Micro-release-6.0-25.105 updated - container:SL-Micro-base-container-2.1.3-7.163 updated From sle-container-updates at lists.suse.com Thu Jul 2 07:36:34 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Thu, 2 Jul 2026 09:36:34 +0200 (CEST) Subject: SUSE-IU-2026:5378-1: Security update of suse/sl-micro/6.0/rt-os-container Message-ID: <20260702073634.E5A2CFF02@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.0/rt-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5378-1 Image Tags : suse/sl-micro/6.0/rt-os-container:2.1.3 , suse/sl-micro/6.0/rt-os-container:2.1.3-7.194 , suse/sl-micro/6.0/rt-os-container:latest Image Release : 7.194 Severity : moderate Type : security References : 1266350 CVE-2026-42767 ----------------------------------------------------------------- The container suse/sl-micro/6.0/rt-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 776 Released: Wed Jul 1 11:32:56 2026 Summary: Security update for openssl-3 Type: security Severity: moderate References: 1266350,CVE-2026-42767 This update for openssl-3 fixes the following issue - CVE-2026-42767: NULL Pointer Dereference in CRMF EncryptedValue Decryption (bsc#1266350). The following package changes have been done: - libopenssl3-3.1.4-15.1 updated - SL-Micro-release-6.0-25.105 updated - container:SL-Micro-container-2.1.3-6.198 updated From sle-container-updates at lists.suse.com Thu Jul 2 07:42:48 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Thu, 2 Jul 2026 09:42:48 +0200 (CEST) Subject: SUSE-CU-2026:6681-1: Security update of suse/sl-micro/6.0/toolbox Message-ID: <20260702074248.A5998FF02@maintenance.suse.de> SUSE Container Update Advisory: suse/sl-micro/6.0/toolbox ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6681-1 Container Tags : suse/sl-micro/6.0/toolbox:13.2 , suse/sl-micro/6.0/toolbox:13.2-9.126 , suse/sl-micro/6.0/toolbox:latest Container Release : 9.126 Severity : moderate Type : security References : 1266350 CVE-2026-42767 ----------------------------------------------------------------- The container suse/sl-micro/6.0/toolbox was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 776 Released: Wed Jul 1 11:32:56 2026 Summary: Security update for openssl-3 Type: security Severity: moderate References: 1266350,CVE-2026-42767 This update for openssl-3 fixes the following issue - CVE-2026-42767: NULL Pointer Dereference in CRMF EncryptedValue Decryption (bsc#1266350). The following package changes have been done: - SL-Micro-release-6.0-25.105 updated - libopenssl3-3.1.4-15.1 updated - skelcd-EULA-SL-Micro-2024.01.19-8.104 updated From sle-container-updates at lists.suse.com Thu Jul 2 08:00:21 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Thu, 2 Jul 2026 10:00:21 +0200 (CEST) Subject: SUSE-CU-2026:6682-1: Security update of suse/ltss/sle15.4/sle15 Message-ID: <20260702080021.2A327FF02@maintenance.suse.de> SUSE Container Update Advisory: suse/ltss/sle15.4/sle15 ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6682-1 Container Tags : suse/ltss/sle15.4/bci-base:15.4 , suse/ltss/sle15.4/bci-base:15.4-6.30 , suse/ltss/sle15.4/sle15:15.4 , suse/ltss/sle15.4/sle15:15.4-6.30 , suse/ltss/sle15.4/sle15:latest Container Release : 6.30 Severity : important Type : security References : 1261900 1265450 1267189 CVE-2026-5704 ----------------------------------------------------------------- The container suse/ltss/sle15.4/sle15 was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2714-1 Released: Tue Jun 30 14:02:53 2026 Summary: Security update for tar Type: security Severity: important References: 1261900,1265450,1267189,CVE-2026-5704 This update for tar fixes the following issues Security fixes: - CVE-2026-5704: crafted archives can be used to to hide file injection (bsc#1261900). Other fixes: - Fix tar changing dir permissions temporarily even when using --no-overwrite-dir. - Fix --dereference/-h not working properly after CVE-2025-45582 fix (bsc#1265450). - Fix extraction failure for paths like 'a/./b' caused by the gnulib openat2 implementation (bsc#1267189). The following package changes have been done: - tar-1.34-150000.3.42.1 updated From sle-container-updates at lists.suse.com Thu Jul 2 08:10:56 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Thu, 2 Jul 2026 10:10:56 +0200 (CEST) Subject: SUSE-CU-2026:6690-1: Security update of bci/python Message-ID: <20260702081056.3F37CFF02@maintenance.suse.de> SUSE Container Update Advisory: bci/python ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6690-1 Container Tags : bci/python:3 , bci/python:3.13 , bci/python:3.13-sles15 , bci/python:3.13.13 , bci/python:3.13.13-88.7 , bci/python:latest Container Release : 88.7 Severity : important Type : security References : 1266340 1266341 1266342 1266343 1266345 1266349 1266350 1266351 1266352 1266353 1266355 1266356 1266357 CVE-2026-34180 CVE-2026-34181 CVE-2026-34183 CVE-2026-42766 CVE-2026-42767 CVE-2026-42768 CVE-2026-42769 CVE-2026-42770 CVE-2026-45445 CVE-2026-45446 CVE-2026-45447 CVE-2026-7383 CVE-2026-9076 ----------------------------------------------------------------- The container bci/python was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2648-1 Released: Fri Jun 26 13:05:57 2026 Summary: Security update for openssl-3 Type: security Severity: important References: 1266340,1266341,1266342,1266343,1266345,1266349,1266350,1266351,1266352,1266353,1266355,1266356,1266357,CVE-2026-34180,CVE-2026-34181,CVE-2026-34183,CVE-2026-42766,CVE-2026-42767,CVE-2026-42768,CVE-2026-42769,CVE-2026-42770,CVE-2026-45445,CVE-2026-45446,CVE-2026-45447,CVE-2026-7383,CVE-2026-9076 This update for openssl-3 fixes the following issues - CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion (bsc#1266340). - CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption (bsc#1266341). - CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing (bsc#1266342). - CVE-2026-34181: PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys (bsc#1266343). - CVE-2026-34183: Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler (bsc#1266345). - CVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryption (bsc#1266349). - CVE-2026-42767: NULL Pointer Dereference in CRMF EncryptedValue Decryption (bsc#1266350). - CVE-2026-42768: Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt() (bsc#1266351). - CVE-2026-42769: Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate (bsc#1266352). - CVE-2026-42770: FFC-DH Peer Validation Uses Attacker-Supplied q (bsc#1266353). - CVE-2026-45445: AES-OCB IV Ignored on EVP_Cipher() Path (bsc#1266355). - CVE-2026-45446: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes (bsc#1266356). - CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357). The following package changes have been done: - libopenssl3-3.2.3-150700.5.36.1 updated - libopenssl-3-fips-provider-3.2.3-150700.5.36.1 updated - libcurl4-8.14.1-150700.7.17.1 updated - openssl-3-3.2.3-150700.5.36.1 updated - container:registry.suse.com-bci-bci-base-15.7-d2aab68ae05470b62bbe38c4ca03ff5bf72b405197482ed96e34dd0087d7bde2-0 updated From sle-container-updates at lists.suse.com Thu Jul 2 08:11:44 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Thu, 2 Jul 2026 10:11:44 +0200 (CEST) Subject: SUSE-CU-2026:6691-1: Security update of bci/python Message-ID: <20260702081144.BD029FF02@maintenance.suse.de> SUSE Container Update Advisory: bci/python ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6691-1 Container Tags : bci/python:3 , bci/python:3.6 , bci/python:3.6.15 , bci/python:3.6.15-84.5 Container Release : 84.5 Severity : important Type : security References : 1266340 1266341 1266342 1266343 1266345 1266349 1266350 1266351 1266352 1266353 1266355 1266356 1266357 CVE-2026-34180 CVE-2026-34181 CVE-2026-34183 CVE-2026-42766 CVE-2026-42767 CVE-2026-42768 CVE-2026-42769 CVE-2026-42770 CVE-2026-45445 CVE-2026-45446 CVE-2026-45447 CVE-2026-7383 CVE-2026-9076 ----------------------------------------------------------------- The container bci/python was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2648-1 Released: Fri Jun 26 13:05:57 2026 Summary: Security update for openssl-3 Type: security Severity: important References: 1266340,1266341,1266342,1266343,1266345,1266349,1266350,1266351,1266352,1266353,1266355,1266356,1266357,CVE-2026-34180,CVE-2026-34181,CVE-2026-34183,CVE-2026-42766,CVE-2026-42767,CVE-2026-42768,CVE-2026-42769,CVE-2026-42770,CVE-2026-45445,CVE-2026-45446,CVE-2026-45447,CVE-2026-7383,CVE-2026-9076 This update for openssl-3 fixes the following issues - CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion (bsc#1266340). - CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption (bsc#1266341). - CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing (bsc#1266342). - CVE-2026-34181: PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys (bsc#1266343). - CVE-2026-34183: Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler (bsc#1266345). - CVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryption (bsc#1266349). - CVE-2026-42767: NULL Pointer Dereference in CRMF EncryptedValue Decryption (bsc#1266350). - CVE-2026-42768: Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt() (bsc#1266351). - CVE-2026-42769: Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate (bsc#1266352). - CVE-2026-42770: FFC-DH Peer Validation Uses Attacker-Supplied q (bsc#1266353). - CVE-2026-45445: AES-OCB IV Ignored on EVP_Cipher() Path (bsc#1266355). - CVE-2026-45446: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes (bsc#1266356). - CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357). The following package changes have been done: - libopenssl3-3.2.3-150700.5.36.1 updated - libopenssl-3-fips-provider-3.2.3-150700.5.36.1 updated - libcurl4-8.14.1-150700.7.17.1 updated - openssl-3-3.2.3-150700.5.36.1 updated - container:registry.suse.com-bci-bci-base-15.7-d2aab68ae05470b62bbe38c4ca03ff5bf72b405197482ed96e34dd0087d7bde2-0 updated From sle-container-updates at lists.suse.com Thu Jul 2 08:12:31 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Thu, 2 Jul 2026 10:12:31 +0200 (CEST) Subject: SUSE-CU-2026:6692-1: Security update of bci/ruby Message-ID: <20260702081231.D06DDFF02@maintenance.suse.de> SUSE Container Update Advisory: bci/ruby ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6692-1 Container Tags : bci/ruby:2 , bci/ruby:2.5 , bci/ruby:2.5-26.6 , bci/ruby:2.5-sles15 Container Release : 26.6 Severity : important Type : security References : 1266340 1266341 1266342 1266343 1266345 1266349 1266350 1266351 1266352 1266353 1266355 1266356 1266357 CVE-2026-34180 CVE-2026-34181 CVE-2026-34183 CVE-2026-42766 CVE-2026-42767 CVE-2026-42768 CVE-2026-42769 CVE-2026-42770 CVE-2026-45445 CVE-2026-45446 CVE-2026-45447 CVE-2026-7383 CVE-2026-9076 ----------------------------------------------------------------- The container bci/ruby was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2648-1 Released: Fri Jun 26 13:05:57 2026 Summary: Security update for openssl-3 Type: security Severity: important References: 1266340,1266341,1266342,1266343,1266345,1266349,1266350,1266351,1266352,1266353,1266355,1266356,1266357,CVE-2026-34180,CVE-2026-34181,CVE-2026-34183,CVE-2026-42766,CVE-2026-42767,CVE-2026-42768,CVE-2026-42769,CVE-2026-42770,CVE-2026-45445,CVE-2026-45446,CVE-2026-45447,CVE-2026-7383,CVE-2026-9076 This update for openssl-3 fixes the following issues - CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion (bsc#1266340). - CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption (bsc#1266341). - CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing (bsc#1266342). - CVE-2026-34181: PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys (bsc#1266343). - CVE-2026-34183: Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler (bsc#1266345). - CVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryption (bsc#1266349). - CVE-2026-42767: NULL Pointer Dereference in CRMF EncryptedValue Decryption (bsc#1266350). - CVE-2026-42768: Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt() (bsc#1266351). - CVE-2026-42769: Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate (bsc#1266352). - CVE-2026-42770: FFC-DH Peer Validation Uses Attacker-Supplied q (bsc#1266353). - CVE-2026-45445: AES-OCB IV Ignored on EVP_Cipher() Path (bsc#1266355). - CVE-2026-45446: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes (bsc#1266356). - CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357). The following package changes have been done: - libopenssl3-3.2.3-150700.5.36.1 updated - libopenssl-3-fips-provider-3.2.3-150700.5.36.1 updated - libcurl4-8.14.1-150700.7.17.1 updated - container:registry.suse.com-bci-bci-base-15.7-d2aab68ae05470b62bbe38c4ca03ff5bf72b405197482ed96e34dd0087d7bde2-0 updated From sle-container-updates at lists.suse.com Thu Jul 2 08:13:19 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Thu, 2 Jul 2026 10:13:19 +0200 (CEST) Subject: SUSE-CU-2026:6693-1: Security update of bci/ruby Message-ID: <20260702081319.8C154FF02@maintenance.suse.de> SUSE Container Update Advisory: bci/ruby ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6693-1 Container Tags : bci/ruby:3 , bci/ruby:3.4 , bci/ruby:3.4-25.6 , bci/ruby:3.4-sles15 , bci/ruby:latest Container Release : 25.6 Severity : important Type : security References : 1266340 1266341 1266342 1266343 1266345 1266349 1266350 1266351 1266352 1266353 1266355 1266356 1266357 CVE-2026-34180 CVE-2026-34181 CVE-2026-34183 CVE-2026-42766 CVE-2026-42767 CVE-2026-42768 CVE-2026-42769 CVE-2026-42770 CVE-2026-45445 CVE-2026-45446 CVE-2026-45447 CVE-2026-7383 CVE-2026-9076 ----------------------------------------------------------------- The container bci/ruby was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2648-1 Released: Fri Jun 26 13:05:57 2026 Summary: Security update for openssl-3 Type: security Severity: important References: 1266340,1266341,1266342,1266343,1266345,1266349,1266350,1266351,1266352,1266353,1266355,1266356,1266357,CVE-2026-34180,CVE-2026-34181,CVE-2026-34183,CVE-2026-42766,CVE-2026-42767,CVE-2026-42768,CVE-2026-42769,CVE-2026-42770,CVE-2026-45445,CVE-2026-45446,CVE-2026-45447,CVE-2026-7383,CVE-2026-9076 This update for openssl-3 fixes the following issues - CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion (bsc#1266340). - CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption (bsc#1266341). - CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing (bsc#1266342). - CVE-2026-34181: PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys (bsc#1266343). - CVE-2026-34183: Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler (bsc#1266345). - CVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryption (bsc#1266349). - CVE-2026-42767: NULL Pointer Dereference in CRMF EncryptedValue Decryption (bsc#1266350). - CVE-2026-42768: Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt() (bsc#1266351). - CVE-2026-42769: Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate (bsc#1266352). - CVE-2026-42770: FFC-DH Peer Validation Uses Attacker-Supplied q (bsc#1266353). - CVE-2026-45445: AES-OCB IV Ignored on EVP_Cipher() Path (bsc#1266355). - CVE-2026-45446: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes (bsc#1266356). - CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357). The following package changes have been done: - libopenssl3-3.2.3-150700.5.36.1 updated - libopenssl-3-fips-provider-3.2.3-150700.5.36.1 updated - libcurl4-8.14.1-150700.7.17.1 updated - container:registry.suse.com-bci-bci-base-15.7-d2aab68ae05470b62bbe38c4ca03ff5bf72b405197482ed96e34dd0087d7bde2-0 updated From sle-container-updates at lists.suse.com Thu Jul 2 08:13:53 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Thu, 2 Jul 2026 10:13:53 +0200 (CEST) Subject: SUSE-CU-2026:6694-1: Security update of bci/rust Message-ID: <20260702081353.4FE13FF02@maintenance.suse.de> SUSE Container Update Advisory: bci/rust ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6694-1 Container Tags : bci/rust:1.95 , bci/rust:1.95-sles15 , bci/rust:1.95.0 , bci/rust:1.95.0-2.4.4 , bci/rust:oldstable Container Release : 4.4 Severity : important Type : security References : 1264971 1266340 1266341 1266342 1266343 1266345 1266349 1266350 1266351 1266352 1266353 1266355 1266356 1266357 CVE-2026-34180 CVE-2026-34181 CVE-2026-34183 CVE-2026-42766 CVE-2026-42767 CVE-2026-42768 CVE-2026-42769 CVE-2026-42770 CVE-2026-45445 CVE-2026-45446 CVE-2026-45447 CVE-2026-7383 CVE-2026-9076 ----------------------------------------------------------------- The container bci/rust was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2648-1 Released: Fri Jun 26 13:05:57 2026 Summary: Security update for openssl-3 Type: security Severity: important References: 1266340,1266341,1266342,1266343,1266345,1266349,1266350,1266351,1266352,1266353,1266355,1266356,1266357,CVE-2026-34180,CVE-2026-34181,CVE-2026-34183,CVE-2026-42766,CVE-2026-42767,CVE-2026-42768,CVE-2026-42769,CVE-2026-42770,CVE-2026-45445,CVE-2026-45446,CVE-2026-45447,CVE-2026-7383,CVE-2026-9076 This update for openssl-3 fixes the following issues - CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion (bsc#1266340). - CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption (bsc#1266341). - CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing (bsc#1266342). - CVE-2026-34181: PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys (bsc#1266343). - CVE-2026-34183: Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler (bsc#1266345). - CVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryption (bsc#1266349). - CVE-2026-42767: NULL Pointer Dereference in CRMF EncryptedValue Decryption (bsc#1266350). - CVE-2026-42768: Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt() (bsc#1266351). - CVE-2026-42769: Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate (bsc#1266352). - CVE-2026-42770: FFC-DH Peer Validation Uses Attacker-Supplied q (bsc#1266353). - CVE-2026-45445: AES-OCB IV Ignored on EVP_Cipher() Path (bsc#1266355). - CVE-2026-45446: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes (bsc#1266356). - CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2661-1 Released: Fri Jun 26 15:15:48 2026 Summary: Recommended update for curl Type: recommended Severity: important References: 1264971 This update for curl fixes the following issues: - Call http_size() first to prioritize Transfer-Encoding: chunked over a zero Content-Length empty body check (bsc#1264971) The following package changes have been done: - libopenssl3-3.2.3-150700.5.36.1 updated - libopenssl-3-fips-provider-3.2.3-150700.5.36.1 updated - libcurl4-8.14.1-150700.7.17.1 updated - container:registry.suse.com-bci-bci-base-15.7-d2aab68ae05470b62bbe38c4ca03ff5bf72b405197482ed96e34dd0087d7bde2-0 updated From sle-container-updates at lists.suse.com Thu Jul 2 08:14:42 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Thu, 2 Jul 2026 10:14:42 +0200 (CEST) Subject: SUSE-CU-2026:6695-1: Security update of bci/bci-sle15-kernel-module-devel Message-ID: <20260702081442.19711FF02@maintenance.suse.de> SUSE Container Update Advisory: bci/bci-sle15-kernel-module-devel ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6695-1 Container Tags : bci/bci-sle15-kernel-module-devel:15.7 , bci/bci-sle15-kernel-module-devel:15.7-60.10 , bci/bci-sle15-kernel-module-devel:latest Container Release : 60.10 Severity : important Type : security References : 1256668 1260531 1261900 1262085 1262392 1262617 1262620 1262674 1262748 1262798 1262993 1263057 1263123 1263124 1263137 1263178 1263563 1263568 1263578 1263930 1263934 1263993 1263996 1264045 1264076 1264080 1264137 1264239 1264266 1264437 1264444 1264470 1264549 1264561 1264595 1264603 1264610 1264741 1264763 1265103 1265143 1265450 1265628 1266290 1266390 1266397 1266698 1266704 1266705 1266840 1266878 1266895 1266903 1266916 1266922 1266933 1267189 1267208 1267251 1267361 1267387 1267431 1267621 1267624 1267628 1267651 1267654 1267685 1267744 CVE-2025-10263 CVE-2025-68822 CVE-2026-23392 CVE-2026-31414 CVE-2026-31429 CVE-2026-31452 CVE-2026-31453 CVE-2026-31469 CVE-2026-31492 CVE-2026-31495 CVE-2026-31499 CVE-2026-31500 CVE-2026-31555 CVE-2026-31560 CVE-2026-31592 CVE-2026-31593 CVE-2026-31664 CVE-2026-31665 CVE-2026-31674 CVE-2026-31680 CVE-2026-31693 CVE-2026-31752 CVE-2026-31759 CVE-2026-43023 CVE-2026-43024 CVE-2026-43028 CVE-2026-43035 CVE-2026-43036 CVE-2026-43049 CVE-2026-43077 CVE-2026-43083 CVE-2026-43101 CVE-2026-43112 CVE-2026-43119 CVE-2026-43158 CVE-2026-43171 CVE-2026-43187 CVE-2026-43198 CVE-2026-43239 CVE-2026-43339 CVE-2026-43345 CVE-2026-43405 CVE-2026-43469 CVE-2026-43491 CVE-2026-45840 CVE-2026-45841 CVE-2026-45862 CVE-2026-45870 CVE-2026-45894 CVE-2026-45940 CVE-2026-45961 CVE-2026-45964 CVE-2026-45965 CVE-2026-45974 CVE-2026-46005 CVE-2026-46037 CVE-2026-46101 CVE-2026-46119 CVE-2026-46123 CVE-2026-46150 CVE-2026-46160 CVE-2026-46162 CVE-2026-46172 CVE-2026-46244 CVE-2026-46259 CVE-2026-46273 CVE-2026-5704 ----------------------------------------------------------------- The container bci/bci-sle15-kernel-module-devel was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2714-1 Released: Tue Jun 30 14:02:53 2026 Summary: Security update for tar Type: security Severity: important References: 1261900,1265450,1267189,CVE-2026-5704 This update for tar fixes the following issues Security fixes: - CVE-2026-5704: crafted archives can be used to to hide file injection (bsc#1261900). Other fixes: - Fix tar changing dir permissions temporarily even when using --no-overwrite-dir. - Fix --dereference/-h not working properly after CVE-2025-45582 fix (bsc#1265450). - Fix extraction failure for paths like 'a/./b' caused by the gnulib openat2 implementation (bsc#1267189). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2722-1 Released: Wed Jul 1 15:35:13 2026 Summary: Security update for the Linux Kernel Type: security Severity: important References: 1256668,1260531,1262085,1262392,1262617,1262620,1262674,1262748,1262798,1262993,1263057,1263123,1263124,1263137,1263178,1263563,1263568,1263578,1263930,1263934,1263993,1263996,1264045,1264076,1264080,1264137,1264239,1264266,1264437,1264444,1264470,1264549,1264561,1264595,1264603,1264610,1264741,1264763,1265103,1265143,1265628,1266290,1266390,1266397,1266698,1266704,1266705,1266840,1266878,1266895,1266903,1266916,1266922,1266933,1267208,1267251,1267361,1267387,1267431,1267621,1267624,1267628,1267651,1267654,1267685,1267744,CVE-2025-10263,CVE-2025-68822,CVE-2026-23392,CVE-2026-31414,CVE-2026-31429,CVE-2026-31452,CVE-2026-31453,CVE-2026-31469,CVE-2026-31492,CVE-2026-31495,CVE-2026-31499,CVE-2026-31500,CVE-2026-31555,CVE-2026-31560,CVE-2026-31592,CVE-2026-31593,CVE-2026-31664,CVE-2026-31665,CVE-2026-31674,CVE-2026-31680,CVE-2026-31693,CVE-2026-31752,CVE-2026-31759,CVE-2026-43023,CVE-2026-43024,CVE-2026-43028,CVE-2026-43035,CVE-2026-43036,CVE-2026-43049,CVE-2026-43077,CVE-202 6-43083,CVE-2026-43101,CVE-2026-43112,CVE-2026-43119,CVE-2026-43158,CVE-2026-43171,CVE-2026-43187,CVE-2026-43198,CVE-2026-43239,CVE-2026-43339,CVE-2026-43345,CVE-2026-43405,CVE-2026-43469,CVE-2026-43491,CVE-2026-45840,CVE-2026-45841,CVE-2026-45862,CVE-2026-45870,CVE-2026-45894,CVE-2026-45940,CVE-2026-45961,CVE-2026-45964,CVE-2026-45965,CVE-2026-45974,CVE-2026-46005,CVE-2026-46037,CVE-2026-46101,CVE-2026-46119,CVE-2026-46123,CVE-2026-46150,CVE-2026-46160,CVE-2026-46162,CVE-2026-46172,CVE-2026-46244,CVE-2026-46259,CVE-2026-46273 The SUSE Linux Enterprise 15 SP7 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2025-10263: arm64: errata: Mitigate TLBI errata on various Arm CPUs (bsc#1266290). - CVE-2025-68822: Input: alps - fix use-after-free bugs caused by dev3_register_work (bsc#1256668). - CVE-2026-23392: netfilter: nf_tables: release flowtable after rcu grace period on error (bsc#1260531). - CVE-2026-31414: netfilter: nf_conntrack_expect: use expect->helper (bsc#1262085). - CVE-2026-31429: net: skb: fix cross-cache free of KFENCE-allocated skb head (bsc#1262392). - CVE-2026-31452: ext4: convert inline data to extents when truncate exceeds inline size (bsc#1262620). - CVE-2026-31469: virtio_net: Fix UAF on dst_ops when IFF_XMIT_DST_RELEASE is cleared and napi_tx is false - CVE-2026-31492: RDMA/irdma: Initialize free_qp completion before using it (bsc#1262748). - CVE-2026-31495: netfilter: ctnetlink: use netlink policy range checks (bsc#1262798). - CVE-2026-31499: Bluetooth: L2CAP: Fix deadlock in l2cap_conn_del() (bsc#1262674). - CVE-2026-31500: Bluetooth: btintel: serialize btintel_hw_error() with hci_req_sync_lock (bsc#1262993). - CVE-2026-31555: futex: Clear stale exiting pointer in futex_lock_pi() retry path (bsc#1263178). - CVE-2026-31560: spi: spi-dw-dma: fix print error log when wait finish transaction (bsc#1263057). - CVE-2026-31592: KVM: SEV: Protect *all* of sev_mem_enc_register_region() with kvm->lock (bsc#1263123). - CVE-2026-31593: KVM: SEV: Reject attempts to sync VMSA of an already-launched/encrypted vCPU (bsc#1263124). - CVE-2026-31664: string.h: Introduce memset_after() for wiping trailing members/padding (bsc#1263578). - CVE-2026-31665: kABI: netfilter: nft_ct: fix use-after-free in timeout object destroy (bsc#1263137). - CVE-2026-31674: netfilter: ip6t_rt: reject oversized addrnr in rt_mt6_check() (bsc#1263568). - CVE-2026-31680: net: ipv6: flowlabel: defer exclusive option free until RCU teardown (bsc#1263563). - CVE-2026-31693: cifs: some missing initializations on replay (bsc#1267744). - CVE-2026-31752: bridge: br_nd_send: validate ND option lengths (bsc#1264045). - CVE-2026-31759: usb: ulpi: fix double free in ulpi_register_interface() error path (bsc#1264076). - CVE-2026-43023: Bluetooth: SCO: fix race conditions in sco_sock_connect() (bsc#1264137). - CVE-2026-43024: netfilter: nf_tables: reject immediate NF_QUEUE verdict (bsc#1263930). - CVE-2026-43028: netfilter: x_tables: ensure names are nul-terminated (bsc#1263934). - CVE-2026-43035: net: sched: cls_api: fix tc_chain_fill_node to initialize tcm_info to zero to prevent an info-leak (bsc#1263996). - CVE-2026-43036: net: use skb_header_pointer() for TCPv4 GSO frag_off check (bsc#1263993). - CVE-2026-43049: HID: logitech-hidpp: Prevent use-after-free on force feedback initialisation failure (bsc#1264080). - CVE-2026-43077: crypto: algif_aead - Fix minimum RX size check for decryption (bsc#1264470). - CVE-2026-43083: net: ioam6: fix OOB and missing lock (bsc#1264266). - CVE-2026-43101: ipv6: ioam: fix potential NULL dereferences in __ioam6_fill_trace_data() (bsc#1264239). - CVE-2026-43112: fs/smb/client: fix out-of-bounds read in cifs_sanitize_prepath (bsc#1264437). - CVE-2026-43119: Bluetooth: hci_sync: annotate data-races around hdev->req_status (bsc#1264561). - CVE-2026-43158: xfs: fix freemap adjustments when adding xattrs to leaf blocks (bsc#1264595). - CVE-2026-43171: EFI/CPER: do not dump the entire memory region (bsc#1264549). - CVE-2026-43187: xfs: delete attr leaf freemap entries when empty (bsc#1264603). - CVE-2026-43198: tcp: fix potential race in tcp_v6_syn_recv_sock() (bsc#1264610). - CVE-2026-43239: smb: client: prevent races in ->query_interfaces() (bsc#1264444). - CVE-2026-43339: ipv6: prevent possible UaF in addrconf_permanent_addr() (bsc#1264763). - CVE-2026-43345: net: ipa: fix event ring index not programmed for IPA v5.0+ (bsc#1265103). - CVE-2026-43405: libceph: Use u32 for non-negative values in ceph_monmap_decode() (bsc#1264741). - CVE-2026-43469: xprtrdma: Decrement re_receiving on the early exit paths (bsc#1265143). - CVE-2026-43491: net: qrtr: ns: Limit the maximum server registration per node (bsc#1265628). - CVE-2026-45840: openvswitch: cap upcall PID array size and pre-size vport replies (bsc#1266397). - CVE-2026-45841: netfilter: nfnetlink_osf: fix divide-by-zero in OSF_WSS_MODULO (bsc#1266390). - CVE-2026-45862: iommu/vt-d: Flush cache for PASID table before using it (bsc#1266705). - CVE-2026-45870: SUNRPC: auth_gss: fix memory leaks in XDR decoding error paths (bsc#1266704). - CVE-2026-45894: iommu/vt-d: Clear Present bit before tearing down PASID entry (bsc#1266895). - CVE-2026-45940: net: stmmac: fix oops when split header is enabled (bsc#1266916). - CVE-2026-45961: gfs2: fix memory leaks in gfs2_fill_super error path (bsc#1266933). - CVE-2026-45964: SUNRPC: fix gss_auth kref leak in gss_alloc_msg error path (bsc#1266698). - CVE-2026-45965: apparmor: fix invalid deref of rawdata when export_binary is unset (bsc#1267208). - CVE-2026-45974: btrfs: fix invalid leaf access in btrfs_quota_enable() if ref key not found (bsc#1266922). - CVE-2026-46005: xfs: fix a resource leak in xfs_alloc_buftarg() (bsc#1267431). - CVE-2026-46037: ipv4: icmp: validate reply type before using icmp_pointers (bsc#1267361). - CVE-2026-46101: netfilter: reject zero shift in nft_bitwise (bsc#1266878). - CVE-2026-46119: libceph: Fix slab-out-of-bounds access in auth message processing (bsc#1267628). - CVE-2026-46123: Bluetooth: virtio_bt: clamp rx length before skb_put (bsc#1267621). - CVE-2026-46150: fanotify: fix false positive on permission events (bsc#1267387). - CVE-2026-46160: btrfs: fix missing last_unlink_trans update when removing a directory (bsc#1267624). - CVE-2026-46162: ice: fix double free in ice_sf_eth_activate() error path (bsc#1266840). - CVE-2026-46172: ipv6: xfrm6: release dst on error in xfrm6_rcv_encap() (bsc#1266903). - CVE-2026-46244: netfilter: nft_inner: Fix IPv6 inner_thoff desync (bsc#1267654). - CVE-2026-46259: procfs: fix missing RCU protection when reading real_parent in do_task_stat() (bsc#1267685). - CVE-2026-46273: ibmveth: Disable GSO for packets with small MSS (bsc#1267651). The following non-security bugs were fixed: - ACPI: CPPC: Suppress UBSAN warning caused by field misuse (git-fixes). - ACPI: IPMI: Fix message kref handling on dead device (git-fixes). - ACPI: NFIT: core: Fix possible NULL pointer dereference (git-fixes). - ALSA: aloop: Drop superfluous break (git-fixes). - ALSA: cmipci: check snd_ctl_new1() return value (git-fixes). - ALSA: core: Fix unintuitive behavior of snd_power_ref_and_wait() (git-fixes). - ALSA: es1938: check snd_ctl_new1() return value (git-fixes). - ALSA: gus: check snd_ctl_new1() return value (git-fixes). - ALSA: hda/cs35l41: Fix firmware load work teardown (git-fixes). - ALSA: ice1712: check snd_ctl_new1() return value (git-fixes). - ALSA: seq: Clear variable event pointer on read (git-fixes). - ALSA: seq: Fix kernel heap address leak in bounce_error_event() (git-fixes). - ALSA: seq: Fix partial userptr event expansion (git-fixes). - ALSA: seq: midi: Serialize output teardown with event_input (git-fixes). - ALSA: usb-audio: Propagate US-16x08 write errors in route/mix EQ-switch put callbacks (git-fixes). - ALSA: usb-audio: Propagate errors in scarlett_ctl_enum_put() (git-fixes). - ALSA: usb-audio: Roll back quirk control caches on write errors (git-fixes). - ALSA: usb-audio: Update Babyface Pro control caches only after successful writes (git-fixes). - ALSA: usb-audio: Update US-16x08 EQ/comp shadow state after successful writes (git-fixes). - ALSA: virtio: Add missing 384 kHz PCM rate mapping (git-fixes). - ALSA: ymfpci: check snd_ctl_new1() return value (git-fixes). - ASoC: SOF: ipc3-control: Fix TOCTOU in bytes_put and bytes_get (git-fixes). - ASoC: SOF: ipc3-control: Fix heap overflow in bytes_ext put/get (git-fixes). - ASoC: SOF: ipc3-control: Use overflow checks in control_update size calc (git-fixes). - ASoC: SOF: ipc3-control: Validate size in snd_sof_update_control (git-fixes). - ASoC: SOF: ipc4-control: Fix TOCTOU in sof_ipc4_bytes_put (git-fixes). - ASoC: SOF: topology: validate vendor array size before parsing (git-fixes). - ASoC: adau1372: Clear PLL_EN on failed PLL lock without reset GPIO (git-fixes). - ASoC: codecs: hdac_hdmi: Validate written enum value (git-fixes). - ASoC: cs35l56: Cleanup if component_probe fails (git-fixes). - ASoC: cs35l56: Do not leave parent IRQ disabled if system_suspend fails (git-fixes). - ASoC: cs35l56: Fix missing calls to wm_adsp2_remove() (git-fixes). - ASoC: fsl: fsl_audmix: Validate written enum values (git-fixes). - ASoC: mediatek: mt8183: Release reserved memory on cleanup (git-fixes). - ASoC: mediatek: mt8192: Release reserved memory on cleanup (git-fixes). - ASoC: meson: aiu: Validate written enum values (git-fixes). - ASoC: tegra: tegra210_ahub: Validate written enum value (git-fixes). - ASoC: topology: Check PCM and DAI name strings before use (git-fixes). - ASoC: wm_adsp: Fix NULL dereference when removing firmware controls (git-fixes). - Bluetooth: btmtk: fix URB leak in alloc_mtk_intr_urb error path (git-fixes). - Bluetooth: btmtksdio: fix infinite loop in btmtksdio_txrx_work() (git-fixes). - Bluetooth: btusb: fix use-after-free on marvell probe failure (git-fixes). - Bluetooth: btusb: fix use-after-free on registration failure (git-fixes). - Bluetooth: btusb: fix wakeup irq devres lifetime (git-fixes). - Bluetooth: btusb: fix wakeup source leak on probe failure (git-fixes). - Bluetooth: eir: Fix stack OOB write when prepending the Flags AD (git-fixes). - Bluetooth: hci: validate codec capability element length (git-fixes). - Bluetooth: hci_qca: fix NULL pointer dereference in qca_dmp_hdr() for non-serdev device (git-fixes). - Bluetooth: vhci: validate devcoredump state before side effects (git-fixes). - KVM: SEV: Ignore MMIO requests of length '0' (git-fixes). - KVM: SEV: Ignore Port I/O requests of length '0' (git-fixes). - KVM: SVM: Allow KVM_SET_NESTED_STATE to clear GIF when SVME==0 (git-fixes). - KVM: SVM: Do not set GIF when clearing EFER.SVME (git-fixes). - KVM: SVM: Flush the current TLB when transitioning from xAVIC => x2AVIC (git-fixes). - KVM: SVM: check validity of VMCB controls when returning from SMM (git-fixes). - KVM: arm64: Discard PC update state on vcpu reset (git-fixes). - KVM: arm64: Guard against NULL vcpu on VHE hyp panic path (git-fixes). - KVM: arm64: PMU: Preserve AArch32 counter low bits (git-fixes). - KVM: arm64: Treat vCPU with pending SError as runnable (git-fixes). - KVM: arm64: Wake-up from WFI when iqrchip is in userspace (git-fixes). - KVM: arm64: vgic-its: Reject restored DTE with out-of-range num_eventid_bits (git-fixes). - KVM: arm64: vgic: Fix IIDR revision field extracted from wrong value (git-fixes). - KVM: nSVM: Always use vmcb01 in VMLOAD/VMSAVE emulation (git-fixes). - KVM: nSVM: Ensure AVIC is inhibited when restoring a vCPU to guest mode (git-fixes). - KVM: nSVM: Mark all of vmcb02 dirty when restoring nested state (git-fixes). - KVM: x86/mmu: Fix UBSAN warning when reading nx_huge_pages parameter (git-fixes). - PM: sleep: Use complete() in device_pm_sleep_init() (git-fixes). - USB: serial: io_ti: fix heap overflow in build_i2c_fw_hdr() (git-fixes). - USB: serial: io_ti: fix heap overflow in get_manuf_info() (git-fixes). - USB: serial: kl5kusb105: fix bulk-out buffer overflow (git-fixes). - X.509: Fix validation of ASN.1 certificate header (git-fixes). - accel/ivpu: Fix signed integer truncation in IPC receive (git-fixes). - agp/amd64: Fix broken error propagation in agp_amd64_probe() (git-fixes). - batman-adv: bla: annotate lasttime access with READ/WRITE_ONCE (git-fixes). - batman-adv: tp_meter: add only finished tp_vars to lists (git-fixes). - batman-adv: tp_meter: avoid divide-by-zero for dec_cwnd (git-fixes). - batman-adv: tp_meter: avoid window underflow (git-fixes). - batman-adv: tp_meter: fix fast recovery precondition (git-fixes). - batman-adv: tp_meter: handle seqno wrap-around for fast recovery detection (git-fixes). - batman-adv: tp_meter: initialize dec_cwnd explicitly (git-fixes). - batman-adv: tp_meter: initialize dup_acks explicitly (git-fixes). - batman-adv: tp_meter: keep unacked list in ascending ordered (git-fixes). - crypto: af_alg - Cap AEAD AD length to 0x80000000 (git-fixes). - crypto: amlogic - avoid double cleanup in meson_crypto_probe() (git-fixes). - crypto: asymmetric_keys - fix OOB read in pefile_digest_pe_contents (git-fixes). - crypto: atmel-sha204a - fix blocking and non-blocking rng logic (git-fixes). - crypto: cavium/cpt - fix DMA cleanup using wrong loop index (git-fixes). - crypto: ccp - Fix snp_filter_reserved_mem_regions() off-by-one (git-fixes). - crypto: ccp - Treat zero-length cert chain as query for blob lengths (git-fixes). - crypto: drbg - Fix drbg_max_addtl() on 64-bit kernels (git-fixes). - crypto: drbg - Fix returning success on failure in CTR_DRBG (git-fixes). - crypto: drbg - Fix the fips_enabled priority boost (git-fixes). - crypto: ecc - Fix carry overflow in vli multiplication (git-fixes). - crypto: ecrdsa - fix unknown OID check in ecrdsa_param_curve (git-fixes). - crypto: hisilicon/qm - disable error report before flr (git-fixes). - crypto: marvell/octeontx - fix DMA cleanup using wrong loop index (git-fixes). - crypto: pcrypt - restore callback for non-parallel fallback (git-fixes). - crypto: qat - protect service table iterations with service_lock (git-fixes). - crypto: qat - validate RSA CRT component lengths (git-fixes). - crypto: rng - Free default RNG on module exit (git-fixes). - driver core: reject devices with unregistered buses (git-fixes). - driver core: use READ_ONCE() for dev->driver in dev_has_sync_state() (git-fixes). - drm/amd/display: Add missing kdoc for ALLM parameters (git-fixes). - drm/amd/pm: remove trailing semicolon from AMDGPU_PM_POLICY_ATTR macro (git-fixes). - drm/amdgpu: fix integer overflow in amdgpu_gem_align_pitch() (git-fixes). - drm/amdgpu: set sub_block_index for mca ras sub-blocks (git-fixes). - drm/amdkfd: Validate CRIU-restored IDs before idr_alloc (git-fixes). - drm/amdkfd: always resume_all after suspend_all (git-fixes). - drm/bridge: cdns-dsi: Replace deprecated UNIVERSAL_DEV_PM_OPS() (git-fixes). - drm/dp/mst: fix OOB reads in remote DPCD/I2C sideband reply parsers (git-fixes). - drm/dp/mst: fix OOB reads on 2-byte fields in sideband reply parsers (git-fixes). - drm/dp/mst: fix buffer overflows in sideband chunk accumulation (git-fixes). - drm/gpuvm: Do not prepare NULL objects (git-fixes). - drm/hisilicon/hibmc: move display contrl config to hibmc_probe() (git-fixes). - drm/hisilicon/hibmc: use clock to look up the PLL value (git-fixes). - drm/hyperv: use VMBUS_RING_SIZE() (git-fixes). - drm/i915/gem: Fix phys BO pread/pwrite with offset (git-fixes). - drm/imagination: Count paired job fence as dependency in prepare_job() (git-fixes). - drm/imagination: Fit paired fragment job in the correct CCCB (git-fixes). - drm/msm/dp: Fix the ISR_* enum values (git-fixes). - drm/msm/dp: fix HPD state status bit shift value (git-fixes). - drm/nouveau/bios: specify correct display fuse register for Ampere and Ada (git-fixes). - drm/panthor: Fix kernel-doc warning in panthor_sched.c (git-fixes). - drm/radeon: fix integer overflow in radeon_align_pitch() (git-fixes). - drm/radeon: fix memory leak in radeon_ring_restore() on lock failure (git-fixes). - drm/rockchip: cdn-dp: add missing check in cdn_dp_config_video() (git-fixes). - drm/syncobj: Fix memory leak in drm_syncobj_find_fence() (git-fixes). - drm/tegra: Fix iommu_map_sgtable() return value check (git-fixes). - drm/tegra: dc: Fix device node reference leak in tegra_dc_has_output() (git-fixes). - drm/tidss: Drop extra drm_mode_config_reset() call (git-fixes). - drm/tidss: Fix missing drm_bridge_add() call (git-fixes). - drm/vc4: fix krealloc() memory leak (git-fixes). - drm/virtio: Fix driver removal with disabled KMS (git-fixes). - drm/virtio: fix dma_fence refcount leak on error in virtio_gpu_dma_fence_wait() (git-fixes). - drm/xe: fix refcount leak in xe_range_fence_insert() (git-fixes). - drm: renesas: rzg2l_mipi_dsi: Increase reset deassertion delay (git-fixes). - fbdev: broadsheetfb: fix potential memory leak in broadsheetfb_probe() (git-fixes). - fbdev: hecubafb: fix potential memory leak in hecubafb_probe() (git-fixes). - fbdev: i740fb: fix potential memory leak in i740fb_probe() (git-fixes). - fbdev: metronomefb: fix potential memory leak in metronomefb_probe() (git-fixes). - fbdev: modedb: Fix misaligned fields in the 1920x1080-60 mode (git-fixes). - fbdev: nvidia: fix potential memory leak in nvidiafb_probe() (git-fixes). - fbdev: radeon: fix potential memory leak in radeonfb_pci_register() (git-fixes). - fbdev: s3fb: fix potential memory leak in s3_pci_probe() (git-fixes). - fbdev: sm501fb: Fix buffer errors in OF binding code (git-fixes). - fbdev: sm712: Fix operator precedence in big_swap macro (git-fixes). - fbdev: tdfxfb: fix potential memory leak in tdfxfb_probe() (git-fixes). - fbdev: tridentfb: fix potential memory leak in trident_pci_probe() (git-fixes). - fbdev: uvesafb: fix potential memory leak in uvesafb_probe() (git-fixes). - fbdev: vesafb: fix memory leak in vesafb_probe() (git-fixes). - firmware: arm_scmi: Fix OOB in scmi_power_name_get() (git-fixes). - firmware: arm_scmi: Read sensor config as 32-bit value (git-fixes). - firmware_loader: Fix recursive lock in device_cache_fw_images() (git-fixes). - firmware_loader: fix device reference leak in firmware_upload_register() (git-fixes). - gpio: mvebu: fix NULL pointer dereference in suspend/resume (git-fixes). - gpu: host1x: Allow entries in BO caches to be freed (git-fixes). - gpu: host1x: Fix iommu_map_sgtable() return value check (git-fixes). - hwmon: (it87) Clamp negative values to zero in set_fan() (git-fixes). - hwrng: jh7110 - fix refcount leak in starfive_trng_read() (git-fixes). - hwrng: virtio: clamp device-reported used.len at copy_data() (git-fixes). - i2c: core: fix irq domain leak on adapter registration failure (git-fixes). - i2c: qcom-cci: Fix NULL pointer dereference in cci_remove() (git-fixes). - i2c: stm32f7: fix timing computation ignoring i2c-analog-filter (git-fixes). - i2c: tegra: Fix NOIRQ suspend/resume (git-fixes). - ice: ptp: do not WARN when controlling PF is unavailable (bsc#1267251). - misc: fastrpc: Fix NULL pointer dereference in rpmsg callback (git-fixes). - misc: fastrpc: fix DMA address corruption due to find_vma misuse (git-fixes). - misc: fastrpc: fix use-after-free of fastrpc_user in workqueue context (git-fixes). - misc: fastrpc: fix use-after-free race in fastrpc_map_create (git-fixes). - of: cpu: add check in __of_find_n_match_cpu_property() (git-fixes). - scripts/submit_branch: add SLE15-SP7 submission script - serial: 8250: dispatch SysRq character in serial8250_handle_irq() (git-fixes). - serial: 8250_dw: dispatch SysRq character in dw8250_handle_irq() (git-fixes). - slimbus: qcom-ngd-ctrl: fix OF node refcount (git-fixes). - soc: fsl: qe: panic on ioremap() failure in qe_reset() (git-fixes). - soc: ti: k3-ringacc: Fix access mode for k3_ringacc_ring_pop_tail_io/proxy (git-fixes). - spi: at91-usart: drop dead runtime pm support (git-fixes). - spi: ep93xx: fix double-free of zeropage on DMA setup failure (git-fixes). - spi: fsl-lpspi: replace dmaengine_terminate_all() with dmaengine_terminate_sync() (git-fixes). - spi: fsl-lpspi: terminate the RX channel on TX prepare failure path (git-fixes). - spi: meson-spifc: fix runtime PM leak on remove (git-fixes). - spi: xilinx: use FIFO occupancy register to determine buffer size (git-fixes). - thermal: hwmon: Fix critical temperature attribute removal (git-fixes). - thunderbolt: Bound root directory content to block size (git-fixes). - thunderbolt: Clamp XDomain response data copy to allocation size (git-fixes). - thunderbolt: Limit XDomain response copy to actual frame size (git-fixes). - thunderbolt: Reject zero-length property entries in validator (git-fixes). - thunderbolt: Validate XDomain request packet size before type cast (git-fixes). - watchdog: apple: Add 'apple,t8103-wdt' compatible (git-fixes). - watchdog: sp5100_tco: Use EFCH MMIO for newer Hygon FCH (git-fixes). - watchdog: sprd_wdt: Remove redundant sprd_wdt_disable() on register failure (git-fixes). - watchdog: unregister PM notifier on watchdog unregister (git-fixes). - wifi: ath11k: fix warning when unbinding (git-fixes). - wifi: ath9k: fix OOB access from firmware tx status queue ID (git-fixes). - wifi: cfg80211: fix grammar in MLO group key error message (git-fixes). - wifi: mac80211: fix monitor mode frame capture for real chanctx drivers (git-fixes). - wifi: mt76: fix argument to ieee80211_is_first_frag() (git-fixes). - wifi: mt76: mt7915: fix potential tx_retries underflow (git-fixes). - wifi: mt76: mt7921: fix potential tx_retries underflow (git-fixes). - wifi: mt76: mt7925: clean up DMA on probe failure (git-fixes). - wifi: mt76: mt7925: fix potential tx_retries underflow (git-fixes). - wifi: mt76: mt7996: fix potential tx_retries underflow (git-fixes). - wifi: rtlwifi: rtl8821ae: Fix C2H bit location in RX descriptor (git-fixes). - wifi: rtw88: fix OOB read from firmware RX descriptor exceeding DMA buffer (git-fixes). - wifi: rtw88: increase TX report timeout to fix race condition (git-fixes). - wifi: rtw88: usb: fix memory leaks on USB write failures (git-fixes). - wifi: rtw89: Correct data type for scan index to avoid infinite loop (git-fixes). - wifi: wcn36xx: fix OOB read from firmware count in PRINT_REG_INFO indication (git-fixes). - wifi: wcn36xx: fix OOB read from short trigger BA firmware response (git-fixes). - wifi: wcn36xx: fix heap overflow from oversized firmware HAL response (git-fixes). The following package changes have been done: - tar-1.34-150000.3.42.1 updated - kernel-macros-6.4.0-150700.53.63.1 updated - kernel-devel-6.4.0-150700.53.63.1 updated - kernel-default-devel-6.4.0-150700.53.63.1 updated - kernel-syms-6.4.0-150700.53.63.1 updated - container:registry.suse.com-bci-bci-base-15.7-d2aab68ae05470b62bbe38c4ca03ff5bf72b405197482ed96e34dd0087d7bde2-0 updated From sle-container-updates at lists.suse.com Fri Jul 3 07:03:18 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Fri, 3 Jul 2026 09:03:18 +0200 (CEST) Subject: SUSE-IU-2026:5404-1: Security update of suse-sles-15-sp4-chost-byos-v20260701-x86_64-gen2 Message-ID: <20260703070318.610F6FCC9@maintenance.suse.de> SUSE Image Update Advisory: suse-sles-15-sp4-chost-byos-v20260701-x86_64-gen2 ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5404-1 Image Tags : suse-sles-15-sp4-chost-byos-v20260701-x86_64-gen2:20260701 Image Release : Severity : important Type : security References : 1158038 1204562 1239718 1246504 1247948 1249435 1252744 1253193 1253740 1254324 1255416 1257068 1257235 1257882 1258193 1258538 1259311 1259327 1259642 1259706 1259802 1259842 1260296 1260531 1261206 1261427 1261430 1261441 1261546 1261606 1261700 1261833 1261900 1262043 1262395 1262464 1262465 1262663 1262948 1262993 1263366 1263367 1263769 1263790 1263879 1263880 1263940 1263995 1264066 1264076 1264093 1264116 1264470 1264551 1264568 1264610 1264706 1264707 1264708 1264965 1265221 1265223 1265267 1265349 1265360 1265450 1265591 1265592 1265594 1265794 1265935 1265938 1266001 1266009 1266039 1266214 1266238 1266290 1266340 1266341 1266342 1266349 1266357 1266640 1266711 1266798 1266799 1266800 1266801 1266802 1266901 1266952 1266953 1266955 1266969 1267189 1267205 1267214 1267220 1267361 1267369 1267381 1267387 1267389 1267426 1267621 1267640 1267652 1267697 1267874 1268012 1268013 1268322 CVE-2024-58251 CVE-2025-10263 CVE-2025-54518 CVE-2025-68324 CVE-2026-11822 CVE-2026-11824 CVE-2026-12505 CVE-2026-23392 CVE-2026-24401 CVE-2026-25707 CVE-2026-27456 CVE-2026-3039 CVE-2026-31405 CVE-2026-31473 CVE-2026-31500 CVE-2026-31613 CVE-2026-31629 CVE-2026-31697 CVE-2026-31698 CVE-2026-31699 CVE-2026-31758 CVE-2026-31759 CVE-2026-33186 CVE-2026-33814 CVE-2026-33948 CVE-2026-34180 CVE-2026-34933 CVE-2026-3497 CVE-2026-34986 CVE-2026-35385 CVE-2026-35388 CVE-2026-35414 CVE-2026-3592 CVE-2026-39821 CVE-2026-39881 CVE-2026-40355 CVE-2026-40356 CVE-2026-4046 CVE-2026-42307 CVE-2026-42487 CVE-2026-42488 CVE-2026-42489 CVE-2026-42490 CVE-2026-42766 CVE-2026-43037 CVE-2026-43077 CVE-2026-43198 CVE-2026-43206 CVE-2026-43499 CVE-2026-43501 CVE-2026-43961 CVE-2026-44431 CVE-2026-44656 CVE-2026-44932 CVE-2026-44933 CVE-2026-44941 CVE-2026-44942 CVE-2026-45130 CVE-2026-45447 CVE-2026-45852 CVE-2026-45970 CVE-2026-45984 CVE-2026-46021 CVE-2026-46037 CVE-2026-46043 CVE-2026-46113 CVE-2026-46116 CVE-2026-46120 CVE-2026-46123 CVE-2026-46150 CVE-2026-46159 CVE-2026-46197 CVE-2026-46227 CVE-2026-46243 CVE-2026-46483 CVE-2026-48522 CVE-2026-48523 CVE-2026-48524 CVE-2026-48525 CVE-2026-48526 CVE-2026-48863 CVE-2026-5450 CVE-2026-5704 CVE-2026-5928 CVE-2026-5946 CVE-2026-6893 CVE-2026-7383 CVE-2026-9076 CVE-2026-9149 CVE-2026-9150 ----------------------------------------------------------------- The container suse-sles-15-sp4-chost-byos-v20260701-x86_64-gen2 was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2277-1 Released: Fri Jun 5 10:59:09 2026 Summary: Recommended update for timezone Type: recommended Severity: important References: 1264965 This update for timezone fixes the following issues: - Update to 2026b: * British Columbia moved to permanent -07 on 2026-03-09. (bsc#1264965) * Some more overflow bugs have been fixed in zic. - Update to 2026a: * Moldova has used EU transition times since 2022. * The 'right' TZif files are no longer installed by default. * -DTZ_RUNTIME_LEAPS=0 disables runtime support for leap seconds. * TZif files are no longer limited to 50 bytes of abbreviations. * zic is no longer limited to 50 leap seconds. * Several integer overflow bugs have been fixed. - Update to 2025c: * Update Baja California DST rules in 1953, 1961-1975 * An unset TZ is no longer invalid when /etc/localtime is missing, and is abbreviated 'UTC' not '-00'. This reverts to 2024b behavior * tzset etc. are now more cautious about questionable TZ settings. * tzset etc. now treat ' ' like '_' in time zone abbreviations * tzfree now preserves errno, consistently with POSIX.1-2024 'free'. * zic has new options inspired by FreeBSD. * multiple changes visible to developers - Use 'REDO=posix_right' to keep installing 'right' TZif files. ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2283-1 Released: Fri Jun 5 14:14:57 2026 Summary: Security update for jq Type: security Severity: moderate References: 1262043,CVE-2026-33948 This update for jq fixes the following issue - CVE-2026-33948: CLI input parsing may allow validation bypass via embedded NUL bytes (bsc#1262043) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2311-1 Released: Tue Jun 9 13:05:23 2026 Summary: Security update for avahi Type: security Severity: moderate References: 1257235,1261546,CVE-2026-24401,CVE-2026-34933 This update for avahi fixes the following issue: - CVE-2026-24401: uncontrolled recursion in `lookup_handle_cname` can crash the `avahi-daemon` (bsc#1257235). - CVE-2026-34933: reachable assertion in `transport_flags_from_domain` can crash the `avahi-daemon` (bsc#1261546). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2313-1 Released: Tue Jun 9 14:50:30 2026 Summary: Security update for vim Type: security Severity: important References: 1261833,1262395,1264706,1264707,1264708,1265349,1265360,CVE-2026-39881,CVE-2026-42307,CVE-2026-43961,CVE-2026-44656,CVE-2026-45130,CVE-2026-46483 This update for vim fixes the following issues - CVE-2026-39881: command injection in NetBeans interface can lead to arbitrary file reads and writes (bsc#1261833). - CVE-2026-42307: Prior to version 9.2.0383, an OS command injection vulnerability exists in the netrw standard plugin bundled with Vim (bsc#1264706). - CVE-2026-43961: Vimscript Code Injection in netrw NetrwMarkFile() via crafted filename (bsc#1265349). - CVE-2026-44656: Prior to version 9.2.0435, an OS command injection vulnerability exists in Vim's: find command-line completion (bsc#1264707). - CVE-2026-45130: Prior to version 9.2.0450, a heap buffer overflow exists in read_compound() in src/spellfile.c when loading a crafted spell file (.spl) with UTF-8 encoding active (bsc#1264708). - CVE-2026-46483: command injection via ` tar#Vimuntar()` in `runtime/autoload/tar.vim` when decompressing `.tgz` archives on Unix-like systems (bsc#1265360). Changes for vim: - Update to v9.2.0530. - Fix for incorrectly detecting scientific parameter files as bitbake recipies. (bsc#1262395) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2333-1 Released: Wed Jun 10 10:41:58 2026 Summary: Security update for glibc Type: security Severity: important References: 1261206,1262464,1262465,CVE-2026-4046,CVE-2026-5450,CVE-2026-5928 This update for glibc fixes the following issues - CVE-2026-4046: assertion failure when converting inputs may be used to remotely crash an application (bsc#1261206). - CVE-2026-5450: stdio-common: scanf %mc pattern will cause heap overflow when width > 1024 (bsc#1262465). - CVE-2026-5928: libio: ungetwc could be used to leak data on special conditions (bsc#1262464). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2354-1 Released: Wed Jun 10 16:55:33 2026 Summary: Security update for wicked Type: security Severity: important References: 1265221,CVE-2026-44932 This update for wicked fixes the following issues: - CVE-2026-44932: Fixed indirect remote shell command injection via unsanitized DHCP options (bsc#1265221). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2356-1 Released: Wed Jun 10 18:40:21 2026 Summary: Recommended update for dracut Type: recommended Severity: moderate References: 1263940 This update for dracut fixes the following issues: - Update to version 055+suse.363.gea2753a: * fix(systemd): explicitly install /bin/bash (bsc#1263940) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2375-1 Released: Thu Jun 11 18:05:37 2026 Summary: Security update for openssh Type: security Severity: important References: 1259642,1261427,1261430,1261441,1264568,CVE-2026-3497,CVE-2026-35385,CVE-2026-35388,CVE-2026-35414 This update for openssh fixes the following issues - CVE-2026-3497: information disclosure or denial of service due to uninitialized variables (bsc#1259642). - CVE-2026-35385: a file downloaded by scp may be installed setuid or setgid (bsc#1261427). - CVE-2026-35388: omitted connection multiplexing confirmation for proxy-mode multiplexing sessions (bsc#1261441). - CVE-2026-35414: mishandling of authorized_keys principals option (bsc#1261430). - potential security issue when validating mac (bsc#1264568). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2382-1 Released: Fri Jun 12 10:07:34 2026 Summary: Recommended update for hwdata Type: recommended Severity: moderate References: This update for hwdata fixes the following issues: - update to version 0.406: * Update pci and vendor ids - update to version 0.405: * Update pci and vendor ids - Update to version 0.397: * Update pci and vendor ids - Update to version 0.395: * Update pci and vendor ids ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2383-1 Released: Fri Jun 12 11:14:06 2026 Summary: Security update for the Linux Kernel Type: security Severity: important References: 1261700,1263790,1263995,1264093,1264551,1266001,1266009,1266238,1266711,1266901,1266969,1267205,1267220,CVE-2026-31405,CVE-2026-31629,CVE-2026-31758,CVE-2026-43037,CVE-2026-43206,CVE-2026-43499,CVE-2026-43501,CVE-2026-45852,CVE-2026-45970,CVE-2026-46021,CVE-2026-46043,CVE-2026-46113,CVE-2026-46243 The SUSE Linux Enterprise 15 SP4 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2026-31405: media: dvb-net: fix OOB access in ULE extension header tables (bsc#1261700). - CVE-2026-31629: nfc: llcp: add missing return after LLCP_CLOSED checks (bsc#1263790). - CVE-2026-31758: usb: usbtmc: Flush anchored URBs in usbtmc_release (bsc#1264093). - CVE-2026-43037: ip6_tunnel: clear skb2->cb in ip4ip6_err() (bsc#1263995). - CVE-2026-43206: drm/amdkfd: Fix out-of-bounds write in kfd_event_page_set() (bsc#1264551). - CVE-2026-43499: rtmutex: Use waiter::task instead of current in remove_waiter() (bsc#1266001). - CVE-2026-43501: ipv6: rpl: reserve mac_len headroom when recompressed SRH grows (bsc#1266009). - CVE-2026-45852: RDMA/rxe: Fix double free in rxe_srq_from_init (bsc#1266711). - CVE-2026-45970: bonding: alb: fix UAF in rlb_arp_recv during bond up/down (bsc#1267205). - CVE-2026-46021: thermal: core: Fix thermal zone governor cleanup issues (bsc#1267220). - CVE-2026-46043: RDMA/rxe: Validate pad and ICRC before payload_size() in rxe_rcv (bsc#1266901). - CVE-2026-46113: KVM: x86: Fix shadow paging use-after-free due to unexpected GFN (bsc#1266969). - CVE-2026-46243: smb: client: reject userspace cifs.spnego descriptions (bsc#1266238). The following non security issues were fixed: - arm64: tlb: Allow XZR argument to TLBI ops (git-fixes). - arm64: tlb: Optimize ARM64_WORKAROUND_REPEAT_TLBI (git-fixes). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2414-1 Released: Tue Jun 16 14:21:30 2026 Summary: Security update for runc Type: security Severity: important References: This update for runc rebuilds it against the current go security release. ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2434-1 Released: Wed Jun 17 16:40:10 2026 Summary: Recommended update for coreutils Type: recommended Severity: important References: 1259327 This update for coreutils fixes the following issues: - proc: Use affinity mask even on systems with more than 1024 CPUs (bsc#1259327) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2449-1 Released: Thu Jun 18 14:52:09 2026 Summary: Security update for krb5 Type: security Severity: moderate References: 1263366,1263367,CVE-2026-40355,CVE-2026-40356 This update for krb5 fixes the following issues ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2486-1 Released: Mon Jun 22 14:07:07 2026 Summary: Security update for python-urllib3 Type: security Severity: important References: 1265267,CVE-2026-44431 This update for python-urllib3 fixes the following issue - CVE-2026-44431: sensitive information disclosure due to sensitive headers being forwarded across origins in proxied low-level redirects (bsc#1265267). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2528-1 Released: Tue Jun 23 11:06:07 2026 Summary: Security update for sqlite3 Type: security Severity: important References: 1268012,1268013,CVE-2026-11822,CVE-2026-11824 This update for sqlite3 fixes the following issues Update to 3.53.2: - CVE-2026-11822: memory corruption vulnerabilities in the FTS5 full-text search extension that allow attackers to cause process crashes, memory exhaustion, or arbitrary code execution (bsc#1268012). - CVE-2026-11824: heap-based buffer overflow vulnerability in the FTS5 full-text search extension that allows attackers to cause a crash or execute arbitrary code (bsc#1268013). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2613-1 Released: Wed Jun 24 11:01:35 2026 Summary: Security update for xen Type: security Severity: important References: 1264066,1266952,1266953,1266955,CVE-2025-54518,CVE-2026-42487,CVE-2026-42488,CVE-2026-42489,CVE-2026-42490 This update for xen fixes the following issues - CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264066). - CVE-2026-42487: x86 HVM I/O port list traversal (bsc#1266952). - CVE-2026-42488: x86: mismatched mapcache metadata (bsc#1266955). - CVE-2026-42489,CVE-2026-42490: domctl lock open to abuse (bsc#1266953). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2614-1 Released: Wed Jun 24 11:02:07 2026 Summary: Security update for openssl-1_1 Type: security Severity: important References: 1266340,1266341,1266342,1266349,1266357,CVE-2026-34180,CVE-2026-42766,CVE-2026-45447,CVE-2026-7383,CVE-2026-9076 This update for openssl-1_1 fixes the following issues: - CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357). - CVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryption (bsc#1266349). - CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption (bsc#1266341). - CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion (bsc#1266340). - CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing (bsc#1266342). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2617-1 Released: Wed Jun 24 11:03:27 2026 Summary: Security update for bind Type: security Severity: important References: 1265591,1265592,1265594,CVE-2026-3039,CVE-2026-3592,CVE-2026-5946 This update for bind fixes the following issues: - CVE-2026-3592: Amplification vulnerabilities via self-pointed glue records (bsc#1265592). - CVE-2026-3039: BIND 9 server memory exhaustion during GSS-API TKEY negotiation (bsc#1265591). - CVE-2026-5946: Invalid handling of CLASS != IN (bsc#1265594). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2620-1 Released: Wed Jun 24 11:04:06 2026 Summary: Security update for iproute2 Type: security Severity: low References: 1204562,1254324,CVE-2024-58251 This update for iproute2 fixes the following issue - CVE-2024-58251: denial of service via terminal escape sequences (bsc#1254324). Other updates: - support display of bound but unconnected sockets (bsc#1204562) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2626-1 Released: Thu Jun 25 10:10:54 2026 Summary: Security update for python-PyJWT Type: security Severity: important References: 1266798,1266799,1266800,1266801,1266802,CVE-2026-48522,CVE-2026-48523,CVE-2026-48524,CVE-2026-48525,CVE-2026-48526 This update for python-PyJWT fixes the following issues - CVE-2026-48522: `PyJWKClient` passes URI arguments directly to `urllib.request.urlopen()` and allows for SSRF and token forgery (bsc#1266798). - CVE-2026-48523: verifier-side algorithm allow-list bypass when `jwt.decode()` or `jwt.decode_complete()` are called with a PyJWK key (bsc#1266799). - CVE-2026-48524: unlimited processing of JWTs with unknown kid values by `PyJWKClient.get_signing_key()` leads to unbounded JWKS endpoint requests and DoS (bsc#1266800). - CVE-2026-48525: unbounded Base64URL decoding of unused payload segment in `b64=false` detached JWS allows for DoS (bsc#1266801). - CVE-2026-48526: no validation of use of JSON Web Keys in HMAC algorithm when decoding JSON Web Tokens allows for forged HS256 tokens (bsc#1266802). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2638-1 Released: Fri Jun 26 08:36:59 2026 Summary: Security update for the Linux Kernel Type: security Severity: important References: 1255416,1258538,1260531,1262663,1262993,1263769,1263879,1263880,1264076,1264116,1264470,1264610,1266214,1266290,1267214,1267361,1267369,1267381,1267387,1267621,1267640,1267652,1267697,CVE-2025-10263,CVE-2025-68324,CVE-2026-23392,CVE-2026-31473,CVE-2026-31500,CVE-2026-31613,CVE-2026-31697,CVE-2026-31698,CVE-2026-31699,CVE-2026-31759,CVE-2026-43077,CVE-2026-43198,CVE-2026-45984,CVE-2026-46037,CVE-2026-46116,CVE-2026-46120,CVE-2026-46123,CVE-2026-46150,CVE-2026-46159,CVE-2026-46197,CVE-2026-46227 The SUSE Linux Enterprise 15 SP4 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2025-10263: arm64: errata: Mitigate TLBI errata on various Arm CPUs (bsc#1266290). - CVE-2025-68324: scsi: imm: Fix use-after-free bug caused by unfinished delayed work (bsc#1255416). - CVE-2026-23392: netfilter: nf_tables: release flowtable after rcu grace period on error (bsc#1260531). - CVE-2026-31473: media: mc, v4l2: serialize REINIT and REQBUFS with req_queue_mutex (bsc#1262663). - CVE-2026-31500: Bluetooth: btintel: serialize btintel_hw_error() with hci_req_sync_lock (bsc#1262993). - CVE-2026-31613: smb: client: fix OOB reads parsing symlink error response (bsc#1263769). - CVE-2026-31697: crypto: ccp: Don't attempt to copy ID to userspace if PSP command failed (bsc#1264116). - CVE-2026-31698: crypto: ccp: Don't attempt to copy PDH cert to userspace if PSP command failed (bsc#1263880). - CVE-2026-31699: crypto: ccp: Don't attempt to copy CSR to userspace if PSP command failed (bsc#1263879). - CVE-2026-31759: usb: ulpi: fix double free in ulpi_register_interface() error path (bsc#1264076). - CVE-2026-43077: crypto: algif_aead - Fix minimum RX size check for decryption (bsc#1264470). - CVE-2026-43198: tcp: fix potential race in tcp_v6_syn_recv_sock() (bsc#1264610). - CVE-2026-45984: gfs2: Move the inode glock locking to gfs2_file_buffered_write (bsc#1267214). - CVE-2026-46037: ipv4: icmp: validate reply type before using icmp_pointers (bsc#1267361). - CVE-2026-46116: xfrm: defensively unhash xfrm_state lists in __xfrm_state_delete (bsc#1267369). - CVE-2026-46120: ip6_gre: Use cached t->net in ip6erspan_changelink() (bsc#1267640). - CVE-2026-46123: Bluetooth: virtio_bt: clamp rx length before skb_put (bsc#1267621). - CVE-2026-46150: fanotify: fix false positive on permission events (bsc#1267387). - CVE-2026-46159: btrfs: fix btrfs_ioctl_space_info() slot_count TOCTOU which can lead to info-leak (bsc#1267652). - CVE-2026-46197: drm/amdkfd: validate SVM ioctl nattr against buffer size (bsc#1267381). - CVE-2026-46227: sctp: revalidate list cursor after sctp_sendmsg_to_asoc() in SCTP_SENDALL (bsc#1267697). The following non security issues were fixed: - smb: client: correctly handle ErrorContextData as a flexible array (git-fixes). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2639-1 Released: Fri Jun 26 09:04:53 2026 Summary: Security update for containerd Type: security Severity: important References: 1260296,1262948,1265794,1266640,CVE-2026-33186,CVE-2026-33814,CVE-2026-34986,CVE-2026-39821 This update for containerd fixes the following issues - CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2 :path pseudo- header (bsc#1260296). - CVE-2026-33814: golang.org/x/net/http2: infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE (bsc#1265794). - CVE-2026-34986: github.com/go-jose/go-jose/v3: crafted JWE input with a missing encrypted key can lead to a denial of service (bsc#1262948). - CVE-2026-39821: golang.org/x/net/idna: failure to reject ASCII-only Punycode-encoded labels allows for validation bypass and privilege escalation (bsc#1266640). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2653-1 Released: Fri Jun 26 14:22:17 2026 Summary: Security update for util-linux Type: security Severity: moderate References: 1261606,CVE-2026-27456 This update for util-linux fixes the following issue - CVE-2026-27456: TOCTOU in the mount program when setting up loop devices (bsc#1261606). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2674-1 Released: Mon Jun 29 11:36:33 2026 Summary: Security update for libsolv, libzypp, zypper Type: security Severity: important References: 1158038,1239718,1246504,1247948,1249435,1252744,1253193,1253740,1257068,1257882,1258193,1259311,1259706,1259802,1259842,1265223,1265935,1265938,1266039,1267426,1267874,CVE-2026-25707,CVE-2026-44933,CVE-2026-44941,CVE-2026-44942,CVE-2026-48863,CVE-2026-9149,CVE-2026-9150 This update for libsolv, libzypp, zypper fixes the following issues - CVE-2026-9149: Heap buffer overflow in libsolv repo_add_solv via negative maxsize from crafted .solv file (bsc#1265935). - CVE-2026-9150: Stack-based buffer overflow in libsolv's Debian metadata parser when handling SHA384/SHA512 checksums (bsc#1265938). - CVE-2026-25707: Handcrafted repo metadata may cause arbitrary local files to be overwritten (bsc#1259802). - CVE-2026-44933: scan of the Mandatory signature verification plugin support (bsc#1265223). - CVE-2026-44941: path traversal via 'keyhint' (bsc#1267426). - CVE-2026-44942: .repo files can have an optional path which can lead to path traversal attacks (bsc#1267874). - CVE-2026-48863: Fix buffer overflow when parsing EdDSA signature (bsc#1266039). Changes in libzypp: Updated to version 17.38.13 (35): - A .repo files 'path=' entry must not refer to a location outside the repo (bsc#1267874, CVE-2026-44942) A 'path=' entry may solely denote a sub-directory of the baseurl where the metadata are located. A relative path trying to access data outside the baseurl is reported and sanitized. - Fix potential crash on malformed or malicious repository metadata (fixes #740) - Repo metadata: discard entries referring to a location outside the repo (bsc#1259802, CVE-2026-25707) Mirroring those data locally would refer to a location outside the repo's local cache directory. Those data entries are reported and discarded. - zypp.conf: Allow [env] section to add environment variables. This feature is designed to enable environment-specific settings or debugging options over an extended period. See zypp.conf(5). - Prevent configured scripts from escaping the sigcheck directory (bsc#1265223, CVE-2026-44933) - StringV: guard hasPrefix/hasPrefixCI against reading past the view end (fixes #735) - Mandatory signature verification plugin support (PED#11922) - Fix purge-kernel -rc kernel handling (bsc#1239718) - Explicitly_set_pool_DISTTYPE_RPM (fixes #726) - Check for trusted key updates when updating the general keyring (bsc#1259706) - Support multiple MirroredOrigin authorities (bsc#1253193) - Workaround doxygen bug: doxygen/doxygen#12057 - libzypp.spec: Add missing graphviz-gd BuildRequires (boo#1259842) - Fix preloader not caching packages from arch specific subrepos (bsc#1253740) - Deprioritize invalid mirrors (fixes openSUSE/zypper#636) - Fix Product::referencePackage lookup (bsc#1259311) Use a provided autoproduct() as hint to the package name of the release package. It might be that not just multiple versions of the same release package provide the same product version, but also different release packages. - specfile: on fedora use %{_prefix}/share as zyppconfdir if %{_distconfdir} is undefined (fixes #693) This will set '-DZYPPCONFDIR=%{zyppconfdir}' for cmake. - Fall back to a writable location when precaching packages without root (bsc#1247948) - Prepare a legacy /etc/zypp/zypp.conf to be installed on old distros. See the ZYPP.CONF(5) man page for details. - Fix runtime check for broken rpm --runposttrans (bsc#1257068) - Avoid libcurl-mini4 when building as it does not support ftp protocol. - Translation: updated .pot file. - zypp.conf: follow the UAPI configuration file specification (PED-14658) In short terms it means we will no longer ship an /etc/zypp/zypp.conf, but store our own defaults in /usr/etc/zypp/zypp.conf. The systems administrator may choose to keep a full copy in /etc/zypp/zypp.conf ignoring our config file settings completely, or - the preferred way - to overwrite specific settings via /etc/zypp/zypp.conf.d/*.conf overlay files. See the ZYPP.CONF(5) man page for details. - cmake: correctly detect rpm6 (fixes #689) - Use 'zypp.tmp' as temp directory component to ease setting up SELinux policies (bsc#1249435) - zyppng: Update Provider to current MediaCurl2 download approach, drop Metalink ( fixes #682 ) Changes in libsolv: Updated to version 0.7.39: - fix solv_chksum_free segfault when called with a NULL pointer - made repo_add_solv more robust against corrupt files [bsc#1265935] [CVE-2026-9149] - fix potential buffer overflow when verifying EdDSA signatures [bsc#1266039] [CVE-2026-48863] - added limit checks in multiple places to catch overflows - reduce the size of the language id cache - fixed Debian canon selection - fixed dbpath detection in repo_rpmdb_librpm - reduced stack usage in repo page compression (needed for musl) - fix parsing of sha512 checksums in debian repositories [bsc#1265938] [CVE-2026-9150] - improve speed of dirpool_add_dir makeing parsing of filelists.xml twice as fast - fix parsing of recommends in the old Mandriva synthesis format - respect the 'default' attribute in environment optionlist in the comps parser - support suse namespace deps in boolean dependencies [bsc#1258193] - support for the Elbrus2000 (e2k) architecture - support language() suse namespace rewriting Changes in zypper: Update to version 1.14.98: - Transactional systems: Delegate rw-commands to transactional-wrapper if available (jsc#PED-13680, jsc#PED-15607) On a transactional system where the root filesystem is mounted read-only, zypper commands that modify the system cannot be executed directly. If the system provides a transactional-wrapper utility, zypper will automatically attempt to invoke it. The wrapper transparently executes the zypper command within a new, writable snapshot and manages the lifecycle of that snapshot based on the command's exit status. On transactional systems lacking a transactional-wrapper, users must manually invoke specialized tools -such as transactional-update- to install, update, or remove software. - Add --filter-version-change to zypper lu. Adds filtering by version change significance to reduce noise in update listings. Supports levels: rebuild (hides rebuild-only changes) and package (hides all release-only changes). - Autorefresh ris-services the way as plugin-services (bsc#1246504) It's actually wrong to treat service refreshes different depending on the service type. For the purpose of a service it makes no difference how the data about the repos to use are acquired. - Report download progress for command line rpms (fixes #613) - Hint to '-vv ref' to see the mirrors used to download the metadata (bsc#1257882) - Service: Allow 'zypper ls SERVICE ...' to test whether a service with this alias is defined (bsc#1252744) The command prints an abstract of all services passed on the command line. It returns 3-ZYPPER_EXIT_ERR_INVALID_ARGS if some argument does not name an existing service. - Keep repo data when updating the service settings (bsc#1252744) - info: Enhance pattern content table (bsc#1158038) Alternatives (multiple packages providing the same requirement) are now listed as a single entry in the content table. The entry shows either the installed package which satisfies the requirement or the requirement itself as type 'Provides'. Listing all potential alternatives was miss leading, especially if the alternatives were mutual exclusive. It looked like an installed pattern had not-installed requirements and it was not possible to install all requirements at the same time. ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2699-1 Released: Tue Jun 30 11:19:23 2026 Summary: Security update for cifs-utils Type: security Severity: important References: 1267389,CVE-2026-12505 This update for cifs-utils fixes the following issue - CVE-2026-12505: cifs.upcall local privilege escalation via request_key-controlled namespace switch and NSS loading (bsc#1267389). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2714-1 Released: Tue Jun 30 14:02:53 2026 Summary: Security update for tar Type: security Severity: important References: 1261900,1265450,1267189,CVE-2026-5704 This update for tar fixes the following issues Security fixes: - CVE-2026-5704: crafted archives can be used to to hide file injection (bsc#1261900). Other fixes: - Fix tar changing dir permissions temporarily even when using --no-overwrite-dir. - Fix --dereference/-h not working properly after CVE-2025-45582 fix (bsc#1265450). - Fix extraction failure for paths like 'a/./b' caused by the gnulib openat2 implementation (bsc#1267189). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2720-1 Released: Wed Jul 1 15:14:47 2026 Summary: Security update for dracut Type: security Severity: important References: 1268322,CVE-2026-6893 This update for dracut fixes the following issue - CVE-2026-6893: Root code execution via DHCP options command injection (bsc#1268322). Changes for dracut: - Update to version 055+suse.365.g79144c5: * fix(network-legacy): sanitize DHCP values in dhclient-script.sh (bsc#1268322, CVE-2026-6893) * fix(network-legacy): add input validation to RFC 3442 route parser The following package changes have been done: - bind-utils-9.16.50-150400.5.62.1 updated - cifs-utils-6.15-150400.3.21.1 updated - containerd-ctr-1.7.29-150000.137.1 updated - containerd-1.7.29-150000.137.1 updated - coreutils-8.32-150400.9.12.1 updated - dracut-055+suse.365.g79144c5-150400.3.49.1 updated - glibc-locale-base-2.31-150300.101.1 updated - glibc-locale-2.31-150300.101.1 updated - glibc-2.31-150300.101.1 updated - hwdata-0.406-150000.3.80.1 updated - iproute2-5.14-150400.3.6.1 updated - jq-1.6-150000.3.15.1 updated - kernel-default-5.14.21-150400.24.225.2 updated - krb5-1.19.2-150400.3.21.1 updated - libavahi-client3-0.8-150400.7.31.2 updated - libavahi-common3-0.8-150400.7.31.2 updated - libblkid1-2.37.2-150400.8.47.1 updated - libfdisk1-2.37.2-150400.8.47.1 updated - libjq1-1.6-150000.3.15.1 updated - libmount1-2.37.2-150400.8.47.1 updated - libopenssl1_1-1.1.1l-150400.7.96.2 updated - libsmartcols1-2.37.2-150400.8.47.1 updated - libsolv-tools-base-0.7.39-150400.3.46.1 updated - libsolv-tools-0.7.39-150400.3.46.1 updated - libsqlite3-0-3.53.2-150000.3.42.1 updated - libuuid1-2.37.2-150400.8.47.1 updated - libzypp-17.38.13-150400.3.158.1 updated - openssh-clients-8.4p1-150300.3.65.1 updated - openssh-common-8.4p1-150300.3.65.1 updated - openssh-server-8.4p1-150300.3.65.1 updated - openssh-8.4p1-150300.3.65.1 updated - openssl-1_1-1.1.1l-150400.7.96.2 updated - python3-bind-9.16.50-150400.5.62.1 updated - python311-PyJWT-2.8.0-150400.8.13.1 updated - python311-urllib3-2.0.7-150400.7.30.1 updated - runc-1.3.4-150000.96.1 updated - tar-1.34-150000.3.42.1 updated - timezone-2026b-150000.75.37.1 updated - util-linux-systemd-2.37.2-150400.8.47.1 updated - util-linux-2.37.2-150400.8.47.1 updated - vim-data-common-9.2.0530-150000.5.94.1 updated - vim-9.2.0530-150000.5.94.1 updated - wicked-service-0.6.79-150400.3.39.1 updated - wicked-0.6.79-150400.3.39.1 updated - xen-libs-4.16.7_10-150400.4.86.2 updated - zypper-1.14.98-150400.3.104.1 updated From sle-container-updates at lists.suse.com Fri Jul 3 07:03:37 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Fri, 3 Jul 2026 09:03:37 +0200 (CEST) Subject: SUSE-IU-2026:5405-1: Security update of suse-sles-15-sp4-chost-byos-v20260701-hvm-ssd-x86_64 Message-ID: <20260703070337.61FC8FCC9@maintenance.suse.de> SUSE Image Update Advisory: suse-sles-15-sp4-chost-byos-v20260701-hvm-ssd-x86_64 ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5405-1 Image Tags : suse-sles-15-sp4-chost-byos-v20260701-hvm-ssd-x86_64:20260701 Image Release : Severity : important Type : security References : 1158038 1204562 1239718 1246504 1247948 1249435 1252744 1253193 1253740 1254324 1255416 1257068 1257235 1257882 1258193 1258364 1258538 1259311 1259327 1259642 1259706 1259802 1259842 1260296 1260531 1261206 1261427 1261430 1261441 1261546 1261606 1261700 1261833 1261900 1261970 1262043 1262395 1262464 1262465 1262663 1262948 1262993 1263366 1263367 1263769 1263790 1263879 1263880 1263940 1263995 1264066 1264076 1264093 1264116 1264470 1264551 1264568 1264610 1264706 1264707 1264708 1264965 1265221 1265223 1265267 1265349 1265360 1265450 1265591 1265592 1265594 1265794 1265935 1265938 1266001 1266009 1266039 1266214 1266238 1266290 1266340 1266341 1266342 1266349 1266357 1266640 1266711 1266798 1266799 1266800 1266801 1266802 1266901 1266952 1266953 1266955 1266969 1267189 1267205 1267214 1267220 1267361 1267369 1267381 1267387 1267389 1267426 1267621 1267640 1267652 1267697 1267874 1268012 1268013 1268322 CVE-2024-58251 CVE-2025-10263 CVE-2025-54518 CVE-2025-68324 CVE-2026-11822 CVE-2026-11824 CVE-2026-12505 CVE-2026-23392 CVE-2026-24401 CVE-2026-25707 CVE-2026-27456 CVE-2026-3039 CVE-2026-31405 CVE-2026-31473 CVE-2026-31500 CVE-2026-31613 CVE-2026-31629 CVE-2026-31697 CVE-2026-31698 CVE-2026-31699 CVE-2026-31758 CVE-2026-31759 CVE-2026-33186 CVE-2026-33814 CVE-2026-33948 CVE-2026-34180 CVE-2026-3446 CVE-2026-34933 CVE-2026-3497 CVE-2026-34986 CVE-2026-35385 CVE-2026-35388 CVE-2026-35414 CVE-2026-3592 CVE-2026-39821 CVE-2026-39881 CVE-2026-40355 CVE-2026-40356 CVE-2026-4046 CVE-2026-42307 CVE-2026-42487 CVE-2026-42488 CVE-2026-42489 CVE-2026-42490 CVE-2026-42766 CVE-2026-43037 CVE-2026-43077 CVE-2026-43198 CVE-2026-43206 CVE-2026-43499 CVE-2026-43501 CVE-2026-43961 CVE-2026-44431 CVE-2026-44656 CVE-2026-44932 CVE-2026-44933 CVE-2026-44941 CVE-2026-44942 CVE-2026-45130 CVE-2026-45447 CVE-2026-45852 CVE-2026-45970 CVE-2026-45984 CVE-2026-46021 CVE-2026-46037 CVE-2026-46043 CVE-2026-46113 CVE-2026-46116 CVE-2026-46120 CVE-2026-46123 CVE-2026-46150 CVE-2026-46159 CVE-2026-46197 CVE-2026-46227 CVE-2026-46243 CVE-2026-46483 CVE-2026-48522 CVE-2026-48523 CVE-2026-48524 CVE-2026-48525 CVE-2026-48526 CVE-2026-48863 CVE-2026-5450 CVE-2026-5704 CVE-2026-5928 CVE-2026-5946 CVE-2026-6893 CVE-2026-7383 CVE-2026-9076 CVE-2026-9149 CVE-2026-9150 ----------------------------------------------------------------- The container suse-sles-15-sp4-chost-byos-v20260701-hvm-ssd-x86_64 was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2277-1 Released: Fri Jun 5 10:59:09 2026 Summary: Recommended update for timezone Type: recommended Severity: important References: 1264965 This update for timezone fixes the following issues: - Update to 2026b: * British Columbia moved to permanent -07 on 2026-03-09. (bsc#1264965) * Some more overflow bugs have been fixed in zic. - Update to 2026a: * Moldova has used EU transition times since 2022. * The 'right' TZif files are no longer installed by default. * -DTZ_RUNTIME_LEAPS=0 disables runtime support for leap seconds. * TZif files are no longer limited to 50 bytes of abbreviations. * zic is no longer limited to 50 leap seconds. * Several integer overflow bugs have been fixed. - Update to 2025c: * Update Baja California DST rules in 1953, 1961-1975 * An unset TZ is no longer invalid when /etc/localtime is missing, and is abbreviated 'UTC' not '-00'. This reverts to 2024b behavior * tzset etc. are now more cautious about questionable TZ settings. * tzset etc. now treat ' ' like '_' in time zone abbreviations * tzfree now preserves errno, consistently with POSIX.1-2024 'free'. * zic has new options inspired by FreeBSD. * multiple changes visible to developers - Use 'REDO=posix_right' to keep installing 'right' TZif files. ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2283-1 Released: Fri Jun 5 14:14:57 2026 Summary: Security update for jq Type: security Severity: moderate References: 1262043,CVE-2026-33948 This update for jq fixes the following issue - CVE-2026-33948: CLI input parsing may allow validation bypass via embedded NUL bytes (bsc#1262043) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2311-1 Released: Tue Jun 9 13:05:23 2026 Summary: Security update for avahi Type: security Severity: moderate References: 1257235,1261546,CVE-2026-24401,CVE-2026-34933 This update for avahi fixes the following issue: - CVE-2026-24401: uncontrolled recursion in `lookup_handle_cname` can crash the `avahi-daemon` (bsc#1257235). - CVE-2026-34933: reachable assertion in `transport_flags_from_domain` can crash the `avahi-daemon` (bsc#1261546). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2313-1 Released: Tue Jun 9 14:50:30 2026 Summary: Security update for vim Type: security Severity: important References: 1261833,1262395,1264706,1264707,1264708,1265349,1265360,CVE-2026-39881,CVE-2026-42307,CVE-2026-43961,CVE-2026-44656,CVE-2026-45130,CVE-2026-46483 This update for vim fixes the following issues - CVE-2026-39881: command injection in NetBeans interface can lead to arbitrary file reads and writes (bsc#1261833). - CVE-2026-42307: Prior to version 9.2.0383, an OS command injection vulnerability exists in the netrw standard plugin bundled with Vim (bsc#1264706). - CVE-2026-43961: Vimscript Code Injection in netrw NetrwMarkFile() via crafted filename (bsc#1265349). - CVE-2026-44656: Prior to version 9.2.0435, an OS command injection vulnerability exists in Vim's: find command-line completion (bsc#1264707). - CVE-2026-45130: Prior to version 9.2.0450, a heap buffer overflow exists in read_compound() in src/spellfile.c when loading a crafted spell file (.spl) with UTF-8 encoding active (bsc#1264708). - CVE-2026-46483: command injection via ` tar#Vimuntar()` in `runtime/autoload/tar.vim` when decompressing `.tgz` archives on Unix-like systems (bsc#1265360). Changes for vim: - Update to v9.2.0530. - Fix for incorrectly detecting scientific parameter files as bitbake recipies. (bsc#1262395) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2333-1 Released: Wed Jun 10 10:41:58 2026 Summary: Security update for glibc Type: security Severity: important References: 1261206,1262464,1262465,CVE-2026-4046,CVE-2026-5450,CVE-2026-5928 This update for glibc fixes the following issues - CVE-2026-4046: assertion failure when converting inputs may be used to remotely crash an application (bsc#1261206). - CVE-2026-5450: stdio-common: scanf %mc pattern will cause heap overflow when width > 1024 (bsc#1262465). - CVE-2026-5928: libio: ungetwc could be used to leak data on special conditions (bsc#1262464). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2354-1 Released: Wed Jun 10 16:55:33 2026 Summary: Security update for wicked Type: security Severity: important References: 1265221,CVE-2026-44932 This update for wicked fixes the following issues: - CVE-2026-44932: Fixed indirect remote shell command injection via unsanitized DHCP options (bsc#1265221). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2356-1 Released: Wed Jun 10 18:40:21 2026 Summary: Recommended update for dracut Type: recommended Severity: moderate References: 1263940 This update for dracut fixes the following issues: - Update to version 055+suse.363.gea2753a: * fix(systemd): explicitly install /bin/bash (bsc#1263940) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2375-1 Released: Thu Jun 11 18:05:37 2026 Summary: Security update for openssh Type: security Severity: important References: 1259642,1261427,1261430,1261441,1264568,CVE-2026-3497,CVE-2026-35385,CVE-2026-35388,CVE-2026-35414 This update for openssh fixes the following issues - CVE-2026-3497: information disclosure or denial of service due to uninitialized variables (bsc#1259642). - CVE-2026-35385: a file downloaded by scp may be installed setuid or setgid (bsc#1261427). - CVE-2026-35388: omitted connection multiplexing confirmation for proxy-mode multiplexing sessions (bsc#1261441). - CVE-2026-35414: mishandling of authorized_keys principals option (bsc#1261430). - potential security issue when validating mac (bsc#1264568). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2382-1 Released: Fri Jun 12 10:07:34 2026 Summary: Recommended update for hwdata Type: recommended Severity: moderate References: This update for hwdata fixes the following issues: - update to version 0.406: * Update pci and vendor ids - update to version 0.405: * Update pci and vendor ids - Update to version 0.397: * Update pci and vendor ids - Update to version 0.395: * Update pci and vendor ids ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2383-1 Released: Fri Jun 12 11:14:06 2026 Summary: Security update for the Linux Kernel Type: security Severity: important References: 1261700,1263790,1263995,1264093,1264551,1266001,1266009,1266238,1266711,1266901,1266969,1267205,1267220,CVE-2026-31405,CVE-2026-31629,CVE-2026-31758,CVE-2026-43037,CVE-2026-43206,CVE-2026-43499,CVE-2026-43501,CVE-2026-45852,CVE-2026-45970,CVE-2026-46021,CVE-2026-46043,CVE-2026-46113,CVE-2026-46243 The SUSE Linux Enterprise 15 SP4 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2026-31405: media: dvb-net: fix OOB access in ULE extension header tables (bsc#1261700). - CVE-2026-31629: nfc: llcp: add missing return after LLCP_CLOSED checks (bsc#1263790). - CVE-2026-31758: usb: usbtmc: Flush anchored URBs in usbtmc_release (bsc#1264093). - CVE-2026-43037: ip6_tunnel: clear skb2->cb in ip4ip6_err() (bsc#1263995). - CVE-2026-43206: drm/amdkfd: Fix out-of-bounds write in kfd_event_page_set() (bsc#1264551). - CVE-2026-43499: rtmutex: Use waiter::task instead of current in remove_waiter() (bsc#1266001). - CVE-2026-43501: ipv6: rpl: reserve mac_len headroom when recompressed SRH grows (bsc#1266009). - CVE-2026-45852: RDMA/rxe: Fix double free in rxe_srq_from_init (bsc#1266711). - CVE-2026-45970: bonding: alb: fix UAF in rlb_arp_recv during bond up/down (bsc#1267205). - CVE-2026-46021: thermal: core: Fix thermal zone governor cleanup issues (bsc#1267220). - CVE-2026-46043: RDMA/rxe: Validate pad and ICRC before payload_size() in rxe_rcv (bsc#1266901). - CVE-2026-46113: KVM: x86: Fix shadow paging use-after-free due to unexpected GFN (bsc#1266969). - CVE-2026-46243: smb: client: reject userspace cifs.spnego descriptions (bsc#1266238). The following non security issues were fixed: - arm64: tlb: Allow XZR argument to TLBI ops (git-fixes). - arm64: tlb: Optimize ARM64_WORKAROUND_REPEAT_TLBI (git-fixes). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2414-1 Released: Tue Jun 16 14:21:30 2026 Summary: Security update for runc Type: security Severity: important References: This update for runc rebuilds it against the current go security release. ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2434-1 Released: Wed Jun 17 16:40:10 2026 Summary: Recommended update for coreutils Type: recommended Severity: important References: 1259327 This update for coreutils fixes the following issues: - proc: Use affinity mask even on systems with more than 1024 CPUs (bsc#1259327) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2449-1 Released: Thu Jun 18 14:52:09 2026 Summary: Security update for krb5 Type: security Severity: moderate References: 1263366,1263367,CVE-2026-40355,CVE-2026-40356 This update for krb5 fixes the following issues ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2486-1 Released: Mon Jun 22 14:07:07 2026 Summary: Security update for python-urllib3 Type: security Severity: important References: 1265267,CVE-2026-44431 This update for python-urllib3 fixes the following issue - CVE-2026-44431: sensitive information disclosure due to sensitive headers being forwarded across origins in proxied low-level redirects (bsc#1265267). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2528-1 Released: Tue Jun 23 11:06:07 2026 Summary: Security update for sqlite3 Type: security Severity: important References: 1268012,1268013,CVE-2026-11822,CVE-2026-11824 This update for sqlite3 fixes the following issues Update to 3.53.2: - CVE-2026-11822: memory corruption vulnerabilities in the FTS5 full-text search extension that allow attackers to cause process crashes, memory exhaustion, or arbitrary code execution (bsc#1268012). - CVE-2026-11824: heap-based buffer overflow vulnerability in the FTS5 full-text search extension that allows attackers to cause a crash or execute arbitrary code (bsc#1268013). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2613-1 Released: Wed Jun 24 11:01:35 2026 Summary: Security update for xen Type: security Severity: important References: 1264066,1266952,1266953,1266955,CVE-2025-54518,CVE-2026-42487,CVE-2026-42488,CVE-2026-42489,CVE-2026-42490 This update for xen fixes the following issues - CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264066). - CVE-2026-42487: x86 HVM I/O port list traversal (bsc#1266952). - CVE-2026-42488: x86: mismatched mapcache metadata (bsc#1266955). - CVE-2026-42489,CVE-2026-42490: domctl lock open to abuse (bsc#1266953). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2614-1 Released: Wed Jun 24 11:02:07 2026 Summary: Security update for openssl-1_1 Type: security Severity: important References: 1266340,1266341,1266342,1266349,1266357,CVE-2026-34180,CVE-2026-42766,CVE-2026-45447,CVE-2026-7383,CVE-2026-9076 This update for openssl-1_1 fixes the following issues: - CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357). - CVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryption (bsc#1266349). - CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption (bsc#1266341). - CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion (bsc#1266340). - CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing (bsc#1266342). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2617-1 Released: Wed Jun 24 11:03:27 2026 Summary: Security update for bind Type: security Severity: important References: 1265591,1265592,1265594,CVE-2026-3039,CVE-2026-3592,CVE-2026-5946 This update for bind fixes the following issues: - CVE-2026-3592: Amplification vulnerabilities via self-pointed glue records (bsc#1265592). - CVE-2026-3039: BIND 9 server memory exhaustion during GSS-API TKEY negotiation (bsc#1265591). - CVE-2026-5946: Invalid handling of CLASS != IN (bsc#1265594). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2620-1 Released: Wed Jun 24 11:04:06 2026 Summary: Security update for iproute2 Type: security Severity: low References: 1204562,1254324,CVE-2024-58251 This update for iproute2 fixes the following issue - CVE-2024-58251: denial of service via terminal escape sequences (bsc#1254324). Other updates: - support display of bound but unconnected sockets (bsc#1204562) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2626-1 Released: Thu Jun 25 10:10:54 2026 Summary: Security update for python-PyJWT Type: security Severity: important References: 1266798,1266799,1266800,1266801,1266802,CVE-2026-48522,CVE-2026-48523,CVE-2026-48524,CVE-2026-48525,CVE-2026-48526 This update for python-PyJWT fixes the following issues - CVE-2026-48522: `PyJWKClient` passes URI arguments directly to `urllib.request.urlopen()` and allows for SSRF and token forgery (bsc#1266798). - CVE-2026-48523: verifier-side algorithm allow-list bypass when `jwt.decode()` or `jwt.decode_complete()` are called with a PyJWK key (bsc#1266799). - CVE-2026-48524: unlimited processing of JWTs with unknown kid values by `PyJWKClient.get_signing_key()` leads to unbounded JWKS endpoint requests and DoS (bsc#1266800). - CVE-2026-48525: unbounded Base64URL decoding of unused payload segment in `b64=false` detached JWS allows for DoS (bsc#1266801). - CVE-2026-48526: no validation of use of JSON Web Keys in HMAC algorithm when decoding JSON Web Tokens allows for forged HS256 tokens (bsc#1266802). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2638-1 Released: Fri Jun 26 08:36:59 2026 Summary: Security update for the Linux Kernel Type: security Severity: important References: 1255416,1258538,1260531,1262663,1262993,1263769,1263879,1263880,1264076,1264116,1264470,1264610,1266214,1266290,1267214,1267361,1267369,1267381,1267387,1267621,1267640,1267652,1267697,CVE-2025-10263,CVE-2025-68324,CVE-2026-23392,CVE-2026-31473,CVE-2026-31500,CVE-2026-31613,CVE-2026-31697,CVE-2026-31698,CVE-2026-31699,CVE-2026-31759,CVE-2026-43077,CVE-2026-43198,CVE-2026-45984,CVE-2026-46037,CVE-2026-46116,CVE-2026-46120,CVE-2026-46123,CVE-2026-46150,CVE-2026-46159,CVE-2026-46197,CVE-2026-46227 The SUSE Linux Enterprise 15 SP4 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2025-10263: arm64: errata: Mitigate TLBI errata on various Arm CPUs (bsc#1266290). - CVE-2025-68324: scsi: imm: Fix use-after-free bug caused by unfinished delayed work (bsc#1255416). - CVE-2026-23392: netfilter: nf_tables: release flowtable after rcu grace period on error (bsc#1260531). - CVE-2026-31473: media: mc, v4l2: serialize REINIT and REQBUFS with req_queue_mutex (bsc#1262663). - CVE-2026-31500: Bluetooth: btintel: serialize btintel_hw_error() with hci_req_sync_lock (bsc#1262993). - CVE-2026-31613: smb: client: fix OOB reads parsing symlink error response (bsc#1263769). - CVE-2026-31697: crypto: ccp: Don't attempt to copy ID to userspace if PSP command failed (bsc#1264116). - CVE-2026-31698: crypto: ccp: Don't attempt to copy PDH cert to userspace if PSP command failed (bsc#1263880). - CVE-2026-31699: crypto: ccp: Don't attempt to copy CSR to userspace if PSP command failed (bsc#1263879). - CVE-2026-31759: usb: ulpi: fix double free in ulpi_register_interface() error path (bsc#1264076). - CVE-2026-43077: crypto: algif_aead - Fix minimum RX size check for decryption (bsc#1264470). - CVE-2026-43198: tcp: fix potential race in tcp_v6_syn_recv_sock() (bsc#1264610). - CVE-2026-45984: gfs2: Move the inode glock locking to gfs2_file_buffered_write (bsc#1267214). - CVE-2026-46037: ipv4: icmp: validate reply type before using icmp_pointers (bsc#1267361). - CVE-2026-46116: xfrm: defensively unhash xfrm_state lists in __xfrm_state_delete (bsc#1267369). - CVE-2026-46120: ip6_gre: Use cached t->net in ip6erspan_changelink() (bsc#1267640). - CVE-2026-46123: Bluetooth: virtio_bt: clamp rx length before skb_put (bsc#1267621). - CVE-2026-46150: fanotify: fix false positive on permission events (bsc#1267387). - CVE-2026-46159: btrfs: fix btrfs_ioctl_space_info() slot_count TOCTOU which can lead to info-leak (bsc#1267652). - CVE-2026-46197: drm/amdkfd: validate SVM ioctl nattr against buffer size (bsc#1267381). - CVE-2026-46227: sctp: revalidate list cursor after sctp_sendmsg_to_asoc() in SCTP_SENDALL (bsc#1267697). The following non security issues were fixed: - smb: client: correctly handle ErrorContextData as a flexible array (git-fixes). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2639-1 Released: Fri Jun 26 09:04:53 2026 Summary: Security update for containerd Type: security Severity: important References: 1260296,1262948,1265794,1266640,CVE-2026-33186,CVE-2026-33814,CVE-2026-34986,CVE-2026-39821 This update for containerd fixes the following issues - CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2 :path pseudo- header (bsc#1260296). - CVE-2026-33814: golang.org/x/net/http2: infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE (bsc#1265794). - CVE-2026-34986: github.com/go-jose/go-jose/v3: crafted JWE input with a missing encrypted key can lead to a denial of service (bsc#1262948). - CVE-2026-39821: golang.org/x/net/idna: failure to reject ASCII-only Punycode-encoded labels allows for validation bypass and privilege escalation (bsc#1266640). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2653-1 Released: Fri Jun 26 14:22:17 2026 Summary: Security update for util-linux Type: security Severity: moderate References: 1261606,CVE-2026-27456 This update for util-linux fixes the following issue - CVE-2026-27456: TOCTOU in the mount program when setting up loop devices (bsc#1261606). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2674-1 Released: Mon Jun 29 11:36:33 2026 Summary: Security update for libsolv, libzypp, zypper Type: security Severity: important References: 1158038,1239718,1246504,1247948,1249435,1252744,1253193,1253740,1257068,1257882,1258193,1259311,1259706,1259802,1259842,1265223,1265935,1265938,1266039,1267426,1267874,CVE-2026-25707,CVE-2026-44933,CVE-2026-44941,CVE-2026-44942,CVE-2026-48863,CVE-2026-9149,CVE-2026-9150 This update for libsolv, libzypp, zypper fixes the following issues - CVE-2026-9149: Heap buffer overflow in libsolv repo_add_solv via negative maxsize from crafted .solv file (bsc#1265935). - CVE-2026-9150: Stack-based buffer overflow in libsolv's Debian metadata parser when handling SHA384/SHA512 checksums (bsc#1265938). - CVE-2026-25707: Handcrafted repo metadata may cause arbitrary local files to be overwritten (bsc#1259802). - CVE-2026-44933: scan of the Mandatory signature verification plugin support (bsc#1265223). - CVE-2026-44941: path traversal via 'keyhint' (bsc#1267426). - CVE-2026-44942: .repo files can have an optional path which can lead to path traversal attacks (bsc#1267874). - CVE-2026-48863: Fix buffer overflow when parsing EdDSA signature (bsc#1266039). Changes in libzypp: Updated to version 17.38.13 (35): - A .repo files 'path=' entry must not refer to a location outside the repo (bsc#1267874, CVE-2026-44942) A 'path=' entry may solely denote a sub-directory of the baseurl where the metadata are located. A relative path trying to access data outside the baseurl is reported and sanitized. - Fix potential crash on malformed or malicious repository metadata (fixes #740) - Repo metadata: discard entries referring to a location outside the repo (bsc#1259802, CVE-2026-25707) Mirroring those data locally would refer to a location outside the repo's local cache directory. Those data entries are reported and discarded. - zypp.conf: Allow [env] section to add environment variables. This feature is designed to enable environment-specific settings or debugging options over an extended period. See zypp.conf(5). - Prevent configured scripts from escaping the sigcheck directory (bsc#1265223, CVE-2026-44933) - StringV: guard hasPrefix/hasPrefixCI against reading past the view end (fixes #735) - Mandatory signature verification plugin support (PED#11922) - Fix purge-kernel -rc kernel handling (bsc#1239718) - Explicitly_set_pool_DISTTYPE_RPM (fixes #726) - Check for trusted key updates when updating the general keyring (bsc#1259706) - Support multiple MirroredOrigin authorities (bsc#1253193) - Workaround doxygen bug: doxygen/doxygen#12057 - libzypp.spec: Add missing graphviz-gd BuildRequires (boo#1259842) - Fix preloader not caching packages from arch specific subrepos (bsc#1253740) - Deprioritize invalid mirrors (fixes openSUSE/zypper#636) - Fix Product::referencePackage lookup (bsc#1259311) Use a provided autoproduct() as hint to the package name of the release package. It might be that not just multiple versions of the same release package provide the same product version, but also different release packages. - specfile: on fedora use %{_prefix}/share as zyppconfdir if %{_distconfdir} is undefined (fixes #693) This will set '-DZYPPCONFDIR=%{zyppconfdir}' for cmake. - Fall back to a writable location when precaching packages without root (bsc#1247948) - Prepare a legacy /etc/zypp/zypp.conf to be installed on old distros. See the ZYPP.CONF(5) man page for details. - Fix runtime check for broken rpm --runposttrans (bsc#1257068) - Avoid libcurl-mini4 when building as it does not support ftp protocol. - Translation: updated .pot file. - zypp.conf: follow the UAPI configuration file specification (PED-14658) In short terms it means we will no longer ship an /etc/zypp/zypp.conf, but store our own defaults in /usr/etc/zypp/zypp.conf. The systems administrator may choose to keep a full copy in /etc/zypp/zypp.conf ignoring our config file settings completely, or - the preferred way - to overwrite specific settings via /etc/zypp/zypp.conf.d/*.conf overlay files. See the ZYPP.CONF(5) man page for details. - cmake: correctly detect rpm6 (fixes #689) - Use 'zypp.tmp' as temp directory component to ease setting up SELinux policies (bsc#1249435) - zyppng: Update Provider to current MediaCurl2 download approach, drop Metalink ( fixes #682 ) Changes in libsolv: Updated to version 0.7.39: - fix solv_chksum_free segfault when called with a NULL pointer - made repo_add_solv more robust against corrupt files [bsc#1265935] [CVE-2026-9149] - fix potential buffer overflow when verifying EdDSA signatures [bsc#1266039] [CVE-2026-48863] - added limit checks in multiple places to catch overflows - reduce the size of the language id cache - fixed Debian canon selection - fixed dbpath detection in repo_rpmdb_librpm - reduced stack usage in repo page compression (needed for musl) - fix parsing of sha512 checksums in debian repositories [bsc#1265938] [CVE-2026-9150] - improve speed of dirpool_add_dir makeing parsing of filelists.xml twice as fast - fix parsing of recommends in the old Mandriva synthesis format - respect the 'default' attribute in environment optionlist in the comps parser - support suse namespace deps in boolean dependencies [bsc#1258193] - support for the Elbrus2000 (e2k) architecture - support language() suse namespace rewriting Changes in zypper: Update to version 1.14.98: - Transactional systems: Delegate rw-commands to transactional-wrapper if available (jsc#PED-13680, jsc#PED-15607) On a transactional system where the root filesystem is mounted read-only, zypper commands that modify the system cannot be executed directly. If the system provides a transactional-wrapper utility, zypper will automatically attempt to invoke it. The wrapper transparently executes the zypper command within a new, writable snapshot and manages the lifecycle of that snapshot based on the command's exit status. On transactional systems lacking a transactional-wrapper, users must manually invoke specialized tools -such as transactional-update- to install, update, or remove software. - Add --filter-version-change to zypper lu. Adds filtering by version change significance to reduce noise in update listings. Supports levels: rebuild (hides rebuild-only changes) and package (hides all release-only changes). - Autorefresh ris-services the way as plugin-services (bsc#1246504) It's actually wrong to treat service refreshes different depending on the service type. For the purpose of a service it makes no difference how the data about the repos to use are acquired. - Report download progress for command line rpms (fixes #613) - Hint to '-vv ref' to see the mirrors used to download the metadata (bsc#1257882) - Service: Allow 'zypper ls SERVICE ...' to test whether a service with this alias is defined (bsc#1252744) The command prints an abstract of all services passed on the command line. It returns 3-ZYPPER_EXIT_ERR_INVALID_ARGS if some argument does not name an existing service. - Keep repo data when updating the service settings (bsc#1252744) - info: Enhance pattern content table (bsc#1158038) Alternatives (multiple packages providing the same requirement) are now listed as a single entry in the content table. The entry shows either the installed package which satisfies the requirement or the requirement itself as type 'Provides'. Listing all potential alternatives was miss leading, especially if the alternatives were mutual exclusive. It looked like an installed pattern had not-installed requirements and it was not possible to install all requirements at the same time. ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2699-1 Released: Tue Jun 30 11:19:23 2026 Summary: Security update for cifs-utils Type: security Severity: important References: 1267389,CVE-2026-12505 This update for cifs-utils fixes the following issue - CVE-2026-12505: cifs.upcall local privilege escalation via request_key-controlled namespace switch and NSS loading (bsc#1267389). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2714-1 Released: Tue Jun 30 14:02:53 2026 Summary: Security update for tar Type: security Severity: important References: 1261900,1265450,1267189,CVE-2026-5704 This update for tar fixes the following issues Security fixes: - CVE-2026-5704: crafted archives can be used to to hide file injection (bsc#1261900). Other fixes: - Fix tar changing dir permissions temporarily even when using --no-overwrite-dir. - Fix --dereference/-h not working properly after CVE-2025-45582 fix (bsc#1265450). - Fix extraction failure for paths like 'a/./b' caused by the gnulib openat2 implementation (bsc#1267189). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2720-1 Released: Wed Jul 1 15:14:47 2026 Summary: Security update for dracut Type: security Severity: important References: 1268322,CVE-2026-6893 This update for dracut fixes the following issue - CVE-2026-6893: Root code execution via DHCP options command injection (bsc#1268322). Changes for dracut: - Update to version 055+suse.365.g79144c5: * fix(network-legacy): sanitize DHCP values in dhclient-script.sh (bsc#1268322, CVE-2026-6893) * fix(network-legacy): add input validation to RFC 3442 route parser ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2723-1 Released: Wed Jul 1 20:06:53 2026 Summary: Security update for python311 Type: security Severity: moderate References: 1258364,1261970,CVE-2026-3446 This update for python311 fixes the following issues: Security issues fixed: - CVE-2026-3446: base64 decoding stops at first padded quad by default and ignores other information that could be processed (bsc#1261970). Other updates and bugfixes: - Rewrite structure of Python interpreter packages. `python3*` symbols should be now provided by real `python3` packages and its subpackages instead of the virtual provides (bsc#1258364). The following package changes have been done: - bind-utils-9.16.50-150400.5.62.1 updated - cifs-utils-6.15-150400.3.21.1 updated - containerd-ctr-1.7.29-150000.137.1 updated - containerd-1.7.29-150000.137.1 updated - coreutils-8.32-150400.9.12.1 updated - dracut-055+suse.365.g79144c5-150400.3.49.1 updated - glibc-locale-base-2.31-150300.101.1 updated - glibc-locale-2.31-150300.101.1 updated - glibc-2.31-150300.101.1 updated - hwdata-0.406-150000.3.80.1 updated - iproute2-5.14-150400.3.6.1 updated - jq-1.6-150000.3.15.1 updated - kernel-default-5.14.21-150400.24.225.2 updated - krb5-1.19.2-150400.3.21.1 updated - libavahi-client3-0.8-150400.7.31.2 updated - libavahi-common3-0.8-150400.7.31.2 updated - libblkid1-2.37.2-150400.8.47.1 updated - libfdisk1-2.37.2-150400.8.47.1 updated - libjq1-1.6-150000.3.15.1 updated - libmount1-2.37.2-150400.8.47.1 updated - libopenssl1_1-1.1.1l-150400.7.96.2 updated - libpython3_11-1_0-3.11.15-150400.9.88.1 updated - libsmartcols1-2.37.2-150400.8.47.1 updated - libsolv-tools-base-0.7.39-150400.3.46.1 updated - libsolv-tools-0.7.39-150400.3.46.1 updated - libsqlite3-0-3.53.2-150000.3.42.1 updated - libuuid1-2.37.2-150400.8.47.1 updated - libzypp-17.38.13-150400.3.158.1 updated - openssh-clients-8.4p1-150300.3.65.1 updated - openssh-common-8.4p1-150300.3.65.1 updated - openssh-server-8.4p1-150300.3.65.1 updated - openssh-8.4p1-150300.3.65.1 updated - openssl-1_1-1.1.1l-150400.7.96.2 updated - python3-bind-9.16.50-150400.5.62.1 updated - python311-PyJWT-2.8.0-150400.8.13.1 updated - python311-base-3.11.15-150400.9.88.1 updated - python311-urllib3-2.0.7-150400.7.30.1 updated - python311-3.11.15-150400.9.88.1 updated - runc-1.3.4-150000.96.1 updated - tar-1.34-150000.3.42.1 updated - timezone-2026b-150000.75.37.1 updated - util-linux-systemd-2.37.2-150400.8.47.1 updated - util-linux-2.37.2-150400.8.47.1 updated - vim-data-common-9.2.0530-150000.5.94.1 updated - vim-9.2.0530-150000.5.94.1 updated - wicked-service-0.6.79-150400.3.39.1 updated - wicked-0.6.79-150400.3.39.1 updated - xen-libs-4.16.7_10-150400.4.86.2 updated - xen-tools-domU-4.16.7_10-150400.4.86.2 updated - zypper-1.14.98-150400.3.104.1 updated From sle-container-updates at lists.suse.com Fri Jul 3 07:04:08 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Fri, 3 Jul 2026 09:04:08 +0200 (CEST) Subject: SUSE-IU-2026:5406-1: Security update of sles-15-sp4-chost-byos-v20260701-arm64 Message-ID: <20260703070408.BFA70FCC9@maintenance.suse.de> SUSE Image Update Advisory: sles-15-sp4-chost-byos-v20260701-arm64 ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5406-1 Image Tags : sles-15-sp4-chost-byos-v20260701-arm64:20260701 Image Release : Severity : important Type : security References : 1158038 1210938 1210938 1234563 1236533 1239334 1239718 1239944 1243254 1243505 1245759 1246504 1247948 1249435 1252744 1253193 1253740 1253889 1255416 1257010 1257068 1257235 1257882 1258193 1258538 1259311 1259327 1259642 1259706 1259802 1259842 1260264 1260264 1260296 1260531 1261206 1261427 1261430 1261441 1261546 1261606 1261700 1261833 1261900 1262043 1262395 1262464 1262465 1262663 1262926 1262948 1262993 1263366 1263367 1263769 1263790 1263879 1263880 1263940 1263995 1264066 1264076 1264093 1264116 1264470 1264551 1264568 1264610 1264706 1264707 1264708 1264965 1265221 1265223 1265349 1265360 1265450 1265591 1265592 1265594 1265762 1265762 1265794 1265935 1265938 1266001 1266009 1266039 1266171 1266171 1266214 1266238 1266290 1266340 1266341 1266342 1266349 1266357 1266603 1266603 1266640 1266711 1266901 1266952 1266953 1266955 1266969 1267189 1267205 1267214 1267220 1267361 1267369 1267381 1267387 1267389 1267426 1267621 1267640 1267652 1267697 1267874 1268012 1268013 1268322 CVE-2023-45288 CVE-2024-45337 CVE-2025-10263 CVE-2025-22868 CVE-2025-22869 CVE-2025-54518 CVE-2025-58181 CVE-2025-68324 CVE-2026-11822 CVE-2026-11824 CVE-2026-12505 CVE-2026-23392 CVE-2026-24401 CVE-2026-25707 CVE-2026-27456 CVE-2026-3039 CVE-2026-31405 CVE-2026-31473 CVE-2026-31500 CVE-2026-31613 CVE-2026-31629 CVE-2026-31697 CVE-2026-31698 CVE-2026-31699 CVE-2026-31758 CVE-2026-31759 CVE-2026-33186 CVE-2026-33186 CVE-2026-33186 CVE-2026-33814 CVE-2026-33814 CVE-2026-33814 CVE-2026-33948 CVE-2026-34180 CVE-2026-34933 CVE-2026-3497 CVE-2026-34986 CVE-2026-34986 CVE-2026-35385 CVE-2026-35388 CVE-2026-35414 CVE-2026-3592 CVE-2026-39821 CVE-2026-39821 CVE-2026-39821 CVE-2026-39827 CVE-2026-39827 CVE-2026-39828 CVE-2026-39828 CVE-2026-39829 CVE-2026-39829 CVE-2026-39830 CVE-2026-39830 CVE-2026-39831 CVE-2026-39831 CVE-2026-39832 CVE-2026-39832 CVE-2026-39833 CVE-2026-39833 CVE-2026-39834 CVE-2026-39834 CVE-2026-39835 CVE-2026-39835 CVE-2026-39881 CVE-2026-40355 CVE-2026-40356 CVE-2026-4046 CVE-2026-42307 CVE-2026-42487 CVE-2026-42488 CVE-2026-42489 CVE-2026-42490 CVE-2026-42508 CVE-2026-42508 CVE-2026-42766 CVE-2026-43037 CVE-2026-43077 CVE-2026-43198 CVE-2026-43206 CVE-2026-43499 CVE-2026-43501 CVE-2026-43961 CVE-2026-44656 CVE-2026-44932 CVE-2026-44933 CVE-2026-44941 CVE-2026-44942 CVE-2026-45130 CVE-2026-45447 CVE-2026-45852 CVE-2026-45970 CVE-2026-45984 CVE-2026-46021 CVE-2026-46037 CVE-2026-46043 CVE-2026-46113 CVE-2026-46116 CVE-2026-46120 CVE-2026-46123 CVE-2026-46150 CVE-2026-46159 CVE-2026-46197 CVE-2026-46227 CVE-2026-46243 CVE-2026-46483 CVE-2026-46595 CVE-2026-46595 CVE-2026-46597 CVE-2026-46597 CVE-2026-46598 CVE-2026-46598 CVE-2026-48863 CVE-2026-5450 CVE-2026-5704 CVE-2026-5928 CVE-2026-5946 CVE-2026-6893 CVE-2026-7383 CVE-2026-9076 CVE-2026-9149 CVE-2026-9150 ----------------------------------------------------------------- The container sles-15-sp4-chost-byos-v20260701-arm64 was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2277-1 Released: Fri Jun 5 10:59:09 2026 Summary: Recommended update for timezone Type: recommended Severity: important References: 1264965 This update for timezone fixes the following issues: - Update to 2026b: * British Columbia moved to permanent -07 on 2026-03-09. (bsc#1264965) * Some more overflow bugs have been fixed in zic. - Update to 2026a: * Moldova has used EU transition times since 2022. * The 'right' TZif files are no longer installed by default. * -DTZ_RUNTIME_LEAPS=0 disables runtime support for leap seconds. * TZif files are no longer limited to 50 bytes of abbreviations. * zic is no longer limited to 50 leap seconds. * Several integer overflow bugs have been fixed. - Update to 2025c: * Update Baja California DST rules in 1953, 1961-1975 * An unset TZ is no longer invalid when /etc/localtime is missing, and is abbreviated 'UTC' not '-00'. This reverts to 2024b behavior * tzset etc. are now more cautious about questionable TZ settings. * tzset etc. now treat ' ' like '_' in time zone abbreviations * tzfree now preserves errno, consistently with POSIX.1-2024 'free'. * zic has new options inspired by FreeBSD. * multiple changes visible to developers - Use 'REDO=posix_right' to keep installing 'right' TZif files. ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2283-1 Released: Fri Jun 5 14:14:57 2026 Summary: Security update for jq Type: security Severity: moderate References: 1262043,CVE-2026-33948 This update for jq fixes the following issue - CVE-2026-33948: CLI input parsing may allow validation bypass via embedded NUL bytes (bsc#1262043) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2311-1 Released: Tue Jun 9 13:05:23 2026 Summary: Security update for avahi Type: security Severity: moderate References: 1257235,1261546,CVE-2026-24401,CVE-2026-34933 This update for avahi fixes the following issue: - CVE-2026-24401: uncontrolled recursion in `lookup_handle_cname` can crash the `avahi-daemon` (bsc#1257235). - CVE-2026-34933: reachable assertion in `transport_flags_from_domain` can crash the `avahi-daemon` (bsc#1261546). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2313-1 Released: Tue Jun 9 14:50:30 2026 Summary: Security update for vim Type: security Severity: important References: 1261833,1262395,1264706,1264707,1264708,1265349,1265360,CVE-2026-39881,CVE-2026-42307,CVE-2026-43961,CVE-2026-44656,CVE-2026-45130,CVE-2026-46483 This update for vim fixes the following issues - CVE-2026-39881: command injection in NetBeans interface can lead to arbitrary file reads and writes (bsc#1261833). - CVE-2026-42307: Prior to version 9.2.0383, an OS command injection vulnerability exists in the netrw standard plugin bundled with Vim (bsc#1264706). - CVE-2026-43961: Vimscript Code Injection in netrw NetrwMarkFile() via crafted filename (bsc#1265349). - CVE-2026-44656: Prior to version 9.2.0435, an OS command injection vulnerability exists in Vim's: find command-line completion (bsc#1264707). - CVE-2026-45130: Prior to version 9.2.0450, a heap buffer overflow exists in read_compound() in src/spellfile.c when loading a crafted spell file (.spl) with UTF-8 encoding active (bsc#1264708). - CVE-2026-46483: command injection via ` tar#Vimuntar()` in `runtime/autoload/tar.vim` when decompressing `.tgz` archives on Unix-like systems (bsc#1265360). Changes for vim: - Update to v9.2.0530. - Fix for incorrectly detecting scientific parameter files as bitbake recipies. (bsc#1262395) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2333-1 Released: Wed Jun 10 10:41:58 2026 Summary: Security update for glibc Type: security Severity: important References: 1261206,1262464,1262465,CVE-2026-4046,CVE-2026-5450,CVE-2026-5928 This update for glibc fixes the following issues - CVE-2026-4046: assertion failure when converting inputs may be used to remotely crash an application (bsc#1261206). - CVE-2026-5450: stdio-common: scanf %mc pattern will cause heap overflow when width > 1024 (bsc#1262465). - CVE-2026-5928: libio: ungetwc could be used to leak data on special conditions (bsc#1262464). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2354-1 Released: Wed Jun 10 16:55:33 2026 Summary: Security update for wicked Type: security Severity: important References: 1265221,CVE-2026-44932 This update for wicked fixes the following issues: - CVE-2026-44932: Fixed indirect remote shell command injection via unsanitized DHCP options (bsc#1265221). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2356-1 Released: Wed Jun 10 18:40:21 2026 Summary: Recommended update for dracut Type: recommended Severity: moderate References: 1263940 This update for dracut fixes the following issues: - Update to version 055+suse.363.gea2753a: * fix(systemd): explicitly install /bin/bash (bsc#1263940) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2375-1 Released: Thu Jun 11 18:05:37 2026 Summary: Security update for openssh Type: security Severity: important References: 1259642,1261427,1261430,1261441,1264568,CVE-2026-3497,CVE-2026-35385,CVE-2026-35388,CVE-2026-35414 This update for openssh fixes the following issues - CVE-2026-3497: information disclosure or denial of service due to uninitialized variables (bsc#1259642). - CVE-2026-35385: a file downloaded by scp may be installed setuid or setgid (bsc#1261427). - CVE-2026-35388: omitted connection multiplexing confirmation for proxy-mode multiplexing sessions (bsc#1261441). - CVE-2026-35414: mishandling of authorized_keys principals option (bsc#1261430). - potential security issue when validating mac (bsc#1264568). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2382-1 Released: Fri Jun 12 10:07:34 2026 Summary: Recommended update for hwdata Type: recommended Severity: moderate References: This update for hwdata fixes the following issues: - update to version 0.406: * Update pci and vendor ids - update to version 0.405: * Update pci and vendor ids - Update to version 0.397: * Update pci and vendor ids - Update to version 0.395: * Update pci and vendor ids ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2383-1 Released: Fri Jun 12 11:14:06 2026 Summary: Security update for the Linux Kernel Type: security Severity: important References: 1261700,1263790,1263995,1264093,1264551,1266001,1266009,1266238,1266711,1266901,1266969,1267205,1267220,CVE-2026-31405,CVE-2026-31629,CVE-2026-31758,CVE-2026-43037,CVE-2026-43206,CVE-2026-43499,CVE-2026-43501,CVE-2026-45852,CVE-2026-45970,CVE-2026-46021,CVE-2026-46043,CVE-2026-46113,CVE-2026-46243 The SUSE Linux Enterprise 15 SP4 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2026-31405: media: dvb-net: fix OOB access in ULE extension header tables (bsc#1261700). - CVE-2026-31629: nfc: llcp: add missing return after LLCP_CLOSED checks (bsc#1263790). - CVE-2026-31758: usb: usbtmc: Flush anchored URBs in usbtmc_release (bsc#1264093). - CVE-2026-43037: ip6_tunnel: clear skb2->cb in ip4ip6_err() (bsc#1263995). - CVE-2026-43206: drm/amdkfd: Fix out-of-bounds write in kfd_event_page_set() (bsc#1264551). - CVE-2026-43499: rtmutex: Use waiter::task instead of current in remove_waiter() (bsc#1266001). - CVE-2026-43501: ipv6: rpl: reserve mac_len headroom when recompressed SRH grows (bsc#1266009). - CVE-2026-45852: RDMA/rxe: Fix double free in rxe_srq_from_init (bsc#1266711). - CVE-2026-45970: bonding: alb: fix UAF in rlb_arp_recv during bond up/down (bsc#1267205). - CVE-2026-46021: thermal: core: Fix thermal zone governor cleanup issues (bsc#1267220). - CVE-2026-46043: RDMA/rxe: Validate pad and ICRC before payload_size() in rxe_rcv (bsc#1266901). - CVE-2026-46113: KVM: x86: Fix shadow paging use-after-free due to unexpected GFN (bsc#1266969). - CVE-2026-46243: smb: client: reject userspace cifs.spnego descriptions (bsc#1266238). The following non security issues were fixed: - arm64: tlb: Allow XZR argument to TLBI ops (git-fixes). - arm64: tlb: Optimize ARM64_WORKAROUND_REPEAT_TLBI (git-fixes). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2414-1 Released: Tue Jun 16 14:21:30 2026 Summary: Security update for runc Type: security Severity: important References: This update for runc rebuilds it against the current go security release. ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2434-1 Released: Wed Jun 17 16:40:10 2026 Summary: Recommended update for coreutils Type: recommended Severity: important References: 1259327 This update for coreutils fixes the following issues: - proc: Use affinity mask even on systems with more than 1024 CPUs (bsc#1259327) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2449-1 Released: Thu Jun 18 14:52:09 2026 Summary: Security update for krb5 Type: security Severity: moderate References: 1263366,1263367,CVE-2026-40355,CVE-2026-40356 This update for krb5 fixes the following issues ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2528-1 Released: Tue Jun 23 11:06:07 2026 Summary: Security update for sqlite3 Type: security Severity: important References: 1268012,1268013,CVE-2026-11822,CVE-2026-11824 This update for sqlite3 fixes the following issues Update to 3.53.2: - CVE-2026-11822: memory corruption vulnerabilities in the FTS5 full-text search extension that allow attackers to cause process crashes, memory exhaustion, or arbitrary code execution (bsc#1268012). - CVE-2026-11824: heap-based buffer overflow vulnerability in the FTS5 full-text search extension that allows attackers to cause a crash or execute arbitrary code (bsc#1268013). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2611-1 Released: Wed Jun 24 10:59:58 2026 Summary: Security update for google-osconfig-agent Type: security Severity: important References: 1210938,1260264,1265762,1266171,1266603,CVE-2026-33186,CVE-2026-33814,CVE-2026-39821,CVE-2026-39827,CVE-2026-39828,CVE-2026-39829,CVE-2026-39830,CVE-2026-39831,CVE-2026-39832,CVE-2026-39833,CVE-2026-39834,CVE-2026-39835,CVE-2026-42508,CVE-2026-46595,CVE-2026-46597,CVE-2026-46598 This update for google-osconfig-agent fixes the following issue - CVE-2026-33186: Update google.golang.org/grpc dependency (bsc#1260264). - CVE-2026-39821: Update golang.org/x/net/idna dependency (bsc#1266603). - CVE-2026-39827: Update golang.org/x/crypto dependency (bsc#1266171). - CVE-2026-39828: Update golang.org/x/crypto dependency (bsc#1266171). - CVE-2026-39829: Update golang.org/x/crypto dependency (bsc#1266171). - CVE-2026-39830: Update golang.org/x/crypto dependency (bsc#1266171). - CVE-2026-39831: Update golang.org/x/crypto dependency (bsc#1266171). - CVE-2026-39832: Update golang.org/x/crypto dependency (bsc#1266171). - CVE-2026-39833: Update golang.org/x/crypto dependency (bsc#1266171). - CVE-2026-39834: Update golang.org/x/crypto dependency (bsc#1266171). - CVE-2026-39835: Update golang.org/x/crypto dependency (bsc#1266171). - CVE-2026-42508: Update golang.org/x/crypto dependency (bsc#1266171). - CVE-2026-46595: Update golang.org/x/crypto dependency (bsc#1266171). - CVE-2026-46597: Update golang.org/x/crypto dependency (bsc#1266171). - CVE-2026-46598: Update golang.org/x/crypto dependency (bsc#1266171). - CVE-2026-33814: Update golang.org/x/net dependency (bsc#1265762). Other bugfixes: - Re-enable binary stripping and debuginfo (bsc#1210938). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2612-1 Released: Wed Jun 24 11:00:50 2026 Summary: Security update for google-guest-agent Type: security Severity: important References: 1210938,1234563,1236533,1239334,1239944,1243254,1243505,1245759,1253889,1257010,1260264,1262926,1265762,1266171,1266603,CVE-2023-45288,CVE-2024-45337,CVE-2025-22868,CVE-2025-22869,CVE-2025-58181,CVE-2026-33186,CVE-2026-33814,CVE-2026-34986,CVE-2026-39821,CVE-2026-39827,CVE-2026-39828,CVE-2026-39829,CVE-2026-39830,CVE-2026-39831,CVE-2026-39832,CVE-2026-39833,CVE-2026-39834,CVE-2026-39835,CVE-2026-42508,CVE-2026-46595,CVE-2026-46597,CVE-2026-46598 This update for google-guest-agent fixes the following issues Security issues: - CVE-2026-39821: Update golang.org/x/net/idna dependency (bsc#1266603). - CVE-2026-39827: Update golang.org/x/crypto dependency (bsc#1266171). - CVE-2026-39828: Update golang.org/x/crypto dependency (bsc#1266171). - CVE-2026-39829: Update golang.org/x/crypto dependency (bsc#1266171). - CVE-2026-39830: Update golang.org/x/crypto dependency (bsc#1266171). - CVE-2026-39831: Update golang.org/x/crypto dependency (bsc#1266171). - CVE-2026-39832: Update golang.org/x/crypto dependency (bsc#1266171). - CVE-2026-39833: Update golang.org/x/crypto dependency (bsc#1266171). - CVE-2026-39834: Update golang.org/x/crypto dependency (bsc#1266171). - CVE-2026-39835: Update golang.org/x/crypto dependency (bsc#1266171). - CVE-2026-42508: Update golang.org/x/crypto dependency (bsc#1266171). - CVE-2026-46595: Update golang.org/x/crypto dependency (bsc#1266171). - CVE-2026-46597: Update golang.org/x/crypto dependency (bsc#1266171). - CVE-2026-46598: Update golang.org/x/crypto dependency (bsc#1266171). - CVE-2023-45288: golang.org/x/net/http2: close connections when receiving too many headers (bsc#1236533). - CVE-2024-45337: golang.org/x/crypto/ssh: Misuse of ServerConfig.PublicKeyCallback may cause authorization bypass in golang.org/x/crypto (bsc#1234563). - CVE-2025-22869: golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh (bsc#1239334). - CVE-2025-58181: golang.org/x/crypto/ssh: invalidated number of mechanisms can cause unbounded memory consumption (bsc#1253889). - CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2 :path pseudo- header (bsc#1260264). - CVE-2026-33814: golang.org/x/net/http2: infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE (bsc#1265762). - CVE-2026-34986: github.com/go-jose/go-jose/v4: crafted JWE input with a missing encrypted key can lead to a denial of service (bsc#1262926). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2613-1 Released: Wed Jun 24 11:01:35 2026 Summary: Security update for xen Type: security Severity: important References: 1264066,1266952,1266953,1266955,CVE-2025-54518,CVE-2026-42487,CVE-2026-42488,CVE-2026-42489,CVE-2026-42490 This update for xen fixes the following issues - CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264066). - CVE-2026-42487: x86 HVM I/O port list traversal (bsc#1266952). - CVE-2026-42488: x86: mismatched mapcache metadata (bsc#1266955). - CVE-2026-42489,CVE-2026-42490: domctl lock open to abuse (bsc#1266953). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2614-1 Released: Wed Jun 24 11:02:07 2026 Summary: Security update for openssl-1_1 Type: security Severity: important References: 1266340,1266341,1266342,1266349,1266357,CVE-2026-34180,CVE-2026-42766,CVE-2026-45447,CVE-2026-7383,CVE-2026-9076 This update for openssl-1_1 fixes the following issues: - CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357). - CVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryption (bsc#1266349). - CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption (bsc#1266341). - CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion (bsc#1266340). - CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing (bsc#1266342). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2617-1 Released: Wed Jun 24 11:03:27 2026 Summary: Security update for bind Type: security Severity: important References: 1265591,1265592,1265594,CVE-2026-3039,CVE-2026-3592,CVE-2026-5946 This update for bind fixes the following issues: - CVE-2026-3592: Amplification vulnerabilities via self-pointed glue records (bsc#1265592). - CVE-2026-3039: BIND 9 server memory exhaustion during GSS-API TKEY negotiation (bsc#1265591). - CVE-2026-5946: Invalid handling of CLASS != IN (bsc#1265594). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2638-1 Released: Fri Jun 26 08:36:59 2026 Summary: Security update for the Linux Kernel Type: security Severity: important References: 1255416,1258538,1260531,1262663,1262993,1263769,1263879,1263880,1264076,1264116,1264470,1264610,1266214,1266290,1267214,1267361,1267369,1267381,1267387,1267621,1267640,1267652,1267697,CVE-2025-10263,CVE-2025-68324,CVE-2026-23392,CVE-2026-31473,CVE-2026-31500,CVE-2026-31613,CVE-2026-31697,CVE-2026-31698,CVE-2026-31699,CVE-2026-31759,CVE-2026-43077,CVE-2026-43198,CVE-2026-45984,CVE-2026-46037,CVE-2026-46116,CVE-2026-46120,CVE-2026-46123,CVE-2026-46150,CVE-2026-46159,CVE-2026-46197,CVE-2026-46227 The SUSE Linux Enterprise 15 SP4 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2025-10263: arm64: errata: Mitigate TLBI errata on various Arm CPUs (bsc#1266290). - CVE-2025-68324: scsi: imm: Fix use-after-free bug caused by unfinished delayed work (bsc#1255416). - CVE-2026-23392: netfilter: nf_tables: release flowtable after rcu grace period on error (bsc#1260531). - CVE-2026-31473: media: mc, v4l2: serialize REINIT and REQBUFS with req_queue_mutex (bsc#1262663). - CVE-2026-31500: Bluetooth: btintel: serialize btintel_hw_error() with hci_req_sync_lock (bsc#1262993). - CVE-2026-31613: smb: client: fix OOB reads parsing symlink error response (bsc#1263769). - CVE-2026-31697: crypto: ccp: Don't attempt to copy ID to userspace if PSP command failed (bsc#1264116). - CVE-2026-31698: crypto: ccp: Don't attempt to copy PDH cert to userspace if PSP command failed (bsc#1263880). - CVE-2026-31699: crypto: ccp: Don't attempt to copy CSR to userspace if PSP command failed (bsc#1263879). - CVE-2026-31759: usb: ulpi: fix double free in ulpi_register_interface() error path (bsc#1264076). - CVE-2026-43077: crypto: algif_aead - Fix minimum RX size check for decryption (bsc#1264470). - CVE-2026-43198: tcp: fix potential race in tcp_v6_syn_recv_sock() (bsc#1264610). - CVE-2026-45984: gfs2: Move the inode glock locking to gfs2_file_buffered_write (bsc#1267214). - CVE-2026-46037: ipv4: icmp: validate reply type before using icmp_pointers (bsc#1267361). - CVE-2026-46116: xfrm: defensively unhash xfrm_state lists in __xfrm_state_delete (bsc#1267369). - CVE-2026-46120: ip6_gre: Use cached t->net in ip6erspan_changelink() (bsc#1267640). - CVE-2026-46123: Bluetooth: virtio_bt: clamp rx length before skb_put (bsc#1267621). - CVE-2026-46150: fanotify: fix false positive on permission events (bsc#1267387). - CVE-2026-46159: btrfs: fix btrfs_ioctl_space_info() slot_count TOCTOU which can lead to info-leak (bsc#1267652). - CVE-2026-46197: drm/amdkfd: validate SVM ioctl nattr against buffer size (bsc#1267381). - CVE-2026-46227: sctp: revalidate list cursor after sctp_sendmsg_to_asoc() in SCTP_SENDALL (bsc#1267697). The following non security issues were fixed: - smb: client: correctly handle ErrorContextData as a flexible array (git-fixes). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2639-1 Released: Fri Jun 26 09:04:53 2026 Summary: Security update for containerd Type: security Severity: important References: 1260296,1262948,1265794,1266640,CVE-2026-33186,CVE-2026-33814,CVE-2026-34986,CVE-2026-39821 This update for containerd fixes the following issues - CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2 :path pseudo- header (bsc#1260296). - CVE-2026-33814: golang.org/x/net/http2: infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE (bsc#1265794). - CVE-2026-34986: github.com/go-jose/go-jose/v3: crafted JWE input with a missing encrypted key can lead to a denial of service (bsc#1262948). - CVE-2026-39821: golang.org/x/net/idna: failure to reject ASCII-only Punycode-encoded labels allows for validation bypass and privilege escalation (bsc#1266640). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2653-1 Released: Fri Jun 26 14:22:17 2026 Summary: Security update for util-linux Type: security Severity: moderate References: 1261606,CVE-2026-27456 This update for util-linux fixes the following issue - CVE-2026-27456: TOCTOU in the mount program when setting up loop devices (bsc#1261606). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2674-1 Released: Mon Jun 29 11:36:33 2026 Summary: Security update for libsolv, libzypp, zypper Type: security Severity: important References: 1158038,1239718,1246504,1247948,1249435,1252744,1253193,1253740,1257068,1257882,1258193,1259311,1259706,1259802,1259842,1265223,1265935,1265938,1266039,1267426,1267874,CVE-2026-25707,CVE-2026-44933,CVE-2026-44941,CVE-2026-44942,CVE-2026-48863,CVE-2026-9149,CVE-2026-9150 This update for libsolv, libzypp, zypper fixes the following issues - CVE-2026-9149: Heap buffer overflow in libsolv repo_add_solv via negative maxsize from crafted .solv file (bsc#1265935). - CVE-2026-9150: Stack-based buffer overflow in libsolv's Debian metadata parser when handling SHA384/SHA512 checksums (bsc#1265938). - CVE-2026-25707: Handcrafted repo metadata may cause arbitrary local files to be overwritten (bsc#1259802). - CVE-2026-44933: scan of the Mandatory signature verification plugin support (bsc#1265223). - CVE-2026-44941: path traversal via 'keyhint' (bsc#1267426). - CVE-2026-44942: .repo files can have an optional path which can lead to path traversal attacks (bsc#1267874). - CVE-2026-48863: Fix buffer overflow when parsing EdDSA signature (bsc#1266039). Changes in libzypp: Updated to version 17.38.13 (35): - A .repo files 'path=' entry must not refer to a location outside the repo (bsc#1267874, CVE-2026-44942) A 'path=' entry may solely denote a sub-directory of the baseurl where the metadata are located. A relative path trying to access data outside the baseurl is reported and sanitized. - Fix potential crash on malformed or malicious repository metadata (fixes #740) - Repo metadata: discard entries referring to a location outside the repo (bsc#1259802, CVE-2026-25707) Mirroring those data locally would refer to a location outside the repo's local cache directory. Those data entries are reported and discarded. - zypp.conf: Allow [env] section to add environment variables. This feature is designed to enable environment-specific settings or debugging options over an extended period. See zypp.conf(5). - Prevent configured scripts from escaping the sigcheck directory (bsc#1265223, CVE-2026-44933) - StringV: guard hasPrefix/hasPrefixCI against reading past the view end (fixes #735) - Mandatory signature verification plugin support (PED#11922) - Fix purge-kernel -rc kernel handling (bsc#1239718) - Explicitly_set_pool_DISTTYPE_RPM (fixes #726) - Check for trusted key updates when updating the general keyring (bsc#1259706) - Support multiple MirroredOrigin authorities (bsc#1253193) - Workaround doxygen bug: doxygen/doxygen#12057 - libzypp.spec: Add missing graphviz-gd BuildRequires (boo#1259842) - Fix preloader not caching packages from arch specific subrepos (bsc#1253740) - Deprioritize invalid mirrors (fixes openSUSE/zypper#636) - Fix Product::referencePackage lookup (bsc#1259311) Use a provided autoproduct() as hint to the package name of the release package. It might be that not just multiple versions of the same release package provide the same product version, but also different release packages. - specfile: on fedora use %{_prefix}/share as zyppconfdir if %{_distconfdir} is undefined (fixes #693) This will set '-DZYPPCONFDIR=%{zyppconfdir}' for cmake. - Fall back to a writable location when precaching packages without root (bsc#1247948) - Prepare a legacy /etc/zypp/zypp.conf to be installed on old distros. See the ZYPP.CONF(5) man page for details. - Fix runtime check for broken rpm --runposttrans (bsc#1257068) - Avoid libcurl-mini4 when building as it does not support ftp protocol. - Translation: updated .pot file. - zypp.conf: follow the UAPI configuration file specification (PED-14658) In short terms it means we will no longer ship an /etc/zypp/zypp.conf, but store our own defaults in /usr/etc/zypp/zypp.conf. The systems administrator may choose to keep a full copy in /etc/zypp/zypp.conf ignoring our config file settings completely, or - the preferred way - to overwrite specific settings via /etc/zypp/zypp.conf.d/*.conf overlay files. See the ZYPP.CONF(5) man page for details. - cmake: correctly detect rpm6 (fixes #689) - Use 'zypp.tmp' as temp directory component to ease setting up SELinux policies (bsc#1249435) - zyppng: Update Provider to current MediaCurl2 download approach, drop Metalink ( fixes #682 ) Changes in libsolv: Updated to version 0.7.39: - fix solv_chksum_free segfault when called with a NULL pointer - made repo_add_solv more robust against corrupt files [bsc#1265935] [CVE-2026-9149] - fix potential buffer overflow when verifying EdDSA signatures [bsc#1266039] [CVE-2026-48863] - added limit checks in multiple places to catch overflows - reduce the size of the language id cache - fixed Debian canon selection - fixed dbpath detection in repo_rpmdb_librpm - reduced stack usage in repo page compression (needed for musl) - fix parsing of sha512 checksums in debian repositories [bsc#1265938] [CVE-2026-9150] - improve speed of dirpool_add_dir makeing parsing of filelists.xml twice as fast - fix parsing of recommends in the old Mandriva synthesis format - respect the 'default' attribute in environment optionlist in the comps parser - support suse namespace deps in boolean dependencies [bsc#1258193] - support for the Elbrus2000 (e2k) architecture - support language() suse namespace rewriting Changes in zypper: Update to version 1.14.98: - Transactional systems: Delegate rw-commands to transactional-wrapper if available (jsc#PED-13680, jsc#PED-15607) On a transactional system where the root filesystem is mounted read-only, zypper commands that modify the system cannot be executed directly. If the system provides a transactional-wrapper utility, zypper will automatically attempt to invoke it. The wrapper transparently executes the zypper command within a new, writable snapshot and manages the lifecycle of that snapshot based on the command's exit status. On transactional systems lacking a transactional-wrapper, users must manually invoke specialized tools -such as transactional-update- to install, update, or remove software. - Add --filter-version-change to zypper lu. Adds filtering by version change significance to reduce noise in update listings. Supports levels: rebuild (hides rebuild-only changes) and package (hides all release-only changes). - Autorefresh ris-services the way as plugin-services (bsc#1246504) It's actually wrong to treat service refreshes different depending on the service type. For the purpose of a service it makes no difference how the data about the repos to use are acquired. - Report download progress for command line rpms (fixes #613) - Hint to '-vv ref' to see the mirrors used to download the metadata (bsc#1257882) - Service: Allow 'zypper ls SERVICE ...' to test whether a service with this alias is defined (bsc#1252744) The command prints an abstract of all services passed on the command line. It returns 3-ZYPPER_EXIT_ERR_INVALID_ARGS if some argument does not name an existing service. - Keep repo data when updating the service settings (bsc#1252744) - info: Enhance pattern content table (bsc#1158038) Alternatives (multiple packages providing the same requirement) are now listed as a single entry in the content table. The entry shows either the installed package which satisfies the requirement or the requirement itself as type 'Provides'. Listing all potential alternatives was miss leading, especially if the alternatives were mutual exclusive. It looked like an installed pattern had not-installed requirements and it was not possible to install all requirements at the same time. ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2699-1 Released: Tue Jun 30 11:19:23 2026 Summary: Security update for cifs-utils Type: security Severity: important References: 1267389,CVE-2026-12505 This update for cifs-utils fixes the following issue - CVE-2026-12505: cifs.upcall local privilege escalation via request_key-controlled namespace switch and NSS loading (bsc#1267389). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2714-1 Released: Tue Jun 30 14:02:53 2026 Summary: Security update for tar Type: security Severity: important References: 1261900,1265450,1267189,CVE-2026-5704 This update for tar fixes the following issues Security fixes: - CVE-2026-5704: crafted archives can be used to to hide file injection (bsc#1261900). Other fixes: - Fix tar changing dir permissions temporarily even when using --no-overwrite-dir. - Fix --dereference/-h not working properly after CVE-2025-45582 fix (bsc#1265450). - Fix extraction failure for paths like 'a/./b' caused by the gnulib openat2 implementation (bsc#1267189). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2720-1 Released: Wed Jul 1 15:14:47 2026 Summary: Security update for dracut Type: security Severity: important References: 1268322,CVE-2026-6893 This update for dracut fixes the following issue - CVE-2026-6893: Root code execution via DHCP options command injection (bsc#1268322). Changes for dracut: - Update to version 055+suse.365.g79144c5: * fix(network-legacy): sanitize DHCP values in dhclient-script.sh (bsc#1268322, CVE-2026-6893) * fix(network-legacy): add input validation to RFC 3442 route parser The following package changes have been done: - bind-utils-9.16.50-150400.5.62.1 updated - cifs-utils-6.15-150400.3.21.1 updated - containerd-ctr-1.7.29-150000.137.1 updated - containerd-1.7.29-150000.137.1 updated - coreutils-8.32-150400.9.12.1 updated - dracut-055+suse.365.g79144c5-150400.3.49.1 updated - glibc-locale-base-2.31-150300.101.1 updated - glibc-locale-2.31-150300.101.1 updated - glibc-2.31-150300.101.1 updated - google-guest-agent-20260529.00-150000.1.70.1 updated - google-osconfig-agent-20260615.01-150000.1.55.1 updated - hwdata-0.406-150000.3.80.1 updated - jq-1.6-150000.3.15.1 updated - kernel-default-5.14.21-150400.24.225.2 updated - krb5-1.19.2-150400.3.21.1 updated - libavahi-client3-0.8-150400.7.31.2 updated - libavahi-common3-0.8-150400.7.31.2 updated - libblkid1-2.37.2-150400.8.47.1 updated - libfdisk1-2.37.2-150400.8.47.1 updated - libjq1-1.6-150000.3.15.1 updated - libmount1-2.37.2-150400.8.47.1 updated - libopenssl1_1-1.1.1l-150400.7.96.2 updated - libsmartcols1-2.37.2-150400.8.47.1 updated - libsolv-tools-base-0.7.39-150400.3.46.1 updated - libsolv-tools-0.7.39-150400.3.46.1 updated - libsqlite3-0-3.53.2-150000.3.42.1 updated - libuuid1-2.37.2-150400.8.47.1 updated - libzypp-17.38.13-150400.3.158.1 updated - openssh-clients-8.4p1-150300.3.65.1 updated - openssh-common-8.4p1-150300.3.65.1 updated - openssh-server-8.4p1-150300.3.65.1 updated - openssh-8.4p1-150300.3.65.1 updated - openssl-1_1-1.1.1l-150400.7.96.2 updated - python3-bind-9.16.50-150400.5.62.1 updated - runc-1.3.4-150000.96.1 updated - tar-1.34-150000.3.42.1 updated - timezone-2026b-150000.75.37.1 updated - util-linux-systemd-2.37.2-150400.8.47.1 updated - util-linux-2.37.2-150400.8.47.1 updated - vim-data-common-9.2.0530-150000.5.94.1 updated - vim-9.2.0530-150000.5.94.1 updated - wicked-service-0.6.79-150400.3.39.1 updated - wicked-0.6.79-150400.3.39.1 updated - xen-libs-4.16.7_10-150400.4.86.2 updated - zypper-1.14.98-150400.3.104.1 updated From sle-container-updates at lists.suse.com Fri Jul 3 07:08:14 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Fri, 3 Jul 2026 09:08:14 +0200 (CEST) Subject: SUSE-IU-2026:5408-1: Security update of suse/sl-micro/6.2/baremetal-os-container Message-ID: <20260703070814.1EEFFFCC9@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.2/baremetal-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5408-1 Image Tags : suse/sl-micro/6.2/baremetal-os-container:2.3.1 , suse/sl-micro/6.2/baremetal-os-container:2.3.1-8.36 , suse/sl-micro/6.2/baremetal-os-container:latest Image Release : 8.36 Severity : moderate Type : security References : 1268903 CVE-2026-9539 ----------------------------------------------------------------- The container suse/sl-micro/6.2/baremetal-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1142 Released: Thu Jul 2 11:52:17 2026 Summary: Security update for libslirp Type: security Severity: moderate References: 1268903,CVE-2026-9539 This update for libslirp fixes the following issue - CVE-2026-9539: TCP URG out of bounds heap read information leak (bsc#1268903). The following package changes have been done: - libslirp0-4.8.0+2-160000.3.1 updated From sle-container-updates at lists.suse.com Fri Jul 3 07:31:27 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Fri, 3 Jul 2026 09:31:27 +0200 (CEST) Subject: SUSE-CU-2026:6700-1: Security update of suse/kiosk/firefox-esr Message-ID: <20260703073127.22E00FCC8@maintenance.suse.de> SUSE Container Update Advisory: suse/kiosk/firefox-esr ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6700-1 Container Tags : suse/kiosk/firefox-esr:140.12 , suse/kiosk/firefox-esr:140.12-74.14 , suse/kiosk/firefox-esr:esr , suse/kiosk/firefox-esr:latest Container Release : 74.14 Severity : moderate Type : security References : 1261569 1261570 1261571 1261572 1261742 1261743 CVE-2026-27447 CVE-2026-34978 CVE-2026-34979 CVE-2026-34980 CVE-2026-39314 CVE-2026-39316 ----------------------------------------------------------------- The container suse/kiosk/firefox-esr was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2732-1 Released: Thu Jul 2 19:41:27 2026 Summary: Security update for cups Type: security Severity: moderate References: 1261569,1261570,1261571,1261572,1261742,1261743,CVE-2026-27447,CVE-2026-34978,CVE-2026-34979,CVE-2026-34980,CVE-2026-39314,CVE-2026-39316 This update for cups fixes the following issues - CVE-2026-27447: Authorization bypass via case-insensitive group-member lookup (bsc#1261572). - CVE-2026-34978: Path traversal in RSS notify-recipient-uri enables file write outside CacheDir/rss (bsc#1261571). - CVE-2026-34979: Heap overflow in `get_options()` (bsc#1261570). - CVE-2026-34980: Shared PostScript queue lets anonymous Print-Job requests reach `lp` code execution over the network (bsc#1261569). - CVE-2026-39314: negative `job-password-supported` attribute can lead to a denial of service (bsc#1261743). - CVE-2026-39316: dangling subscription pointer can lead to a denial of service (1261742). The following package changes have been done: - cups-config-2.2.7-150000.3.93.1 updated - libcups2-2.2.7-150000.3.93.1 updated - container:suse-sle15-15.7-d2aab68ae05470b62bbe38c4ca03ff5bf72b405197482ed96e34dd0087d7bde2-0 updated From sle-container-updates at lists.suse.com Fri Jul 3 07:33:45 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Fri, 3 Jul 2026 09:33:45 +0200 (CEST) Subject: SUSE-CU-2026:6701-1: Recommended update of suse/rmt-server Message-ID: <20260703073345.A8548FCC8@maintenance.suse.de> SUSE Container Update Advisory: suse/rmt-server ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6701-1 Container Tags : suse/rmt-server:2 , suse/rmt-server:2.28 , suse/rmt-server:2.28-82.7 , suse/rmt-server:latest Container Release : 82.7 Severity : important Type : recommended References : 1262706 1268149 1268301 1268303 1268305 ----------------------------------------------------------------- The container suse/rmt-server was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2734-1 Released: Thu Jul 2 20:05:20 2026 Summary: Recommended update for rmt-server Type: recommended Severity: important References: 1262706,1268149,1268301,1268303,1268305 This update for rmt-server fixes the following issues: - Version 2.28: * Set arch to unknown for Rancher based products (jsc#SCC-759) * Fix purge for large amount of systems (bsc#1262706) * Change data type to MEDIUMTEXT in profiles table (bsc#1268305) * Remove proxy_byos column * Fix race condition when no system matches (bsc#1268301) * Fix race condition for PAYG (bsc#1268149) * Fix race condition to update a system (bsc#1268303) The following package changes have been done: - rmt-server-config-2.28-150700.3.23.1 updated - rmt-server-2.28-150700.3.23.1 updated From sle-container-updates at lists.suse.com Fri Jul 3 07:34:25 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Fri, 3 Jul 2026 09:34:25 +0200 (CEST) Subject: SUSE-CU-2026:6702-1: Security update of suse/samba-server Message-ID: <20260703073425.BEE09FCC8@maintenance.suse.de> SUSE Container Update Advisory: suse/samba-server ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6702-1 Container Tags : suse/samba-server:4.21 , suse/samba-server:4.21 , suse/samba-server:4.21-75.8 , suse/samba-server:latest Container Release : 75.8 Severity : moderate Type : security References : 1261569 1261570 1261571 1261572 1261742 1261743 CVE-2026-27447 CVE-2026-34978 CVE-2026-34979 CVE-2026-34980 CVE-2026-39314 CVE-2026-39316 ----------------------------------------------------------------- The container suse/samba-server was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2732-1 Released: Thu Jul 2 19:41:27 2026 Summary: Security update for cups Type: security Severity: moderate References: 1261569,1261570,1261571,1261572,1261742,1261743,CVE-2026-27447,CVE-2026-34978,CVE-2026-34979,CVE-2026-34980,CVE-2026-39314,CVE-2026-39316 This update for cups fixes the following issues - CVE-2026-27447: Authorization bypass via case-insensitive group-member lookup (bsc#1261572). - CVE-2026-34978: Path traversal in RSS notify-recipient-uri enables file write outside CacheDir/rss (bsc#1261571). - CVE-2026-34979: Heap overflow in `get_options()` (bsc#1261570). - CVE-2026-34980: Shared PostScript queue lets anonymous Print-Job requests reach `lp` code execution over the network (bsc#1261569). - CVE-2026-39314: negative `job-password-supported` attribute can lead to a denial of service (bsc#1261743). - CVE-2026-39316: dangling subscription pointer can lead to a denial of service (1261742). The following package changes have been done: - cups-config-2.2.7-150000.3.93.1 updated - libcups2-2.2.7-150000.3.93.1 updated - container:suse-sle15-15.7-d2aab68ae05470b62bbe38c4ca03ff5bf72b405197482ed96e34dd0087d7bde2-0 updated From sle-container-updates at lists.suse.com Fri Jul 3 07:46:35 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Fri, 3 Jul 2026 09:46:35 +0200 (CEST) Subject: SUSE-CU-2026:6732-1: Recommended update of suse/sles/16.0/toolbox Message-ID: <20260703074635.B0C39FCC8@maintenance.suse.de> SUSE Container Update Advisory: suse/sles/16.0/toolbox ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6732-1 Container Tags : suse/sles/16.0/toolbox:16.3 , suse/sles/16.0/toolbox:16.3-1.88 , suse/sles/16.0/toolbox:latest Container Release : 1.88 Severity : moderate Type : recommended References : 1263084 ----------------------------------------------------------------- The container suse/sles/16.0/toolbox was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1126 Released: Wed Jul 1 14:14:45 2026 Summary: Recommended update for patterns-base Type: recommended Severity: moderate References: 1263084 This update for patterns-base fixes the following issues: - make kernel_livepatching pattern visible (bsc#1263084) - add fwupd to enhanced base pattern (jsc#PED-15697) The following package changes have been done: - patterns-base-fips-20241218-160000.4.1 updated From sle-container-updates at lists.suse.com Sat Jul 4 07:06:19 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sat, 4 Jul 2026 09:06:19 +0200 (CEST) Subject: SUSE-IU-2026:5439-1: Security update of suse/sl-micro/6.0/baremetal-os-container Message-ID: <20260704070619.6B924FCC9@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.0/baremetal-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5439-1 Image Tags : suse/sl-micro/6.0/baremetal-os-container:2.1.3 , suse/sl-micro/6.0/baremetal-os-container:2.1.3-6.199 , suse/sl-micro/6.0/baremetal-os-container:latest Image Release : 6.199 Severity : important Type : security References : 1262856 1266125 1268903 CVE-2024-6104 CVE-2025-22869 CVE-2025-27144 CVE-2025-47913 CVE-2025-47914 CVE-2025-52881 CVE-2025-6032 CVE-2025-9566 CVE-2026-34986 CVE-2026-39827 CVE-2026-39828 CVE-2026-39829 CVE-2026-39830 CVE-2026-39831 CVE-2026-39832 CVE-2026-39833 CVE-2026-39834 CVE-2026-39835 CVE-2026-42508 CVE-2026-46595 CVE-2026-46597 CVE-2026-46598 CVE-2026-9539 ----------------------------------------------------------------- The container suse/sl-micro/6.0/baremetal-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 780 Released: Fri Jul 3 14:51:10 2026 Summary: Security update for libslirp Type: security Severity: moderate References: 1268903,CVE-2026-9539 This update for libslirp fixes the following issue - CVE-2026-9539: TCP URG out of bounds heap read information leak (bsc#1268903). ----------------------------------------------------------------- Advisory ID: 779 Released: Fri Jul 3 14:55:02 2026 Summary: Security update for podman Type: security Severity: important References: 1262856,1266125,CVE-2024-6104,CVE-2025-22869,CVE-2025-27144,CVE-2025-47913,CVE-2025-47914,CVE-2025-52881,CVE-2025-6032,CVE-2025-9566,CVE-2026-34986,CVE-2026-39827,CVE-2026-39828,CVE-2026-39829,CVE-2026-39830,CVE-2026-39831,CVE-2026-39832,CVE-2026-39833,CVE-2026-39834,CVE-2026-39835,CVE-2026-42508,CVE-2026-46595,CVE-2026-46597,CVE-2026-46598 This update for podman fixes the following issues - CVE-2026-34986: github.com/go-jose/go-jose/v4,github.com/go-jose/go-jose/v3: crafted JWE input with a missing encrypted key can lead to a denial of service (bsc#1262856). - CVE-2026-39827: Invoking memory leak when rejecting channels can lead to DoS in golang.org/x/crypto/ssh (bsc#1266125). - CVE-2026-39828: Invoking bypass of certificate restrictions in golang.org/x/crypto/ssh (bsc#1266125). - CVE-2026-39829: Invoking pathological RSA/DSA parameters may cause DoS in golang.org/x/crypto/ssh (bsc#1266125). - CVE-2026-39830: Invoking client can cause server deadlock on unexpected responses in golang.org/x/crypto/ssh (bsc#1266125). - CVE-2026-39831: Invoking bypass of FIDO/U2F security keys physical interaction in golang.org/x/crypto/ssh (bsc#1266125). - CVE-2026-39832: Invoking agent constraints dropped when forwarding keys in golang.org/x/crypto/ssh/agent (bsc#1266125). - CVE-2026-39833: Invoking key constraints not enforced in golang.org/x/crypto/ssh/agent (bsc#1266125). - CVE-2026-39834: Invoking infinite loop on large channel writes in golang.org/x/crypto/ssh (bsc#1266125). - CVE-2026-39835: Invoking server panic during CheckHostKey/Authenticate in golang.org/x/crypto/ssh (bsc#1266125). - CVE-2026-42508: Invoking auth bypass via unenforced @revoked status in golang.org/x/crypto/ssh/knownhosts (bsc#1266125). - CVE-2026-46595: Invoking VerifiedPublicKeyCallback permissions skip enforcement in golang.org/x/crypto/ssh (bsc#1266125). - CVE-2026-46597: Invoking byte arithmetic causes underflow and panic in golang.org/x/crypto/ssh (bsc#1266125). - CVE-2026-46598: Invoking pathological inputs can lead to client panic in golang.org/x/crypto/ssh/agent (bsc#1266125). The following package changes have been done: - libslirp0-4.7.0+44-5.1 updated - podman-4.9.5-12.1 updated From sle-container-updates at lists.suse.com Sat Jul 4 07:14:56 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sat, 4 Jul 2026 09:14:56 +0200 (CEST) Subject: SUSE-IU-2026:5441-1: Security update of suse/sl-micro/6.1/baremetal-os-container Message-ID: <20260704071456.635AEFCC8@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.1/baremetal-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5441-1 Image Tags : suse/sl-micro/6.1/baremetal-os-container:2.2.1 , suse/sl-micro/6.1/baremetal-os-container:2.2.1-7.130 , suse/sl-micro/6.1/baremetal-os-container:latest Image Release : 7.130 Severity : important Type : security References : 1216378 1258392 1262043 1262044 1262069 1262070 1262071 1262072 1265060 1265061 1265062 1265070 CVE-2023-45853 CVE-2026-27171 CVE-2026-32316 CVE-2026-33947 CVE-2026-33948 CVE-2026-39956 CVE-2026-39979 CVE-2026-40164 CVE-2026-40612 CVE-2026-41256 CVE-2026-41257 CVE-2026-43894 ----------------------------------------------------------------- The container suse/sl-micro/6.1/baremetal-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 610 Released: Fri Jul 3 14:16:11 2026 Summary: Security update for jq Type: security Severity: important References: 1216378,1258392,1262043,1262044,1262069,1262070,1262071,1262072,1265060,1265061,1265062,1265070,CVE-2023-45853,CVE-2026-27171,CVE-2026-32316,CVE-2026-33947,CVE-2026-33948,CVE-2026-39956,CVE-2026-39979,CVE-2026-40164,CVE-2026-40612,CVE-2026-41256,CVE-2026-41257,CVE-2026-43894 This update for jq fixes the following issues: - CVE-2026-32316: integer overflow within the `jvp_string_append()` and `jvp_string_copy_replace_bad` functions can lead to heap buffer overflow when evaluating untrusted jq queries (bsc#1262044). - CVE-2026-33947: unbounded recursion in functions `jv_setpath()`, `jv_getpath()`, and `delpaths_sorted()` can lead to excessive resource consumption when processing crafted JSON input (bsc#1262069). - CVE-2026-39956: missing runtime type checks in `_strindices` and `jv_string_indexes()` can lead to a crash when evaluating untrusted jq filters against a release build (bsc#1262070). - CVE-2026-39979: incorrect processing of non-nul-terminated counted buffers in `jv_parse_sized` can lead to an out-of-bounds read when processing malformed JSON (bsc#1262071). - CVE-2026-40164: use of `MurmurHash3` with a hardcoded seed allows pre-computation of key collisions and can lead to a denial of service via resource exhaustion when processing crafted JSON objects (bsc#1262072). - CVE-2026-40612: recursion into nested arrays/objects with no depth limit in `jv_contains` can lead to a C stack exhaustion when processing crafted input (bsc#1265060). - CVE-2026-41256: truncation of top-level jq programs loaded with `-f` and can lead to the execution of unintended programs (bsc#1265061). - CVE-2026-41257: integer overflow in `stack_reallocate` can lead to memory corruption and DoS when processing jq bytecode (bsc#1265062). - CVE-2026-43894: signed integer overflow in the `decNumberFromString` `D2U()` macro can lead to an out-of-bounds memory write when processing large number literals (bsc#1265070). - CVE-2026-33948: improper handling of buffer sizes via `strlen()` instead of `fgets()` in CLI input parsing allows validation bypass via embedded NUL bytes (bsc#1262043). The following package changes have been done: - libjq1-1.7.1-slfo.1.1_3.1 updated - jq-1.7.1-slfo.1.1_3.1 updated From sle-container-updates at lists.suse.com Sat Jul 4 07:18:26 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sat, 4 Jul 2026 09:18:26 +0200 (CEST) Subject: SUSE-CU-2026:6743-1: Security update of suse/sl-micro/6.1/baremetal-iso-image Message-ID: <20260704071826.E8D21FCC8@maintenance.suse.de> SUSE Container Update Advisory: suse/sl-micro/6.1/baremetal-iso-image ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6743-1 Container Tags : suse/sl-micro/6.1/baremetal-iso-image:2.2.1 , suse/sl-micro/6.1/baremetal-iso-image:2.2.1-5.138 , suse/sl-micro/6.1/baremetal-iso-image:latest Container Release : 5.138 Severity : moderate Type : security References : 1240751 1252555 1258120 1258170 1258508 1263656 1263658 CVE-2025-12105 CVE-2025-32049 CVE-2026-2369 CVE-2026-2443 CVE-2026-2708 CVE-2026-5435 CVE-2026-6238 ----------------------------------------------------------------- The container suse/sl-micro/6.1/baremetal-iso-image was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 601 Released: Tue Jun 30 11:54:13 2026 Summary: Security update for glibc Type: security Severity: moderate References: 1240751,1252555,1258120,1258170,1258508,1263656,1263658,CVE-2025-12105,CVE-2025-32049,CVE-2026-2369,CVE-2026-2443,CVE-2026-2708,CVE-2026-5435,CVE-2026-6238 This update for glibc fixes the following issues - CVE-2026-5435: unchecked buffer writing in TSIG handling can lead to an out-of-bounds write (bsc#1263656). - CVE-2026-6238: insufficient RDATA length validation can lead to application crashes or uninitialized memory disclosure (bsc#1263658). The following package changes have been done: - glibc-2.38-slfo.1.1_9.1 updated - container:SL-Micro-container-2.2.1-7.130 updated From sle-container-updates at lists.suse.com Sat Jul 4 07:25:08 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sat, 4 Jul 2026 09:25:08 +0200 (CEST) Subject: SUSE-IU-2026:5444-1: Security update of suse/sl-micro/6.2/baremetal-os-container Message-ID: <20260704072508.899FAFCC8@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.2/baremetal-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5444-1 Image Tags : suse/sl-micro/6.2/baremetal-os-container:2.3.1 , suse/sl-micro/6.2/baremetal-os-container:2.3.1-8.39 , suse/sl-micro/6.2/baremetal-os-container:latest Image Release : 8.39 Severity : important Type : security References : 1245551 1248261 1251948 1254924 1259071 1260357 1261982 1261983 1262305 1263117 1263656 1263658 1267644 1267647 CVE-2026-5435 CVE-2026-6238 ----------------------------------------------------------------- The container suse/sl-micro/6.2/baremetal-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1151 Released: Fri Jul 3 10:55:00 2026 Summary: Security update for systemd Type: security Severity: important References: 1245551,1248261,1251948,1254924,1259071,1260357,1261982,1261983,1262305,1263117,1267644,1267647 This update for systemd fixes the following issues: Changes in systemd: - Better handle TLS allocation failure (bsc#1254924). - Disable mounting `debugfs` by default (jsc#PED-8812). - Import commit 9e8b5afe0fb2061f4a17a3022469dd62f2683960 (bsc#1267647 bsc#1267644 bsc#1262305 bsc#1263117). - Move `systemd-pcrlock` out from the experimental sub-package to `udev` (bsc#1248261 jsc#PED-15946). - Add a weak runtime dependency on `libtss2-tcti-device0` (bsc#1260357). - Import commit 59336000ef7850eba0963c6a690ff3371c425929 (bsc#1261982 bsc#1261983). - Add a weak runtime dependency on `polkit` (bsc#1259071). - systemd-update-helper: fix the clean-state command only removing `$STATE_DIR/system` instead of `$STATE_DIR/`. - systemd-update-helper: add `--root` option for testing convenience. - systemd-update-helper: fix incorrect skipping of `systemctl disable` during package removal (bsc#1245551). - systemd-update-helper: fix `do_install_units()` incorrectly returning 1 when no units need preset. - systemd.spec: introduce `%bcond_without` docs to allow skipping man pages and `devel-doc`. - systemd.spec: drop the `%{release}` number from the SBAT version (bsc#1251948). ----------------------------------------------------------------- Advisory ID: 1157 Released: Fri Jul 3 15:19:16 2026 Summary: Security update for glibc Type: security Severity: moderate References: 1263656,1263658,CVE-2026-5435,CVE-2026-6238 This update for glibc fixes the following issues - CVE-2026-5435: unchecked buffer writing in TSIG handling can lead to an out-of-bounds write (bsc#1263656). - CVE-2026-6238: insufficient RDATA length validation can lead to application crashes or uninitialized memory disclosure (bsc#1263658). The following package changes have been done: - glibc-2.40-160000.6.1 updated - libudev1-257.13-160000.2.1 updated - libsystemd0-257.13-160000.2.1 updated - systemd-257.13-160000.2.1 updated - udev-257.13-160000.2.1 updated - glibc-gconv-modules-extra-2.40-160000.6.1 updated - glibc-locale-base-2.40-160000.6.1 updated - container:suse-sl-micro-6.2-base-os-container-latest-855712783bbba8ba568d72b9b88393c0db9f8bcda5e73a3215f96b15e2d50191-0 updated From sle-container-updates at lists.suse.com Sat Jul 4 07:28:13 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sat, 4 Jul 2026 09:28:13 +0200 (CEST) Subject: SUSE-IU-2026:5445-1: Security update of suse/sl-micro/6.2/baremetal-iso-image Message-ID: <20260704072813.4CB4EFCC8@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.2/baremetal-iso-image ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5445-1 Image Tags : suse/sl-micro/6.2/baremetal-iso-image:2.3.1 , suse/sl-micro/6.2/baremetal-iso-image:2.3.1-8.34 , suse/sl-micro/6.2/baremetal-iso-image:latest Image Release : 8.34 Severity : moderate Type : security References : 1263656 1263658 CVE-2026-5435 CVE-2026-6238 ----------------------------------------------------------------- The container suse/sl-micro/6.2/baremetal-iso-image was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1157 Released: Fri Jul 3 15:19:16 2026 Summary: Security update for glibc Type: security Severity: moderate References: 1263656,1263658,CVE-2026-5435,CVE-2026-6238 This update for glibc fixes the following issues - CVE-2026-5435: unchecked buffer writing in TSIG handling can lead to an out-of-bounds write (bsc#1263656). - CVE-2026-6238: insufficient RDATA length validation can lead to application crashes or uninitialized memory disclosure (bsc#1263658). The following package changes have been done: - glibc-2.40-160000.6.1 updated From sle-container-updates at lists.suse.com Sat Jul 4 07:30:55 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sat, 4 Jul 2026 09:30:55 +0200 (CEST) Subject: SUSE-IU-2026:5450-1: Security update of suse/sl-micro/6.2/base-os-container Message-ID: <20260704073055.593D6FCC8@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.2/base-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5450-1 Image Tags : suse/sl-micro/6.2/base-os-container:2.3.1 , suse/sl-micro/6.2/base-os-container:2.3.1-8.25 , suse/sl-micro/6.2/base-os-container:latest Image Release : 8.25 Severity : important Type : security References : 1245551 1248261 1251948 1254924 1259071 1260357 1261982 1261983 1262305 1263117 1263656 1263658 1267644 1267647 CVE-2026-5435 CVE-2026-6238 ----------------------------------------------------------------- The container suse/sl-micro/6.2/base-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1151 Released: Fri Jul 3 10:55:00 2026 Summary: Security update for systemd Type: security Severity: important References: 1245551,1248261,1251948,1254924,1259071,1260357,1261982,1261983,1262305,1263117,1267644,1267647 This update for systemd fixes the following issues: Changes in systemd: - Better handle TLS allocation failure (bsc#1254924). - Disable mounting `debugfs` by default (jsc#PED-8812). - Import commit 9e8b5afe0fb2061f4a17a3022469dd62f2683960 (bsc#1267647 bsc#1267644 bsc#1262305 bsc#1263117). - Move `systemd-pcrlock` out from the experimental sub-package to `udev` (bsc#1248261 jsc#PED-15946). - Add a weak runtime dependency on `libtss2-tcti-device0` (bsc#1260357). - Import commit 59336000ef7850eba0963c6a690ff3371c425929 (bsc#1261982 bsc#1261983). - Add a weak runtime dependency on `polkit` (bsc#1259071). - systemd-update-helper: fix the clean-state command only removing `$STATE_DIR/system` instead of `$STATE_DIR/`. - systemd-update-helper: add `--root` option for testing convenience. - systemd-update-helper: fix incorrect skipping of `systemctl disable` during package removal (bsc#1245551). - systemd-update-helper: fix `do_install_units()` incorrectly returning 1 when no units need preset. - systemd.spec: introduce `%bcond_without` docs to allow skipping man pages and `devel-doc`. - systemd.spec: drop the `%{release}` number from the SBAT version (bsc#1251948). ----------------------------------------------------------------- Advisory ID: 1157 Released: Fri Jul 3 15:19:16 2026 Summary: Security update for glibc Type: security Severity: moderate References: 1263656,1263658,CVE-2026-5435,CVE-2026-6238 This update for glibc fixes the following issues - CVE-2026-5435: unchecked buffer writing in TSIG handling can lead to an out-of-bounds write (bsc#1263656). - CVE-2026-6238: insufficient RDATA length validation can lead to application crashes or uninitialized memory disclosure (bsc#1263658). The following package changes have been done: - glibc-2.40-160000.6.1 updated - libudev1-257.13-160000.2.1 updated - libsystemd0-257.13-160000.2.1 updated - systemd-257.13-160000.2.1 updated - udev-257.13-160000.2.1 updated - glibc-gconv-modules-extra-2.40-160000.6.1 updated - glibc-locale-base-2.40-160000.6.1 updated From sle-container-updates at lists.suse.com Sat Jul 4 07:34:36 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sat, 4 Jul 2026 09:34:36 +0200 (CEST) Subject: SUSE-IU-2026:5451-1: Security update of suse/sl-micro/6.2/base-iso-image Message-ID: <20260704073436.11982FCC8@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.2/base-iso-image ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5451-1 Image Tags : suse/sl-micro/6.2/base-iso-image:2.3.1 , suse/sl-micro/6.2/base-iso-image:2.3.1-8.20 , suse/sl-micro/6.2/base-iso-image:latest Image Release : 8.20 Severity : moderate Type : security References : 1263656 1263658 CVE-2026-5435 CVE-2026-6238 ----------------------------------------------------------------- The container suse/sl-micro/6.2/base-iso-image was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1157 Released: Fri Jul 3 15:19:16 2026 Summary: Security update for glibc Type: security Severity: moderate References: 1263656,1263658,CVE-2026-5435,CVE-2026-6238 This update for glibc fixes the following issues - CVE-2026-5435: unchecked buffer writing in TSIG handling can lead to an out-of-bounds write (bsc#1263656). - CVE-2026-6238: insufficient RDATA length validation can lead to application crashes or uninitialized memory disclosure (bsc#1263658). The following package changes have been done: - glibc-2.40-160000.6.1 updated From sle-container-updates at lists.suse.com Sat Jul 4 07:36:57 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sat, 4 Jul 2026 09:36:57 +0200 (CEST) Subject: SUSE-IU-2026:5455-1: Security update of suse/sl-micro/6.2/kvm-os-container Message-ID: <20260704073657.96B7FFCC8@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.2/kvm-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5455-1 Image Tags : suse/sl-micro/6.2/kvm-os-container:2.3.1 , suse/sl-micro/6.2/kvm-os-container:2.3.1-8.36 , suse/sl-micro/6.2/kvm-os-container:latest Image Release : 8.36 Severity : important Type : security References : 1245551 1248261 1251948 1254924 1259071 1260357 1261982 1261983 1262305 1263117 1263656 1263658 1267644 1267647 CVE-2026-5435 CVE-2026-6238 ----------------------------------------------------------------- The container suse/sl-micro/6.2/kvm-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1151 Released: Fri Jul 3 10:55:00 2026 Summary: Security update for systemd Type: security Severity: important References: 1245551,1248261,1251948,1254924,1259071,1260357,1261982,1261983,1262305,1263117,1267644,1267647 This update for systemd fixes the following issues: Changes in systemd: - Better handle TLS allocation failure (bsc#1254924). - Disable mounting `debugfs` by default (jsc#PED-8812). - Import commit 9e8b5afe0fb2061f4a17a3022469dd62f2683960 (bsc#1267647 bsc#1267644 bsc#1262305 bsc#1263117). - Move `systemd-pcrlock` out from the experimental sub-package to `udev` (bsc#1248261 jsc#PED-15946). - Add a weak runtime dependency on `libtss2-tcti-device0` (bsc#1260357). - Import commit 59336000ef7850eba0963c6a690ff3371c425929 (bsc#1261982 bsc#1261983). - Add a weak runtime dependency on `polkit` (bsc#1259071). - systemd-update-helper: fix the clean-state command only removing `$STATE_DIR/system` instead of `$STATE_DIR/`. - systemd-update-helper: add `--root` option for testing convenience. - systemd-update-helper: fix incorrect skipping of `systemctl disable` during package removal (bsc#1245551). - systemd-update-helper: fix `do_install_units()` incorrectly returning 1 when no units need preset. - systemd.spec: introduce `%bcond_without` docs to allow skipping man pages and `devel-doc`. - systemd.spec: drop the `%{release}` number from the SBAT version (bsc#1251948). ----------------------------------------------------------------- Advisory ID: 1157 Released: Fri Jul 3 15:19:16 2026 Summary: Security update for glibc Type: security Severity: moderate References: 1263656,1263658,CVE-2026-5435,CVE-2026-6238 This update for glibc fixes the following issues - CVE-2026-5435: unchecked buffer writing in TSIG handling can lead to an out-of-bounds write (bsc#1263656). - CVE-2026-6238: insufficient RDATA length validation can lead to application crashes or uninitialized memory disclosure (bsc#1263658). The following package changes have been done: - glibc-2.40-160000.6.1 updated - libudev1-257.13-160000.2.1 updated - libsystemd0-257.13-160000.2.1 updated - systemd-257.13-160000.2.1 updated - udev-257.13-160000.2.1 updated - glibc-gconv-modules-extra-2.40-160000.6.1 updated - glibc-locale-base-2.40-160000.6.1 updated - container:suse-sl-micro-6.2-base-os-container-latest-855712783bbba8ba568d72b9b88393c0db9f8bcda5e73a3215f96b15e2d50191-0 updated From sle-container-updates at lists.suse.com Sat Jul 4 07:39:48 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sat, 4 Jul 2026 09:39:48 +0200 (CEST) Subject: SUSE-IU-2026:5456-1: Security update of suse/sl-micro/6.2/kvm-iso-image Message-ID: <20260704073948.797AEFCC8@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.2/kvm-iso-image ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5456-1 Image Tags : suse/sl-micro/6.2/kvm-iso-image:2.3.1 , suse/sl-micro/6.2/kvm-iso-image:2.3.1-8.31 , suse/sl-micro/6.2/kvm-iso-image:latest Image Release : 8.31 Severity : moderate Type : security References : 1263656 1263658 CVE-2026-5435 CVE-2026-6238 ----------------------------------------------------------------- The container suse/sl-micro/6.2/kvm-iso-image was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1157 Released: Fri Jul 3 15:19:16 2026 Summary: Security update for glibc Type: security Severity: moderate References: 1263656,1263658,CVE-2026-5435,CVE-2026-6238 This update for glibc fixes the following issues - CVE-2026-5435: unchecked buffer writing in TSIG handling can lead to an out-of-bounds write (bsc#1263656). - CVE-2026-6238: insufficient RDATA length validation can lead to application crashes or uninitialized memory disclosure (bsc#1263658). The following package changes have been done: - glibc-2.40-160000.6.1 updated From sle-container-updates at lists.suse.com Sat Jul 4 07:42:16 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sat, 4 Jul 2026 09:42:16 +0200 (CEST) Subject: SUSE-IU-2026:5463-1: Security update of suse/sl-micro/6.2/rt-os-container Message-ID: <20260704074216.D8B7FFCC8@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.2/rt-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5463-1 Image Tags : suse/sl-micro/6.2/rt-os-container:2.3.1 , suse/sl-micro/6.2/rt-os-container:2.3.1-7.47 , suse/sl-micro/6.2/rt-os-container:latest Image Release : 7.47 Severity : important Type : security References : 1245551 1248261 1251948 1254924 1259071 1260357 1261982 1261983 1262305 1263117 1263656 1263658 1267644 1267647 CVE-2026-5435 CVE-2026-6238 ----------------------------------------------------------------- The container suse/sl-micro/6.2/rt-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1151 Released: Fri Jul 3 10:55:00 2026 Summary: Security update for systemd Type: security Severity: important References: 1245551,1248261,1251948,1254924,1259071,1260357,1261982,1261983,1262305,1263117,1267644,1267647 This update for systemd fixes the following issues: Changes in systemd: - Better handle TLS allocation failure (bsc#1254924). - Disable mounting `debugfs` by default (jsc#PED-8812). - Import commit 9e8b5afe0fb2061f4a17a3022469dd62f2683960 (bsc#1267647 bsc#1267644 bsc#1262305 bsc#1263117). - Move `systemd-pcrlock` out from the experimental sub-package to `udev` (bsc#1248261 jsc#PED-15946). - Add a weak runtime dependency on `libtss2-tcti-device0` (bsc#1260357). - Import commit 59336000ef7850eba0963c6a690ff3371c425929 (bsc#1261982 bsc#1261983). - Add a weak runtime dependency on `polkit` (bsc#1259071). - systemd-update-helper: fix the clean-state command only removing `$STATE_DIR/system` instead of `$STATE_DIR/`. - systemd-update-helper: add `--root` option for testing convenience. - systemd-update-helper: fix incorrect skipping of `systemctl disable` during package removal (bsc#1245551). - systemd-update-helper: fix `do_install_units()` incorrectly returning 1 when no units need preset. - systemd.spec: introduce `%bcond_without` docs to allow skipping man pages and `devel-doc`. - systemd.spec: drop the `%{release}` number from the SBAT version (bsc#1251948). ----------------------------------------------------------------- Advisory ID: 1157 Released: Fri Jul 3 15:19:16 2026 Summary: Security update for glibc Type: security Severity: moderate References: 1263656,1263658,CVE-2026-5435,CVE-2026-6238 This update for glibc fixes the following issues - CVE-2026-5435: unchecked buffer writing in TSIG handling can lead to an out-of-bounds write (bsc#1263656). - CVE-2026-6238: insufficient RDATA length validation can lead to application crashes or uninitialized memory disclosure (bsc#1263658). The following package changes have been done: - glibc-2.40-160000.6.1 updated - libudev1-257.13-160000.2.1 updated - libsystemd0-257.13-160000.2.1 updated - systemd-257.13-160000.2.1 updated - udev-257.13-160000.2.1 updated - glibc-gconv-modules-extra-2.40-160000.6.1 updated - glibc-locale-base-2.40-160000.6.1 updated - container:suse-sl-micro-6.2-baremetal-os-container-latest-dfdc712cf93100a930a2bb1831f17d9022f041496bd6e585d6b00849e21502b0-0 updated From sle-container-updates at lists.suse.com Sat Jul 4 07:45:24 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sat, 4 Jul 2026 09:45:24 +0200 (CEST) Subject: SUSE-IU-2026:5464-1: Security update of suse/sl-micro/6.2/rt-iso-image Message-ID: <20260704074524.CAC56FCC8@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.2/rt-iso-image ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5464-1 Image Tags : suse/sl-micro/6.2/rt-iso-image:2.3.1 , suse/sl-micro/6.2/rt-iso-image:2.3.1-7.40 , suse/sl-micro/6.2/rt-iso-image:latest Image Release : 7.40 Severity : moderate Type : security References : 1263656 1263658 CVE-2026-5435 CVE-2026-6238 ----------------------------------------------------------------- The container suse/sl-micro/6.2/rt-iso-image was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1157 Released: Fri Jul 3 15:19:16 2026 Summary: Security update for glibc Type: security Severity: moderate References: 1263656,1263658,CVE-2026-5435,CVE-2026-6238 This update for glibc fixes the following issues - CVE-2026-5435: unchecked buffer writing in TSIG handling can lead to an out-of-bounds write (bsc#1263656). - CVE-2026-6238: insufficient RDATA length validation can lead to application crashes or uninitialized memory disclosure (bsc#1263658). The following package changes have been done: - glibc-2.40-160000.6.1 updated From sle-container-updates at lists.suse.com Sat Jul 4 07:53:15 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sat, 4 Jul 2026 09:53:15 +0200 (CEST) Subject: SUSE-CU-2026:6747-1: Security update of suse/mariadb Message-ID: <20260704075315.BDDA8FCC8@maintenance.suse.de> SUSE Container Update Advisory: suse/mariadb ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6747-1 Container Tags : suse/mariadb:11.8 , suse/mariadb:11.8.8 , suse/mariadb:11.8.8-78.8 , suse/mariadb:latest Container Release : 78.8 Severity : important Type : security References : 1267849 1267957 CVE-2026-10879 CVE-2026-9698 ----------------------------------------------------------------- The container suse/mariadb was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2749-1 Released: Fri Jul 3 15:04:33 2026 Summary: Security update for perl-DBI Type: security Severity: important References: 1267849,1267957,CVE-2026-10879,CVE-2026-9698 This update for perl-DBI fixes the following issues - CVE-2026-9698: DBI versions before 1.648 for Perl saved errors in a limited-sized buffer (bsc#1267957). - CVE-2026-10879: SQL statements with more than 9 binders can cause an heap overflow (bsc#1267849). The following package changes have been done: - perl-DBI-1.647.0-150600.12.11.1 updated - container:suse-sle15-15.7-d2aab68ae05470b62bbe38c4ca03ff5bf72b405197482ed96e34dd0087d7bde2-0 updated From sle-container-updates at lists.suse.com Sat Jul 4 08:04:42 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sat, 4 Jul 2026 10:04:42 +0200 (CEST) Subject: SUSE-CU-2026:6774-1: Security update of suse/sles/16.0/toolbox Message-ID: <20260704080442.76FF9FCC8@maintenance.suse.de> SUSE Container Update Advisory: suse/sles/16.0/toolbox ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6774-1 Container Tags : suse/sles/16.0/toolbox:16.3 , suse/sles/16.0/toolbox:16.3-1.90 , suse/sles/16.0/toolbox:latest Container Release : 1.90 Severity : important Type : security References : 1245551 1248261 1251948 1254924 1259071 1260357 1261982 1261983 1262305 1263117 1263656 1263658 1267644 1267647 CVE-2026-5435 CVE-2026-6238 ----------------------------------------------------------------- The container suse/sles/16.0/toolbox was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1151 Released: Fri Jul 3 10:55:00 2026 Summary: Security update for systemd Type: security Severity: important References: 1245551,1248261,1251948,1254924,1259071,1260357,1261982,1261983,1262305,1263117,1267644,1267647 This update for systemd fixes the following issues: Changes in systemd: - Better handle TLS allocation failure (bsc#1254924). - Disable mounting `debugfs` by default (jsc#PED-8812). - Import commit 9e8b5afe0fb2061f4a17a3022469dd62f2683960 (bsc#1267647 bsc#1267644 bsc#1262305 bsc#1263117). - Move `systemd-pcrlock` out from the experimental sub-package to `udev` (bsc#1248261 jsc#PED-15946). - Add a weak runtime dependency on `libtss2-tcti-device0` (bsc#1260357). - Import commit 59336000ef7850eba0963c6a690ff3371c425929 (bsc#1261982 bsc#1261983). - Add a weak runtime dependency on `polkit` (bsc#1259071). - systemd-update-helper: fix the clean-state command only removing `$STATE_DIR/system` instead of `$STATE_DIR/`. - systemd-update-helper: add `--root` option for testing convenience. - systemd-update-helper: fix incorrect skipping of `systemctl disable` during package removal (bsc#1245551). - systemd-update-helper: fix `do_install_units()` incorrectly returning 1 when no units need preset. - systemd.spec: introduce `%bcond_without` docs to allow skipping man pages and `devel-doc`. - systemd.spec: drop the `%{release}` number from the SBAT version (bsc#1251948). ----------------------------------------------------------------- Advisory ID: 1157 Released: Fri Jul 3 15:19:16 2026 Summary: Security update for glibc Type: security Severity: moderate References: 1263656,1263658,CVE-2026-5435,CVE-2026-6238 This update for glibc fixes the following issues - CVE-2026-5435: unchecked buffer writing in TSIG handling can lead to an out-of-bounds write (bsc#1263656). - CVE-2026-6238: insufficient RDATA length validation can lead to application crashes or uninitialized memory disclosure (bsc#1263658). The following package changes have been done: - glibc-locale-base-2.40-160000.6.1 updated - glibc-locale-2.40-160000.6.1 updated - glibc-2.40-160000.6.1 updated - libsystemd0-257.13-160000.2.1 updated - libudev1-257.13-160000.2.1 updated From sle-container-updates at lists.suse.com Mon Jul 6 07:06:40 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Mon, 6 Jul 2026 09:06:40 +0200 (CEST) Subject: SUSE-IU-2026:5485-1: Security update of suse/sl-micro/6.2/baremetal-os-container Message-ID: <20260706070640.67AA6FCC9@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.2/baremetal-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5485-1 Image Tags : suse/sl-micro/6.2/baremetal-os-container:2.3.1 , suse/sl-micro/6.2/baremetal-os-container:2.3.1-8.42 , suse/sl-micro/6.2/baremetal-os-container:latest Image Release : 8.42 Severity : important Type : security References : 1268131 CVE-2026-11850 ----------------------------------------------------------------- The container suse/sl-micro/6.2/baremetal-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1159 Released: Sun Jul 5 15:38:43 2026 Summary: Security update for krb5 Type: security Severity: important References: 1268131,CVE-2026-11850 This update for krb5 fixes the following issue - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). The following package changes have been done: - krb5-1.21.3-160000.4.1 updated - container:suse-sl-micro-6.2-base-os-container-latest-c9abc247ef840ff216be0211b1111a404fee79e3b39bcadc11bc78fab78699ca-0 updated From sle-container-updates at lists.suse.com Mon Jul 6 07:12:38 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Mon, 6 Jul 2026 09:12:38 +0200 (CEST) Subject: SUSE-IU-2026:5490-1: Security update of suse/sl-micro/6.2/base-os-container Message-ID: <20260706071238.8165EFCC9@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.2/base-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5490-1 Image Tags : suse/sl-micro/6.2/base-os-container:2.3.1 , suse/sl-micro/6.2/base-os-container:2.3.1-8.26 , suse/sl-micro/6.2/base-os-container:latest Image Release : 8.26 Severity : important Type : security References : 1268131 CVE-2026-11850 ----------------------------------------------------------------- The container suse/sl-micro/6.2/base-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1159 Released: Sun Jul 5 15:38:43 2026 Summary: Security update for krb5 Type: security Severity: important References: 1268131,CVE-2026-11850 This update for krb5 fixes the following issue - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). The following package changes have been done: - krb5-1.21.3-160000.4.1 updated From sle-container-updates at lists.suse.com Mon Jul 6 07:21:50 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Mon, 6 Jul 2026 09:21:50 +0200 (CEST) Subject: SUSE-IU-2026:5501-1: Security update of suse/sl-micro/6.2/rt-os-container Message-ID: <20260706072150.CE672FCC9@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.2/rt-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5501-1 Image Tags : suse/sl-micro/6.2/rt-os-container:2.3.1 , suse/sl-micro/6.2/rt-os-container:2.3.1-7.50 , suse/sl-micro/6.2/rt-os-container:latest Image Release : 7.50 Severity : important Type : security References : 1268131 CVE-2026-11850 ----------------------------------------------------------------- The container suse/sl-micro/6.2/rt-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1159 Released: Sun Jul 5 15:38:43 2026 Summary: Security update for krb5 Type: security Severity: important References: 1268131,CVE-2026-11850 This update for krb5 fixes the following issue - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). The following package changes have been done: - krb5-1.21.3-160000.4.1 updated - container:suse-sl-micro-6.2-baremetal-os-container-latest-9c7f6b0d02cdf891732ac90ffbe4199bcdb08f4239a40414cd0ca3dd8d24aca6-0 updated From sle-container-updates at lists.suse.com Mon Jul 6 07:17:28 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Mon, 6 Jul 2026 09:17:28 +0200 (CEST) Subject: SUSE-IU-2026:5494-1: Security update of suse/sl-micro/6.2/kvm-os-container Message-ID: <20260706071728.BAE6AFCC8@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.2/kvm-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5494-1 Image Tags : suse/sl-micro/6.2/kvm-os-container:2.3.1 , suse/sl-micro/6.2/kvm-os-container:2.3.1-8.39 , suse/sl-micro/6.2/kvm-os-container:latest Image Release : 8.39 Severity : important Type : security References : 1268131 CVE-2026-11850 ----------------------------------------------------------------- The container suse/sl-micro/6.2/kvm-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1159 Released: Sun Jul 5 15:38:43 2026 Summary: Security update for krb5 Type: security Severity: important References: 1268131,CVE-2026-11850 This update for krb5 fixes the following issue - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). The following package changes have been done: - krb5-1.21.3-160000.4.1 updated - container:suse-sl-micro-6.2-base-os-container-latest-c9abc247ef840ff216be0211b1111a404fee79e3b39bcadc11bc78fab78699ca-0 updated From sle-container-updates at lists.suse.com Mon Jul 6 07:29:35 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Mon, 6 Jul 2026 09:29:35 +0200 (CEST) Subject: SUSE-CU-2026:6779-1: Security update of bci/php-apache Message-ID: <20260706072935.D45E0FCC8@maintenance.suse.de> SUSE Container Update Advisory: bci/php-apache ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6779-1 Container Tags : bci/php-apache:8 , bci/php-apache:8-sles15 , bci/php-apache:8.3.31 , bci/php-apache:8.3.31-24.7 , bci/php-apache:latest Container Release : 24.7 Severity : important Type : security References : 1267503 1267955 1267956 1267962 1267963 1267965 1267969 1267970 1267971 1267972 1267976 1267977 1267978 CVE-2026-29167 CVE-2026-29170 CVE-2026-34355 CVE-2026-34356 CVE-2026-42535 CVE-2026-42536 CVE-2026-43951 CVE-2026-44119 CVE-2026-44185 CVE-2026-44186 CVE-2026-44631 CVE-2026-48913 CVE-2026-49975 ----------------------------------------------------------------- The container bci/php-apache was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2759-1 Released: Mon Jul 6 04:04:11 2026 Summary: Security update for apache2 Type: security Severity: important References: 1267503,1267955,1267956,1267962,1267963,1267965,1267969,1267970,1267971,1267972,1267976,1267977,1267978,CVE-2026-29167,CVE-2026-29170,CVE-2026-34355,CVE-2026-34356,CVE-2026-42535,CVE-2026-42536,CVE-2026-43951,CVE-2026-44119,CVE-2026-44185,CVE-2026-44186,CVE-2026-44631,CVE-2026-48913,CVE-2026-49975 This update for apache2 fixes the following issues - CVE-2026-29167: mod_ldap per-dir use-after-free (bsc#1267976). - CVE-2026-29170: mod_proxy_ftp XSS (bsc#1267977). - CVE-2026-34355: mod_proxy_html buffer overflow (bsc#1267978). - CVE-2026-34356: malicious backend servers can lead to a heap-based buffer overflow (bsc#1267955). - CVE-2026-42535: malicious path manipulation can lead to child process crashes (bsc#1267956). - CVE-2026-42536: processing untrusted content can lead to a heap-based buffer overflow (bsc#1267962). - CVE-2026-43951: out-of-bound read in `merge_response_headers` can cause crash (bsc#1267963). - CVE-2026-44119: improper privilege management can lead to an unauthorized read (bsc#1267965). - CVE-2026-44185: Stack Buffer Over-Read in mod_ssl OCSP `send_request` (bsc#1267969). - CVE-2026-44186: responses from an attacker-controlled FTP backend can lead to resource exhaustion and a denial of service (bsc#1267970). - CVE-2026-44631: crafted regular expression can lead to a buffer underwrite (bsc#1267971). - CVE-2026-48913: file handle exhaustion during request processing in mod_http2 can lead to a use-after-free (bsc#1267972). - CVE-2026-49975: Fix cookie header accounting against LimitRequestFields (bsc#1267503). The following package changes have been done: - apache2-prefork-2.4.66-150700.4.23.1 updated - apache2-2.4.66-150700.4.23.1 updated From sle-container-updates at lists.suse.com Tue Jul 7 07:06:12 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Tue, 7 Jul 2026 09:06:12 +0200 (CEST) Subject: SUSE-IU-2026:5508-1: Security update of suse/sl-micro/6.0/baremetal-os-container Message-ID: <20260707070612.46B59FCD7@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.0/baremetal-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5508-1 Image Tags : suse/sl-micro/6.0/baremetal-os-container:2.1.3 , suse/sl-micro/6.0/baremetal-os-container:2.1.3-6.201 , suse/sl-micro/6.0/baremetal-os-container:latest Image Release : 6.201 Severity : moderate Type : security References : 1263656 1263658 CVE-2026-5435 CVE-2026-6238 ----------------------------------------------------------------- The container suse/sl-micro/6.0/baremetal-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 782 Released: Mon Jul 6 11:55:13 2026 Summary: Recommended update for kmod Type: recommended Severity: moderate References: This update for kmod fixes the following issues: - Use in-kernel decompression if available (jsc#PED-16303): * libkmod: + Add a separate function to load the file contents when it's needed. When it's not needed on the path of loading modules via finit_module(), there is no need to mmap the file. + Extract 2 functions to handle finit_module vs init_modules differences, with a fallback from the former to the latter. + Don't only set the type as direct, but also keep track of the compression being used. + When creating the context, read /sys/kernel/compression to check what's the compression type supported by the kernel. + Use kernel decompression when available + add fallback MODULE_INIT_COMPRESSED_FILE define ----------------------------------------------------------------- Advisory ID: 784 Released: Mon Jul 6 15:38:37 2026 Summary: Security update for glibc Type: security Severity: moderate References: 1263656,1263658,CVE-2026-5435,CVE-2026-6238 This update for glibc fixes the following issues - CVE-2026-5435: unchecked buffer writing in TSIG handling can lead to an out-of-bounds write (bsc#1263656). - CVE-2026-6238: insufficient RDATA length validation can lead to application crashes or uninitialized memory disclosure (bsc#1263658). The following package changes have been done: - glibc-2.38-14.1 updated - libkmod2-30-12.1 updated - SL-Micro-release-6.0-25.106 updated - kmod-30-12.1 updated - glibc-locale-base-2.38-14.1 updated - container:SL-Micro-base-container-2.1.3-7.168 updated From sle-container-updates at lists.suse.com Tue Jul 7 07:07:54 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Tue, 7 Jul 2026 09:07:54 +0200 (CEST) Subject: SUSE-IU-2026:5509-1: Security update of suse/sl-micro/6.0/base-os-container Message-ID: <20260707070754.E0166FCD7@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.0/base-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5509-1 Image Tags : suse/sl-micro/6.0/base-os-container:2.1.3 , suse/sl-micro/6.0/base-os-container:2.1.3-7.168 , suse/sl-micro/6.0/base-os-container:latest Image Release : 7.168 Severity : important Type : security References : 1255029 1261604 1262618 1262655 1263072 1263560 1263573 1263656 1263658 1263998 1264001 1264015 1264228 1264230 1264236 1264241 1264254 1264258 1264261 1264286 1264294 1264320 1264337 1264562 1264612 1264734 1264748 1264814 1264974 1265113 1265421 1265629 1266008 1266396 1266700 1266717 1266734 1266830 1266847 1266899 1266928 1266929 1267228 1267365 1267369 1267427 1267430 1267437 1267458 1267567 1267582 1267591 1267635 1267637 1267684 1267717 1267722 1267825 1267918 1267937 1267966 1267993 1268022 1268037 1268237 1268335 1268428 1268660 1268661 1269022 1269033 1269090 1269100 1269103 1269135 1269136 1269137 1269184 1269195 1269281 1269310 1269314 1269397 1269398 1269418 1269493 1269506 1269519 1269574 1269678 1269681 1269798 1269821 1269884 1270059 CVE-2025-40341 CVE-2025-71294 CVE-2026-23451 CVE-2026-31450 CVE-2026-31462 CVE-2026-31466 CVE-2026-31502 CVE-2026-31670 CVE-2026-31677 CVE-2026-43010 CVE-2026-43022 CVE-2026-43034 CVE-2026-43079 CVE-2026-43080 CVE-2026-43081 CVE-2026-43085 CVE-2026-43086 CVE-2026-43089 CVE-2026-43093 CVE-2026-43107 CVE-2026-43128 CVE-2026-43139 CVE-2026-43233 CVE-2026-43238 CVE-2026-43303 CVE-2026-43336 CVE-2026-43420 CVE-2026-43456 CVE-2026-43472 CVE-2026-43492 CVE-2026-43502 CVE-2026-45838 CVE-2026-45848 CVE-2026-45891 CVE-2026-45912 CVE-2026-45948 CVE-2026-45985 CVE-2026-46028 CVE-2026-46053 CVE-2026-46063 CVE-2026-46065 CVE-2026-46069 CVE-2026-46071 CVE-2026-46076 CVE-2026-46112 CVE-2026-46116 CVE-2026-46124 CVE-2026-46133 CVE-2026-46173 CVE-2026-46185 CVE-2026-46214 CVE-2026-46229 CVE-2026-46253 CVE-2026-46254 CVE-2026-46266 CVE-2026-46274 CVE-2026-46289 CVE-2026-46291 CVE-2026-46319 CVE-2026-46320 CVE-2026-46328 CVE-2026-46331 CVE-2026-52908 CVE-2026-52909 CVE-2026-52918 CVE-2026-52923 CVE-2026-52943 CVE-2026-52954 CVE-2026-52957 CVE-2026-52962 CVE-2026-52969 CVE-2026-52972 CVE-2026-53016 CVE-2026-53040 CVE-2026-53041 CVE-2026-53052 CVE-2026-53053 CVE-2026-53071 CVE-2026-53072 CVE-2026-53122 CVE-2026-53133 CVE-2026-53138 CVE-2026-53182 CVE-2026-53253 CVE-2026-53266 CVE-2026-53281 CVE-2026-53287 CVE-2026-53359 CVE-2026-53362 CVE-2026-5435 CVE-2026-6238 ----------------------------------------------------------------- The container suse/sl-micro/6.0/base-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 782 Released: Mon Jul 6 11:55:13 2026 Summary: Recommended update for kmod Type: recommended Severity: moderate References: This update for kmod fixes the following issues: - Use in-kernel decompression if available (jsc#PED-16303): * libkmod: + Add a separate function to load the file contents when it's needed. When it's not needed on the path of loading modules via finit_module(), there is no need to mmap the file. + Extract 2 functions to handle finit_module vs init_modules differences, with a fallback from the former to the latter. + Don't only set the type as direct, but also keep track of the compression being used. + When creating the context, read /sys/kernel/compression to check what's the compression type supported by the kernel. + Use kernel decompression when available + add fallback MODULE_INIT_COMPRESSED_FILE define ----------------------------------------------------------------- Advisory ID: kernel-501 Released: Mon Jul 6 15:11:36 2026 Summary: Security update for the Linux Kernel Type: security Severity: important References: 1255029,1261604,1262618,1262655,1263072,1263560,1263573,1263998,1264001,1264015,1264228,1264230,1264236,1264241,1264254,1264258,1264261,1264286,1264294,1264320,1264337,1264562,1264612,1264734,1264748,1264814,1264974,1265113,1265421,1265629,1266008,1266396,1266700,1266717,1266734,1266830,1266847,1266899,1266928,1266929,1267228,1267365,1267369,1267427,1267430,1267437,1267458,1267567,1267582,1267591,1267635,1267637,1267684,1267717,1267722,1267825,1267918,1267937,1267966,1267993,1268022,1268037,1268237,1268335,1268428,1268660,1268661,1269022,1269033,1269090,1269100,1269103,1269135,1269136,1269137,1269184,1269195,1269281,1269310,1269314,1269397,1269398,1269418,1269493,1269506,1269519,1269574,1269678,1269681,1269798,1269821,1269884,1270059,CVE-2025-40341,CVE-2025-71294,CVE-2026-23451,CVE-2026-31450,CVE-2026-31462,CVE-2026-31466,CVE-2026-31502,CVE-2026-31670,CVE-2026-31677,CVE-2026-43010,CVE-2026-43022,CVE-2026-43034,CVE-2026-43079,CVE-2026-43080,CVE-2026-43081,CVE-2026-43085,C VE-2026-43086,CVE-2026-43089,CVE-2026-43093,CVE-2026-43107,CVE-2026-43128,CVE-2026-43139,CVE-2026-43233,CVE-2026-43238,CVE-2026-43303,CVE-2026-43336,CVE-2026-43420,CVE-2026-43456,CVE-2026-43472,CVE-2026-43492,CVE-2026-43502,CVE-2026-45838,CVE-2026-45848,CVE-2026-45891,CVE-2026-45912,CVE-2026-45948,CVE-2026-45985,CVE-2026-46028,CVE-2026-46053,CVE-2026-46063,CVE-2026-46065,CVE-2026-46069,CVE-2026-46071,CVE-2026-46076,CVE-2026-46112,CVE-2026-46116,CVE-2026-46124,CVE-2026-46133,CVE-2026-46173,CVE-2026-46185,CVE-2026-46214,CVE-2026-46229,CVE-2026-46253,CVE-2026-46254,CVE-2026-46266,CVE-2026-46274,CVE-2026-46289,CVE-2026-46291,CVE-2026-46319,CVE-2026-46320,CVE-2026-46328,CVE-2026-46331,CVE-2026-52908,CVE-2026-52909,CVE-2026-52918,CVE-2026-52923,CVE-2026-52943,CVE-2026-52954,CVE-2026-52957,CVE-2026-52962,CVE-2026-52969,CVE-2026-52972,CVE-2026-53016,CVE-2026-53040,CVE-2026-53041,CVE-2026-53052,CVE-2026-53053,CVE-2026-53071,CVE-2026-53072,CVE-2026-53122,CVE-2026-53133,CVE-2026-53138,CVE-2026 -53182,CVE-2026-53253,CVE-2026-53266,CVE-2026-53281,CVE-2026-53287,CVE-2026-53359,CVE-2026-53362 The SUSE Linux Enterprise Micro 6.0 and Micro 6.1 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2025-40341: futex: Don't leak robust_list pointer on exec race (bsc#1255029). - CVE-2025-71294: drm/amdgpu: fix NULL pointer issue buffer funcs (bsc#1264562). - CVE-2026-23451: bonding: prevent potential infinite loop in bond_header_parse() (bsc#1261604). - CVE-2026-31450: ext4: publish jinode after initialization (bsc#1262618). - CVE-2026-31462: drm/amdgpu: prevent immediate PASID reuse case (bsc#1262655). - CVE-2026-31466: mm/huge_memory: fix folio isn't locked in softleaf_to_folio() (bsc#1267825). - CVE-2026-31502: team: fix header_ops type confusion with non-Ethernet ports (bsc#1263072). - CVE-2026-31670: net: rfkill: prevent unlimited numbers of rfkill events from being created (bsc#1263573). - CVE-2026-31677: crypto: af_alg - limit RX SG extraction by receive buffer budget (bsc#1263560). - CVE-2026-43010: bpf: Reject sleepable kprobe_multi programs at attach time (bsc#1264015). - CVE-2026-43022: Bluetooth: hci_sync: hci_cmd_sync_queue_once() return -EEXIST if exists (bsc#1264001). - CVE-2026-43034: bnxt_en: set backing store type from query type (bsc#1263998). - CVE-2026-43079: perf/x86/intel/uncore: Skip discovery table for offline dies (bsc#1264228). - CVE-2026-43080: l2tp: Drop large packets with UDP encap (bsc#1264236). - CVE-2026-43081: net: ipa: fix GENERIC_CMD register field masks for IPA v5.0+ (bsc#1264241). - CVE-2026-43085: netfilter: nfnetlink_log: initialize nfgenmsg in NLMSG_DONE terminator (bsc#1264230). - CVE-2026-43086: ipvs: fix NULL deref in ip_vs_add_service error path (bsc#1264286). - CVE-2026-43089: xfrm_user: fix info leak in build_mapping() (bsc#1264261). - CVE-2026-43093: xsk: tighten UMEM headroom validation to account for tailroom and min frame (bsc#1264254). - CVE-2026-43107: xfrm: account XFRMA_IF_ID in aevent size calculation (bsc#1264258). - CVE-2026-43128: RDMA/umem: Fix double dma_buf_unpin in failure path (bsc#1264612). - CVE-2026-43139: xfrm6: fix uninitialized saddr in xfrm6_get_saddr() (bsc#1264294). - CVE-2026-43233: netfilter: nf_conntrack_h323: fix OOB read in decode_choice() (bsc#1264337). - CVE-2026-43238: net/sched: act_skbedit: fix divide-by-zero in tcf_skbedit_hash() (bsc#1264320). - CVE-2026-43303: mm/page_alloc: clear page->private in free_pages_prepare() (bsc#1264974). - CVE-2026-43336: lib/crypto: chacha: Zeroize permuted_state before it leaves scope (bsc#1265113). - CVE-2026-43420: ceph: fix i_nlink underrun during async unlink (bsc#1264814). - CVE-2026-43456: bonding: fix type confusion in bond_setup_by_slave() (bsc#1264734). - CVE-2026-43472: unshare: fix unshare_fs() handling (bsc#1264748). - CVE-2026-43492: lib/crypto: mpi: Fix integer underflow in mpi_read_raw_from_sgl() (bsc#1265629). - CVE-2026-43502: net/rds: handle zerocopy send cleanup before the message is queued (bsc#1266008). - CVE-2026-45838: bpf: fix end-of-list detection in cgroup_storage_get_next_key() (bsc#1266396). - CVE-2026-45848: apparmor: fix NULL sock in aa_sock_file_perm (bsc#1266734). - CVE-2026-45891: net: hns3: fix double free issue for tx spare buffer (bsc#1266717). - CVE-2026-45912: ext4: don't cache extent during splitting extent (bsc#1266899). - CVE-2026-45948: ext4: fix memory leak in ext4_ext_shift_extents() (bsc#1266929). - CVE-2026-45985: ext4: don't set EXT4_GET_BLOCKS_CONVERT when splitting before submitting I/O (bsc#1266700). - CVE-2026-46028: crypto: algif_aead - snapshot IV for async AEAD requests (bsc#1267430). - CVE-2026-46053: net: rds: fix MR cleanup on copy error (bsc#1267427). - CVE-2026-46063: x86/shstk: Prevent deadlock during shstk sigreturn (bsc#1267228). - CVE-2026-46065: fbdev: defio: Disconnect deferred I/O from the lifetime of struct (bsc#1267458). - CVE-2026-46069: wifi: mwifiex: fix use-after-free in mwifiex_adapter_cleanup() (bsc#1267437). - CVE-2026-46071: KVM: nSVM: Avoid clearing VMCB_LBR in vmcb12 (bsc#1267591). - CVE-2026-46076: KVM: nSVM: Raise #UD if unhandled VMMCALL isn't intercepted by L1 (bsc#1267365). - CVE-2026-46112: RDMA/hns: Fix unlocked call to hns_roce_qp_remove() (bsc#1267582). - CVE-2026-46116: xfrm: defensively unhash xfrm_state lists in __xfrm_state_delete (bsc#1267369). - CVE-2026-46124: isofs: validate block number from NFS file handle in isofs_export_iget (bsc#1266847). - CVE-2026-46133: RDMA/rxe: Reject unknown opcodes before ICRC processing (bsc#1266928). - CVE-2026-46173: exit: prevent preemption of oopsing TASK_DEAD task (bsc#1267722). - CVE-2026-46185: smb/client: fix out-of-bounds read in symlink_data() (bsc#1266830). - CVE-2026-46214: vsock/virtio: fix accept queue count leak on transport mismatch (bsc#1267717). - CVE-2026-46229: drm/amdkfd: Clear VRAM on allocation to prevent stale data exposure (bsc#1267567). - CVE-2026-46253: pstore/ram: fix buffer overflow in persistent_ram_save_old() (bsc#1267635). - CVE-2026-46254: AppArmor: Allow apparmor to handle unaligned dfa tables (bsc#1267637). - CVE-2026-46266: inet: RAW sockets using IPPROTO_RAW MUST drop incoming ICMP (bsc#1267684). - CVE-2026-46289: lib/scatterlist: fix length calculations in extract_kvec_to_sg (bsc#1267966). - CVE-2026-46291: crypto: caam - guard HMAC key hex dumps in hash_digest_key (bsc#1267937). - CVE-2026-46319: net/sched: act_ct: Only release RCU read lock after ct_ft (bsc#1268022). - CVE-2026-46320: tap: free page on error paths in tap_get_user_xdp() (bsc#1267993). - CVE-2026-46328: apparmor: fix rlimit for posix cpu timers (bsc#1268037). - CVE-2026-52908: RDMA: During rereg_mr ensure that REREG_ACCESS is compatible (bsc#1268661). - CVE-2026-52909: ip6_vti: set netns_immutable on the fallback device (bsc#1268660). - CVE-2026-52918: Bluetooth: serialize accept_q access (bsc#1269100). - CVE-2026-52923: ipc: limit next_id allocation to the valid ID range (bsc#1269033). - CVE-2026-52943: net: skbuff: fix missing zerocopy reference in pskb_carve helpers (bsc#1269022). - CVE-2026-52954: libceph: handle rbtree insertion error in decode_choose_args() (bsc#1269137). - CVE-2026-52957: libceph: Fix potential null-ptr-deref in decode_choose_args() (bsc#1269103). - CVE-2026-52962: ceph: fix a buffer leak in __ceph_setxattr() (bsc#1269135). - CVE-2026-52969: KVM: Reject wrapped offset in kvm_reset_dirty_gfn() (bsc#1269184). - CVE-2026-52972: crypto: af_alg - Cap AEAD AD length to 0x80000000 (bsc#1269195). - CVE-2026-53016: crypto: ccp - copy IV using skcipher ivsize (bsc#1269090). - CVE-2026-53040: ocfs2: validate bg_bits during freefrag scan (bsc#1269397). - CVE-2026-53041: ocfs2: fix listxattr handling when the buffer is full (bsc#1269398). - CVE-2026-53052: ASoC: qcom: qdsp6: topology: check widget type before accessing data (bsc#1269314). - CVE-2026-53053: iommu/amd: Fix clone_alias() to use the original device's devid (bsc#1269310). - CVE-2026-53071: Bluetooth: l2cap: Add missing chan lock in l2cap_ecred_reconf_rsp (bsc#1269678). - CVE-2026-53072: Bluetooth: fix locking in hci_conn_request_evt() with HCI_PROTO_DEFER (bsc#1269681). - CVE-2026-53122: btrfs: fix deadlock between reflink and transaction commit when using flushoncommit (bsc#1269418). - CVE-2026-53133: RDMA/umem: Fix truncation for block sizes >= 4G (bsc#1269821). - CVE-2026-53138: drm/amd/display: Bound VBIOS record-chain walk loops (bsc#1269281). - CVE-2026-53182: wifi: nl80211: reject oversized EMA RNR lists (bsc#1269884). - CVE-2026-53253: Bluetooth: bnep: fix incorrect length parsing in bnep_rx_frame() extension handling (bsc#1269574). - CVE-2026-53266: netfilter: bridge: make ebt_snat ARP rewrite writable (bsc#1269136). - CVE-2026-53281: iommu/vt-d: Avoid NULL pointer dereference or refcount corruption (bsc#1269519). - CVE-2026-53287: audit: fix incorrect inheritable capability in CAPSET records (bsc#1269506). - CVE-2026-53359: KVM: x86: Fix shadow paging use-after-free due to unexpected role (bsc#1270059). - CVE-2026-53362: ipv6: account for fraggap on the paged allocation path (bsc#1269493). The following non security issues were fixed: - ACPI: IPMI: Fix inverted interface check in ipmi_bmc_gone() (git-fixes). - ACPI: resource: Amend kernel-doc style (git-fixes). - ALSA: caiaq: fix out-of-bounds read in the Traktor Kontrol S4 input parser (git-fixes). - ALSA: firewire: isight: bound the sample count to the packet payload (git-fixes). - ALSA: hda/hdmi: Add quirk for TUXEDO IBS14G6 (stable-fixes). - ALSA: seq: Fix uninitialised heap leak in snd_seq_event_dup() (git-fixes). - ALSA: timer: Fix UAF at snd_timer_user_params() (stable-fixes). - ALSA: usb-audio: avoid kobject path lookup in DualSense match (git-fixes). - ALSA: usb-audio: Kill MIDI 2.0 URBs before freeing endpoints (git-fixes). - ASoC: fsl_asrc_dma: fix eDMA maxburst misalignment with channel count (git-fixes). - ASoC: qcom: q6apm: fix NULL pointer dereference in graph_callback (git-fixes). - ASoC: tlv320aic3x: restrict CLKDIV bypass Q values in dual-rate mode (git-fixes). - Bluetooth: L2CAP: reject BR/EDR signaling packets over MTUsig (stable-fixes). - bus: mhi: ep: Add missing state_lock protection for mhi_state access (git-fixes). - bus: mhi: ep: Fix potential deadlock in mhi_ep_reset_worker() (git-fixes). - bus: mhi: ep: Protect mhi_ep_handle_syserr() in the error path (git-fixes). - char: tlclk: fix use-after-free in tlclk_cleanup() (git-fixes). - dmaengine: dw-edma: Add spinlock to protect DONE_INT_MASK and ABORT_INT_MASK (git-fixes). - dmaengine: Fix possible use after free (git-fixes). - dmaengine: imx-sdma: Refine spba bus searching in probe (git-fixes). - dmaengine: qcom: gpi: set DMA_PRIVATE capability (git-fixes). - dmaengine: tegra: Fix burst size calculation (git-fixes). - drm/amd/display: Clamp VBIOS HDMI retimer register count to array size (stable-fixes). - drm/amdgpu: Fix amdgpu_bo_move() when old_mem and new_mem are both GTT (git-fixes). - drm/amdgpu: initialize irq.lock spinlock earlier (git-fixes). - drm/amdgpu: restart the CS if some parts of the VM are still invalidated (stable-fixes). - drm/amdgpu: skip already suspended IP blocks in ip_suspend_phase2 (git-fixes). - drm/amdgpu: validate CP_GFX_SHADOW chunk size in CS pass1 (git-fixes). - drm/amdkfd: Avoid double-unpin of DOORBELL/MMIO BOs on free (git-fixes). - drm/amdkfd: Check for pdd drm file first in CRIU restore path (stable-fixes). - drm/amdkfd: fix list_del corruption in kfd_criu_resume_svm (git-fixes). - drm/amdkfd: fix NULL pointer bug in svm_range_set_attr (stable-fixes). - drm/dp: Add eDP 1.5 bit definition (stable-fixes). - drm/edid: fix OOB read in drm_parse_tiled_block() (git-fixes). - drm/i915/gem: Add missing nospec on parallel submit slot (git-fixes). - drm/i915/psr: Add defininitions for INTEL_WA_REGISTER_CAPS DPCD register (stable-fixes). - drm/nouveau/acr: fix missing nvkm_done() in error path of nvkm_acr_oneinit() (git-fixes). - drm/nouveau: fix reversed error cleanup order in ucopy functions (git-fixes). - fpga: dfl: add bounds check in dfh_get_param_size() (git-fixes). - fpga: microchip-spi: fix zero header_size OOB read in mpf_ops_parse_header() (git-fixes). - fpga: region: fix use-after-free in child_regions_with_firmware() (git-fixes). - HID: logitech-hidpp: remove excess kernel-doc member in hidpp_scroll_counter (git-fixes). - HID: quirks: Add ALWAYS_POLL quirk for SIGMACHIP USB mouse (stable-fixes). - HID: wacom: stop hardware after post-start probe failures (git-fixes). - HID: wiimote: Fix table layout and whitespace errors (git-fixes). - hv_balloon: Simplify data output in hv_balloon_debug_show() (git-fixes). - i2c: dev: prevent integer overflow in I2C_TIMEOUT ioctl (stable-fixes). - i2c: mpc: Fix timeout calculations (git-fixes). - i2c: stm32f7: truncate clock period instead of rounding it (git-fixes). - i3c: master: Prevent reuse of dynamic address on device add failure (git-fixes). - iio: accel: mma8452: handle I2C read error(s) in mma8452_read() (git-fixes). - iio: adc: npcm: Convert to platform remove callback returning void (stable-fixes). - iio: adc: xilinx-ams: fix out-of-bounds channel lookup in event handling (git-fixes). - iio: chemical: scd30: Cleanup initializations and fix sign-extension bug (git-fixes). - iio: chemical: scd30: fix division by zero in write_raw (git-fixes). - iio: chemical: scd30: Use guard(mutex) to allow early returns (stable-fixes). - iio: gyro: bmg160: bail out when bandwidth/filter is not in table (git-fixes). - iio: gyro: bmg160: wait full startup time after mode change at probe (git-fixes). - iio: light: opt3001: fix missing state reset on timeout (git-fixes). - iio: light: si1133: prevent race condition on timeout (git-fixes). - iio: light: si1133: reset counter to prevent race condition (git-fixes). - iio: light: veml6030: fix channel type when pushing events (git-fixes). - iio: magnetometer: ak8975: Add missed pm_runtime_put_autosuspend() call (git-fixes). - iio: magnetometer: ak8975: fix potential kernel stack memory leak (git-fixes). - iio: tcs3472: power down chip on probe failure (git-fixes). - iio: temperature: ltc2983: Fix reinit_completion() called after conversion start (git-fixes). - Input: atkbd - add DMI quirk for Lenovo Yoga Air 14 (83QK) (stable-fixes). - Input: elan_i2c - validate firmware size before use (stable-fixes). - Input: synaptics - add LEN2058 to SMBus passlist for ThinkPad E490 (stable-fixes). - Input: synaptics-rmi4 - bound the F3A keymap to the GPIO count (git-fixes). - Input: synaptics-rmi4 - bound the F30 keymap to the GPIO/LED count (git-fixes). - Input: xpad - add 'Nova 2 Lite' from GameSir (stable-fixes). - Input: xpad - add support for ASUS ROG RAIKIRI II (stable-fixes). - KVM: SVM: Fix page overflow in sev_dbg_crypt() for ENCRYPT path (git-fixes). - KVM: SVM: Inject #UD for INVLPGA if EFER.SVME=0 (git-fixes). - KVM: SVM: Truncate INVLPGA address in compatibility mode (git-fixes). - KVM: VMX: Grab vmcs12 on CR8 interception update iff vCPU is in guest mode (git-fixes). - KVM: x86/mmu: Ensure hugepage is in by slot before checking max mapping level (git-fixes). - KVM: x86/mmu: Recursively zap orphaned nested TDP shadow pages on emulated writes (git-fixes). - KVM: x86: hyper-v: Bound the bank index when querying sparse banks (git-fixes). - KVM: x86: ioapic: Use old_dest_mode consistently in ioapic_write_indirect() (git-fixes). - KVM: x86: Move update_cr8_intercept() to lapic.c (git-fixes). - KVM: x86: Unconditionally recompute CR8 intercept on PPR update (git-fixes). - leds: uleds: Fix potential buffer overread (git-fixes). - loadpin: Prevent SECURITY_LOADPIN_ENFORCE=y without module decompression (jsc#PED-16303). - loadpin: remove MODULE_COMPRESS_NONE as it is no longer supported (jsc#PED-16303). - mailbox: mtk-adsp: fix UAF during device teardown (git-fixes). - media: aspeed: fix missing of_reserved_mem_device_release() on probe failure (git-fixes). - media: cec: seco: unregister adapter on IR probe failure (git-fixes). - media: cedrus: Fix failure to clean up hardware on probe failure (git-fixes). - media: cedrus: Fix missing cleanup in error path (git-fixes). - media: cedrus: skip invalid H.264 reference list entries (git-fixes). - media: marvell-cam: fix missing pci_disable_device() on remove (git-fixes). - media: mtk-jpeg: cancel workqueue on release for supported platforms only (git-fixes). - media: pci: dm1105: Free allocated workqueue (git-fixes). - media: ti: vpe: unwind v4l2 device registration on probe error (git-fixes). - media: v4l2-ctrls: validate HEVC active reference counts (git-fixes). - media: vidtv: fix NULL pointer dereference in vidtv_mux_push_si (git-fixes). - media: vidtv: fix reference leak on failed device registration (git-fixes). - media: vimc: fix reference leak on failed device registration (git-fixes). - media: vpif_capture: fix OF node reference imbalance (git-fixes). - module: fix init_module_from_file() error handling (jsc#PED-16303). - module: make waiting for a concurrent module loader interruptible (jsc#PED-16303). - module: Split modules_install compression and in-kernel decompression (jsc#PED-16303). - module: split up 'finit_module()' into init_module_from_file() helper (jsc#PED-16303). - module: warn about excessively long module waits (jsc#PED-16303). - modules: catch concurrent module loads, treat them as idempotent (jsc#PED-16303). - mtd: maps: vmu-flash: fix NULL pointer dereference in initialization (git-fixes). - mtd: rawnand: fix condition in 'nand_select_target()' (git-fixes). - mtd: rawnand: pl353: fix probe resource allocation (git-fixes). - mtd: slram: remove failed entries from the device list (git-fixes). - mtd: spi-nor: Drop duplicate Kconfig dependency (git-fixes). - mtd: spi-nor: swp: Improve locking user experience (git-fixes). - net: aquantia: Add missing descriptor cache invalidation on ATL2 (bsc#1268428). - net: mana: Add support for PF device 0x00C1 (bsc#1268237). - net: mana: Allocate interrupt context for each EQ when creating vPort (git-fixes). - net: mana: Create separate EQs for each vPort (git-fixes). - net: mana: Fall back to standard MTU when PF reports adapter_mtu of 0 (git-fixes). - net: mana: guard TX wq object destroy with INVALID_MANA_HANDLE check (git-fixes). - net: mana: initialize gdma queue id to INVALID_QUEUE_ID (git-fixes). - net: mana: Introduce GIC context with refcounting for interrupt management (git-fixes). - net: mana: Optimize irq affinity for low vcpu configs (git-fixes). - net: mana: Query device capabilities and configure MSI-X sharing for EQs (git-fixes). - net: mana: Use GIC functions to allocate global EQs (git-fixes). - nfc: hci: fix out-of-bounds read in HCP header parsing (git-fixes). - nfc: llcp: Fix use-after-free in llcp_sock_release() (git-fixes). - nfc: llcp: Fix use-after-free race in nfc_llcp_recv_cc() (git-fixes). - platform/x86: xo15-ebook: Fix wakeup source and GPE handling (git-fixes). - power: reset: linkstation-poweroff: fix use-after-free in the linkstation_poweroff_init() (git-fixes). - power: supply: charger-manager: fix refcount leak in is_full_charged() (git-fixes). - power: supply: core: fix supplied_from allocations (git-fixes). - power: supply: cpcap-battery: Fix missing nvmem_device_put() causing reference leak (git-fixes). - powerpc/boot: Allow text relocations for pseries wrapper with binutils 2.46+ (git-fixes). - RDMA/mana_ib: Allocate interrupt contexts on EQs (git-fixes). - RDMA/mana_ib: Use ib_get_eth_speed for reporting port speed (git-fixes). - rtc: abx80x: fix the RTC_VL_CLR clearing all status flags (git-fixes). - rtc: cmos: unregister HPET IRQ handler on probe failure (git-fixes). - rtc: ds1307: Fix off-by-one issue with wday for rx8130 (git-fixes). - rtc: ds1307: handle oscillator stop flag for ds1337/ds1339/ds3231 (git-fixes). - rtc: mpfs: fix counter upload completion condition (git-fixes). - rtc: msc313: fix NULL deref in shared IRQ handler at probe (git-fixes). - scsi: storvsc: Replace symbolic permissions with octal (git-fixes). - scsi: target: Fix hexadecimal CHAP_I handling (git-fixes). - serdev: make serdev_bus_type const (stable-fixes). - spi: dw: fix wrong BAUDR setting after resume (git-fixes). - spi: rpc-if: Use correct device for hardware reinitialization on resume (git-fixes). - spi: uniphier: Fix completion initialization order before devm_request_irq() (git-fixes). - Split off kABI workaround for bsc#1267458 (bsc#1267458). - staging: most: video: avoid double free on video register failure (git-fixes). - staging: nvec: fix use-after-free in nvec_rx_completed() (git-fixes). - thermal: intel: Fix dangling resources on thermal_throttle_online() failure (git-fixes). - tpm: fix event_size output in tpm1_binary_bios_measurements_show (git-fixes). - tpm: tpm_tis_spi: Use wait_woken() in wait_for_tmp_stat() (git-fixes). - usb: core: Fix SuperSpeed root hub wMaxPacketSize (stable-fixes). - usb: core: Fix up Interrupt IN endpoints with bogus wBytesPerInterval (stable-fixes). - usb: gadget: u_ether: Fix NULL pointer deref in eth_get_drvinfo (git-fixes). - usb: host: max3421: Fix shift-out-of-bounds in max3421_hub_control() (git-fixes). - usb: host: max3421: Reject hub port requests for non-existent ports (git-fixes). - USB: quirks: add NO_LPM for Lenovo ThinkPad USB-C Dock Gen2 hub controllers (stable-fixes). - USB: serial: option: add MeiG SRM813Q (stable-fixes). - USB: serial: option: add usb-id for Dell Wireless DW5826e-m (stable-fixes). - usb: storage: Add quirks for PNY Elite Portable SSD (stable-fixes). - usb: typec: altmodes/displayport: validate count before reading Status Update VDO (stable-fixes). - usb: typec: tcpm/tcpci_maxim: validate header NDO against RX_BYTE_CNT (stable-fixes). - usb: typec: ucsi: ccg: reject firmware images without a ':' record header (stable-fixes). - usb: typec: ucsi: displayport: NAK DP_CMD_CONFIGURE without a payload VDO (stable-fixes). - usb: typec: ucsi: validate connector number in ucsi_connector_change() (stable-fixes). - usb: typec: wcove: don't write past struct pd_message in wcove_read_rx_buffer() (stable-fixes). - vc_screen: fix null-ptr-deref in vcs_notifier() during concurrent vcs_write (git-fixes). - x86/platform/uv: Expose the uv_hub_type() interface (jsc#PED-16305). - x86/tsc: Disable clocksource watchdog checking on recent and future UV platforms (jsc#PED-16305). ----------------------------------------------------------------- Advisory ID: 784 Released: Mon Jul 6 15:38:37 2026 Summary: Security update for glibc Type: security Severity: moderate References: 1263656,1263658,CVE-2026-5435,CVE-2026-6238 This update for glibc fixes the following issues - CVE-2026-5435: unchecked buffer writing in TSIG handling can lead to an out-of-bounds write (bsc#1263656). - CVE-2026-6238: insufficient RDATA length validation can lead to application crashes or uninitialized memory disclosure (bsc#1263658). The following package changes have been done: - glibc-2.38-14.1 updated - libkmod2-30-12.1 updated - SL-Micro-release-6.0-25.106 updated - kmod-30-12.1 updated - kernel-default-6.4.0-49.1 updated - glibc-locale-base-2.38-14.1 updated - container:suse-toolbox-image-1.0.0-9.129 updated From sle-container-updates at lists.suse.com Tue Jul 7 07:09:48 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Tue, 7 Jul 2026 09:09:48 +0200 (CEST) Subject: SUSE-IU-2026:5510-1: Security update of suse/sl-micro/6.0/kvm-os-container Message-ID: <20260707070948.9EA4EFCD7@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.0/kvm-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5510-1 Image Tags : suse/sl-micro/6.0/kvm-os-container:2.1.3 , suse/sl-micro/6.0/kvm-os-container:2.1.3-6.179 , suse/sl-micro/6.0/kvm-os-container:latest Image Release : 6.179 Severity : moderate Type : security References : 1263656 1263658 CVE-2026-5435 CVE-2026-6238 ----------------------------------------------------------------- The container suse/sl-micro/6.0/kvm-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 782 Released: Mon Jul 6 11:55:13 2026 Summary: Recommended update for kmod Type: recommended Severity: moderate References: This update for kmod fixes the following issues: - Use in-kernel decompression if available (jsc#PED-16303): * libkmod: + Add a separate function to load the file contents when it's needed. When it's not needed on the path of loading modules via finit_module(), there is no need to mmap the file. + Extract 2 functions to handle finit_module vs init_modules differences, with a fallback from the former to the latter. + Don't only set the type as direct, but also keep track of the compression being used. + When creating the context, read /sys/kernel/compression to check what's the compression type supported by the kernel. + Use kernel decompression when available + add fallback MODULE_INIT_COMPRESSED_FILE define ----------------------------------------------------------------- Advisory ID: 784 Released: Mon Jul 6 15:38:37 2026 Summary: Security update for glibc Type: security Severity: moderate References: 1263656,1263658,CVE-2026-5435,CVE-2026-6238 This update for glibc fixes the following issues - CVE-2026-5435: unchecked buffer writing in TSIG handling can lead to an out-of-bounds write (bsc#1263656). - CVE-2026-6238: insufficient RDATA length validation can lead to application crashes or uninitialized memory disclosure (bsc#1263658). The following package changes have been done: - glibc-2.38-14.1 updated - libkmod2-30-12.1 updated - SL-Micro-release-6.0-25.106 updated - kmod-30-12.1 updated - kernel-default-base-6.4.0-49.1.21.26 updated - glibc-locale-base-2.38-14.1 updated - container:SL-Micro-base-container-2.1.3-7.168 updated From sle-container-updates at lists.suse.com Tue Jul 7 07:11:49 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Tue, 7 Jul 2026 09:11:49 +0200 (CEST) Subject: SUSE-IU-2026:5511-1: Security update of suse/sl-micro/6.0/rt-os-container Message-ID: <20260707071149.DFA64FCD7@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.0/rt-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5511-1 Image Tags : suse/sl-micro/6.0/rt-os-container:2.1.3 , suse/sl-micro/6.0/rt-os-container:2.1.3-7.197 , suse/sl-micro/6.0/rt-os-container:latest Image Release : 7.197 Severity : important Type : security References : 1255029 1261604 1262618 1262655 1263072 1263560 1263573 1263656 1263658 1263998 1264001 1264015 1264228 1264230 1264236 1264241 1264254 1264258 1264261 1264286 1264294 1264320 1264337 1264562 1264612 1264734 1264748 1264814 1264974 1265113 1265421 1265629 1266008 1266396 1266700 1266717 1266734 1266830 1266847 1266899 1266928 1266929 1267228 1267365 1267369 1267427 1267430 1267437 1267458 1267567 1267582 1267591 1267635 1267637 1267684 1267717 1267722 1267825 1267918 1267937 1267966 1267993 1268022 1268037 1268237 1268335 1268428 1268660 1268661 1269022 1269033 1269090 1269100 1269103 1269135 1269136 1269137 1269184 1269195 1269281 1269310 1269314 1269397 1269398 1269418 1269493 1269506 1269519 1269574 1269678 1269681 1269798 1269821 1269884 1270059 CVE-2025-40341 CVE-2025-71294 CVE-2026-23451 CVE-2026-31450 CVE-2026-31462 CVE-2026-31466 CVE-2026-31502 CVE-2026-31670 CVE-2026-31677 CVE-2026-43010 CVE-2026-43022 CVE-2026-43034 CVE-2026-43079 CVE-2026-43080 CVE-2026-43081 CVE-2026-43085 CVE-2026-43086 CVE-2026-43089 CVE-2026-43093 CVE-2026-43107 CVE-2026-43128 CVE-2026-43139 CVE-2026-43233 CVE-2026-43238 CVE-2026-43303 CVE-2026-43336 CVE-2026-43420 CVE-2026-43456 CVE-2026-43472 CVE-2026-43492 CVE-2026-43502 CVE-2026-45838 CVE-2026-45848 CVE-2026-45891 CVE-2026-45912 CVE-2026-45948 CVE-2026-45985 CVE-2026-46028 CVE-2026-46053 CVE-2026-46063 CVE-2026-46065 CVE-2026-46069 CVE-2026-46071 CVE-2026-46076 CVE-2026-46112 CVE-2026-46116 CVE-2026-46124 CVE-2026-46133 CVE-2026-46173 CVE-2026-46185 CVE-2026-46214 CVE-2026-46229 CVE-2026-46253 CVE-2026-46254 CVE-2026-46266 CVE-2026-46274 CVE-2026-46289 CVE-2026-46291 CVE-2026-46319 CVE-2026-46320 CVE-2026-46328 CVE-2026-46331 CVE-2026-52908 CVE-2026-52909 CVE-2026-52918 CVE-2026-52923 CVE-2026-52943 CVE-2026-52954 CVE-2026-52957 CVE-2026-52962 CVE-2026-52969 CVE-2026-52972 CVE-2026-53016 CVE-2026-53040 CVE-2026-53041 CVE-2026-53052 CVE-2026-53053 CVE-2026-53071 CVE-2026-53072 CVE-2026-53122 CVE-2026-53133 CVE-2026-53138 CVE-2026-53182 CVE-2026-53253 CVE-2026-53266 CVE-2026-53281 CVE-2026-53287 CVE-2026-53359 CVE-2026-53362 CVE-2026-5435 CVE-2026-6238 ----------------------------------------------------------------- The container suse/sl-micro/6.0/rt-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 782 Released: Mon Jul 6 11:55:13 2026 Summary: Recommended update for kmod Type: recommended Severity: moderate References: This update for kmod fixes the following issues: - Use in-kernel decompression if available (jsc#PED-16303): * libkmod: + Add a separate function to load the file contents when it's needed. When it's not needed on the path of loading modules via finit_module(), there is no need to mmap the file. + Extract 2 functions to handle finit_module vs init_modules differences, with a fallback from the former to the latter. + Don't only set the type as direct, but also keep track of the compression being used. + When creating the context, read /sys/kernel/compression to check what's the compression type supported by the kernel. + Use kernel decompression when available + add fallback MODULE_INIT_COMPRESSED_FILE define ----------------------------------------------------------------- Advisory ID: kernel-502 Released: Mon Jul 6 15:11:38 2026 Summary: Security update for the Linux Kernel Type: security Severity: important References: 1255029,1261604,1262618,1262655,1263072,1263560,1263573,1263998,1264001,1264015,1264228,1264230,1264236,1264241,1264254,1264258,1264261,1264286,1264294,1264320,1264337,1264562,1264612,1264734,1264748,1264814,1264974,1265113,1265421,1265629,1266008,1266396,1266700,1266717,1266734,1266830,1266847,1266899,1266928,1266929,1267228,1267365,1267369,1267427,1267430,1267437,1267458,1267567,1267582,1267591,1267635,1267637,1267684,1267717,1267722,1267825,1267918,1267937,1267966,1267993,1268022,1268037,1268237,1268335,1268428,1268660,1268661,1269022,1269033,1269090,1269100,1269103,1269135,1269136,1269137,1269184,1269195,1269281,1269310,1269314,1269397,1269398,1269418,1269493,1269506,1269519,1269574,1269678,1269681,1269798,1269821,1269884,1270059,CVE-2025-40341,CVE-2025-71294,CVE-2026-23451,CVE-2026-31450,CVE-2026-31462,CVE-2026-31466,CVE-2026-31502,CVE-2026-31670,CVE-2026-31677,CVE-2026-43010,CVE-2026-43022,CVE-2026-43034,CVE-2026-43079,CVE-2026-43080,CVE-2026-43081,CVE-2026-43085,C VE-2026-43086,CVE-2026-43089,CVE-2026-43093,CVE-2026-43107,CVE-2026-43128,CVE-2026-43139,CVE-2026-43233,CVE-2026-43238,CVE-2026-43303,CVE-2026-43336,CVE-2026-43420,CVE-2026-43456,CVE-2026-43472,CVE-2026-43492,CVE-2026-43502,CVE-2026-45838,CVE-2026-45848,CVE-2026-45891,CVE-2026-45912,CVE-2026-45948,CVE-2026-45985,CVE-2026-46028,CVE-2026-46053,CVE-2026-46063,CVE-2026-46065,CVE-2026-46069,CVE-2026-46071,CVE-2026-46076,CVE-2026-46112,CVE-2026-46116,CVE-2026-46124,CVE-2026-46133,CVE-2026-46173,CVE-2026-46185,CVE-2026-46214,CVE-2026-46229,CVE-2026-46253,CVE-2026-46254,CVE-2026-46266,CVE-2026-46274,CVE-2026-46289,CVE-2026-46291,CVE-2026-46319,CVE-2026-46320,CVE-2026-46328,CVE-2026-46331,CVE-2026-52908,CVE-2026-52909,CVE-2026-52918,CVE-2026-52923,CVE-2026-52943,CVE-2026-52954,CVE-2026-52957,CVE-2026-52962,CVE-2026-52969,CVE-2026-52972,CVE-2026-53016,CVE-2026-53040,CVE-2026-53041,CVE-2026-53052,CVE-2026-53053,CVE-2026-53071,CVE-2026-53072,CVE-2026-53122,CVE-2026-53133,CVE-2026-53138,CVE-2026 -53182,CVE-2026-53253,CVE-2026-53266,CVE-2026-53281,CVE-2026-53287,CVE-2026-53359,CVE-2026-53362 The SUSE Linux Enterprise Micro 6.0 and Micro 6.1 RT kernel was updated to fix various security issues The following security issues were fixed: - CVE-2025-40341: futex: Don't leak robust_list pointer on exec race (bsc#1255029). - CVE-2025-71294: drm/amdgpu: fix NULL pointer issue buffer funcs (bsc#1264562). - CVE-2026-23451: bonding: prevent potential infinite loop in bond_header_parse() (bsc#1261604). - CVE-2026-31450: ext4: publish jinode after initialization (bsc#1262618). - CVE-2026-31462: drm/amdgpu: prevent immediate PASID reuse case (bsc#1262655). - CVE-2026-31466: mm/huge_memory: fix folio isn't locked in softleaf_to_folio() (bsc#1267825). - CVE-2026-31502: team: fix header_ops type confusion with non-Ethernet ports (bsc#1263072). - CVE-2026-31670: net: rfkill: prevent unlimited numbers of rfkill events from being created (bsc#1263573). - CVE-2026-31677: crypto: af_alg - limit RX SG extraction by receive buffer budget (bsc#1263560). - CVE-2026-43010: bpf: Reject sleepable kprobe_multi programs at attach time (bsc#1264015). - CVE-2026-43022: Bluetooth: hci_sync: hci_cmd_sync_queue_once() return -EEXIST if exists (bsc#1264001). - CVE-2026-43034: bnxt_en: set backing store type from query type (bsc#1263998). - CVE-2026-43079: perf/x86/intel/uncore: Skip discovery table for offline dies (bsc#1264228). - CVE-2026-43080: l2tp: Drop large packets with UDP encap (bsc#1264236). - CVE-2026-43081: net: ipa: fix GENERIC_CMD register field masks for IPA v5.0+ (bsc#1264241). - CVE-2026-43085: netfilter: nfnetlink_log: initialize nfgenmsg in NLMSG_DONE terminator (bsc#1264230). - CVE-2026-43086: ipvs: fix NULL deref in ip_vs_add_service error path (bsc#1264286). - CVE-2026-43089: xfrm_user: fix info leak in build_mapping() (bsc#1264261). - CVE-2026-43093: xsk: tighten UMEM headroom validation to account for tailroom and min frame (bsc#1264254). - CVE-2026-43107: xfrm: account XFRMA_IF_ID in aevent size calculation (bsc#1264258). - CVE-2026-43128: RDMA/umem: Fix double dma_buf_unpin in failure path (bsc#1264612). - CVE-2026-43139: xfrm6: fix uninitialized saddr in xfrm6_get_saddr() (bsc#1264294). - CVE-2026-43233: netfilter: nf_conntrack_h323: fix OOB read in decode_choice() (bsc#1264337). - CVE-2026-43238: net/sched: act_skbedit: fix divide-by-zero in tcf_skbedit_hash() (bsc#1264320). - CVE-2026-43303: mm/page_alloc: clear page->private in free_pages_prepare() (bsc#1264974). - CVE-2026-43336: lib/crypto: chacha: Zeroize permuted_state before it leaves scope (bsc#1265113). - CVE-2026-43420: ceph: fix i_nlink underrun during async unlink (bsc#1264814). - CVE-2026-43456: bonding: fix type confusion in bond_setup_by_slave() (bsc#1264734). - CVE-2026-43472: unshare: fix unshare_fs() handling (bsc#1264748). - CVE-2026-43492: lib/crypto: mpi: Fix integer underflow in mpi_read_raw_from_sgl() (bsc#1265629). - CVE-2026-43502: net/rds: handle zerocopy send cleanup before the message is queued (bsc#1266008). - CVE-2026-45838: bpf: fix end-of-list detection in cgroup_storage_get_next_key() (bsc#1266396). - CVE-2026-45848: apparmor: fix NULL sock in aa_sock_file_perm (bsc#1266734). - CVE-2026-45891: net: hns3: fix double free issue for tx spare buffer (bsc#1266717). - CVE-2026-45912: ext4: don't cache extent during splitting extent (bsc#1266899). - CVE-2026-45948: ext4: fix memory leak in ext4_ext_shift_extents() (bsc#1266929). - CVE-2026-45985: ext4: don't set EXT4_GET_BLOCKS_CONVERT when splitting before submitting I/O (bsc#1266700). - CVE-2026-46028: crypto: algif_aead - snapshot IV for async AEAD requests (bsc#1267430). - CVE-2026-46053: net: rds: fix MR cleanup on copy error (bsc#1267427). - CVE-2026-46063: x86/shstk: Prevent deadlock during shstk sigreturn (bsc#1267228). - CVE-2026-46065: fbdev: defio: Disconnect deferred I/O from the lifetime of struct (bsc#1267458). - CVE-2026-46069: wifi: mwifiex: fix use-after-free in mwifiex_adapter_cleanup() (bsc#1267437). - CVE-2026-46071: KVM: nSVM: Avoid clearing VMCB_LBR in vmcb12 (bsc#1267591). - CVE-2026-46076: KVM: nSVM: Raise #UD if unhandled VMMCALL isn't intercepted by L1 (bsc#1267365). - CVE-2026-46112: RDMA/hns: Fix unlocked call to hns_roce_qp_remove() (bsc#1267582). - CVE-2026-46116: xfrm: defensively unhash xfrm_state lists in __xfrm_state_delete (bsc#1267369). - CVE-2026-46124: isofs: validate block number from NFS file handle in isofs_export_iget (bsc#1266847). - CVE-2026-46133: RDMA/rxe: Reject unknown opcodes before ICRC processing (bsc#1266928). - CVE-2026-46173: exit: prevent preemption of oopsing TASK_DEAD task (bsc#1267722). - CVE-2026-46185: smb/client: fix out-of-bounds read in symlink_data() (bsc#1266830). - CVE-2026-46214: vsock/virtio: fix accept queue count leak on transport mismatch (bsc#1267717). - CVE-2026-46229: drm/amdkfd: Clear VRAM on allocation to prevent stale data exposure (bsc#1267567). - CVE-2026-46253: pstore/ram: fix buffer overflow in persistent_ram_save_old() (bsc#1267635). - CVE-2026-46254: AppArmor: Allow apparmor to handle unaligned dfa tables (bsc#1267637). - CVE-2026-46266: inet: RAW sockets using IPPROTO_RAW MUST drop incoming ICMP (bsc#1267684). - CVE-2026-46289: lib/scatterlist: fix length calculations in extract_kvec_to_sg (bsc#1267966). - CVE-2026-46291: crypto: caam - guard HMAC key hex dumps in hash_digest_key (bsc#1267937). - CVE-2026-46319: net/sched: act_ct: Only release RCU read lock after ct_ft (bsc#1268022). - CVE-2026-46320: tap: free page on error paths in tap_get_user_xdp() (bsc#1267993). - CVE-2026-46328: apparmor: fix rlimit for posix cpu timers (bsc#1268037). - CVE-2026-52908: RDMA: During rereg_mr ensure that REREG_ACCESS is compatible (bsc#1268661). - CVE-2026-52909: ip6_vti: set netns_immutable on the fallback device (bsc#1268660). - CVE-2026-52918: Bluetooth: serialize accept_q access (bsc#1269100). - CVE-2026-52923: ipc: limit next_id allocation to the valid ID range (bsc#1269033). - CVE-2026-52943: net: skbuff: fix missing zerocopy reference in pskb_carve helpers (bsc#1269022). - CVE-2026-52954: libceph: handle rbtree insertion error in decode_choose_args() (bsc#1269137). - CVE-2026-52957: libceph: Fix potential null-ptr-deref in decode_choose_args() (bsc#1269103). - CVE-2026-52962: ceph: fix a buffer leak in __ceph_setxattr() (bsc#1269135). - CVE-2026-52969: KVM: Reject wrapped offset in kvm_reset_dirty_gfn() (bsc#1269184). - CVE-2026-52972: crypto: af_alg - Cap AEAD AD length to 0x80000000 (bsc#1269195). - CVE-2026-53016: crypto: ccp - copy IV using skcipher ivsize (bsc#1269090). - CVE-2026-53040: ocfs2: validate bg_bits during freefrag scan (bsc#1269397). - CVE-2026-53041: ocfs2: fix listxattr handling when the buffer is full (bsc#1269398). - CVE-2026-53052: ASoC: qcom: qdsp6: topology: check widget type before accessing data (bsc#1269314). - CVE-2026-53053: iommu/amd: Fix clone_alias() to use the original device's devid (bsc#1269310). - CVE-2026-53071: Bluetooth: l2cap: Add missing chan lock in l2cap_ecred_reconf_rsp (bsc#1269678). - CVE-2026-53072: Bluetooth: fix locking in hci_conn_request_evt() with HCI_PROTO_DEFER (bsc#1269681). - CVE-2026-53122: btrfs: fix deadlock between reflink and transaction commit when using flushoncommit (bsc#1269418). - CVE-2026-53133: RDMA/umem: Fix truncation for block sizes >= 4G (bsc#1269821). - CVE-2026-53138: drm/amd/display: Bound VBIOS record-chain walk loops (bsc#1269281). - CVE-2026-53182: wifi: nl80211: reject oversized EMA RNR lists (bsc#1269884). - CVE-2026-53253: Bluetooth: bnep: fix incorrect length parsing in bnep_rx_frame() extension handling (bsc#1269574). - CVE-2026-53266: netfilter: bridge: make ebt_snat ARP rewrite writable (bsc#1269136). - CVE-2026-53281: iommu/vt-d: Avoid NULL pointer dereference or refcount corruption (bsc#1269519). - CVE-2026-53287: audit: fix incorrect inheritable capability in CAPSET records (bsc#1269506). - CVE-2026-53359: KVM: x86: Fix shadow paging use-after-free due to unexpected role (bsc#1270059). - CVE-2026-53362: ipv6: account for fraggap on the paged allocation path (bsc#1269493). The following non security issues were fixed: - ACPI: IPMI: Fix inverted interface check in ipmi_bmc_gone() (git-fixes). - ACPI: resource: Amend kernel-doc style (git-fixes). - ALSA: caiaq: fix out-of-bounds read in the Traktor Kontrol S4 input parser (git-fixes). - ALSA: firewire: isight: bound the sample count to the packet payload (git-fixes). - ALSA: hda/hdmi: Add quirk for TUXEDO IBS14G6 (stable-fixes). - ALSA: seq: Fix uninitialised heap leak in snd_seq_event_dup() (git-fixes). - ALSA: timer: Fix UAF at snd_timer_user_params() (stable-fixes). - ALSA: usb-audio: avoid kobject path lookup in DualSense match (git-fixes). - ALSA: usb-audio: Kill MIDI 2.0 URBs before freeing endpoints (git-fixes). - ASoC: fsl_asrc_dma: fix eDMA maxburst misalignment with channel count (git-fixes). - ASoC: qcom: q6apm: fix NULL pointer dereference in graph_callback (git-fixes). - ASoC: tlv320aic3x: restrict CLKDIV bypass Q values in dual-rate mode (git-fixes). - Bluetooth: L2CAP: reject BR/EDR signaling packets over MTUsig (stable-fixes). - bus: mhi: ep: Add missing state_lock protection for mhi_state access (git-fixes). - bus: mhi: ep: Fix potential deadlock in mhi_ep_reset_worker() (git-fixes). - bus: mhi: ep: Protect mhi_ep_handle_syserr() in the error path (git-fixes). - char: tlclk: fix use-after-free in tlclk_cleanup() (git-fixes). - dmaengine: dw-edma: Add spinlock to protect DONE_INT_MASK and ABORT_INT_MASK (git-fixes). - dmaengine: Fix possible use after free (git-fixes). - dmaengine: imx-sdma: Refine spba bus searching in probe (git-fixes). - dmaengine: qcom: gpi: set DMA_PRIVATE capability (git-fixes). - dmaengine: tegra: Fix burst size calculation (git-fixes). - drm/amd/display: Clamp VBIOS HDMI retimer register count to array size (stable-fixes). - drm/amdgpu: Fix amdgpu_bo_move() when old_mem and new_mem are both GTT (git-fixes). - drm/amdgpu: initialize irq.lock spinlock earlier (git-fixes). - drm/amdgpu: restart the CS if some parts of the VM are still invalidated (stable-fixes). - drm/amdgpu: skip already suspended IP blocks in ip_suspend_phase2 (git-fixes). - drm/amdgpu: validate CP_GFX_SHADOW chunk size in CS pass1 (git-fixes). - drm/amdkfd: Avoid double-unpin of DOORBELL/MMIO BOs on free (git-fixes). - drm/amdkfd: Check for pdd drm file first in CRIU restore path (stable-fixes). - drm/amdkfd: fix list_del corruption in kfd_criu_resume_svm (git-fixes). - drm/amdkfd: fix NULL pointer bug in svm_range_set_attr (stable-fixes). - drm/dp: Add eDP 1.5 bit definition (stable-fixes). - drm/edid: fix OOB read in drm_parse_tiled_block() (git-fixes). - drm/i915/gem: Add missing nospec on parallel submit slot (git-fixes). - drm/i915/psr: Add defininitions for INTEL_WA_REGISTER_CAPS DPCD register (stable-fixes). - drm/nouveau/acr: fix missing nvkm_done() in error path of nvkm_acr_oneinit() (git-fixes). - drm/nouveau: fix reversed error cleanup order in ucopy functions (git-fixes). - fpga: dfl: add bounds check in dfh_get_param_size() (git-fixes). - fpga: microchip-spi: fix zero header_size OOB read in mpf_ops_parse_header() (git-fixes). - fpga: region: fix use-after-free in child_regions_with_firmware() (git-fixes). - HID: logitech-hidpp: remove excess kernel-doc member in hidpp_scroll_counter (git-fixes). - HID: quirks: Add ALWAYS_POLL quirk for SIGMACHIP USB mouse (stable-fixes). - HID: wacom: stop hardware after post-start probe failures (git-fixes). - HID: wiimote: Fix table layout and whitespace errors (git-fixes). - hv_balloon: Simplify data output in hv_balloon_debug_show() (git-fixes). - i2c: dev: prevent integer overflow in I2C_TIMEOUT ioctl (stable-fixes). - i2c: mpc: Fix timeout calculations (git-fixes). - i2c: stm32f7: truncate clock period instead of rounding it (git-fixes). - i3c: master: Prevent reuse of dynamic address on device add failure (git-fixes). - iio: accel: mma8452: handle I2C read error(s) in mma8452_read() (git-fixes). - iio: adc: npcm: Convert to platform remove callback returning void (stable-fixes). - iio: adc: xilinx-ams: fix out-of-bounds channel lookup in event handling (git-fixes). - iio: chemical: scd30: Cleanup initializations and fix sign-extension bug (git-fixes). - iio: chemical: scd30: fix division by zero in write_raw (git-fixes). - iio: chemical: scd30: Use guard(mutex) to allow early returns (stable-fixes). - iio: gyro: bmg160: bail out when bandwidth/filter is not in table (git-fixes). - iio: gyro: bmg160: wait full startup time after mode change at probe (git-fixes). - iio: light: opt3001: fix missing state reset on timeout (git-fixes). - iio: light: si1133: prevent race condition on timeout (git-fixes). - iio: light: si1133: reset counter to prevent race condition (git-fixes). - iio: light: veml6030: fix channel type when pushing events (git-fixes). - iio: magnetometer: ak8975: Add missed pm_runtime_put_autosuspend() call (git-fixes). - iio: magnetometer: ak8975: fix potential kernel stack memory leak (git-fixes). - iio: tcs3472: power down chip on probe failure (git-fixes). - iio: temperature: ltc2983: Fix reinit_completion() called after conversion start (git-fixes). - Input: atkbd - add DMI quirk for Lenovo Yoga Air 14 (83QK) (stable-fixes). - Input: elan_i2c - validate firmware size before use (stable-fixes). - Input: synaptics - add LEN2058 to SMBus passlist for ThinkPad E490 (stable-fixes). - Input: synaptics-rmi4 - bound the F3A keymap to the GPIO count (git-fixes). - Input: synaptics-rmi4 - bound the F30 keymap to the GPIO/LED count (git-fixes). - Input: xpad - add 'Nova 2 Lite' from GameSir (stable-fixes). - Input: xpad - add support for ASUS ROG RAIKIRI II (stable-fixes). - KVM: SVM: Fix page overflow in sev_dbg_crypt() for ENCRYPT path (git-fixes). - KVM: SVM: Inject #UD for INVLPGA if EFER.SVME=0 (git-fixes). - KVM: SVM: Truncate INVLPGA address in compatibility mode (git-fixes). - KVM: VMX: Grab vmcs12 on CR8 interception update iff vCPU is in guest mode (git-fixes). - KVM: x86/mmu: Ensure hugepage is in by slot before checking max mapping level (git-fixes). - KVM: x86/mmu: Recursively zap orphaned nested TDP shadow pages on emulated writes (git-fixes). - KVM: x86: hyper-v: Bound the bank index when querying sparse banks (git-fixes). - KVM: x86: ioapic: Use old_dest_mode consistently in ioapic_write_indirect() (git-fixes). - KVM: x86: Move update_cr8_intercept() to lapic.c (git-fixes). - KVM: x86: Unconditionally recompute CR8 intercept on PPR update (git-fixes). - leds: uleds: Fix potential buffer overread (git-fixes). - loadpin: Prevent SECURITY_LOADPIN_ENFORCE=y without module decompression (jsc#PED-16303). - loadpin: remove MODULE_COMPRESS_NONE as it is no longer supported (jsc#PED-16303). - mailbox: mtk-adsp: fix UAF during device teardown (git-fixes). - media: aspeed: fix missing of_reserved_mem_device_release() on probe failure (git-fixes). - media: cec: seco: unregister adapter on IR probe failure (git-fixes). - media: cedrus: Fix failure to clean up hardware on probe failure (git-fixes). - media: cedrus: Fix missing cleanup in error path (git-fixes). - media: cedrus: skip invalid H.264 reference list entries (git-fixes). - media: marvell-cam: fix missing pci_disable_device() on remove (git-fixes). - media: mtk-jpeg: cancel workqueue on release for supported platforms only (git-fixes). - media: pci: dm1105: Free allocated workqueue (git-fixes). - media: ti: vpe: unwind v4l2 device registration on probe error (git-fixes). - media: v4l2-ctrls: validate HEVC active reference counts (git-fixes). - media: vidtv: fix NULL pointer dereference in vidtv_mux_push_si (git-fixes). - media: vidtv: fix reference leak on failed device registration (git-fixes). - media: vimc: fix reference leak on failed device registration (git-fixes). - media: vpif_capture: fix OF node reference imbalance (git-fixes). - module: fix init_module_from_file() error handling (jsc#PED-16303). - module: make waiting for a concurrent module loader interruptible (jsc#PED-16303). - module: Split modules_install compression and in-kernel decompression (jsc#PED-16303). - module: split up 'finit_module()' into init_module_from_file() helper (jsc#PED-16303). - module: warn about excessively long module waits (jsc#PED-16303). - modules: catch concurrent module loads, treat them as idempotent (jsc#PED-16303). - mtd: maps: vmu-flash: fix NULL pointer dereference in initialization (git-fixes). - mtd: rawnand: fix condition in 'nand_select_target()' (git-fixes). - mtd: rawnand: pl353: fix probe resource allocation (git-fixes). - mtd: slram: remove failed entries from the device list (git-fixes). - mtd: spi-nor: Drop duplicate Kconfig dependency (git-fixes). - mtd: spi-nor: swp: Improve locking user experience (git-fixes). - net: aquantia: Add missing descriptor cache invalidation on ATL2 (bsc#1268428). - net: mana: Add support for PF device 0x00C1 (bsc#1268237). - net: mana: Allocate interrupt context for each EQ when creating vPort (git-fixes). - net: mana: Create separate EQs for each vPort (git-fixes). - net: mana: Fall back to standard MTU when PF reports adapter_mtu of 0 (git-fixes). - net: mana: guard TX wq object destroy with INVALID_MANA_HANDLE check (git-fixes). - net: mana: initialize gdma queue id to INVALID_QUEUE_ID (git-fixes). - net: mana: Introduce GIC context with refcounting for interrupt management (git-fixes). - net: mana: Optimize irq affinity for low vcpu configs (git-fixes). - net: mana: Query device capabilities and configure MSI-X sharing for EQs (git-fixes). - net: mana: Use GIC functions to allocate global EQs (git-fixes). - nfc: hci: fix out-of-bounds read in HCP header parsing (git-fixes). - nfc: llcp: Fix use-after-free in llcp_sock_release() (git-fixes). - nfc: llcp: Fix use-after-free race in nfc_llcp_recv_cc() (git-fixes). - platform/x86: xo15-ebook: Fix wakeup source and GPE handling (git-fixes). - power: reset: linkstation-poweroff: fix use-after-free in the linkstation_poweroff_init() (git-fixes). - power: supply: charger-manager: fix refcount leak in is_full_charged() (git-fixes). - power: supply: core: fix supplied_from allocations (git-fixes). - power: supply: cpcap-battery: Fix missing nvmem_device_put() causing reference leak (git-fixes). - powerpc/boot: Allow text relocations for pseries wrapper with binutils 2.46+ (git-fixes). - RDMA/mana_ib: Allocate interrupt contexts on EQs (git-fixes). - RDMA/mana_ib: Use ib_get_eth_speed for reporting port speed (git-fixes). - rtc: abx80x: fix the RTC_VL_CLR clearing all status flags (git-fixes). - rtc: cmos: unregister HPET IRQ handler on probe failure (git-fixes). - rtc: ds1307: Fix off-by-one issue with wday for rx8130 (git-fixes). - rtc: ds1307: handle oscillator stop flag for ds1337/ds1339/ds3231 (git-fixes). - rtc: mpfs: fix counter upload completion condition (git-fixes). - rtc: msc313: fix NULL deref in shared IRQ handler at probe (git-fixes). - scsi: storvsc: Replace symbolic permissions with octal (git-fixes). - scsi: target: Fix hexadecimal CHAP_I handling (git-fixes). - serdev: make serdev_bus_type const (stable-fixes). - spi: dw: fix wrong BAUDR setting after resume (git-fixes). - spi: rpc-if: Use correct device for hardware reinitialization on resume (git-fixes). - spi: uniphier: Fix completion initialization order before devm_request_irq() (git-fixes). - Split off kABI workaround for bsc#1267458 (bsc#1267458). - staging: most: video: avoid double free on video register failure (git-fixes). - staging: nvec: fix use-after-free in nvec_rx_completed() (git-fixes). - thermal: intel: Fix dangling resources on thermal_throttle_online() failure (git-fixes). - tpm: fix event_size output in tpm1_binary_bios_measurements_show (git-fixes). - tpm: tpm_tis_spi: Use wait_woken() in wait_for_tmp_stat() (git-fixes). - usb: core: Fix SuperSpeed root hub wMaxPacketSize (stable-fixes). - usb: core: Fix up Interrupt IN endpoints with bogus wBytesPerInterval (stable-fixes). - usb: gadget: u_ether: Fix NULL pointer deref in eth_get_drvinfo (git-fixes). - usb: host: max3421: Fix shift-out-of-bounds in max3421_hub_control() (git-fixes). - usb: host: max3421: Reject hub port requests for non-existent ports (git-fixes). - USB: quirks: add NO_LPM for Lenovo ThinkPad USB-C Dock Gen2 hub controllers (stable-fixes). - USB: serial: option: add MeiG SRM813Q (stable-fixes). - USB: serial: option: add usb-id for Dell Wireless DW5826e-m (stable-fixes). - usb: storage: Add quirks for PNY Elite Portable SSD (stable-fixes). - usb: typec: altmodes/displayport: validate count before reading Status Update VDO (stable-fixes). - usb: typec: tcpm/tcpci_maxim: validate header NDO against RX_BYTE_CNT (stable-fixes). - usb: typec: ucsi: ccg: reject firmware images without a ':' record header (stable-fixes). - usb: typec: ucsi: displayport: NAK DP_CMD_CONFIGURE without a payload VDO (stable-fixes). - usb: typec: ucsi: validate connector number in ucsi_connector_change() (stable-fixes). - usb: typec: wcove: don't write past struct pd_message in wcove_read_rx_buffer() (stable-fixes). - vc_screen: fix null-ptr-deref in vcs_notifier() during concurrent vcs_write (git-fixes). - x86/platform/uv: Expose the uv_hub_type() interface (jsc#PED-16305). - x86/tsc: Disable clocksource watchdog checking on recent and future UV platforms (jsc#PED-16305). ----------------------------------------------------------------- Advisory ID: 784 Released: Mon Jul 6 15:38:37 2026 Summary: Security update for glibc Type: security Severity: moderate References: 1263656,1263658,CVE-2026-5435,CVE-2026-6238 This update for glibc fixes the following issues - CVE-2026-5435: unchecked buffer writing in TSIG handling can lead to an out-of-bounds write (bsc#1263656). - CVE-2026-6238: insufficient RDATA length validation can lead to application crashes or uninitialized memory disclosure (bsc#1263658). The following package changes have been done: - glibc-2.38-14.1 updated - libkmod2-30-12.1 updated - SL-Micro-release-6.0-25.106 updated - kmod-30-12.1 updated - glibc-locale-base-2.38-14.1 updated - kernel-rt-6.4.0-49.1 updated - container:SL-Micro-container-2.1.3-6.201 updated From sle-container-updates at lists.suse.com Tue Jul 7 07:14:31 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Tue, 7 Jul 2026 09:14:31 +0200 (CEST) Subject: SUSE-CU-2026:6780-1: Security update of suse/sl-micro/6.0/base-iso-image Message-ID: <20260707071431.6A554FCC9@maintenance.suse.de> SUSE Container Update Advisory: suse/sl-micro/6.0/base-iso-image ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6780-1 Container Tags : suse/sl-micro/6.0/base-iso-image:2.1.4 , suse/sl-micro/6.0/base-iso-image:2.1.4-5.194 , suse/sl-micro/6.0/base-iso-image:latest Container Release : 5.194 Severity : moderate Type : security References : 1263656 1263658 CVE-2026-5435 CVE-2026-6238 ----------------------------------------------------------------- The container suse/sl-micro/6.0/base-iso-image was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 784 Released: Mon Jul 6 15:38:37 2026 Summary: Security update for glibc Type: security Severity: moderate References: 1263656,1263658,CVE-2026-5435,CVE-2026-6238 This update for glibc fixes the following issues - CVE-2026-5435: unchecked buffer writing in TSIG handling can lead to an out-of-bounds write (bsc#1263656). - CVE-2026-6238: insufficient RDATA length validation can lead to application crashes or uninitialized memory disclosure (bsc#1263658). The following package changes have been done: - glibc-2.38-14.1 updated - container:SL-Micro-base-container-2.1.3-7.168 updated - container:SL-Micro-container-2.1.3-6.201 updated From sle-container-updates at lists.suse.com Tue Jul 7 07:16:14 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Tue, 7 Jul 2026 09:16:14 +0200 (CEST) Subject: SUSE-CU-2026:6781-1: Security update of suse/sl-micro/6.0/kvm-iso-image Message-ID: <20260707071614.60AD6FCC9@maintenance.suse.de> SUSE Container Update Advisory: suse/sl-micro/6.0/kvm-iso-image ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6781-1 Container Tags : suse/sl-micro/6.0/kvm-iso-image:2.1.4 , suse/sl-micro/6.0/kvm-iso-image:2.1.4-6.203 , suse/sl-micro/6.0/kvm-iso-image:latest Container Release : 6.203 Severity : moderate Type : security References : 1263656 1263658 CVE-2026-5435 CVE-2026-6238 ----------------------------------------------------------------- The container suse/sl-micro/6.0/kvm-iso-image was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 784 Released: Mon Jul 6 15:38:37 2026 Summary: Security update for glibc Type: security Severity: moderate References: 1263656,1263658,CVE-2026-5435,CVE-2026-6238 This update for glibc fixes the following issues - CVE-2026-5435: unchecked buffer writing in TSIG handling can lead to an out-of-bounds write (bsc#1263656). - CVE-2026-6238: insufficient RDATA length validation can lead to application crashes or uninitialized memory disclosure (bsc#1263658). The following package changes have been done: - glibc-2.38-14.1 updated - container:SL-Micro-kvm-container-2.1.3-6.179 updated - container:SL-Micro-container-2.1.3-6.201 updated From sle-container-updates at lists.suse.com Tue Jul 7 07:17:22 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Tue, 7 Jul 2026 09:17:22 +0200 (CEST) Subject: SUSE-CU-2026:6782-1: Security update of suse/sl-micro/6.0/rt-iso-image Message-ID: <20260707071722.2A8CFFCC9@maintenance.suse.de> SUSE Container Update Advisory: suse/sl-micro/6.0/rt-iso-image ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6782-1 Container Tags : suse/sl-micro/6.0/rt-iso-image:2.1.4 , suse/sl-micro/6.0/rt-iso-image:2.1.4-6.191 , suse/sl-micro/6.0/rt-iso-image:latest Container Release : 6.191 Severity : moderate Type : security References : 1263656 1263658 CVE-2026-5435 CVE-2026-6238 ----------------------------------------------------------------- The container suse/sl-micro/6.0/rt-iso-image was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 784 Released: Mon Jul 6 15:38:37 2026 Summary: Security update for glibc Type: security Severity: moderate References: 1263656,1263658,CVE-2026-5435,CVE-2026-6238 This update for glibc fixes the following issues - CVE-2026-5435: unchecked buffer writing in TSIG handling can lead to an out-of-bounds write (bsc#1263656). - CVE-2026-6238: insufficient RDATA length validation can lead to application crashes or uninitialized memory disclosure (bsc#1263658). The following package changes have been done: - glibc-2.38-14.1 updated - container:SL-Micro-rt-container-2.1.3-7.197 updated - container:SL-Micro-container-2.1.3-6.201 updated From sle-container-updates at lists.suse.com Tue Jul 7 07:18:14 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Tue, 7 Jul 2026 09:18:14 +0200 (CEST) Subject: SUSE-CU-2026:6783-1: Security update of suse/sl-micro/6.0/toolbox Message-ID: <20260707071814.A315FFCC9@maintenance.suse.de> SUSE Container Update Advisory: suse/sl-micro/6.0/toolbox ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6783-1 Container Tags : suse/sl-micro/6.0/toolbox:13.2 , suse/sl-micro/6.0/toolbox:13.2-9.129 , suse/sl-micro/6.0/toolbox:latest Container Release : 9.129 Severity : moderate Type : security References : 1263656 1263658 CVE-2026-5435 CVE-2026-6238 ----------------------------------------------------------------- The container suse/sl-micro/6.0/toolbox was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 782 Released: Mon Jul 6 11:55:13 2026 Summary: Recommended update for kmod Type: recommended Severity: moderate References: This update for kmod fixes the following issues: - Use in-kernel decompression if available (jsc#PED-16303): * libkmod: + Add a separate function to load the file contents when it's needed. When it's not needed on the path of loading modules via finit_module(), there is no need to mmap the file. + Extract 2 functions to handle finit_module vs init_modules differences, with a fallback from the former to the latter. + Don't only set the type as direct, but also keep track of the compression being used. + When creating the context, read /sys/kernel/compression to check what's the compression type supported by the kernel. + Use kernel decompression when available + add fallback MODULE_INIT_COMPRESSED_FILE define ----------------------------------------------------------------- Advisory ID: 784 Released: Mon Jul 6 15:38:37 2026 Summary: Security update for glibc Type: security Severity: moderate References: 1263656,1263658,CVE-2026-5435,CVE-2026-6238 This update for glibc fixes the following issues - CVE-2026-5435: unchecked buffer writing in TSIG handling can lead to an out-of-bounds write (bsc#1263656). - CVE-2026-6238: insufficient RDATA length validation can lead to application crashes or uninitialized memory disclosure (bsc#1263658). The following package changes have been done: - SL-Micro-release-6.0-25.106 updated - glibc-locale-base-2.38-14.1 updated - glibc-locale-2.38-14.1 updated - glibc-2.38-14.1 updated - libkmod2-30-12.1 updated - skelcd-EULA-SL-Micro-2024.01.19-8.105 updated From sle-container-updates at lists.suse.com Tue Jul 7 07:21:20 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Tue, 7 Jul 2026 09:21:20 +0200 (CEST) Subject: SUSE-IU-2026:5513-1: Security update of suse/sl-micro/6.1/base-os-container Message-ID: <20260707072120.E4A6DFCC9@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.1/base-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5513-1 Image Tags : suse/sl-micro/6.1/base-os-container:2.2.1 , suse/sl-micro/6.1/base-os-container:2.2.1-5.149 , suse/sl-micro/6.1/base-os-container:latest Image Release : 5.149 Severity : important Type : security References : 1255029 1261604 1262618 1262655 1263072 1263560 1263573 1263998 1264001 1264015 1264228 1264230 1264236 1264241 1264254 1264258 1264261 1264286 1264294 1264320 1264337 1264562 1264612 1264734 1264748 1264814 1264974 1265113 1265421 1265629 1266008 1266396 1266700 1266717 1266734 1266830 1266847 1266899 1266928 1266929 1267228 1267365 1267369 1267427 1267430 1267437 1267458 1267567 1267582 1267591 1267635 1267637 1267684 1267717 1267722 1267825 1267918 1267937 1267966 1267993 1268022 1268037 1268237 1268335 1268428 1268660 1268661 1269022 1269033 1269090 1269100 1269103 1269135 1269136 1269137 1269184 1269195 1269281 1269310 1269314 1269397 1269398 1269418 1269493 1269506 1269519 1269574 1269678 1269681 1269798 1269821 1269884 1270059 CVE-2025-40341 CVE-2025-71294 CVE-2026-23451 CVE-2026-31450 CVE-2026-31462 CVE-2026-31466 CVE-2026-31502 CVE-2026-31670 CVE-2026-31677 CVE-2026-43010 CVE-2026-43022 CVE-2026-43034 CVE-2026-43079 CVE-2026-43080 CVE-2026-43081 CVE-2026-43085 CVE-2026-43086 CVE-2026-43089 CVE-2026-43093 CVE-2026-43107 CVE-2026-43128 CVE-2026-43139 CVE-2026-43233 CVE-2026-43238 CVE-2026-43303 CVE-2026-43336 CVE-2026-43420 CVE-2026-43456 CVE-2026-43472 CVE-2026-43492 CVE-2026-43502 CVE-2026-45838 CVE-2026-45848 CVE-2026-45891 CVE-2026-45912 CVE-2026-45948 CVE-2026-45985 CVE-2026-46028 CVE-2026-46053 CVE-2026-46063 CVE-2026-46065 CVE-2026-46069 CVE-2026-46071 CVE-2026-46076 CVE-2026-46112 CVE-2026-46116 CVE-2026-46124 CVE-2026-46133 CVE-2026-46173 CVE-2026-46185 CVE-2026-46214 CVE-2026-46229 CVE-2026-46253 CVE-2026-46254 CVE-2026-46266 CVE-2026-46274 CVE-2026-46289 CVE-2026-46291 CVE-2026-46319 CVE-2026-46320 CVE-2026-46328 CVE-2026-46331 CVE-2026-52908 CVE-2026-52909 CVE-2026-52918 CVE-2026-52923 CVE-2026-52943 CVE-2026-52954 CVE-2026-52957 CVE-2026-52962 CVE-2026-52969 CVE-2026-52972 CVE-2026-53016 CVE-2026-53040 CVE-2026-53041 CVE-2026-53052 CVE-2026-53053 CVE-2026-53071 CVE-2026-53072 CVE-2026-53122 CVE-2026-53133 CVE-2026-53138 CVE-2026-53182 CVE-2026-53253 CVE-2026-53266 CVE-2026-53281 CVE-2026-53287 CVE-2026-53359 CVE-2026-53362 ----------------------------------------------------------------- The container suse/sl-micro/6.1/base-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: kernel-501 Released: Mon Jul 6 15:11:36 2026 Summary: Security update for the Linux Kernel Type: security Severity: important References: 1255029,1261604,1262618,1262655,1263072,1263560,1263573,1263998,1264001,1264015,1264228,1264230,1264236,1264241,1264254,1264258,1264261,1264286,1264294,1264320,1264337,1264562,1264612,1264734,1264748,1264814,1264974,1265113,1265421,1265629,1266008,1266396,1266700,1266717,1266734,1266830,1266847,1266899,1266928,1266929,1267228,1267365,1267369,1267427,1267430,1267437,1267458,1267567,1267582,1267591,1267635,1267637,1267684,1267717,1267722,1267825,1267918,1267937,1267966,1267993,1268022,1268037,1268237,1268335,1268428,1268660,1268661,1269022,1269033,1269090,1269100,1269103,1269135,1269136,1269137,1269184,1269195,1269281,1269310,1269314,1269397,1269398,1269418,1269493,1269506,1269519,1269574,1269678,1269681,1269798,1269821,1269884,1270059,CVE-2025-40341,CVE-2025-71294,CVE-2026-23451,CVE-2026-31450,CVE-2026-31462,CVE-2026-31466,CVE-2026-31502,CVE-2026-31670,CVE-2026-31677,CVE-2026-43010,CVE-2026-43022,CVE-2026-43034,CVE-2026-43079,CVE-2026-43080,CVE-2026-43081,CVE-2026-43085,C VE-2026-43086,CVE-2026-43089,CVE-2026-43093,CVE-2026-43107,CVE-2026-43128,CVE-2026-43139,CVE-2026-43233,CVE-2026-43238,CVE-2026-43303,CVE-2026-43336,CVE-2026-43420,CVE-2026-43456,CVE-2026-43472,CVE-2026-43492,CVE-2026-43502,CVE-2026-45838,CVE-2026-45848,CVE-2026-45891,CVE-2026-45912,CVE-2026-45948,CVE-2026-45985,CVE-2026-46028,CVE-2026-46053,CVE-2026-46063,CVE-2026-46065,CVE-2026-46069,CVE-2026-46071,CVE-2026-46076,CVE-2026-46112,CVE-2026-46116,CVE-2026-46124,CVE-2026-46133,CVE-2026-46173,CVE-2026-46185,CVE-2026-46214,CVE-2026-46229,CVE-2026-46253,CVE-2026-46254,CVE-2026-46266,CVE-2026-46274,CVE-2026-46289,CVE-2026-46291,CVE-2026-46319,CVE-2026-46320,CVE-2026-46328,CVE-2026-46331,CVE-2026-52908,CVE-2026-52909,CVE-2026-52918,CVE-2026-52923,CVE-2026-52943,CVE-2026-52954,CVE-2026-52957,CVE-2026-52962,CVE-2026-52969,CVE-2026-52972,CVE-2026-53016,CVE-2026-53040,CVE-2026-53041,CVE-2026-53052,CVE-2026-53053,CVE-2026-53071,CVE-2026-53072,CVE-2026-53122,CVE-2026-53133,CVE-2026-53138,CVE-2026 -53182,CVE-2026-53253,CVE-2026-53266,CVE-2026-53281,CVE-2026-53287,CVE-2026-53359,CVE-2026-53362 The SUSE Linux Enterprise Micro 6.0 and Micro 6.1 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2025-40341: futex: Don't leak robust_list pointer on exec race (bsc#1255029). - CVE-2025-71294: drm/amdgpu: fix NULL pointer issue buffer funcs (bsc#1264562). - CVE-2026-23451: bonding: prevent potential infinite loop in bond_header_parse() (bsc#1261604). - CVE-2026-31450: ext4: publish jinode after initialization (bsc#1262618). - CVE-2026-31462: drm/amdgpu: prevent immediate PASID reuse case (bsc#1262655). - CVE-2026-31466: mm/huge_memory: fix folio isn't locked in softleaf_to_folio() (bsc#1267825). - CVE-2026-31502: team: fix header_ops type confusion with non-Ethernet ports (bsc#1263072). - CVE-2026-31670: net: rfkill: prevent unlimited numbers of rfkill events from being created (bsc#1263573). - CVE-2026-31677: crypto: af_alg - limit RX SG extraction by receive buffer budget (bsc#1263560). - CVE-2026-43010: bpf: Reject sleepable kprobe_multi programs at attach time (bsc#1264015). - CVE-2026-43022: Bluetooth: hci_sync: hci_cmd_sync_queue_once() return -EEXIST if exists (bsc#1264001). - CVE-2026-43034: bnxt_en: set backing store type from query type (bsc#1263998). - CVE-2026-43079: perf/x86/intel/uncore: Skip discovery table for offline dies (bsc#1264228). - CVE-2026-43080: l2tp: Drop large packets with UDP encap (bsc#1264236). - CVE-2026-43081: net: ipa: fix GENERIC_CMD register field masks for IPA v5.0+ (bsc#1264241). - CVE-2026-43085: netfilter: nfnetlink_log: initialize nfgenmsg in NLMSG_DONE terminator (bsc#1264230). - CVE-2026-43086: ipvs: fix NULL deref in ip_vs_add_service error path (bsc#1264286). - CVE-2026-43089: xfrm_user: fix info leak in build_mapping() (bsc#1264261). - CVE-2026-43093: xsk: tighten UMEM headroom validation to account for tailroom and min frame (bsc#1264254). - CVE-2026-43107: xfrm: account XFRMA_IF_ID in aevent size calculation (bsc#1264258). - CVE-2026-43128: RDMA/umem: Fix double dma_buf_unpin in failure path (bsc#1264612). - CVE-2026-43139: xfrm6: fix uninitialized saddr in xfrm6_get_saddr() (bsc#1264294). - CVE-2026-43233: netfilter: nf_conntrack_h323: fix OOB read in decode_choice() (bsc#1264337). - CVE-2026-43238: net/sched: act_skbedit: fix divide-by-zero in tcf_skbedit_hash() (bsc#1264320). - CVE-2026-43303: mm/page_alloc: clear page->private in free_pages_prepare() (bsc#1264974). - CVE-2026-43336: lib/crypto: chacha: Zeroize permuted_state before it leaves scope (bsc#1265113). - CVE-2026-43420: ceph: fix i_nlink underrun during async unlink (bsc#1264814). - CVE-2026-43456: bonding: fix type confusion in bond_setup_by_slave() (bsc#1264734). - CVE-2026-43472: unshare: fix unshare_fs() handling (bsc#1264748). - CVE-2026-43492: lib/crypto: mpi: Fix integer underflow in mpi_read_raw_from_sgl() (bsc#1265629). - CVE-2026-43502: net/rds: handle zerocopy send cleanup before the message is queued (bsc#1266008). - CVE-2026-45838: bpf: fix end-of-list detection in cgroup_storage_get_next_key() (bsc#1266396). - CVE-2026-45848: apparmor: fix NULL sock in aa_sock_file_perm (bsc#1266734). - CVE-2026-45891: net: hns3: fix double free issue for tx spare buffer (bsc#1266717). - CVE-2026-45912: ext4: don't cache extent during splitting extent (bsc#1266899). - CVE-2026-45948: ext4: fix memory leak in ext4_ext_shift_extents() (bsc#1266929). - CVE-2026-45985: ext4: don't set EXT4_GET_BLOCKS_CONVERT when splitting before submitting I/O (bsc#1266700). - CVE-2026-46028: crypto: algif_aead - snapshot IV for async AEAD requests (bsc#1267430). - CVE-2026-46053: net: rds: fix MR cleanup on copy error (bsc#1267427). - CVE-2026-46063: x86/shstk: Prevent deadlock during shstk sigreturn (bsc#1267228). - CVE-2026-46065: fbdev: defio: Disconnect deferred I/O from the lifetime of struct (bsc#1267458). - CVE-2026-46069: wifi: mwifiex: fix use-after-free in mwifiex_adapter_cleanup() (bsc#1267437). - CVE-2026-46071: KVM: nSVM: Avoid clearing VMCB_LBR in vmcb12 (bsc#1267591). - CVE-2026-46076: KVM: nSVM: Raise #UD if unhandled VMMCALL isn't intercepted by L1 (bsc#1267365). - CVE-2026-46112: RDMA/hns: Fix unlocked call to hns_roce_qp_remove() (bsc#1267582). - CVE-2026-46116: xfrm: defensively unhash xfrm_state lists in __xfrm_state_delete (bsc#1267369). - CVE-2026-46124: isofs: validate block number from NFS file handle in isofs_export_iget (bsc#1266847). - CVE-2026-46133: RDMA/rxe: Reject unknown opcodes before ICRC processing (bsc#1266928). - CVE-2026-46173: exit: prevent preemption of oopsing TASK_DEAD task (bsc#1267722). - CVE-2026-46185: smb/client: fix out-of-bounds read in symlink_data() (bsc#1266830). - CVE-2026-46214: vsock/virtio: fix accept queue count leak on transport mismatch (bsc#1267717). - CVE-2026-46229: drm/amdkfd: Clear VRAM on allocation to prevent stale data exposure (bsc#1267567). - CVE-2026-46253: pstore/ram: fix buffer overflow in persistent_ram_save_old() (bsc#1267635). - CVE-2026-46254: AppArmor: Allow apparmor to handle unaligned dfa tables (bsc#1267637). - CVE-2026-46266: inet: RAW sockets using IPPROTO_RAW MUST drop incoming ICMP (bsc#1267684). - CVE-2026-46289: lib/scatterlist: fix length calculations in extract_kvec_to_sg (bsc#1267966). - CVE-2026-46291: crypto: caam - guard HMAC key hex dumps in hash_digest_key (bsc#1267937). - CVE-2026-46319: net/sched: act_ct: Only release RCU read lock after ct_ft (bsc#1268022). - CVE-2026-46320: tap: free page on error paths in tap_get_user_xdp() (bsc#1267993). - CVE-2026-46328: apparmor: fix rlimit for posix cpu timers (bsc#1268037). - CVE-2026-52908: RDMA: During rereg_mr ensure that REREG_ACCESS is compatible (bsc#1268661). - CVE-2026-52909: ip6_vti: set netns_immutable on the fallback device (bsc#1268660). - CVE-2026-52918: Bluetooth: serialize accept_q access (bsc#1269100). - CVE-2026-52923: ipc: limit next_id allocation to the valid ID range (bsc#1269033). - CVE-2026-52943: net: skbuff: fix missing zerocopy reference in pskb_carve helpers (bsc#1269022). - CVE-2026-52954: libceph: handle rbtree insertion error in decode_choose_args() (bsc#1269137). - CVE-2026-52957: libceph: Fix potential null-ptr-deref in decode_choose_args() (bsc#1269103). - CVE-2026-52962: ceph: fix a buffer leak in __ceph_setxattr() (bsc#1269135). - CVE-2026-52969: KVM: Reject wrapped offset in kvm_reset_dirty_gfn() (bsc#1269184). - CVE-2026-52972: crypto: af_alg - Cap AEAD AD length to 0x80000000 (bsc#1269195). - CVE-2026-53016: crypto: ccp - copy IV using skcipher ivsize (bsc#1269090). - CVE-2026-53040: ocfs2: validate bg_bits during freefrag scan (bsc#1269397). - CVE-2026-53041: ocfs2: fix listxattr handling when the buffer is full (bsc#1269398). - CVE-2026-53052: ASoC: qcom: qdsp6: topology: check widget type before accessing data (bsc#1269314). - CVE-2026-53053: iommu/amd: Fix clone_alias() to use the original device's devid (bsc#1269310). - CVE-2026-53071: Bluetooth: l2cap: Add missing chan lock in l2cap_ecred_reconf_rsp (bsc#1269678). - CVE-2026-53072: Bluetooth: fix locking in hci_conn_request_evt() with HCI_PROTO_DEFER (bsc#1269681). - CVE-2026-53122: btrfs: fix deadlock between reflink and transaction commit when using flushoncommit (bsc#1269418). - CVE-2026-53133: RDMA/umem: Fix truncation for block sizes >= 4G (bsc#1269821). - CVE-2026-53138: drm/amd/display: Bound VBIOS record-chain walk loops (bsc#1269281). - CVE-2026-53182: wifi: nl80211: reject oversized EMA RNR lists (bsc#1269884). - CVE-2026-53253: Bluetooth: bnep: fix incorrect length parsing in bnep_rx_frame() extension handling (bsc#1269574). - CVE-2026-53266: netfilter: bridge: make ebt_snat ARP rewrite writable (bsc#1269136). - CVE-2026-53281: iommu/vt-d: Avoid NULL pointer dereference or refcount corruption (bsc#1269519). - CVE-2026-53287: audit: fix incorrect inheritable capability in CAPSET records (bsc#1269506). - CVE-2026-53359: KVM: x86: Fix shadow paging use-after-free due to unexpected role (bsc#1270059). - CVE-2026-53362: ipv6: account for fraggap on the paged allocation path (bsc#1269493). The following non security issues were fixed: - ACPI: IPMI: Fix inverted interface check in ipmi_bmc_gone() (git-fixes). - ACPI: resource: Amend kernel-doc style (git-fixes). - ALSA: caiaq: fix out-of-bounds read in the Traktor Kontrol S4 input parser (git-fixes). - ALSA: firewire: isight: bound the sample count to the packet payload (git-fixes). - ALSA: hda/hdmi: Add quirk for TUXEDO IBS14G6 (stable-fixes). - ALSA: seq: Fix uninitialised heap leak in snd_seq_event_dup() (git-fixes). - ALSA: timer: Fix UAF at snd_timer_user_params() (stable-fixes). - ALSA: usb-audio: avoid kobject path lookup in DualSense match (git-fixes). - ALSA: usb-audio: Kill MIDI 2.0 URBs before freeing endpoints (git-fixes). - ASoC: fsl_asrc_dma: fix eDMA maxburst misalignment with channel count (git-fixes). - ASoC: qcom: q6apm: fix NULL pointer dereference in graph_callback (git-fixes). - ASoC: tlv320aic3x: restrict CLKDIV bypass Q values in dual-rate mode (git-fixes). - Bluetooth: L2CAP: reject BR/EDR signaling packets over MTUsig (stable-fixes). - bus: mhi: ep: Add missing state_lock protection for mhi_state access (git-fixes). - bus: mhi: ep: Fix potential deadlock in mhi_ep_reset_worker() (git-fixes). - bus: mhi: ep: Protect mhi_ep_handle_syserr() in the error path (git-fixes). - char: tlclk: fix use-after-free in tlclk_cleanup() (git-fixes). - dmaengine: dw-edma: Add spinlock to protect DONE_INT_MASK and ABORT_INT_MASK (git-fixes). - dmaengine: Fix possible use after free (git-fixes). - dmaengine: imx-sdma: Refine spba bus searching in probe (git-fixes). - dmaengine: qcom: gpi: set DMA_PRIVATE capability (git-fixes). - dmaengine: tegra: Fix burst size calculation (git-fixes). - drm/amd/display: Clamp VBIOS HDMI retimer register count to array size (stable-fixes). - drm/amdgpu: Fix amdgpu_bo_move() when old_mem and new_mem are both GTT (git-fixes). - drm/amdgpu: initialize irq.lock spinlock earlier (git-fixes). - drm/amdgpu: restart the CS if some parts of the VM are still invalidated (stable-fixes). - drm/amdgpu: skip already suspended IP blocks in ip_suspend_phase2 (git-fixes). - drm/amdgpu: validate CP_GFX_SHADOW chunk size in CS pass1 (git-fixes). - drm/amdkfd: Avoid double-unpin of DOORBELL/MMIO BOs on free (git-fixes). - drm/amdkfd: Check for pdd drm file first in CRIU restore path (stable-fixes). - drm/amdkfd: fix list_del corruption in kfd_criu_resume_svm (git-fixes). - drm/amdkfd: fix NULL pointer bug in svm_range_set_attr (stable-fixes). - drm/dp: Add eDP 1.5 bit definition (stable-fixes). - drm/edid: fix OOB read in drm_parse_tiled_block() (git-fixes). - drm/i915/gem: Add missing nospec on parallel submit slot (git-fixes). - drm/i915/psr: Add defininitions for INTEL_WA_REGISTER_CAPS DPCD register (stable-fixes). - drm/nouveau/acr: fix missing nvkm_done() in error path of nvkm_acr_oneinit() (git-fixes). - drm/nouveau: fix reversed error cleanup order in ucopy functions (git-fixes). - fpga: dfl: add bounds check in dfh_get_param_size() (git-fixes). - fpga: microchip-spi: fix zero header_size OOB read in mpf_ops_parse_header() (git-fixes). - fpga: region: fix use-after-free in child_regions_with_firmware() (git-fixes). - HID: logitech-hidpp: remove excess kernel-doc member in hidpp_scroll_counter (git-fixes). - HID: quirks: Add ALWAYS_POLL quirk for SIGMACHIP USB mouse (stable-fixes). - HID: wacom: stop hardware after post-start probe failures (git-fixes). - HID: wiimote: Fix table layout and whitespace errors (git-fixes). - hv_balloon: Simplify data output in hv_balloon_debug_show() (git-fixes). - i2c: dev: prevent integer overflow in I2C_TIMEOUT ioctl (stable-fixes). - i2c: mpc: Fix timeout calculations (git-fixes). - i2c: stm32f7: truncate clock period instead of rounding it (git-fixes). - i3c: master: Prevent reuse of dynamic address on device add failure (git-fixes). - iio: accel: mma8452: handle I2C read error(s) in mma8452_read() (git-fixes). - iio: adc: npcm: Convert to platform remove callback returning void (stable-fixes). - iio: adc: xilinx-ams: fix out-of-bounds channel lookup in event handling (git-fixes). - iio: chemical: scd30: Cleanup initializations and fix sign-extension bug (git-fixes). - iio: chemical: scd30: fix division by zero in write_raw (git-fixes). - iio: chemical: scd30: Use guard(mutex) to allow early returns (stable-fixes). - iio: gyro: bmg160: bail out when bandwidth/filter is not in table (git-fixes). - iio: gyro: bmg160: wait full startup time after mode change at probe (git-fixes). - iio: light: opt3001: fix missing state reset on timeout (git-fixes). - iio: light: si1133: prevent race condition on timeout (git-fixes). - iio: light: si1133: reset counter to prevent race condition (git-fixes). - iio: light: veml6030: fix channel type when pushing events (git-fixes). - iio: magnetometer: ak8975: Add missed pm_runtime_put_autosuspend() call (git-fixes). - iio: magnetometer: ak8975: fix potential kernel stack memory leak (git-fixes). - iio: tcs3472: power down chip on probe failure (git-fixes). - iio: temperature: ltc2983: Fix reinit_completion() called after conversion start (git-fixes). - Input: atkbd - add DMI quirk for Lenovo Yoga Air 14 (83QK) (stable-fixes). - Input: elan_i2c - validate firmware size before use (stable-fixes). - Input: synaptics - add LEN2058 to SMBus passlist for ThinkPad E490 (stable-fixes). - Input: synaptics-rmi4 - bound the F3A keymap to the GPIO count (git-fixes). - Input: synaptics-rmi4 - bound the F30 keymap to the GPIO/LED count (git-fixes). - Input: xpad - add 'Nova 2 Lite' from GameSir (stable-fixes). - Input: xpad - add support for ASUS ROG RAIKIRI II (stable-fixes). - KVM: SVM: Fix page overflow in sev_dbg_crypt() for ENCRYPT path (git-fixes). - KVM: SVM: Inject #UD for INVLPGA if EFER.SVME=0 (git-fixes). - KVM: SVM: Truncate INVLPGA address in compatibility mode (git-fixes). - KVM: VMX: Grab vmcs12 on CR8 interception update iff vCPU is in guest mode (git-fixes). - KVM: x86/mmu: Ensure hugepage is in by slot before checking max mapping level (git-fixes). - KVM: x86/mmu: Recursively zap orphaned nested TDP shadow pages on emulated writes (git-fixes). - KVM: x86: hyper-v: Bound the bank index when querying sparse banks (git-fixes). - KVM: x86: ioapic: Use old_dest_mode consistently in ioapic_write_indirect() (git-fixes). - KVM: x86: Move update_cr8_intercept() to lapic.c (git-fixes). - KVM: x86: Unconditionally recompute CR8 intercept on PPR update (git-fixes). - leds: uleds: Fix potential buffer overread (git-fixes). - loadpin: Prevent SECURITY_LOADPIN_ENFORCE=y without module decompression (jsc#PED-16303). - loadpin: remove MODULE_COMPRESS_NONE as it is no longer supported (jsc#PED-16303). - mailbox: mtk-adsp: fix UAF during device teardown (git-fixes). - media: aspeed: fix missing of_reserved_mem_device_release() on probe failure (git-fixes). - media: cec: seco: unregister adapter on IR probe failure (git-fixes). - media: cedrus: Fix failure to clean up hardware on probe failure (git-fixes). - media: cedrus: Fix missing cleanup in error path (git-fixes). - media: cedrus: skip invalid H.264 reference list entries (git-fixes). - media: marvell-cam: fix missing pci_disable_device() on remove (git-fixes). - media: mtk-jpeg: cancel workqueue on release for supported platforms only (git-fixes). - media: pci: dm1105: Free allocated workqueue (git-fixes). - media: ti: vpe: unwind v4l2 device registration on probe error (git-fixes). - media: v4l2-ctrls: validate HEVC active reference counts (git-fixes). - media: vidtv: fix NULL pointer dereference in vidtv_mux_push_si (git-fixes). - media: vidtv: fix reference leak on failed device registration (git-fixes). - media: vimc: fix reference leak on failed device registration (git-fixes). - media: vpif_capture: fix OF node reference imbalance (git-fixes). - module: fix init_module_from_file() error handling (jsc#PED-16303). - module: make waiting for a concurrent module loader interruptible (jsc#PED-16303). - module: Split modules_install compression and in-kernel decompression (jsc#PED-16303). - module: split up 'finit_module()' into init_module_from_file() helper (jsc#PED-16303). - module: warn about excessively long module waits (jsc#PED-16303). - modules: catch concurrent module loads, treat them as idempotent (jsc#PED-16303). - mtd: maps: vmu-flash: fix NULL pointer dereference in initialization (git-fixes). - mtd: rawnand: fix condition in 'nand_select_target()' (git-fixes). - mtd: rawnand: pl353: fix probe resource allocation (git-fixes). - mtd: slram: remove failed entries from the device list (git-fixes). - mtd: spi-nor: Drop duplicate Kconfig dependency (git-fixes). - mtd: spi-nor: swp: Improve locking user experience (git-fixes). - net: aquantia: Add missing descriptor cache invalidation on ATL2 (bsc#1268428). - net: mana: Add support for PF device 0x00C1 (bsc#1268237). - net: mana: Allocate interrupt context for each EQ when creating vPort (git-fixes). - net: mana: Create separate EQs for each vPort (git-fixes). - net: mana: Fall back to standard MTU when PF reports adapter_mtu of 0 (git-fixes). - net: mana: guard TX wq object destroy with INVALID_MANA_HANDLE check (git-fixes). - net: mana: initialize gdma queue id to INVALID_QUEUE_ID (git-fixes). - net: mana: Introduce GIC context with refcounting for interrupt management (git-fixes). - net: mana: Optimize irq affinity for low vcpu configs (git-fixes). - net: mana: Query device capabilities and configure MSI-X sharing for EQs (git-fixes). - net: mana: Use GIC functions to allocate global EQs (git-fixes). - nfc: hci: fix out-of-bounds read in HCP header parsing (git-fixes). - nfc: llcp: Fix use-after-free in llcp_sock_release() (git-fixes). - nfc: llcp: Fix use-after-free race in nfc_llcp_recv_cc() (git-fixes). - platform/x86: xo15-ebook: Fix wakeup source and GPE handling (git-fixes). - power: reset: linkstation-poweroff: fix use-after-free in the linkstation_poweroff_init() (git-fixes). - power: supply: charger-manager: fix refcount leak in is_full_charged() (git-fixes). - power: supply: core: fix supplied_from allocations (git-fixes). - power: supply: cpcap-battery: Fix missing nvmem_device_put() causing reference leak (git-fixes). - powerpc/boot: Allow text relocations for pseries wrapper with binutils 2.46+ (git-fixes). - RDMA/mana_ib: Allocate interrupt contexts on EQs (git-fixes). - RDMA/mana_ib: Use ib_get_eth_speed for reporting port speed (git-fixes). - rtc: abx80x: fix the RTC_VL_CLR clearing all status flags (git-fixes). - rtc: cmos: unregister HPET IRQ handler on probe failure (git-fixes). - rtc: ds1307: Fix off-by-one issue with wday for rx8130 (git-fixes). - rtc: ds1307: handle oscillator stop flag for ds1337/ds1339/ds3231 (git-fixes). - rtc: mpfs: fix counter upload completion condition (git-fixes). - rtc: msc313: fix NULL deref in shared IRQ handler at probe (git-fixes). - scsi: storvsc: Replace symbolic permissions with octal (git-fixes). - scsi: target: Fix hexadecimal CHAP_I handling (git-fixes). - serdev: make serdev_bus_type const (stable-fixes). - spi: dw: fix wrong BAUDR setting after resume (git-fixes). - spi: rpc-if: Use correct device for hardware reinitialization on resume (git-fixes). - spi: uniphier: Fix completion initialization order before devm_request_irq() (git-fixes). - Split off kABI workaround for bsc#1267458 (bsc#1267458). - staging: most: video: avoid double free on video register failure (git-fixes). - staging: nvec: fix use-after-free in nvec_rx_completed() (git-fixes). - thermal: intel: Fix dangling resources on thermal_throttle_online() failure (git-fixes). - tpm: fix event_size output in tpm1_binary_bios_measurements_show (git-fixes). - tpm: tpm_tis_spi: Use wait_woken() in wait_for_tmp_stat() (git-fixes). - usb: core: Fix SuperSpeed root hub wMaxPacketSize (stable-fixes). - usb: core: Fix up Interrupt IN endpoints with bogus wBytesPerInterval (stable-fixes). - usb: gadget: u_ether: Fix NULL pointer deref in eth_get_drvinfo (git-fixes). - usb: host: max3421: Fix shift-out-of-bounds in max3421_hub_control() (git-fixes). - usb: host: max3421: Reject hub port requests for non-existent ports (git-fixes). - USB: quirks: add NO_LPM for Lenovo ThinkPad USB-C Dock Gen2 hub controllers (stable-fixes). - USB: serial: option: add MeiG SRM813Q (stable-fixes). - USB: serial: option: add usb-id for Dell Wireless DW5826e-m (stable-fixes). - usb: storage: Add quirks for PNY Elite Portable SSD (stable-fixes). - usb: typec: altmodes/displayport: validate count before reading Status Update VDO (stable-fixes). - usb: typec: tcpm/tcpci_maxim: validate header NDO against RX_BYTE_CNT (stable-fixes). - usb: typec: ucsi: ccg: reject firmware images without a ':' record header (stable-fixes). - usb: typec: ucsi: displayport: NAK DP_CMD_CONFIGURE without a payload VDO (stable-fixes). - usb: typec: ucsi: validate connector number in ucsi_connector_change() (stable-fixes). - usb: typec: wcove: don't write past struct pd_message in wcove_read_rx_buffer() (stable-fixes). - vc_screen: fix null-ptr-deref in vcs_notifier() during concurrent vcs_write (git-fixes). - x86/platform/uv: Expose the uv_hub_type() interface (jsc#PED-16305). - x86/tsc: Disable clocksource watchdog checking on recent and future UV platforms (jsc#PED-16305). The following package changes have been done: - kernel-default-6.4.0-49.1 updated From sle-container-updates at lists.suse.com Tue Jul 7 07:24:53 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Tue, 7 Jul 2026 09:24:53 +0200 (CEST) Subject: SUSE-IU-2026:5515-1: Security update of suse/sl-micro/6.1/rt-os-container Message-ID: <20260707072453.18CC5FCC9@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.1/rt-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5515-1 Image Tags : suse/sl-micro/6.1/rt-os-container:2.2.1 , suse/sl-micro/6.1/rt-os-container:2.2.1-5.145 , suse/sl-micro/6.1/rt-os-container:latest Image Release : 5.145 Severity : important Type : security References : 1255029 1261604 1262618 1262655 1263072 1263560 1263573 1263998 1264001 1264015 1264228 1264230 1264236 1264241 1264254 1264258 1264261 1264286 1264294 1264320 1264337 1264562 1264612 1264734 1264748 1264814 1264974 1265113 1265421 1265629 1266008 1266396 1266700 1266717 1266734 1266830 1266847 1266899 1266928 1266929 1267228 1267365 1267369 1267427 1267430 1267437 1267458 1267567 1267582 1267591 1267635 1267637 1267684 1267717 1267722 1267825 1267918 1267937 1267966 1267993 1268022 1268037 1268237 1268335 1268428 1268660 1268661 1269022 1269033 1269090 1269100 1269103 1269135 1269136 1269137 1269184 1269195 1269281 1269310 1269314 1269397 1269398 1269418 1269493 1269506 1269519 1269574 1269678 1269681 1269798 1269821 1269884 1270059 CVE-2025-40341 CVE-2025-71294 CVE-2026-23451 CVE-2026-31450 CVE-2026-31462 CVE-2026-31466 CVE-2026-31502 CVE-2026-31670 CVE-2026-31677 CVE-2026-43010 CVE-2026-43022 CVE-2026-43034 CVE-2026-43079 CVE-2026-43080 CVE-2026-43081 CVE-2026-43085 CVE-2026-43086 CVE-2026-43089 CVE-2026-43093 CVE-2026-43107 CVE-2026-43128 CVE-2026-43139 CVE-2026-43233 CVE-2026-43238 CVE-2026-43303 CVE-2026-43336 CVE-2026-43420 CVE-2026-43456 CVE-2026-43472 CVE-2026-43492 CVE-2026-43502 CVE-2026-45838 CVE-2026-45848 CVE-2026-45891 CVE-2026-45912 CVE-2026-45948 CVE-2026-45985 CVE-2026-46028 CVE-2026-46053 CVE-2026-46063 CVE-2026-46065 CVE-2026-46069 CVE-2026-46071 CVE-2026-46076 CVE-2026-46112 CVE-2026-46116 CVE-2026-46124 CVE-2026-46133 CVE-2026-46173 CVE-2026-46185 CVE-2026-46214 CVE-2026-46229 CVE-2026-46253 CVE-2026-46254 CVE-2026-46266 CVE-2026-46274 CVE-2026-46289 CVE-2026-46291 CVE-2026-46319 CVE-2026-46320 CVE-2026-46328 CVE-2026-46331 CVE-2026-52908 CVE-2026-52909 CVE-2026-52918 CVE-2026-52923 CVE-2026-52943 CVE-2026-52954 CVE-2026-52957 CVE-2026-52962 CVE-2026-52969 CVE-2026-52972 CVE-2026-53016 CVE-2026-53040 CVE-2026-53041 CVE-2026-53052 CVE-2026-53053 CVE-2026-53071 CVE-2026-53072 CVE-2026-53122 CVE-2026-53133 CVE-2026-53138 CVE-2026-53182 CVE-2026-53253 CVE-2026-53266 CVE-2026-53281 CVE-2026-53287 CVE-2026-53359 CVE-2026-53362 ----------------------------------------------------------------- The container suse/sl-micro/6.1/rt-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: kernel-502 Released: Mon Jul 6 15:11:38 2026 Summary: Security update for the Linux Kernel Type: security Severity: important References: 1255029,1261604,1262618,1262655,1263072,1263560,1263573,1263998,1264001,1264015,1264228,1264230,1264236,1264241,1264254,1264258,1264261,1264286,1264294,1264320,1264337,1264562,1264612,1264734,1264748,1264814,1264974,1265113,1265421,1265629,1266008,1266396,1266700,1266717,1266734,1266830,1266847,1266899,1266928,1266929,1267228,1267365,1267369,1267427,1267430,1267437,1267458,1267567,1267582,1267591,1267635,1267637,1267684,1267717,1267722,1267825,1267918,1267937,1267966,1267993,1268022,1268037,1268237,1268335,1268428,1268660,1268661,1269022,1269033,1269090,1269100,1269103,1269135,1269136,1269137,1269184,1269195,1269281,1269310,1269314,1269397,1269398,1269418,1269493,1269506,1269519,1269574,1269678,1269681,1269798,1269821,1269884,1270059,CVE-2025-40341,CVE-2025-71294,CVE-2026-23451,CVE-2026-31450,CVE-2026-31462,CVE-2026-31466,CVE-2026-31502,CVE-2026-31670,CVE-2026-31677,CVE-2026-43010,CVE-2026-43022,CVE-2026-43034,CVE-2026-43079,CVE-2026-43080,CVE-2026-43081,CVE-2026-43085,C VE-2026-43086,CVE-2026-43089,CVE-2026-43093,CVE-2026-43107,CVE-2026-43128,CVE-2026-43139,CVE-2026-43233,CVE-2026-43238,CVE-2026-43303,CVE-2026-43336,CVE-2026-43420,CVE-2026-43456,CVE-2026-43472,CVE-2026-43492,CVE-2026-43502,CVE-2026-45838,CVE-2026-45848,CVE-2026-45891,CVE-2026-45912,CVE-2026-45948,CVE-2026-45985,CVE-2026-46028,CVE-2026-46053,CVE-2026-46063,CVE-2026-46065,CVE-2026-46069,CVE-2026-46071,CVE-2026-46076,CVE-2026-46112,CVE-2026-46116,CVE-2026-46124,CVE-2026-46133,CVE-2026-46173,CVE-2026-46185,CVE-2026-46214,CVE-2026-46229,CVE-2026-46253,CVE-2026-46254,CVE-2026-46266,CVE-2026-46274,CVE-2026-46289,CVE-2026-46291,CVE-2026-46319,CVE-2026-46320,CVE-2026-46328,CVE-2026-46331,CVE-2026-52908,CVE-2026-52909,CVE-2026-52918,CVE-2026-52923,CVE-2026-52943,CVE-2026-52954,CVE-2026-52957,CVE-2026-52962,CVE-2026-52969,CVE-2026-52972,CVE-2026-53016,CVE-2026-53040,CVE-2026-53041,CVE-2026-53052,CVE-2026-53053,CVE-2026-53071,CVE-2026-53072,CVE-2026-53122,CVE-2026-53133,CVE-2026-53138,CVE-2026 -53182,CVE-2026-53253,CVE-2026-53266,CVE-2026-53281,CVE-2026-53287,CVE-2026-53359,CVE-2026-53362 The SUSE Linux Enterprise Micro 6.0 and Micro 6.1 RT kernel was updated to fix various security issues The following security issues were fixed: - CVE-2025-40341: futex: Don't leak robust_list pointer on exec race (bsc#1255029). - CVE-2025-71294: drm/amdgpu: fix NULL pointer issue buffer funcs (bsc#1264562). - CVE-2026-23451: bonding: prevent potential infinite loop in bond_header_parse() (bsc#1261604). - CVE-2026-31450: ext4: publish jinode after initialization (bsc#1262618). - CVE-2026-31462: drm/amdgpu: prevent immediate PASID reuse case (bsc#1262655). - CVE-2026-31466: mm/huge_memory: fix folio isn't locked in softleaf_to_folio() (bsc#1267825). - CVE-2026-31502: team: fix header_ops type confusion with non-Ethernet ports (bsc#1263072). - CVE-2026-31670: net: rfkill: prevent unlimited numbers of rfkill events from being created (bsc#1263573). - CVE-2026-31677: crypto: af_alg - limit RX SG extraction by receive buffer budget (bsc#1263560). - CVE-2026-43010: bpf: Reject sleepable kprobe_multi programs at attach time (bsc#1264015). - CVE-2026-43022: Bluetooth: hci_sync: hci_cmd_sync_queue_once() return -EEXIST if exists (bsc#1264001). - CVE-2026-43034: bnxt_en: set backing store type from query type (bsc#1263998). - CVE-2026-43079: perf/x86/intel/uncore: Skip discovery table for offline dies (bsc#1264228). - CVE-2026-43080: l2tp: Drop large packets with UDP encap (bsc#1264236). - CVE-2026-43081: net: ipa: fix GENERIC_CMD register field masks for IPA v5.0+ (bsc#1264241). - CVE-2026-43085: netfilter: nfnetlink_log: initialize nfgenmsg in NLMSG_DONE terminator (bsc#1264230). - CVE-2026-43086: ipvs: fix NULL deref in ip_vs_add_service error path (bsc#1264286). - CVE-2026-43089: xfrm_user: fix info leak in build_mapping() (bsc#1264261). - CVE-2026-43093: xsk: tighten UMEM headroom validation to account for tailroom and min frame (bsc#1264254). - CVE-2026-43107: xfrm: account XFRMA_IF_ID in aevent size calculation (bsc#1264258). - CVE-2026-43128: RDMA/umem: Fix double dma_buf_unpin in failure path (bsc#1264612). - CVE-2026-43139: xfrm6: fix uninitialized saddr in xfrm6_get_saddr() (bsc#1264294). - CVE-2026-43233: netfilter: nf_conntrack_h323: fix OOB read in decode_choice() (bsc#1264337). - CVE-2026-43238: net/sched: act_skbedit: fix divide-by-zero in tcf_skbedit_hash() (bsc#1264320). - CVE-2026-43303: mm/page_alloc: clear page->private in free_pages_prepare() (bsc#1264974). - CVE-2026-43336: lib/crypto: chacha: Zeroize permuted_state before it leaves scope (bsc#1265113). - CVE-2026-43420: ceph: fix i_nlink underrun during async unlink (bsc#1264814). - CVE-2026-43456: bonding: fix type confusion in bond_setup_by_slave() (bsc#1264734). - CVE-2026-43472: unshare: fix unshare_fs() handling (bsc#1264748). - CVE-2026-43492: lib/crypto: mpi: Fix integer underflow in mpi_read_raw_from_sgl() (bsc#1265629). - CVE-2026-43502: net/rds: handle zerocopy send cleanup before the message is queued (bsc#1266008). - CVE-2026-45838: bpf: fix end-of-list detection in cgroup_storage_get_next_key() (bsc#1266396). - CVE-2026-45848: apparmor: fix NULL sock in aa_sock_file_perm (bsc#1266734). - CVE-2026-45891: net: hns3: fix double free issue for tx spare buffer (bsc#1266717). - CVE-2026-45912: ext4: don't cache extent during splitting extent (bsc#1266899). - CVE-2026-45948: ext4: fix memory leak in ext4_ext_shift_extents() (bsc#1266929). - CVE-2026-45985: ext4: don't set EXT4_GET_BLOCKS_CONVERT when splitting before submitting I/O (bsc#1266700). - CVE-2026-46028: crypto: algif_aead - snapshot IV for async AEAD requests (bsc#1267430). - CVE-2026-46053: net: rds: fix MR cleanup on copy error (bsc#1267427). - CVE-2026-46063: x86/shstk: Prevent deadlock during shstk sigreturn (bsc#1267228). - CVE-2026-46065: fbdev: defio: Disconnect deferred I/O from the lifetime of struct (bsc#1267458). - CVE-2026-46069: wifi: mwifiex: fix use-after-free in mwifiex_adapter_cleanup() (bsc#1267437). - CVE-2026-46071: KVM: nSVM: Avoid clearing VMCB_LBR in vmcb12 (bsc#1267591). - CVE-2026-46076: KVM: nSVM: Raise #UD if unhandled VMMCALL isn't intercepted by L1 (bsc#1267365). - CVE-2026-46112: RDMA/hns: Fix unlocked call to hns_roce_qp_remove() (bsc#1267582). - CVE-2026-46116: xfrm: defensively unhash xfrm_state lists in __xfrm_state_delete (bsc#1267369). - CVE-2026-46124: isofs: validate block number from NFS file handle in isofs_export_iget (bsc#1266847). - CVE-2026-46133: RDMA/rxe: Reject unknown opcodes before ICRC processing (bsc#1266928). - CVE-2026-46173: exit: prevent preemption of oopsing TASK_DEAD task (bsc#1267722). - CVE-2026-46185: smb/client: fix out-of-bounds read in symlink_data() (bsc#1266830). - CVE-2026-46214: vsock/virtio: fix accept queue count leak on transport mismatch (bsc#1267717). - CVE-2026-46229: drm/amdkfd: Clear VRAM on allocation to prevent stale data exposure (bsc#1267567). - CVE-2026-46253: pstore/ram: fix buffer overflow in persistent_ram_save_old() (bsc#1267635). - CVE-2026-46254: AppArmor: Allow apparmor to handle unaligned dfa tables (bsc#1267637). - CVE-2026-46266: inet: RAW sockets using IPPROTO_RAW MUST drop incoming ICMP (bsc#1267684). - CVE-2026-46289: lib/scatterlist: fix length calculations in extract_kvec_to_sg (bsc#1267966). - CVE-2026-46291: crypto: caam - guard HMAC key hex dumps in hash_digest_key (bsc#1267937). - CVE-2026-46319: net/sched: act_ct: Only release RCU read lock after ct_ft (bsc#1268022). - CVE-2026-46320: tap: free page on error paths in tap_get_user_xdp() (bsc#1267993). - CVE-2026-46328: apparmor: fix rlimit for posix cpu timers (bsc#1268037). - CVE-2026-52908: RDMA: During rereg_mr ensure that REREG_ACCESS is compatible (bsc#1268661). - CVE-2026-52909: ip6_vti: set netns_immutable on the fallback device (bsc#1268660). - CVE-2026-52918: Bluetooth: serialize accept_q access (bsc#1269100). - CVE-2026-52923: ipc: limit next_id allocation to the valid ID range (bsc#1269033). - CVE-2026-52943: net: skbuff: fix missing zerocopy reference in pskb_carve helpers (bsc#1269022). - CVE-2026-52954: libceph: handle rbtree insertion error in decode_choose_args() (bsc#1269137). - CVE-2026-52957: libceph: Fix potential null-ptr-deref in decode_choose_args() (bsc#1269103). - CVE-2026-52962: ceph: fix a buffer leak in __ceph_setxattr() (bsc#1269135). - CVE-2026-52969: KVM: Reject wrapped offset in kvm_reset_dirty_gfn() (bsc#1269184). - CVE-2026-52972: crypto: af_alg - Cap AEAD AD length to 0x80000000 (bsc#1269195). - CVE-2026-53016: crypto: ccp - copy IV using skcipher ivsize (bsc#1269090). - CVE-2026-53040: ocfs2: validate bg_bits during freefrag scan (bsc#1269397). - CVE-2026-53041: ocfs2: fix listxattr handling when the buffer is full (bsc#1269398). - CVE-2026-53052: ASoC: qcom: qdsp6: topology: check widget type before accessing data (bsc#1269314). - CVE-2026-53053: iommu/amd: Fix clone_alias() to use the original device's devid (bsc#1269310). - CVE-2026-53071: Bluetooth: l2cap: Add missing chan lock in l2cap_ecred_reconf_rsp (bsc#1269678). - CVE-2026-53072: Bluetooth: fix locking in hci_conn_request_evt() with HCI_PROTO_DEFER (bsc#1269681). - CVE-2026-53122: btrfs: fix deadlock between reflink and transaction commit when using flushoncommit (bsc#1269418). - CVE-2026-53133: RDMA/umem: Fix truncation for block sizes >= 4G (bsc#1269821). - CVE-2026-53138: drm/amd/display: Bound VBIOS record-chain walk loops (bsc#1269281). - CVE-2026-53182: wifi: nl80211: reject oversized EMA RNR lists (bsc#1269884). - CVE-2026-53253: Bluetooth: bnep: fix incorrect length parsing in bnep_rx_frame() extension handling (bsc#1269574). - CVE-2026-53266: netfilter: bridge: make ebt_snat ARP rewrite writable (bsc#1269136). - CVE-2026-53281: iommu/vt-d: Avoid NULL pointer dereference or refcount corruption (bsc#1269519). - CVE-2026-53287: audit: fix incorrect inheritable capability in CAPSET records (bsc#1269506). - CVE-2026-53359: KVM: x86: Fix shadow paging use-after-free due to unexpected role (bsc#1270059). - CVE-2026-53362: ipv6: account for fraggap on the paged allocation path (bsc#1269493). The following non security issues were fixed: - ACPI: IPMI: Fix inverted interface check in ipmi_bmc_gone() (git-fixes). - ACPI: resource: Amend kernel-doc style (git-fixes). - ALSA: caiaq: fix out-of-bounds read in the Traktor Kontrol S4 input parser (git-fixes). - ALSA: firewire: isight: bound the sample count to the packet payload (git-fixes). - ALSA: hda/hdmi: Add quirk for TUXEDO IBS14G6 (stable-fixes). - ALSA: seq: Fix uninitialised heap leak in snd_seq_event_dup() (git-fixes). - ALSA: timer: Fix UAF at snd_timer_user_params() (stable-fixes). - ALSA: usb-audio: avoid kobject path lookup in DualSense match (git-fixes). - ALSA: usb-audio: Kill MIDI 2.0 URBs before freeing endpoints (git-fixes). - ASoC: fsl_asrc_dma: fix eDMA maxburst misalignment with channel count (git-fixes). - ASoC: qcom: q6apm: fix NULL pointer dereference in graph_callback (git-fixes). - ASoC: tlv320aic3x: restrict CLKDIV bypass Q values in dual-rate mode (git-fixes). - Bluetooth: L2CAP: reject BR/EDR signaling packets over MTUsig (stable-fixes). - bus: mhi: ep: Add missing state_lock protection for mhi_state access (git-fixes). - bus: mhi: ep: Fix potential deadlock in mhi_ep_reset_worker() (git-fixes). - bus: mhi: ep: Protect mhi_ep_handle_syserr() in the error path (git-fixes). - char: tlclk: fix use-after-free in tlclk_cleanup() (git-fixes). - dmaengine: dw-edma: Add spinlock to protect DONE_INT_MASK and ABORT_INT_MASK (git-fixes). - dmaengine: Fix possible use after free (git-fixes). - dmaengine: imx-sdma: Refine spba bus searching in probe (git-fixes). - dmaengine: qcom: gpi: set DMA_PRIVATE capability (git-fixes). - dmaengine: tegra: Fix burst size calculation (git-fixes). - drm/amd/display: Clamp VBIOS HDMI retimer register count to array size (stable-fixes). - drm/amdgpu: Fix amdgpu_bo_move() when old_mem and new_mem are both GTT (git-fixes). - drm/amdgpu: initialize irq.lock spinlock earlier (git-fixes). - drm/amdgpu: restart the CS if some parts of the VM are still invalidated (stable-fixes). - drm/amdgpu: skip already suspended IP blocks in ip_suspend_phase2 (git-fixes). - drm/amdgpu: validate CP_GFX_SHADOW chunk size in CS pass1 (git-fixes). - drm/amdkfd: Avoid double-unpin of DOORBELL/MMIO BOs on free (git-fixes). - drm/amdkfd: Check for pdd drm file first in CRIU restore path (stable-fixes). - drm/amdkfd: fix list_del corruption in kfd_criu_resume_svm (git-fixes). - drm/amdkfd: fix NULL pointer bug in svm_range_set_attr (stable-fixes). - drm/dp: Add eDP 1.5 bit definition (stable-fixes). - drm/edid: fix OOB read in drm_parse_tiled_block() (git-fixes). - drm/i915/gem: Add missing nospec on parallel submit slot (git-fixes). - drm/i915/psr: Add defininitions for INTEL_WA_REGISTER_CAPS DPCD register (stable-fixes). - drm/nouveau/acr: fix missing nvkm_done() in error path of nvkm_acr_oneinit() (git-fixes). - drm/nouveau: fix reversed error cleanup order in ucopy functions (git-fixes). - fpga: dfl: add bounds check in dfh_get_param_size() (git-fixes). - fpga: microchip-spi: fix zero header_size OOB read in mpf_ops_parse_header() (git-fixes). - fpga: region: fix use-after-free in child_regions_with_firmware() (git-fixes). - HID: logitech-hidpp: remove excess kernel-doc member in hidpp_scroll_counter (git-fixes). - HID: quirks: Add ALWAYS_POLL quirk for SIGMACHIP USB mouse (stable-fixes). - HID: wacom: stop hardware after post-start probe failures (git-fixes). - HID: wiimote: Fix table layout and whitespace errors (git-fixes). - hv_balloon: Simplify data output in hv_balloon_debug_show() (git-fixes). - i2c: dev: prevent integer overflow in I2C_TIMEOUT ioctl (stable-fixes). - i2c: mpc: Fix timeout calculations (git-fixes). - i2c: stm32f7: truncate clock period instead of rounding it (git-fixes). - i3c: master: Prevent reuse of dynamic address on device add failure (git-fixes). - iio: accel: mma8452: handle I2C read error(s) in mma8452_read() (git-fixes). - iio: adc: npcm: Convert to platform remove callback returning void (stable-fixes). - iio: adc: xilinx-ams: fix out-of-bounds channel lookup in event handling (git-fixes). - iio: chemical: scd30: Cleanup initializations and fix sign-extension bug (git-fixes). - iio: chemical: scd30: fix division by zero in write_raw (git-fixes). - iio: chemical: scd30: Use guard(mutex) to allow early returns (stable-fixes). - iio: gyro: bmg160: bail out when bandwidth/filter is not in table (git-fixes). - iio: gyro: bmg160: wait full startup time after mode change at probe (git-fixes). - iio: light: opt3001: fix missing state reset on timeout (git-fixes). - iio: light: si1133: prevent race condition on timeout (git-fixes). - iio: light: si1133: reset counter to prevent race condition (git-fixes). - iio: light: veml6030: fix channel type when pushing events (git-fixes). - iio: magnetometer: ak8975: Add missed pm_runtime_put_autosuspend() call (git-fixes). - iio: magnetometer: ak8975: fix potential kernel stack memory leak (git-fixes). - iio: tcs3472: power down chip on probe failure (git-fixes). - iio: temperature: ltc2983: Fix reinit_completion() called after conversion start (git-fixes). - Input: atkbd - add DMI quirk for Lenovo Yoga Air 14 (83QK) (stable-fixes). - Input: elan_i2c - validate firmware size before use (stable-fixes). - Input: synaptics - add LEN2058 to SMBus passlist for ThinkPad E490 (stable-fixes). - Input: synaptics-rmi4 - bound the F3A keymap to the GPIO count (git-fixes). - Input: synaptics-rmi4 - bound the F30 keymap to the GPIO/LED count (git-fixes). - Input: xpad - add 'Nova 2 Lite' from GameSir (stable-fixes). - Input: xpad - add support for ASUS ROG RAIKIRI II (stable-fixes). - KVM: SVM: Fix page overflow in sev_dbg_crypt() for ENCRYPT path (git-fixes). - KVM: SVM: Inject #UD for INVLPGA if EFER.SVME=0 (git-fixes). - KVM: SVM: Truncate INVLPGA address in compatibility mode (git-fixes). - KVM: VMX: Grab vmcs12 on CR8 interception update iff vCPU is in guest mode (git-fixes). - KVM: x86/mmu: Ensure hugepage is in by slot before checking max mapping level (git-fixes). - KVM: x86/mmu: Recursively zap orphaned nested TDP shadow pages on emulated writes (git-fixes). - KVM: x86: hyper-v: Bound the bank index when querying sparse banks (git-fixes). - KVM: x86: ioapic: Use old_dest_mode consistently in ioapic_write_indirect() (git-fixes). - KVM: x86: Move update_cr8_intercept() to lapic.c (git-fixes). - KVM: x86: Unconditionally recompute CR8 intercept on PPR update (git-fixes). - leds: uleds: Fix potential buffer overread (git-fixes). - loadpin: Prevent SECURITY_LOADPIN_ENFORCE=y without module decompression (jsc#PED-16303). - loadpin: remove MODULE_COMPRESS_NONE as it is no longer supported (jsc#PED-16303). - mailbox: mtk-adsp: fix UAF during device teardown (git-fixes). - media: aspeed: fix missing of_reserved_mem_device_release() on probe failure (git-fixes). - media: cec: seco: unregister adapter on IR probe failure (git-fixes). - media: cedrus: Fix failure to clean up hardware on probe failure (git-fixes). - media: cedrus: Fix missing cleanup in error path (git-fixes). - media: cedrus: skip invalid H.264 reference list entries (git-fixes). - media: marvell-cam: fix missing pci_disable_device() on remove (git-fixes). - media: mtk-jpeg: cancel workqueue on release for supported platforms only (git-fixes). - media: pci: dm1105: Free allocated workqueue (git-fixes). - media: ti: vpe: unwind v4l2 device registration on probe error (git-fixes). - media: v4l2-ctrls: validate HEVC active reference counts (git-fixes). - media: vidtv: fix NULL pointer dereference in vidtv_mux_push_si (git-fixes). - media: vidtv: fix reference leak on failed device registration (git-fixes). - media: vimc: fix reference leak on failed device registration (git-fixes). - media: vpif_capture: fix OF node reference imbalance (git-fixes). - module: fix init_module_from_file() error handling (jsc#PED-16303). - module: make waiting for a concurrent module loader interruptible (jsc#PED-16303). - module: Split modules_install compression and in-kernel decompression (jsc#PED-16303). - module: split up 'finit_module()' into init_module_from_file() helper (jsc#PED-16303). - module: warn about excessively long module waits (jsc#PED-16303). - modules: catch concurrent module loads, treat them as idempotent (jsc#PED-16303). - mtd: maps: vmu-flash: fix NULL pointer dereference in initialization (git-fixes). - mtd: rawnand: fix condition in 'nand_select_target()' (git-fixes). - mtd: rawnand: pl353: fix probe resource allocation (git-fixes). - mtd: slram: remove failed entries from the device list (git-fixes). - mtd: spi-nor: Drop duplicate Kconfig dependency (git-fixes). - mtd: spi-nor: swp: Improve locking user experience (git-fixes). - net: aquantia: Add missing descriptor cache invalidation on ATL2 (bsc#1268428). - net: mana: Add support for PF device 0x00C1 (bsc#1268237). - net: mana: Allocate interrupt context for each EQ when creating vPort (git-fixes). - net: mana: Create separate EQs for each vPort (git-fixes). - net: mana: Fall back to standard MTU when PF reports adapter_mtu of 0 (git-fixes). - net: mana: guard TX wq object destroy with INVALID_MANA_HANDLE check (git-fixes). - net: mana: initialize gdma queue id to INVALID_QUEUE_ID (git-fixes). - net: mana: Introduce GIC context with refcounting for interrupt management (git-fixes). - net: mana: Optimize irq affinity for low vcpu configs (git-fixes). - net: mana: Query device capabilities and configure MSI-X sharing for EQs (git-fixes). - net: mana: Use GIC functions to allocate global EQs (git-fixes). - nfc: hci: fix out-of-bounds read in HCP header parsing (git-fixes). - nfc: llcp: Fix use-after-free in llcp_sock_release() (git-fixes). - nfc: llcp: Fix use-after-free race in nfc_llcp_recv_cc() (git-fixes). - platform/x86: xo15-ebook: Fix wakeup source and GPE handling (git-fixes). - power: reset: linkstation-poweroff: fix use-after-free in the linkstation_poweroff_init() (git-fixes). - power: supply: charger-manager: fix refcount leak in is_full_charged() (git-fixes). - power: supply: core: fix supplied_from allocations (git-fixes). - power: supply: cpcap-battery: Fix missing nvmem_device_put() causing reference leak (git-fixes). - powerpc/boot: Allow text relocations for pseries wrapper with binutils 2.46+ (git-fixes). - RDMA/mana_ib: Allocate interrupt contexts on EQs (git-fixes). - RDMA/mana_ib: Use ib_get_eth_speed for reporting port speed (git-fixes). - rtc: abx80x: fix the RTC_VL_CLR clearing all status flags (git-fixes). - rtc: cmos: unregister HPET IRQ handler on probe failure (git-fixes). - rtc: ds1307: Fix off-by-one issue with wday for rx8130 (git-fixes). - rtc: ds1307: handle oscillator stop flag for ds1337/ds1339/ds3231 (git-fixes). - rtc: mpfs: fix counter upload completion condition (git-fixes). - rtc: msc313: fix NULL deref in shared IRQ handler at probe (git-fixes). - scsi: storvsc: Replace symbolic permissions with octal (git-fixes). - scsi: target: Fix hexadecimal CHAP_I handling (git-fixes). - serdev: make serdev_bus_type const (stable-fixes). - spi: dw: fix wrong BAUDR setting after resume (git-fixes). - spi: rpc-if: Use correct device for hardware reinitialization on resume (git-fixes). - spi: uniphier: Fix completion initialization order before devm_request_irq() (git-fixes). - Split off kABI workaround for bsc#1267458 (bsc#1267458). - staging: most: video: avoid double free on video register failure (git-fixes). - staging: nvec: fix use-after-free in nvec_rx_completed() (git-fixes). - thermal: intel: Fix dangling resources on thermal_throttle_online() failure (git-fixes). - tpm: fix event_size output in tpm1_binary_bios_measurements_show (git-fixes). - tpm: tpm_tis_spi: Use wait_woken() in wait_for_tmp_stat() (git-fixes). - usb: core: Fix SuperSpeed root hub wMaxPacketSize (stable-fixes). - usb: core: Fix up Interrupt IN endpoints with bogus wBytesPerInterval (stable-fixes). - usb: gadget: u_ether: Fix NULL pointer deref in eth_get_drvinfo (git-fixes). - usb: host: max3421: Fix shift-out-of-bounds in max3421_hub_control() (git-fixes). - usb: host: max3421: Reject hub port requests for non-existent ports (git-fixes). - USB: quirks: add NO_LPM for Lenovo ThinkPad USB-C Dock Gen2 hub controllers (stable-fixes). - USB: serial: option: add MeiG SRM813Q (stable-fixes). - USB: serial: option: add usb-id for Dell Wireless DW5826e-m (stable-fixes). - usb: storage: Add quirks for PNY Elite Portable SSD (stable-fixes). - usb: typec: altmodes/displayport: validate count before reading Status Update VDO (stable-fixes). - usb: typec: tcpm/tcpci_maxim: validate header NDO against RX_BYTE_CNT (stable-fixes). - usb: typec: ucsi: ccg: reject firmware images without a ':' record header (stable-fixes). - usb: typec: ucsi: displayport: NAK DP_CMD_CONFIGURE without a payload VDO (stable-fixes). - usb: typec: ucsi: validate connector number in ucsi_connector_change() (stable-fixes). - usb: typec: wcove: don't write past struct pd_message in wcove_read_rx_buffer() (stable-fixes). - vc_screen: fix null-ptr-deref in vcs_notifier() during concurrent vcs_write (git-fixes). - x86/platform/uv: Expose the uv_hub_type() interface (jsc#PED-16305). - x86/tsc: Disable clocksource watchdog checking on recent and future UV platforms (jsc#PED-16305). The following package changes have been done: - kernel-rt-6.4.0-49.1 updated - container:SL-Micro-container-2.2.1-7.131 updated From sle-container-updates at lists.suse.com Tue Jul 7 07:32:57 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Tue, 7 Jul 2026 09:32:57 +0200 (CEST) Subject: SUSE-IU-2026:5516-1: Security update of suse/sl-micro/6.2/baremetal-os-container Message-ID: <20260707073257.C2A61FCC9@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.2/baremetal-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5516-1 Image Tags : suse/sl-micro/6.2/baremetal-os-container:2.3.1 , suse/sl-micro/6.2/baremetal-os-container:2.3.1-8.43 , suse/sl-micro/6.2/baremetal-os-container:latest Image Release : 8.43 Severity : important Type : security References : 1262856 1266125 CVE-2025-22869 CVE-2025-47913 CVE-2025-47914 CVE-2025-52881 CVE-2025-6032 CVE-2025-9566 CVE-2026-34986 CVE-2026-39827 CVE-2026-39828 CVE-2026-39829 CVE-2026-39830 CVE-2026-39831 CVE-2026-39832 CVE-2026-39833 CVE-2026-39834 CVE-2026-39835 CVE-2026-42508 CVE-2026-46595 CVE-2026-46597 CVE-2026-46598 ----------------------------------------------------------------- The container suse/sl-micro/6.2/baremetal-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1165 Released: Mon Jul 6 17:38:19 2026 Summary: Security update for podman Type: security Severity: important References: 1262856,1266125,CVE-2025-22869,CVE-2025-47913,CVE-2025-47914,CVE-2025-52881,CVE-2025-6032,CVE-2025-9566,CVE-2026-34986,CVE-2026-39827,CVE-2026-39828,CVE-2026-39829,CVE-2026-39830,CVE-2026-39831,CVE-2026-39832,CVE-2026-39833,CVE-2026-39834,CVE-2026-39835,CVE-2026-42508,CVE-2026-46595,CVE-2026-46597,CVE-2026-46598 This update for podman fixes the following issues - CVE-2026-34986: github.com/go-jose/go-jose/v4,github.com/go-jose/go-jose/v3: crafted JWE input with a missing encrypted key can lead to a denial of service (bsc#1262856). - CVE-2026-39827: Invoking memory leak when rejecting channels can lead to DoS in golang.org/x/crypto/ssh (bsc#1266125). - CVE-2026-39828: Invoking bypass of certificate restrictions in golang.org/x/crypto/ssh (bsc#1266125). - CVE-2026-39829: Invoking pathological RSA/DSA parameters may cause DoS in golang.org/x/crypto/ssh (bsc#1266125). - CVE-2026-39830: Invoking client can cause server deadlock on unexpected responses in golang.org/x/crypto/ssh (bsc#1266125). - CVE-2026-39831: Invoking bypass of FIDO/U2F security keys physical interaction in golang.org/x/crypto/ssh (bsc#1266125). - CVE-2026-39832: Invoking agent constraints dropped when forwarding keys in golang.org/x/crypto/ssh/agent (bsc#1266125). - CVE-2026-39833: Invoking key constraints not enforced in golang.org/x/crypto/ssh/agent (bsc#1266125). - CVE-2026-39834: Invoking infinite loop on large channel writes in golang.org/x/crypto/ssh (bsc#1266125). - CVE-2026-39835: Invoking server panic during CheckHostKey/Authenticate in golang.org/x/crypto/ssh (bsc#1266125). - CVE-2026-42508: Invoking auth bypass via unenforced @revoked status in golang.org/x/crypto/ssh/knownhosts (bsc#1266125). - CVE-2026-46595: Invoking VerifiedPublicKeyCallback permissions skip enforcement in golang.org/x/crypto/ssh (bsc#1266125). - CVE-2026-46597: Invoking byte arithmetic causes underflow and panic in golang.org/x/crypto/ssh (bsc#1266125). - CVE-2026-46598: Invoking pathological inputs can lead to client panic in golang.org/x/crypto/ssh/agent (bsc#1266125). The following package changes have been done: - podman-5.4.2-160000.5.1 updated From sle-container-updates at lists.suse.com Tue Jul 7 07:56:45 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Tue, 7 Jul 2026 09:56:45 +0200 (CEST) Subject: SUSE-CU-2026:6784-1: Security update of suse/postgres Message-ID: <20260707075645.0739AFCC9@maintenance.suse.de> SUSE Container Update Advisory: suse/postgres ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6784-1 Container Tags : suse/postgres:16-contrib , suse/postgres:16.14 , suse/postgres:16.14-contrib , suse/postgres:16.14-contrib-91.1 Container Release : 91.1 Severity : important Type : security References : 1100677 1236351 1258945 CVE-2026-3172 ----------------------------------------------------------------- The container suse/postgres was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-RU-2025:423-1 Released: Tue Feb 11 11:29:34 2025 Summary: Recommended update for pgvector Type: recommended Severity: moderate References: 1100677,1236351 This update for pgvector fixes the following issues: This update adds pgvector, a postgresql extension. (jsc#PED-10508) ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:3-1 Released: Fri Jan 2 11:30:30 2026 Summary: Recommended update for pgvector Type: recommended Severity: moderate References: This update for pgvector fixes the following issues: - enable postgresql 18 pgvector was updated to 0.8.1: * Added support for Postgres 18 rc1 * Improved performance of `binary_quantize` function - Update to 0.7.0 ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:1068-1 Released: Thu Mar 26 11:39:29 2026 Summary: Security update for pgvector Type: security Severity: important References: 1258945,CVE-2026-3172 This update for pgvector fixes the following issue: Update to pgvector 0.8.2: - CVE-2026-3172: Buffer overflow in parallel HNSW index build (bsc#1258945). Changelog: * Fixed Index Searches in EXPLAIN output for Postgres 18 The following package changes have been done: - postgresql16-pgvector-0.8.2-150600.13.9.1 added - container:suse-sle15-15.7-d2aab68ae05470b62bbe38c4ca03ff5bf72b405197482ed96e34dd0087d7bde2-0 updated From sle-container-updates at lists.suse.com Tue Jul 7 07:57:29 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Tue, 7 Jul 2026 09:57:29 +0200 (CEST) Subject: SUSE-CU-2026:6786-1: Security update of suse/postgres Message-ID: <20260707075729.3CF66FCC9@maintenance.suse.de> SUSE Container Update Advisory: suse/postgres ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6786-1 Container Tags : suse/postgres:17-contrib , suse/postgres:17.10 , suse/postgres:17.10-contrib , suse/postgres:17.10-contrib-81.1 Container Release : 81.1 Severity : important Type : security References : 1100677 1236351 1258945 CVE-2026-3172 ----------------------------------------------------------------- The container suse/postgres was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-RU-2025:423-1 Released: Tue Feb 11 11:29:34 2025 Summary: Recommended update for pgvector Type: recommended Severity: moderate References: 1100677,1236351 This update for pgvector fixes the following issues: This update adds pgvector, a postgresql extension. (jsc#PED-10508) ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:3-1 Released: Fri Jan 2 11:30:30 2026 Summary: Recommended update for pgvector Type: recommended Severity: moderate References: This update for pgvector fixes the following issues: - enable postgresql 18 pgvector was updated to 0.8.1: * Added support for Postgres 18 rc1 * Improved performance of `binary_quantize` function - Update to 0.7.0 ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:1068-1 Released: Thu Mar 26 11:39:29 2026 Summary: Security update for pgvector Type: security Severity: important References: 1258945,CVE-2026-3172 This update for pgvector fixes the following issue: Update to pgvector 0.8.2: - CVE-2026-3172: Buffer overflow in parallel HNSW index build (bsc#1258945). Changelog: * Fixed Index Searches in EXPLAIN output for Postgres 18 The following package changes have been done: - postgresql17-pgvector-0.8.2-150600.13.9.1 added - container:suse-sle15-15.7-d2aab68ae05470b62bbe38c4ca03ff5bf72b405197482ed96e34dd0087d7bde2-0 updated From sle-container-updates at lists.suse.com Tue Jul 7 07:58:00 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Tue, 7 Jul 2026 09:58:00 +0200 (CEST) Subject: SUSE-CU-2026:6788-1: Security update of suse/postgres Message-ID: <20260707075800.9F79AFCC9@maintenance.suse.de> SUSE Container Update Advisory: suse/postgres ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6788-1 Container Tags : suse/postgres:18-contrib , suse/postgres:18.4 , suse/postgres:18.4-contrib , suse/postgres:18.4-contrib-71.1 , suse/postgres:latest Container Release : 71.1 Severity : important Type : security References : 1258945 CVE-2026-3172 ----------------------------------------------------------------- The container suse/postgres was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:3-1 Released: Fri Jan 2 11:30:30 2026 Summary: Recommended update for pgvector Type: recommended Severity: moderate References: This update for pgvector fixes the following issues: - enable postgresql 18 pgvector was updated to 0.8.1: * Added support for Postgres 18 rc1 * Improved performance of `binary_quantize` function - Update to 0.7.0 ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:1068-1 Released: Thu Mar 26 11:39:29 2026 Summary: Security update for pgvector Type: security Severity: important References: 1258945,CVE-2026-3172 This update for pgvector fixes the following issue: Update to pgvector 0.8.2: - CVE-2026-3172: Buffer overflow in parallel HNSW index build (bsc#1258945). Changelog: * Fixed Index Searches in EXPLAIN output for Postgres 18 The following package changes have been done: - postgresql18-pgvector-0.8.2-150600.13.9.1 added - container:suse-sle15-15.7-d2aab68ae05470b62bbe38c4ca03ff5bf72b405197482ed96e34dd0087d7bde2-0 updated From sle-container-updates at lists.suse.com Tue Jul 7 07:58:58 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Tue, 7 Jul 2026 09:58:58 +0200 (CEST) Subject: SUSE-CU-2026:6790-1: Security update of suse/kiosk/pulseaudio Message-ID: <20260707075858.B93E4FCC9@maintenance.suse.de> SUSE Container Update Advisory: suse/kiosk/pulseaudio ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6790-1 Container Tags : suse/kiosk/pulseaudio:17 , suse/kiosk/pulseaudio:17.0 , suse/kiosk/pulseaudio:17.0-72.9 , suse/kiosk/pulseaudio:latest Container Release : 72.9 Severity : moderate Type : security References : 1082318 1133233 1181869 1241612 1243195 1259314 1261813 1270185 CVE-2026-41676 ----------------------------------------------------------------- The container suse/kiosk/pulseaudio was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-RU-2025:3968-1 Released: Thu Nov 6 11:58:36 2025 Summary: Recommended update for libaio Type: recommended Severity: moderate References: 1082318,1133233,1181869,1243195 This update for libaio fixes the following issues: libaio was updated to 0.3.113 (jsc#PED-13433): * Fix struct io_iocb_vector padding for 32bit architectures * struct io_iocb_sockaddr padding for 32bit architectures * Verify structure padding is correct at build time * harness: add test for aio poll missed events * Various patches for architectures/etc ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2777-1 Released: Mon Jul 6 10:57:12 2026 Summary: Security update for cryptsetup, s390-tools Type: security Severity: moderate References: 1241612,1259314,1261813,1270185,CVE-2026-41676 This update for cryptsetup, s390-tools fixes the following issue Security fixes: - CVE-2026-41676: openssl: `Deriver:derive` and `PkeyCtxRef:derive` can overflow short buffers on OpenSSL 1.1.1 (bsc#1270185). Changes for s390-tools: - Upgrade s390-tools to version 2.41.0 (jsc#PED-15860) - Automatically set appropriate MTU for HSCI (bsc#1259314) - Changes of existing tools: * chreipl: Make --bootparms work for ECKD re-IPL * cpacfstats: Add 'unauthorized' state to CPU-MF counters * cpictl: Detect RHCOS using VARIANT_ID * hsci: Automatically set appropriate MTU for HSCI * libutil: Add util_readlink() and util_readlinkat() helpers * libutil: Add util_startswith() to util_str * libutil: Add utility parsing functions * lschp: Add support for structured output (--format) * lsreipl: Suppress 'clear' output if not supported * pvimg: Add '--format text' support to 'pvimg info' * pvimg: Add '--print-schema ' option to 'pvimg info' * pvimg: Add '--show-secrets' flag to 'pvimg info' * pvimg: Provide improved JSON output to 'pvimg info --format json' * pvinfo: Improve User experience on non-SE enabled systems * zipl/ngdump: Ensure ext4 file system is used on dump partition * zkey: Add support for integrity protected disks using HMAC keys - Bug Fixes: * cpumf/pai: Handle different size of perf_event_attr * lscss: Fix memory leak * zipl: Fix dump job on tape devices --- s390-tools 2.40 includes --- - Add new tools / libraries: * Add project-wide .clang-tidy configuration * libutil: Introduce util_time for time related functionality * libutil: Introduce zsh/bash autocompletion tooling based on util_opt * pvinfo: Tool to display Secure Execution system information * pvverify: Tool to verify host-key documents - Changes of existing tools: * cpumf: Implement zsh and bash autocompletion * dasdfmt: Implement zsh and bash autocompletion * dbginfo.sh: Add NetworkManager and netplan * dbginfo.sh: Add kvm_stat * dbginfo.sh: Adding stp time information * dbginfo.sh: Simplify procfs collection * hyptop: Add physical information row * hyptop: Calculate sample time delta for physical partition * hyptop: Replace long option names using _ with - for consistency For example: --cpu_types > --cpu-types (Options with _ are still supported for backward compatibility) * libekmfweb: Add function to validate a certificate against the identity key * netboot: Add longer kernel command lines support * udev/rules.d: Make virtio-blk devices non-rotational * udev/rules.d: Set default io scheduler to 'none' for virtio-blk * ziomon: Add support to sample device symlinks (/dev/disk/...) * ziorep_config: Add fcp-lun details to -M option output * ziorep_config: Add port_id and failed attributes to -A option output * netboot: Install on non-s390 architectures - Bug Fixes: * lib(ekmfweb|kmipclient): Use ln without -r * s390-tools: Fix various compilation issues with musl libc * zipl/boot: Fix unused loadparm when SCLP line-mode console is absent --- s390-tools 2.39 includes --- - Changes of existing tools: * chpstat: Add options to select IEC units for scaling (SI units are default) * chzdev: Introduce --no-module-load option * cpi: Disable CPI for SEL guests by default * dbginfo.sh: Enhance logging on timeout triggered * iucvterm: Install symlink for lsiucvallow.8 man page * lshwc: Add command line flag to specify individual counters * lspai: Add command line flag for delta values * lspai: Add command line flag for short counter names * lspai: Add command line flag to specify individual counters * lspai: Add command line flags for all cpus * lspai: Add command line flags for hexadecimal output * man: Use CR for constant width font * pvimg: Add '--image-key' option * zdev: Allow dynamic control of module load * zipl/boot: Fix EBCDIC code page 500 conversion and decrease size by 200 bytes * zipl: Add support of heterogeneous mirrors (remove technical limitations on mirrored targets, thus allowing mirrored devices consist of partitions at different offsets on disks of different types and geometry). * zkey: Add support for generating and importing exportable secure keys - Bug Fixes: * chpstat: Fix scaling of DPU utilization calculation * zdev/dracut: Prevent loading of unused kernel modules * zdev: Fix double device configuration on DPM systems * zdev: Fix double device configuration with rd.dasd * zipl_helper.device-mapper: Fix segfault in an error path --- s390-tools 2.38 includes --- * Add new tools - udev: New rule to set newly hotplugged CPUs online - zmemtopo: Display memory topology information - zpwr: Display power readings of a partition and CPC * Removed tools / features - check_hostkeydoc: Remove installation target - scsi_logging_level: Delete SCSI logging script (available in sg3_utils) - zdump: Drop build_arch for s390 DASD dumps - zdump: Drop non-extended multi-volume DASD dump support - zdump: Drop support of 32-bit dump architecture - zdump: Drop support of non-extended single volume DASD dumpers - zdump: Drop support of obsolete dumps and dumpers * Changes of existing tools / libraries - Various man-pages fixes - check_hostkeydoc: Add deprecation warning - check_hostkeydoc: Move to scripts directory - cpuplugd: Allow cpu hotplugging on systems without polarization - dbginfo.sh: Add Ubuntu snap tool - dbginfo.sh: Add missing config data and logs - dbginfo.sh: Reworking the container section - dbginfo.sh: Update for network commands - dbginfo.sh: Updating info for disks and lvm - libutil: Add machine type definition for machines 9175 and 9176 - lscpumf: Add support for IBM z17 counter sets - lshwc: Add command line flag for run time - lshwc: Add flags to display counter values in hex - lshwc: Add output '--format' option - lshwc: Add support for delta counter value display - lspai: Add output '--format' option - lsreipl: Add secure boot state to output - lswhc: Add short names to lshwc output - pv_tools: Add Bash and Zsh completions - pvapconfig: Add '--unbind' option - pvimg/boot: Print error messages from stage3a bootloader - pvimg: Add support for CCK update - pvsecret: Add support for CCK update - pvsecret: Allow retrieving secrets by index; warn for duplicated entries - pvsecret: Deny adding secrets with duplicated secret IDs - zdev: Add support for virtio devices - zipl: Enhance mirror support - zipl: Implement '--dry-run' option for all dump jobs - zipl_helper.device-mapper: Support mirrors over NVMe devices - zkey/dracut: Add a dracut config file for zkey - zkey/initramfs: Update initramfs hook to correct drivers and include zkey plugins - zkey: Add support for converting a clear-key LUKS2 volume to use a secure key * Bug Fixes - chpstat: Add missing CMG 5 data fields - chpstat: Fix DPU utilization calculation - libutil/util_file: Handle over-read in util_file_read_fd() - pvattest: Fix successful 'check' evaluation - pvsecret: Fix some edge cases for plaintext keys - zipl_helper.device-mapper: Fix imprecise is_device_mapper() predicate - zkey: Fix EP11 secure key reencipher function - zpcictl: Fix command line parsing for invalid options - Amended the .spec file * 'Installing' all shipped rules from etc/udev/rules.d to /usr/lib/udev/rules.d * BuildRequires: cryptsetup-devel > 2.8.2 - Updated the code for IBM z17 machine type 9176: * read_values.c * cputype * Renamed cputype.1 to cputype.8 and amended * Amended read_values.8 - 'Improved' the read_values.c: * Added functionalities for '-a' and '-L attributes' - Removed legacy suse_version and sle_version conditionals, standardizing on UsrMerge paths. - Reworked and combined all s390-tools patches (jsc#PED-14586) - Added new combined and reworked patches - Removed obsolete patches - Applied patches (bsc#1261813) * Replace sort_field option with sort * hyptop opts Fix long command line option abbreviations - Removed obsolete patch - Re-vendor-ed vendor.tar.zst Changes for cryptsetup: - Update to 2.8.4: (jsc#PED-15889) * Fix integritysetup resize (grow) of the device if integrity bitmap mode is used. Increasing the integrity device in bitmap mode did not work as integritysetup incorrectly used journal settings that were not applicable. * Fix device size status reports in cryptsetup and integritysetup. If the device uses a sector size larger than 512 bytes, the newly reported byte sizes (introduced in 2.8.0) in the status report were incorrectly displayed. * BITLK: Fix unlocking BitLocker device with recovery passphrase. If the recovery passphrase was present in the first keyslot, the device failed to unlock. This bug was introduced in 2.8.2 with Clear Key support. - Update to 2.8.3: * Stable bug-fix release with minor extensions. - Update to 2.8.2: * BITLK: Fix for BitLocker metadata validation on big-endian systems. - Update to 2.8.1: * Fix status and deactivation of TCRYPT (VeraCrypt compatible) devices that use chained ciphers. * Fix unlocking BITLK (BitLocker compatible) devices with multibyte UTF8 characters in the passphrase. * Do not allow activation of the LUKS2 device if the used keyslot is not encrypted (it uses a null cipher). - Such a configuration cannot be created by cryptsetup, but can be crafted outside of it. - Null cipher is sometimes used to create an empty container for later reencryption. - Only an empty passphrase can activate such a container (the same as in LUKS1). * Do not silently decrease PBKDF parallel cost (threads) if set by an option. - The maximum parallel cost is limited to 4 threads. * Fixes to configuration and installation scripts. - Meson and autoconf tools now properly support --prefix option for temporary directory installation. - Multiple fixes and cleanups to config.h for compatibility between Meson and autoconf. - Fix the luks2-external-tokens-path Meson option to work the same as in autoconf. - Fix Meson install for tool binaries, install fvault2Open man page and include test/fuzz/meson.build in release. * Major update to manual pages. - Try to explain the PBKDF hardcoded limits. - Add a better explanation for automatic integrity tag recalculation. - Mention crypt/verity/integritytab. - Remove or reformulate some misleading warnings present only with old and no longer supported kernels. - Clarify that some commands do not wipe data and unify OPAL reset wording. - Clarify the --label option. - There are also many other grammar and stylistic fixes to unify the man-page style. * Fixes for false-positive and annoying (optional) warnings added in recent compilers. - Update to 2.8.0: * Full release notes in: - https://cdn.kernel.org/pub/linux/utils/cryptsetup/v2.8/v2.8.0-ReleaseNotes * Introduce support for inline mode (use HW sectors with additional hardware metadata space). * Finalize use of keyslot context API. * Make all keyslot context types fully self-contained. * Add --key-description and --new-key-description cryptsetup options. * Support more precise keyslot selection in reencryption initialization. * Allow reencryption to resume using token and volume keys. * Cryptsetup repair command now tries to check LUKS keyslot areas for corruption. * Opal2 SED: PSID keyfile is now expected to be 32 alphanumeric characters. * Opal2: Avoid the Erase method and use Secure Erase for locking range. * Opal2: Fix some error description (in debug only). * Opal2: Do not allow deferred deactivation. * Allow --reduce-device-size and --device-size combination for reencryption (encrypt) action. * Fix the userspace storage backend to support kernel 'capi:' cipher specification format. * Disallow conversion from LUKS2 to LUKS1 if kernel 'capi:' cipher specification is used. * Explicitly disallow kernel 'capi:' cipher specification format for LUKS2 keyslot encryption. * Do not allow conversion of LUKS2 to LUKS1 if an unbound keyslot is present. * cryptsetup: Adjust the XTS key size for kernel 'capi:' cipher specification. * Remove keyslot warning about possible failure due to low memory. * Do not limit Argon2 KDF memory cost on systems with more than 4GB of available memory. * Properly report out of memory error for cryptographic backends implementing Argon2. * Avoid KDF2 memory cost overflow on 32-bit platforms. * Do not use page size as a fallback for device block size. * veritysetup: Check hash device size in advance. * Print a better error message for unsupported LUKS2 AEAD device resize. * Optimize LUKS2 metadata writes. * veritysetup: support --error-as-corruption option. * Report all sizes in status and dump command output in the correct units. * Add --integrity-key-size option to cryptsetup. * Support trusted; encrypted keyrings for plain devices. * Support plain format resize with a keyring key. * TCRYPT: Clear mapping of system-encrypted partitions. * TCRYPT: Print all information from the decrypted metadata header in the tcryptDump command. * Always lock the volume key structure in memory. * Do not run direct-io read check on block devices. * Fix a possible segfault in deferred deactivation. * Exclude cipher allocation time from the cryptsetup benchmark. * Add Mbed-TLS optional crypto backend. * Fix the wrong preprocessor use of #ifdef for config.h processed by Meson. * Reorganize license files. The license text files are now in docs/licenses. The COPYING file in the root directory is the default license. * Remove cc-by-sa-4.0.txt as already shipped now in docs/licenses and named as COPYING.CC-BY-SA-4.0. * Libcryptsetup API extensions. The libcryptsetup API is backward compatible with all existing symbols. Due to the self-contained memory allocation, these symbols have the new version: - crypt_keyslot_context_init_by_passphrase; - crypt_keyslot_context_init_by_keyfile; - crypt_keyslot_context_init_by_token; - crypt_keyslot_context_init_by_volume_key; - crypt_keyslot_context_init_by_signed_key; - crypt_keyslot_context_init_by_keyring; - crypt_keyslot_context_init_by_vk_in_keyring; * New symbols: - crypt_format_inline - crypt_get_old_volume_key_size - crypt_reencrypt_init_by_keyslot_context - crypt_safe_memcpy * New defines: - CRYPT_ACTIVATE_HIGH_PRIORITY - CRYPT_ACTIVATE_ERROR_AS_CORRUPTION - CRYPT_ACTIVATE_INLINE_MODE - CRYPT_REENCRYPT_CREATE_NEW_DIGEST * New requirement flag: - CRYPT_REQUIREMENT_INLINE_HW_TAGS - Add a dependency on device-mapper to libcryptsetup12 to install the required device-mapper udev rules. (bsc#1241612) - Update to 2.7.5: * Fix possible online reencryption data corruption (only in 2.7.x). In some situations (initializing a suspended device-mapper device), cryptsetup disabled direct-io device access. This caused unsafe online reencryption operations that could lead to data corruption. The code now adds strict checks (and aborts the operation) and changes direct-io detection code to prevent data corruption. * Fix a clang compilation error in SSH token plugin. As clang linker treats missing symbols as errors, the linker phase for the SSH token failed as the optional cryptsetup_token_buffer_free was not defined. * Fix crypto backend initialization in crypt_format_luks2_opal API call. - Update to 2.7.4: * Detect device busy failure for device-mapper table-referenced devices. * Fix shared activation for dm-verity devices. * Add --shared option for veritysetup open action. * Do not use exclusive flag for the allocated backing loop files. * Fixes for problems found by static analyzers and Valgrind. * Fixes to tests and CI scripts. - Use fdupes to link identical man pages. - Update to 2.7.3: * Do not allow formatting LUKS2 with Opal SED (hardware encryption) if the reported logical sector size for the block device and Opal encryption logical block differs. * Fixes to wiping LUKS2 headers after Opal locking area erase. * Mention the need for possible PSID revert before Opal format for some drives (man page). * Fix Bitlocker-compatible code to ignore newly seen metadata entries. * Fix interactive query retry if LUKS2 unbound keyslot is present. * Detect unsupported zoned devices for LUKS header devices. * Allow 'capi' cipher format for benchmark command and fix parsing of plain IV in 'capi' format. * Add support for HCTR2 encryption mode. * Source code now uses SPDX license identifiers instead of full license preambles. * Fix missing includes for cryptographic backend that could cause compilation errors for some systems. * Fix tests to work correctly in FIPS mode with recent OpenSSL 3.2. * Fix various (mostly false positive) issues detected by Coverity. - License: Replace legacy 'AND SUSE-GPL-2.0-with-openssl-exception' with 'WITH cryptsetup-OpenSSL-exception' (the official SPDX exception). - update to 2.7.2: * Fix activation of OPAL-only encrypted LUKS device with tokens * Fix formatting of OPAL devices with 4096-byte sector size * Fix incorrect OPAL locking range alignment calculation if used over an unaligned device partition. * Do not check the passphrase quality for OPAL Admin PIN, as this passphrase already exists. * Update license for FAQ document to CC BY-SA 4.0. NOTE: Please note that with OPAL-only (--hw-opal-only) encryption, the configured OPAL administrator PIN (passphrase) allows unlocking all configured locking ranges without LUKS keyslot decryption (without knowledge of LUKS passphrase). Because of many observed problems with compatibility, cryptsetup currently DOES NOT use OPAL single-user mode, which would allow such decoupling of OPAL admin PIN access. - Update to 2.7.1: * Fix interrupted LUKS1 decryption resume. With the replacement of the cryptsetup-reencrypt tool by the cryptsetup reencrypt command, resuming the interrupted LUKS1 decryption operation could fail. LUKS2 was not affected. * Allow --link-vk-to-keyring with --test-passphrase option. This option allows uploading the volume key in a user-specified kernel keyring without activating the device. * Fix crash when --active-name was used in decryption initialization. * Updates and changes to man pages, including indentation, sorting options alphabetically, fixing mistakes in crypt_set_keyring_to_link, and fixing some typos. * Fix compilation with libargon2 when --disable-internal-argon2 was used. * Do not require installed argon2.h header and never compile internal libargon2 code if the crypto library directly supports Argon2. * Fixes to regression tests to support older Linux distributions. The following package changes have been done: - libaio1-0.3.113-150600.15.3.1 added - thin-provisioning-tools-0.7.5-3.3.1 added - libdevmapper-event1_03-2.03.24_1.02.198-150700.7.6.1 added - device-mapper-2.03.24_1.02.198-150700.7.6.1 added - libcryptsetup12-2.8.4-150700.6.4.4 updated - container:suse-sle15-15.7-d2aab68ae05470b62bbe38c4ca03ff5bf72b405197482ed96e34dd0087d7bde2-0 updated - libargon2-1-20190702-150600.1.4 removed From sle-container-updates at lists.suse.com Tue Jul 7 08:00:08 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Tue, 7 Jul 2026 10:00:08 +0200 (CEST) Subject: SUSE-CU-2026:6791-1: Security update of suse/kiosk/xorg Message-ID: <20260707080008.EA609FCC9@maintenance.suse.de> SUSE Container Update Advisory: suse/kiosk/xorg ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6791-1 Container Tags : suse/kiosk/xorg:21 , suse/kiosk/xorg:21.1 , suse/kiosk/xorg:21.1-82.9 , suse/kiosk/xorg:latest , suse/kiosk/xorg:notaskbar Container Release : 82.9 Severity : moderate Type : security References : 1082318 1133233 1181869 1241612 1243195 1259314 1261813 1270185 CVE-2026-41676 ----------------------------------------------------------------- The container suse/kiosk/xorg was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-RU-2025:3968-1 Released: Thu Nov 6 11:58:36 2025 Summary: Recommended update for libaio Type: recommended Severity: moderate References: 1082318,1133233,1181869,1243195 This update for libaio fixes the following issues: libaio was updated to 0.3.113 (jsc#PED-13433): * Fix struct io_iocb_vector padding for 32bit architectures * struct io_iocb_sockaddr padding for 32bit architectures * Verify structure padding is correct at build time * harness: add test for aio poll missed events * Various patches for architectures/etc ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2777-1 Released: Mon Jul 6 10:57:12 2026 Summary: Security update for cryptsetup, s390-tools Type: security Severity: moderate References: 1241612,1259314,1261813,1270185,CVE-2026-41676 This update for cryptsetup, s390-tools fixes the following issue Security fixes: - CVE-2026-41676: openssl: `Deriver:derive` and `PkeyCtxRef:derive` can overflow short buffers on OpenSSL 1.1.1 (bsc#1270185). Changes for s390-tools: - Upgrade s390-tools to version 2.41.0 (jsc#PED-15860) - Automatically set appropriate MTU for HSCI (bsc#1259314) - Changes of existing tools: * chreipl: Make --bootparms work for ECKD re-IPL * cpacfstats: Add 'unauthorized' state to CPU-MF counters * cpictl: Detect RHCOS using VARIANT_ID * hsci: Automatically set appropriate MTU for HSCI * libutil: Add util_readlink() and util_readlinkat() helpers * libutil: Add util_startswith() to util_str * libutil: Add utility parsing functions * lschp: Add support for structured output (--format) * lsreipl: Suppress 'clear' output if not supported * pvimg: Add '--format text' support to 'pvimg info' * pvimg: Add '--print-schema ' option to 'pvimg info' * pvimg: Add '--show-secrets' flag to 'pvimg info' * pvimg: Provide improved JSON output to 'pvimg info --format json' * pvinfo: Improve User experience on non-SE enabled systems * zipl/ngdump: Ensure ext4 file system is used on dump partition * zkey: Add support for integrity protected disks using HMAC keys - Bug Fixes: * cpumf/pai: Handle different size of perf_event_attr * lscss: Fix memory leak * zipl: Fix dump job on tape devices --- s390-tools 2.40 includes --- - Add new tools / libraries: * Add project-wide .clang-tidy configuration * libutil: Introduce util_time for time related functionality * libutil: Introduce zsh/bash autocompletion tooling based on util_opt * pvinfo: Tool to display Secure Execution system information * pvverify: Tool to verify host-key documents - Changes of existing tools: * cpumf: Implement zsh and bash autocompletion * dasdfmt: Implement zsh and bash autocompletion * dbginfo.sh: Add NetworkManager and netplan * dbginfo.sh: Add kvm_stat * dbginfo.sh: Adding stp time information * dbginfo.sh: Simplify procfs collection * hyptop: Add physical information row * hyptop: Calculate sample time delta for physical partition * hyptop: Replace long option names using _ with - for consistency For example: --cpu_types > --cpu-types (Options with _ are still supported for backward compatibility) * libekmfweb: Add function to validate a certificate against the identity key * netboot: Add longer kernel command lines support * udev/rules.d: Make virtio-blk devices non-rotational * udev/rules.d: Set default io scheduler to 'none' for virtio-blk * ziomon: Add support to sample device symlinks (/dev/disk/...) * ziorep_config: Add fcp-lun details to -M option output * ziorep_config: Add port_id and failed attributes to -A option output * netboot: Install on non-s390 architectures - Bug Fixes: * lib(ekmfweb|kmipclient): Use ln without -r * s390-tools: Fix various compilation issues with musl libc * zipl/boot: Fix unused loadparm when SCLP line-mode console is absent --- s390-tools 2.39 includes --- - Changes of existing tools: * chpstat: Add options to select IEC units for scaling (SI units are default) * chzdev: Introduce --no-module-load option * cpi: Disable CPI for SEL guests by default * dbginfo.sh: Enhance logging on timeout triggered * iucvterm: Install symlink for lsiucvallow.8 man page * lshwc: Add command line flag to specify individual counters * lspai: Add command line flag for delta values * lspai: Add command line flag for short counter names * lspai: Add command line flag to specify individual counters * lspai: Add command line flags for all cpus * lspai: Add command line flags for hexadecimal output * man: Use CR for constant width font * pvimg: Add '--image-key' option * zdev: Allow dynamic control of module load * zipl/boot: Fix EBCDIC code page 500 conversion and decrease size by 200 bytes * zipl: Add support of heterogeneous mirrors (remove technical limitations on mirrored targets, thus allowing mirrored devices consist of partitions at different offsets on disks of different types and geometry). * zkey: Add support for generating and importing exportable secure keys - Bug Fixes: * chpstat: Fix scaling of DPU utilization calculation * zdev/dracut: Prevent loading of unused kernel modules * zdev: Fix double device configuration on DPM systems * zdev: Fix double device configuration with rd.dasd * zipl_helper.device-mapper: Fix segfault in an error path --- s390-tools 2.38 includes --- * Add new tools - udev: New rule to set newly hotplugged CPUs online - zmemtopo: Display memory topology information - zpwr: Display power readings of a partition and CPC * Removed tools / features - check_hostkeydoc: Remove installation target - scsi_logging_level: Delete SCSI logging script (available in sg3_utils) - zdump: Drop build_arch for s390 DASD dumps - zdump: Drop non-extended multi-volume DASD dump support - zdump: Drop support of 32-bit dump architecture - zdump: Drop support of non-extended single volume DASD dumpers - zdump: Drop support of obsolete dumps and dumpers * Changes of existing tools / libraries - Various man-pages fixes - check_hostkeydoc: Add deprecation warning - check_hostkeydoc: Move to scripts directory - cpuplugd: Allow cpu hotplugging on systems without polarization - dbginfo.sh: Add Ubuntu snap tool - dbginfo.sh: Add missing config data and logs - dbginfo.sh: Reworking the container section - dbginfo.sh: Update for network commands - dbginfo.sh: Updating info for disks and lvm - libutil: Add machine type definition for machines 9175 and 9176 - lscpumf: Add support for IBM z17 counter sets - lshwc: Add command line flag for run time - lshwc: Add flags to display counter values in hex - lshwc: Add output '--format' option - lshwc: Add support for delta counter value display - lspai: Add output '--format' option - lsreipl: Add secure boot state to output - lswhc: Add short names to lshwc output - pv_tools: Add Bash and Zsh completions - pvapconfig: Add '--unbind' option - pvimg/boot: Print error messages from stage3a bootloader - pvimg: Add support for CCK update - pvsecret: Add support for CCK update - pvsecret: Allow retrieving secrets by index; warn for duplicated entries - pvsecret: Deny adding secrets with duplicated secret IDs - zdev: Add support for virtio devices - zipl: Enhance mirror support - zipl: Implement '--dry-run' option for all dump jobs - zipl_helper.device-mapper: Support mirrors over NVMe devices - zkey/dracut: Add a dracut config file for zkey - zkey/initramfs: Update initramfs hook to correct drivers and include zkey plugins - zkey: Add support for converting a clear-key LUKS2 volume to use a secure key * Bug Fixes - chpstat: Add missing CMG 5 data fields - chpstat: Fix DPU utilization calculation - libutil/util_file: Handle over-read in util_file_read_fd() - pvattest: Fix successful 'check' evaluation - pvsecret: Fix some edge cases for plaintext keys - zipl_helper.device-mapper: Fix imprecise is_device_mapper() predicate - zkey: Fix EP11 secure key reencipher function - zpcictl: Fix command line parsing for invalid options - Amended the .spec file * 'Installing' all shipped rules from etc/udev/rules.d to /usr/lib/udev/rules.d * BuildRequires: cryptsetup-devel > 2.8.2 - Updated the code for IBM z17 machine type 9176: * read_values.c * cputype * Renamed cputype.1 to cputype.8 and amended * Amended read_values.8 - 'Improved' the read_values.c: * Added functionalities for '-a' and '-L attributes' - Removed legacy suse_version and sle_version conditionals, standardizing on UsrMerge paths. - Reworked and combined all s390-tools patches (jsc#PED-14586) - Added new combined and reworked patches - Removed obsolete patches - Applied patches (bsc#1261813) * Replace sort_field option with sort * hyptop opts Fix long command line option abbreviations - Removed obsolete patch - Re-vendor-ed vendor.tar.zst Changes for cryptsetup: - Update to 2.8.4: (jsc#PED-15889) * Fix integritysetup resize (grow) of the device if integrity bitmap mode is used. Increasing the integrity device in bitmap mode did not work as integritysetup incorrectly used journal settings that were not applicable. * Fix device size status reports in cryptsetup and integritysetup. If the device uses a sector size larger than 512 bytes, the newly reported byte sizes (introduced in 2.8.0) in the status report were incorrectly displayed. * BITLK: Fix unlocking BitLocker device with recovery passphrase. If the recovery passphrase was present in the first keyslot, the device failed to unlock. This bug was introduced in 2.8.2 with Clear Key support. - Update to 2.8.3: * Stable bug-fix release with minor extensions. - Update to 2.8.2: * BITLK: Fix for BitLocker metadata validation on big-endian systems. - Update to 2.8.1: * Fix status and deactivation of TCRYPT (VeraCrypt compatible) devices that use chained ciphers. * Fix unlocking BITLK (BitLocker compatible) devices with multibyte UTF8 characters in the passphrase. * Do not allow activation of the LUKS2 device if the used keyslot is not encrypted (it uses a null cipher). - Such a configuration cannot be created by cryptsetup, but can be crafted outside of it. - Null cipher is sometimes used to create an empty container for later reencryption. - Only an empty passphrase can activate such a container (the same as in LUKS1). * Do not silently decrease PBKDF parallel cost (threads) if set by an option. - The maximum parallel cost is limited to 4 threads. * Fixes to configuration and installation scripts. - Meson and autoconf tools now properly support --prefix option for temporary directory installation. - Multiple fixes and cleanups to config.h for compatibility between Meson and autoconf. - Fix the luks2-external-tokens-path Meson option to work the same as in autoconf. - Fix Meson install for tool binaries, install fvault2Open man page and include test/fuzz/meson.build in release. * Major update to manual pages. - Try to explain the PBKDF hardcoded limits. - Add a better explanation for automatic integrity tag recalculation. - Mention crypt/verity/integritytab. - Remove or reformulate some misleading warnings present only with old and no longer supported kernels. - Clarify that some commands do not wipe data and unify OPAL reset wording. - Clarify the --label option. - There are also many other grammar and stylistic fixes to unify the man-page style. * Fixes for false-positive and annoying (optional) warnings added in recent compilers. - Update to 2.8.0: * Full release notes in: - https://cdn.kernel.org/pub/linux/utils/cryptsetup/v2.8/v2.8.0-ReleaseNotes * Introduce support for inline mode (use HW sectors with additional hardware metadata space). * Finalize use of keyslot context API. * Make all keyslot context types fully self-contained. * Add --key-description and --new-key-description cryptsetup options. * Support more precise keyslot selection in reencryption initialization. * Allow reencryption to resume using token and volume keys. * Cryptsetup repair command now tries to check LUKS keyslot areas for corruption. * Opal2 SED: PSID keyfile is now expected to be 32 alphanumeric characters. * Opal2: Avoid the Erase method and use Secure Erase for locking range. * Opal2: Fix some error description (in debug only). * Opal2: Do not allow deferred deactivation. * Allow --reduce-device-size and --device-size combination for reencryption (encrypt) action. * Fix the userspace storage backend to support kernel 'capi:' cipher specification format. * Disallow conversion from LUKS2 to LUKS1 if kernel 'capi:' cipher specification is used. * Explicitly disallow kernel 'capi:' cipher specification format for LUKS2 keyslot encryption. * Do not allow conversion of LUKS2 to LUKS1 if an unbound keyslot is present. * cryptsetup: Adjust the XTS key size for kernel 'capi:' cipher specification. * Remove keyslot warning about possible failure due to low memory. * Do not limit Argon2 KDF memory cost on systems with more than 4GB of available memory. * Properly report out of memory error for cryptographic backends implementing Argon2. * Avoid KDF2 memory cost overflow on 32-bit platforms. * Do not use page size as a fallback for device block size. * veritysetup: Check hash device size in advance. * Print a better error message for unsupported LUKS2 AEAD device resize. * Optimize LUKS2 metadata writes. * veritysetup: support --error-as-corruption option. * Report all sizes in status and dump command output in the correct units. * Add --integrity-key-size option to cryptsetup. * Support trusted; encrypted keyrings for plain devices. * Support plain format resize with a keyring key. * TCRYPT: Clear mapping of system-encrypted partitions. * TCRYPT: Print all information from the decrypted metadata header in the tcryptDump command. * Always lock the volume key structure in memory. * Do not run direct-io read check on block devices. * Fix a possible segfault in deferred deactivation. * Exclude cipher allocation time from the cryptsetup benchmark. * Add Mbed-TLS optional crypto backend. * Fix the wrong preprocessor use of #ifdef for config.h processed by Meson. * Reorganize license files. The license text files are now in docs/licenses. The COPYING file in the root directory is the default license. * Remove cc-by-sa-4.0.txt as already shipped now in docs/licenses and named as COPYING.CC-BY-SA-4.0. * Libcryptsetup API extensions. The libcryptsetup API is backward compatible with all existing symbols. Due to the self-contained memory allocation, these symbols have the new version: - crypt_keyslot_context_init_by_passphrase; - crypt_keyslot_context_init_by_keyfile; - crypt_keyslot_context_init_by_token; - crypt_keyslot_context_init_by_volume_key; - crypt_keyslot_context_init_by_signed_key; - crypt_keyslot_context_init_by_keyring; - crypt_keyslot_context_init_by_vk_in_keyring; * New symbols: - crypt_format_inline - crypt_get_old_volume_key_size - crypt_reencrypt_init_by_keyslot_context - crypt_safe_memcpy * New defines: - CRYPT_ACTIVATE_HIGH_PRIORITY - CRYPT_ACTIVATE_ERROR_AS_CORRUPTION - CRYPT_ACTIVATE_INLINE_MODE - CRYPT_REENCRYPT_CREATE_NEW_DIGEST * New requirement flag: - CRYPT_REQUIREMENT_INLINE_HW_TAGS - Add a dependency on device-mapper to libcryptsetup12 to install the required device-mapper udev rules. (bsc#1241612) - Update to 2.7.5: * Fix possible online reencryption data corruption (only in 2.7.x). In some situations (initializing a suspended device-mapper device), cryptsetup disabled direct-io device access. This caused unsafe online reencryption operations that could lead to data corruption. The code now adds strict checks (and aborts the operation) and changes direct-io detection code to prevent data corruption. * Fix a clang compilation error in SSH token plugin. As clang linker treats missing symbols as errors, the linker phase for the SSH token failed as the optional cryptsetup_token_buffer_free was not defined. * Fix crypto backend initialization in crypt_format_luks2_opal API call. - Update to 2.7.4: * Detect device busy failure for device-mapper table-referenced devices. * Fix shared activation for dm-verity devices. * Add --shared option for veritysetup open action. * Do not use exclusive flag for the allocated backing loop files. * Fixes for problems found by static analyzers and Valgrind. * Fixes to tests and CI scripts. - Use fdupes to link identical man pages. - Update to 2.7.3: * Do not allow formatting LUKS2 with Opal SED (hardware encryption) if the reported logical sector size for the block device and Opal encryption logical block differs. * Fixes to wiping LUKS2 headers after Opal locking area erase. * Mention the need for possible PSID revert before Opal format for some drives (man page). * Fix Bitlocker-compatible code to ignore newly seen metadata entries. * Fix interactive query retry if LUKS2 unbound keyslot is present. * Detect unsupported zoned devices for LUKS header devices. * Allow 'capi' cipher format for benchmark command and fix parsing of plain IV in 'capi' format. * Add support for HCTR2 encryption mode. * Source code now uses SPDX license identifiers instead of full license preambles. * Fix missing includes for cryptographic backend that could cause compilation errors for some systems. * Fix tests to work correctly in FIPS mode with recent OpenSSL 3.2. * Fix various (mostly false positive) issues detected by Coverity. - License: Replace legacy 'AND SUSE-GPL-2.0-with-openssl-exception' with 'WITH cryptsetup-OpenSSL-exception' (the official SPDX exception). - update to 2.7.2: * Fix activation of OPAL-only encrypted LUKS device with tokens * Fix formatting of OPAL devices with 4096-byte sector size * Fix incorrect OPAL locking range alignment calculation if used over an unaligned device partition. * Do not check the passphrase quality for OPAL Admin PIN, as this passphrase already exists. * Update license for FAQ document to CC BY-SA 4.0. NOTE: Please note that with OPAL-only (--hw-opal-only) encryption, the configured OPAL administrator PIN (passphrase) allows unlocking all configured locking ranges without LUKS keyslot decryption (without knowledge of LUKS passphrase). Because of many observed problems with compatibility, cryptsetup currently DOES NOT use OPAL single-user mode, which would allow such decoupling of OPAL admin PIN access. - Update to 2.7.1: * Fix interrupted LUKS1 decryption resume. With the replacement of the cryptsetup-reencrypt tool by the cryptsetup reencrypt command, resuming the interrupted LUKS1 decryption operation could fail. LUKS2 was not affected. * Allow --link-vk-to-keyring with --test-passphrase option. This option allows uploading the volume key in a user-specified kernel keyring without activating the device. * Fix crash when --active-name was used in decryption initialization. * Updates and changes to man pages, including indentation, sorting options alphabetically, fixing mistakes in crypt_set_keyring_to_link, and fixing some typos. * Fix compilation with libargon2 when --disable-internal-argon2 was used. * Do not require installed argon2.h header and never compile internal libargon2 code if the crypto library directly supports Argon2. * Fixes to regression tests to support older Linux distributions. The following package changes have been done: - libaio1-0.3.113-150600.15.3.1 added - thin-provisioning-tools-0.7.5-3.3.1 added - libdevmapper-event1_03-2.03.24_1.02.198-150700.7.6.1 added - device-mapper-2.03.24_1.02.198-150700.7.6.1 added - libcryptsetup12-2.8.4-150700.6.4.4 updated - container:suse-sle15-15.7-d2aab68ae05470b62bbe38c4ca03ff5bf72b405197482ed96e34dd0087d7bde2-0 updated - libargon2-1-20190702-150600.1.4 removed From sle-container-updates at lists.suse.com Tue Jul 7 08:10:41 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Tue, 7 Jul 2026 10:10:41 +0200 (CEST) Subject: SUSE-CU-2026:6812-1: Security update of suse/manager/4.3/proxy-httpd Message-ID: <20260707081041.EEA6BFCC9@maintenance.suse.de> SUSE Container Update Advisory: suse/manager/4.3/proxy-httpd ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6812-1 Container Tags : suse/manager/4.3/proxy-httpd:4.3.19 , suse/manager/4.3/proxy-httpd:4.3.19.9.82.1 , suse/manager/4.3/proxy-httpd:latest Container Release : 9.82.1 Severity : important Type : security References : 1269253 1269534 ----------------------------------------------------------------- The container suse/manager/4.3/proxy-httpd was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2775-1 Released: Mon Jul 6 09:54:07 2026 Summary: Maintenance update for Multi-Linux Manager 4.3 Release Notes Release Notes Type: security Severity: important References: 1269253,1269534 Maintenance update for Multi-Linux Manager 4.3 Release Notes Release Notes: This is a codestream only update The following package changes have been done: - release-notes-susemanager-proxy-4.3.19-150400.3.113.1 updated From sle-container-updates at lists.suse.com Tue Jul 7 08:16:56 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Tue, 7 Jul 2026 10:16:56 +0200 (CEST) Subject: SUSE-CU-2026:6817-1: Security update of suse/multi-linux-manager/5.1/x86_64/proxy-httpd Message-ID: <20260707081656.E0366FCC9@maintenance.suse.de> SUSE Container Update Advisory: suse/multi-linux-manager/5.1/x86_64/proxy-httpd ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6817-1 Container Tags : suse/multi-linux-manager/5.1/x86_64/proxy-httpd:5.1.4 , suse/multi-linux-manager/5.1/x86_64/proxy-httpd:5.1.4.8.24.2 , suse/multi-linux-manager/5.1/x86_64/proxy-httpd:latest Container Release : 8.24.2 Severity : important Type : security References : 1158038 1208800 1226578 1234567 1238890 1239718 1242916 1245107 1246504 1247707 1247948 1248699 1249243 1249435 1250782 1250782 1252744 1253032 1253193 1253740 1254900 1257068 1257583 1257882 1257894 1258041 1258079 1258144 1258193 1258382 1258816 1259087 1259230 1259261 1259311 1259327 1259474 1259479 1259482 1259521 1259590 1259591 1259700 1259706 1259739 1259787 1259802 1259842 1259960 1260031 1260614 1260806 1261206 1261280 1261305 1261307 1261327 1261606 1261631 1261723 1261753 1261841 1261902 1262090 1262144 1262222 1262285 1262460 1262464 1262465 1262471 1262492 1262595 1262708 1262720 1262760 1262761 1262803 1262950 1263501 1263814 1263841 1263935 1263950 1263951 1263952 1263953 1263954 1263955 1263956 1263957 1263986 1263987 1264149 1264150 1264163 1264174 1264234 1264256 1264966 1264971 1265134 1265223 1265281 1265282 1265283 1265284 1265285 1265286 1265287 1265288 1265289 1265290 1265319 1265358 1265620 1265935 1265938 1265975 1266012 1266039 1266340 1266340 1266341 1266341 1266342 1266342 1266343 1266345 1266349 1266349 1266350 1266351 1266352 1266353 1266355 1266356 1266357 1266357 1266556 1266600 1267426 1267503 1267874 1267955 1267956 1267962 1267963 1267965 1267969 1267970 1267971 1267972 1267976 1267977 1267978 1268012 1268013 1269253 1269534 CVE-2022-21698 CVE-2026-11822 CVE-2026-11824 CVE-2026-23918 CVE-2026-24072 CVE-2026-25707 CVE-2026-27456 CVE-2026-28374 CVE-2026-28376 CVE-2026-28379 CVE-2026-28380 CVE-2026-28383 CVE-2026-28780 CVE-2026-29167 CVE-2026-29168 CVE-2026-29169 CVE-2026-29170 CVE-2026-33006 CVE-2026-33007 CVE-2026-33376 CVE-2026-33377 CVE-2026-33378 CVE-2026-33380 CVE-2026-33381 CVE-2026-33523 CVE-2026-33857 CVE-2026-34032 CVE-2026-34059 CVE-2026-34180 CVE-2026-34180 CVE-2026-34181 CVE-2026-34183 CVE-2026-34355 CVE-2026-34356 CVE-2026-34743 CVE-2026-34986 CVE-2026-39821 CVE-2026-40179 CVE-2026-4046 CVE-2026-40475 CVE-2026-41602 CVE-2026-42151 CVE-2026-42154 CVE-2026-42198 CVE-2026-42535 CVE-2026-42536 CVE-2026-42766 CVE-2026-42766 CVE-2026-42767 CVE-2026-42768 CVE-2026-42769 CVE-2026-42770 CVE-2026-43951 CVE-2026-44119 CVE-2026-44185 CVE-2026-44186 CVE-2026-44631 CVE-2026-44933 CVE-2026-44941 CVE-2026-44942 CVE-2026-45445 CVE-2026-45446 CVE-2026-45447 CVE-2026-45447 CVE-2026-48863 CVE-2026-48913 CVE-2026-49975 CVE-2026-5450 CVE-2026-5928 CVE-2026-5958 CVE-2026-7383 CVE-2026-7383 CVE-2026-9076 CVE-2026-9076 CVE-2026-9149 CVE-2026-9150 ----------------------------------------------------------------- The container suse/multi-linux-manager/5.1/x86_64/proxy-httpd was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:1941-1 Released: Mon May 18 09:44:34 2026 Summary: Security update for sed Type: security Severity: moderate References: 1262144,CVE-2026-5958 This update for sed fixes the following issue: - CVE-2026-5958: a TOCTOU race can allow to read attacker-controlled content and write it to an unintended file (bsc#1262144). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2041-1 Released: Thu May 21 16:29:18 2026 Summary: Recommended update for openssl-1_1 Type: recommended Severity: moderate References: 1250782 This update for openssl-1_1 fixes the following issues: - Fix 30-test_fips_sli.t fails intermittently on s390x (bsc#1250782): * Fix AES_GCM IV test sometimes failing on s390x. ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2051-1 Released: Mon May 25 15:59:43 2026 Summary: Security update for xz Type: security Severity: important References: 1261280,CVE-2026-34743 This update for xz fixes the following issue - CVE-2026-34743: buffer overflow in lzma_index_append() (bsc#1261280). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2104-1 Released: Thu May 28 16:02:52 2026 Summary: Security update for apache2 Type: security Severity: important References: 1263935,1263950,1263951,1263952,1263953,1263954,1263955,1263956,1263957,1264150,1264163,CVE-2026-23918,CVE-2026-24072,CVE-2026-28780,CVE-2026-29168,CVE-2026-29169,CVE-2026-33006,CVE-2026-33007,CVE-2026-33523,CVE-2026-33857,CVE-2026-34032,CVE-2026-34059 This update for apache2 fixes the following issues - CVE-2026-23918: http2: double free and possible RCE on early reset (bsc#1263957). - CVE-2026-24072: mod_rewrite elevation of privileges via ap_expr (bsc#1263935). - CVE-2026-28780: heap buffer overflow in `mod_proxy_ajp` via `ajp_msg_check_header()` (bsc#1264163). - CVE-2026-29168: allocation of resources without limits in `mod_md` via OCSP response (bsc#1264150). - CVE-2026-29169: NULL pointer dereference in `mod_dav_lock` allows server crash via malicious requests (bsc#1263956). - CVE-2026-33006: `mod_auth_digest` timing attack allows bypass of Digest authentication (bsc#1263955). - CVE-2026-33007: NULL pointer dereference in `mod_authn_socache` allows unauthenticated remote user to crash a child processes (bsc#1263954). - CVE-2026-33523: HTTP response splitting forwarding malicious status line (bsc#1263953). - CVE-2026-33857: off-by-one OOB reads in AJP getter functions (bsc#1263952). - CVE-2026-34032: heap buffer overread in `mod_proxy_ajp` due to missing null-termination check (bsc#1263951). - CVE-2026-34059: heap buffer overread and memory disclosure via `ajp_parse_data()` (bsc#1263950). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2231-1 Released: Wed Jun 3 12:57:18 2026 Summary: Security update for glibc Type: security Severity: important References: 1261206,1262464,1262465,CVE-2026-4046,CVE-2026-5450,CVE-2026-5928 This update for glibc fixes the following issues - CVE-2026-4046: assertion failure when converting inputs may be used to remotely crash an application (bsc#1261206). - CVE-2026-5450: stdio-common: scanf %mc pattern will cause heap overflow when width > 1024 (bsc#1262465). - CVE-2026-5928: libio: ungetwc could be used to leak data on special conditions (bsc#1262464). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2259-1 Released: Wed Jun 3 17:31:35 2026 Summary: Security update for python3-pyOpenSSL Type: security Severity: moderate References: 1262803,CVE-2026-40475 This update for python3-pyOpenSSL fixes the following issue - CVE-2026-40475: improper input handling of null bytes can lead to silent data truncation and security-state inconsistency (bsc#1262803). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2276-1 Released: Fri Jun 5 10:56:23 2026 Summary: Recommended update for apparmor Type: recommended Severity: important References: 1265620 This update for apparmor fixes the following issues: - Allow execution of /usr/bin/zstd (bsc#1265620) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2392-1 Released: Mon Jun 15 10:05:31 2026 Summary: Security update for openssl-1_1 Type: security Severity: important References: 1250782,1266340,1266341,1266342,1266349,1266357,CVE-2026-34180,CVE-2026-42766,CVE-2026-45447,CVE-2026-7383,CVE-2026-9076 This update for openssl-1_1 fixes the following issues - CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion (bsc#1266340). - CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption (bsc#1266341). - CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing (bsc#1266342). - CVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryption (bsc#1266349). - CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2434-1 Released: Wed Jun 17 16:40:10 2026 Summary: Recommended update for coreutils Type: recommended Severity: important References: 1259327 This update for coreutils fixes the following issues: - proc: Use affinity mask even on systems with more than 1024 CPUs (bsc#1259327) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2485-1 Released: Mon Jun 22 14:06:22 2026 Summary: Security update for util-linux Type: security Severity: moderate References: 1261606,CVE-2026-27456 This update for util-linux fixes the following issue - CVE-2026-27456: TOCTOU in the mount program when setting up loop devices (bsc#1261606). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2528-1 Released: Tue Jun 23 11:06:07 2026 Summary: Security update for sqlite3 Type: security Severity: important References: 1268012,1268013,CVE-2026-11822,CVE-2026-11824 This update for sqlite3 fixes the following issues Update to 3.53.2: - CVE-2026-11822: memory corruption vulnerabilities in the FTS5 full-text search extension that allow attackers to cause process crashes, memory exhaustion, or arbitrary code execution (bsc#1268012). - CVE-2026-11824: heap-based buffer overflow vulnerability in the FTS5 full-text search extension that allows attackers to cause a crash or execute arbitrary code (bsc#1268013). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2531-1 Released: Tue Jun 23 12:25:09 2026 Summary: Security update for libsolv, libzypp, zypper Type: security Severity: important References: 1158038,1239718,1246504,1247948,1249435,1252744,1253193,1253740,1257068,1257882,1258193,1259311,1259706,1259802,1259842,1265223,1265935,1265938,1266039,1267426,1267874,CVE-2026-25707,CVE-2026-44933,CVE-2026-44941,CVE-2026-44942,CVE-2026-48863,CVE-2026-9149,CVE-2026-9150 This update for libsolv, libzypp, zypper fixes the following issues - CVE-2026-9149: Heap buffer overflow in libsolv repo_add_solv via negative maxsize from crafted .solv file (bsc#1265935). - CVE-2026-9150: Stack-based buffer overflow in libsolv's Debian metadata parser when handling SHA384/SHA512 checksums (bsc#1265938). - CVE-2026-25707: Handcrafted repo metadata may cause arbitrary local files to be overwritten (bsc#1259802). - CVE-2026-44933: scan of the Mandatory signature verification plugin support (bsc#1265223). - CVE-2026-44941: path traversal via 'keyhint' (bsc#1267426). - CVE-2026-44942: .repo files can have an optional path which can lead to path traversal attacks (bsc#1267874). - CVE-2026-48863: Fix buffer overflow when parsing EdDSA signature (bsc#1266039). Changes in libzypp: Updated to version 17.38.13 (35): - A .repo files 'path=' entry must not refer to a location outside the repo (bsc#1267874, CVE-2026-44942) A 'path=' entry may solely denote a sub-directory of the baseurl where the metadata are located. A relative path trying to access data outside the baseurl is reported and sanitized. - Fix potential crash on malformed or malicious repository metadata (fixes #740) - Repo metadata: discard entries referring to a location outside the repo (bsc#1259802, CVE-2026-25707) Mirroring those data locally would refer to a location outside the repo's local cache directory. Those data entries are reported and discarded. - zypp.conf: Allow [env] section to add environment variables. This feature is designed to enable environment-specific settings or debugging options over an extended period. See zypp.conf(5). - Prevent configured scripts from escaping the sigcheck directory (bsc#1265223, CVE-2026-44933) - StringV: guard hasPrefix/hasPrefixCI against reading past the view end (fixes #735) - Mandatory signature verification plugin support (PED#11922) - Fix purge-kernel -rc kernel handling (bsc#1239718) - Explicitly_set_pool_DISTTYPE_RPM (fixes #726) - Check for trusted key updates when updating the general keyring (bsc#1259706) - Support multiple MirroredOrigin authorities (bsc#1253193) - Workaround doxygen bug: doxygen/doxygen#12057 - libzypp.spec: Add missing graphviz-gd BuildRequires (boo#1259842) - Fix preloader not caching packages from arch specific subrepos (bsc#1253740) - Deprioritize invalid mirrors (fixes openSUSE/zypper#636) - Fix Product::referencePackage lookup (bsc#1259311) Use a provided autoproduct() as hint to the package name of the release package. It might be that not just multiple versions of the same release package provide the same product version, but also different release packages. - specfile: on fedora use %{_prefix}/share as zyppconfdir if %{_distconfdir} is undefined (fixes #693) This will set '-DZYPPCONFDIR=%{zyppconfdir}' for cmake. - Fall back to a writable location when precaching packages without root (bsc#1247948) - Prepare a legacy /etc/zypp/zypp.conf to be installed on old distros. See the ZYPP.CONF(5) man page for details. - Fix runtime check for broken rpm --runposttrans (bsc#1257068) - Avoid libcurl-mini4 when building as it does not support ftp protocol. - Translation: updated .pot file. - zypp.conf: follow the UAPI configuration file specification (PED-14658) In short terms it means we will no longer ship an /etc/zypp/zypp.conf, but store our own defaults in /usr/etc/zypp/zypp.conf. The systems administrator may choose to keep a full copy in /etc/zypp/zypp.conf ignoring our config file settings completely, or - the preferred way - to overwrite specific settings via /etc/zypp/zypp.conf.d/*.conf overlay files. See the ZYPP.CONF(5) man page for details. - cmake: correctly detect rpm6 (fixes #689) - Use 'zypp.tmp' as temp directory component to ease setting up SELinux policies (bsc#1249435) - zyppng: Update Provider to current MediaCurl2 download approach, drop Metalink ( fixes #682 ) Changes in libsolv: Updated to version 0.7.39: - fix solv_chksum_free segfault when called with a NULL pointer - made repo_add_solv more robust against corrupt files [bsc#1265935] [CVE-2026-9149] - fix potential buffer overflow when verifying EdDSA signatures [bsc#1266039] [CVE-2026-48863] - added limit checks in multiple places to catch overflows - reduce the size of the language id cache - fixed Debian canon selection - fixed dbpath detection in repo_rpmdb_librpm - reduced stack usage in repo page compression (needed for musl) - fix parsing of sha512 checksums in debian repositories [bsc#1265938] [CVE-2026-9150] - improve speed of dirpool_add_dir makeing parsing of filelists.xml twice as fast - fix parsing of recommends in the old Mandriva synthesis format - respect the 'default' attribute in environment optionlist in the comps parser - support suse namespace deps in boolean dependencies [bsc#1258193] - support for the Elbrus2000 (e2k) architecture - support language() suse namespace rewriting Changes in zypper: Update to version 1.14.98: - Transactional systems: Delegate rw-commands to transactional-wrapper if available (jsc#PED-13680, jsc#PED-15607) On a transactional system where the root filesystem is mounted read-only, zypper commands that modify the system cannot be executed directly. If the system provides a transactional-wrapper utility, zypper will automatically attempt to invoke it. The wrapper transparently executes the zypper command within a new, writable snapshot and manages the lifecycle of that snapshot based on the command's exit status. On transactional systems lacking a transactional-wrapper, users must manually invoke specialized tools -such as transactional-update- to install, update, or remove software. - Add --filter-version-change to zypper lu. Adds filtering by version change significance to reduce noise in update listings. Supports levels: rebuild (hides rebuild-only changes) and package (hides all release-only changes). - Autorefresh ris-services the way as plugin-services (bsc#1246504) It's actually wrong to treat service refreshes different depending on the service type. For the purpose of a service it makes no difference how the data about the repos to use are acquired. - Report download progress for command line rpms (fixes #613) - Hint to '-vv ref' to see the mirrors used to download the metadata (bsc#1257882) - Service: Allow 'zypper ls SERVICE ...' to test whether a service with this alias is defined (bsc#1252744) The command prints an abstract of all services passed on the command line. It returns 3-ZYPPER_EXIT_ERR_INVALID_ARGS if some argument does not name an existing service. - Keep repo data when updating the service settings (bsc#1252744) - info: Enhance pattern content table (bsc#1158038) Alternatives (multiple packages providing the same requirement) are now listed as a single entry in the content table. The entry shows either the installed package which satisfies the requirement or the requirement itself as type 'Provides'. Listing all potential alternatives was miss leading, especially if the alternatives were mutual exclusive. It looked like an installed pattern had not-installed requirements and it was not possible to install all requirements at the same time. ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2648-1 Released: Fri Jun 26 13:05:57 2026 Summary: Security update for openssl-3 Type: security Severity: important References: 1266340,1266341,1266342,1266343,1266345,1266349,1266350,1266351,1266352,1266353,1266355,1266356,1266357,CVE-2026-34180,CVE-2026-34181,CVE-2026-34183,CVE-2026-42766,CVE-2026-42767,CVE-2026-42768,CVE-2026-42769,CVE-2026-42770,CVE-2026-45445,CVE-2026-45446,CVE-2026-45447,CVE-2026-7383,CVE-2026-9076 This update for openssl-3 fixes the following issues - CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion (bsc#1266340). - CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption (bsc#1266341). - CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing (bsc#1266342). - CVE-2026-34181: PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys (bsc#1266343). - CVE-2026-34183: Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler (bsc#1266345). - CVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryption (bsc#1266349). - CVE-2026-42767: NULL Pointer Dereference in CRMF EncryptedValue Decryption (bsc#1266350). - CVE-2026-42768: Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt() (bsc#1266351). - CVE-2026-42769: Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate (bsc#1266352). - CVE-2026-42770: FFC-DH Peer Validation Uses Attacker-Supplied q (bsc#1266353). - CVE-2026-45445: AES-OCB IV Ignored on EVP_Cipher() Path (bsc#1266355). - CVE-2026-45446: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes (bsc#1266356). - CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2661-1 Released: Fri Jun 26 15:15:48 2026 Summary: Recommended update for curl Type: recommended Severity: important References: 1264971 This update for curl fixes the following issues: - Call http_size() first to prioritize Transfer-Encoding: chunked over a zero Content-Length empty body check (bsc#1264971) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2759-1 Released: Mon Jul 6 04:04:11 2026 Summary: Security update for apache2 Type: security Severity: important References: 1267503,1267955,1267956,1267962,1267963,1267965,1267969,1267970,1267971,1267972,1267976,1267977,1267978,CVE-2026-29167,CVE-2026-29170,CVE-2026-34355,CVE-2026-34356,CVE-2026-42535,CVE-2026-42536,CVE-2026-43951,CVE-2026-44119,CVE-2026-44185,CVE-2026-44186,CVE-2026-44631,CVE-2026-48913,CVE-2026-49975 This update for apache2 fixes the following issues - CVE-2026-29167: mod_ldap per-dir use-after-free (bsc#1267976). - CVE-2026-29170: mod_proxy_ftp XSS (bsc#1267977). - CVE-2026-34355: mod_proxy_html buffer overflow (bsc#1267978). - CVE-2026-34356: malicious backend servers can lead to a heap-based buffer overflow (bsc#1267955). - CVE-2026-42535: malicious path manipulation can lead to child process crashes (bsc#1267956). - CVE-2026-42536: processing untrusted content can lead to a heap-based buffer overflow (bsc#1267962). - CVE-2026-43951: out-of-bound read in `merge_response_headers` can cause crash (bsc#1267963). - CVE-2026-44119: improper privilege management can lead to an unauthorized read (bsc#1267965). - CVE-2026-44185: Stack Buffer Over-Read in mod_ssl OCSP `send_request` (bsc#1267969). - CVE-2026-44186: responses from an attacker-controlled FTP backend can lead to resource exhaustion and a denial of service (bsc#1267970). - CVE-2026-44631: crafted regular expression can lead to a buffer underwrite (bsc#1267971). - CVE-2026-48913: file handle exhaustion during request processing in mod_http2 can lead to a use-after-free (bsc#1267972). - CVE-2026-49975: Fix cookie header accounting against LimitRequestFields (bsc#1267503). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2774-1 Released: Mon Jul 6 09:52:16 2026 Summary: Maintenance update for Multi-Linux Manager 5.1: Server, Proxy and Retail Branch Server Type: security Severity: important References: 1208800,1226578,1234567,1238890,1242916,1245107,1247707,1248699,1249243,1253032,1254900,1257583,1257894,1258041,1258079,1258144,1258382,1258816,1259087,1259230,1259261,1259474,1259479,1259482,1259521,1259590,1259591,1259700,1259739,1259787,1259960,1260031,1260614,1260806,1261305,1261307,1261327,1261631,1261723,1261753,1261841,1261902,1262090,1262222,1262285,1262460,1262471,1262492,1262595,1262708,1262720,1262760,1262761,1262950,1263501,1263814,1263841,1263986,1263987,1264149,1264174,1264234,1264256,1264966,1265134,1265281,1265282,1265283,1265284,1265285,1265286,1265287,1265288,1265289,1265290,1265319,1265358,1265975,1266012,1266556,1266600,1269253,1269534,CVE-2022-21698,CVE-2026-28374,CVE-2026-28376,CVE-2026-28379,CVE-2026-28380,CVE-2026-28383,CVE-2026-33376,CVE-2026-33377,CVE-2026-33378,CVE-2026-33380,CVE-2026-33381,CVE-2026-34986,CVE-2026-39821,CVE-2026-40179,CVE-2026-41602,CVE-2026-42151,CVE-2026-42154,CVE-2026-42198 Maintenance update for Multi-Linux Manager 5.1: Server, Proxy and Retail Branch Server This is a codestream only update The following package changes have been done: - glibc-2.38-150600.14.49.1 updated - libuuid1-2.40.4-150700.4.13.1 updated - libsqlite3-0-3.53.2-150000.3.42.1 updated - libsmartcols1-2.40.4-150700.4.13.1 updated - liblzma5-5.4.1-150600.3.6.1 updated - libopenssl3-3.2.3-150700.5.36.1 updated - libblkid1-2.40.4-150700.4.13.1 updated - sed-4.9-150600.3.3.1 updated - coreutils-8.32-150400.9.12.1 updated - libopenssl-3-fips-provider-3.2.3-150700.5.36.1 updated - libmount1-2.40.4-150700.4.13.1 updated - libfdisk1-2.40.4-150700.4.13.1 updated - libcurl4-8.14.1-150700.7.17.1 updated - libsolv-tools-base-0.7.39-150700.11.10.1 updated - libzypp-17.38.13-150700.6.13.1 updated - zypper-1.14.98-150700.13.6.1 updated - util-linux-2.40.4-150700.4.13.1 updated - curl-8.14.1-150700.7.17.1 updated - libapparmor1-3.1.7-150600.5.15.1 updated - libopenssl1_1-1.1.1w-150700.11.22.1 updated - release-notes-multi-linux-manager-proxy-5.1.4-150700.4.15.1 updated - xz-5.4.1-150600.3.6.1 updated - apache2-prefork-2.4.66-150700.4.23.1 updated - python3-uyuni-common-libs-5.1.6-150700.3.6.1 updated - apache2-2.4.66-150700.4.23.1 updated - python3-pyOpenSSL-21.0.0-150400.13.1 updated - spacewalk-backend-5.1.17-150700.3.12.7 updated - container:bci-bci-base-15.7-d2aab68ae05470b62bbe38c4ca03ff5bf72b405197482ed96e34dd0087d7bde2-0 updated From sle-container-updates at lists.suse.com Tue Jul 7 08:17:01 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Tue, 7 Jul 2026 10:17:01 +0200 (CEST) Subject: SUSE-CU-2026:6818-1: Security update of suse/multi-linux-manager/5.1/x86_64/proxy-salt-broker Message-ID: <20260707081701.987C8FCC9@maintenance.suse.de> SUSE Container Update Advisory: suse/multi-linux-manager/5.1/x86_64/proxy-salt-broker ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6818-1 Container Tags : suse/multi-linux-manager/5.1/x86_64/proxy-salt-broker:5.1.4 , suse/multi-linux-manager/5.1/x86_64/proxy-salt-broker:5.1.4.9.22.2 , suse/multi-linux-manager/5.1/x86_64/proxy-salt-broker:latest Container Release : 9.22.2 Severity : important Type : security References : 1158038 1208800 1226578 1233668 1234567 1238890 1239718 1242916 1243268 1245107 1246504 1247707 1247948 1248699 1249243 1249435 1250782 1250782 1252744 1253032 1253193 1253740 1254900 1254903 1254904 1254905 1255752 1257068 1257583 1257882 1257894 1258041 1258079 1258144 1258193 1258364 1258382 1258816 1259087 1259230 1259261 1259311 1259327 1259474 1259479 1259482 1259521 1259553 1259590 1259591 1259630 1259700 1259706 1259739 1259787 1259802 1259842 1259960 1260031 1260614 1260806 1261206 1261280 1261305 1261307 1261327 1261606 1261631 1261723 1261753 1261841 1261902 1261970 1262090 1262144 1262222 1262285 1262460 1262464 1262465 1262471 1262492 1262595 1262708 1262720 1262760 1262761 1262803 1262803 1262950 1263501 1263814 1263841 1263935 1263950 1263951 1263952 1263953 1263954 1263955 1263956 1263957 1263986 1263987 1264149 1264150 1264163 1264174 1264234 1264256 1264966 1264971 1265134 1265223 1265267 1265281 1265282 1265283 1265284 1265285 1265286 1265287 1265288 1265289 1265290 1265319 1265358 1265620 1265935 1265938 1265975 1266012 1266039 1266340 1266340 1266341 1266341 1266342 1266342 1266343 1266345 1266349 1266349 1266350 1266351 1266352 1266353 1266355 1266356 1266357 1266357 1266556 1266600 1267426 1267503 1267874 1267955 1267956 1267962 1267963 1267965 1267969 1267970 1267971 1267972 1267976 1267977 1267978 1268012 1268013 1268395 1268396 1268397 1269253 1269534 CVE-2022-21698 CVE-2024-52804 CVE-2025-47287 CVE-2025-67724 CVE-2025-67725 CVE-2025-67726 CVE-2026-11822 CVE-2026-11824 CVE-2026-23918 CVE-2026-24072 CVE-2026-25707 CVE-2026-27456 CVE-2026-28374 CVE-2026-28376 CVE-2026-28379 CVE-2026-28380 CVE-2026-28383 CVE-2026-28780 CVE-2026-29167 CVE-2026-29168 CVE-2026-29169 CVE-2026-29170 CVE-2026-31958 CVE-2026-33006 CVE-2026-33007 CVE-2026-33376 CVE-2026-33377 CVE-2026-33378 CVE-2026-33380 CVE-2026-33381 CVE-2026-33523 CVE-2026-33857 CVE-2026-34032 CVE-2026-34059 CVE-2026-34180 CVE-2026-34180 CVE-2026-34181 CVE-2026-34183 CVE-2026-34355 CVE-2026-34356 CVE-2026-3446 CVE-2026-34743 CVE-2026-34986 CVE-2026-39821 CVE-2026-40179 CVE-2026-4046 CVE-2026-40475 CVE-2026-40475 CVE-2026-41602 CVE-2026-42151 CVE-2026-42154 CVE-2026-42198 CVE-2026-42535 CVE-2026-42536 CVE-2026-42766 CVE-2026-42766 CVE-2026-42767 CVE-2026-42768 CVE-2026-42769 CVE-2026-42770 CVE-2026-43951 CVE-2026-44119 CVE-2026-44185 CVE-2026-44186 CVE-2026-44431 CVE-2026-44631 CVE-2026-44933 CVE-2026-44941 CVE-2026-44942 CVE-2026-45445 CVE-2026-45446 CVE-2026-45447 CVE-2026-45447 CVE-2026-48863 CVE-2026-48913 CVE-2026-49853 CVE-2026-49854 CVE-2026-49855 CVE-2026-49975 CVE-2026-5450 CVE-2026-5928 CVE-2026-5958 CVE-2026-7383 CVE-2026-7383 CVE-2026-9076 CVE-2026-9076 CVE-2026-9149 CVE-2026-9150 ----------------------------------------------------------------- The container suse/multi-linux-manager/5.1/x86_64/proxy-salt-broker was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2024:4137-1 Released: Mon Dec 2 13:28:37 2024 Summary: Security update for python-tornado6 Type: security Severity: moderate References: 1233668,CVE-2024-52804 This update for python-tornado6 fixes the following issues: - CVE-2024-52804: Fixed a denial of service caused by quadratic performance of cookie parsing (bsc#1233668) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2025:1649-1 Released: Thu May 22 09:44:52 2025 Summary: Security update for python-tornado6 Type: security Severity: important References: 1243268,CVE-2025-47287 This update for python-tornado6 fixes the following issues: - CVE-2025-47287: excessive logging when parsing malformed `multipart/form-data` can lead to a denial-of-service (bsc#1243268). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:10-1 Released: Mon Jan 5 11:26:28 2026 Summary: Security update for python-tornado6 Type: security Severity: important References: 1254903,1254904,1254905,CVE-2025-67724,CVE-2025-67725,CVE-2025-67726 This update for python-tornado6 fixes the following issues: - CVE-2025-67724: unescaped `reason` argument used in HTTP headers and in HTML default error pages can be used by attackers to launch header injection or XSS attacks (bsc#1254903). - CVE-2025-67725: quadratic complexity of string concatenation operations used by the `HTTPHeaders.add` method can lead to DoS when processing a maliciously crafted HTTP request (bsc#1254905). - CVE-2025-67726: quadratic complexity algorithm used in the `_parseparam` function of `httputil.py` can lead to DoS when processing maliciously crafted parameters in a `Content-Disposition` header (bsc#1254904). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:1064-1 Released: Thu Mar 26 11:37:21 2026 Summary: Security update for python-tornado6 Type: security Severity: important References: 1259553,1259630,CVE-2026-31958 This update for python-tornado6 fixes the following issues: - CVE-2026-31958: parsing large multipart bodies with many parts can cause a denial of service (bsc#1259553). - incomplete validation of cookie attributes allows for injection of user-controlled values in other cookie attributes (bsc#1259630). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:1941-1 Released: Mon May 18 09:44:34 2026 Summary: Security update for sed Type: security Severity: moderate References: 1262144,CVE-2026-5958 This update for sed fixes the following issue: - CVE-2026-5958: a TOCTOU race can allow to read attacker-controlled content and write it to an unintended file (bsc#1262144). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2041-1 Released: Thu May 21 16:29:18 2026 Summary: Recommended update for openssl-1_1 Type: recommended Severity: moderate References: 1250782 This update for openssl-1_1 fixes the following issues: - Fix 30-test_fips_sli.t fails intermittently on s390x (bsc#1250782): * Fix AES_GCM IV test sometimes failing on s390x. ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2051-1 Released: Mon May 25 15:59:43 2026 Summary: Security update for xz Type: security Severity: important References: 1261280,CVE-2026-34743 This update for xz fixes the following issue - CVE-2026-34743: buffer overflow in lzma_index_append() (bsc#1261280). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2104-1 Released: Thu May 28 16:02:52 2026 Summary: Security update for apache2 Type: security Severity: important References: 1263935,1263950,1263951,1263952,1263953,1263954,1263955,1263956,1263957,1264150,1264163,CVE-2026-23918,CVE-2026-24072,CVE-2026-28780,CVE-2026-29168,CVE-2026-29169,CVE-2026-33006,CVE-2026-33007,CVE-2026-33523,CVE-2026-33857,CVE-2026-34032,CVE-2026-34059 This update for apache2 fixes the following issues - CVE-2026-23918: http2: double free and possible RCE on early reset (bsc#1263957). - CVE-2026-24072: mod_rewrite elevation of privileges via ap_expr (bsc#1263935). - CVE-2026-28780: heap buffer overflow in `mod_proxy_ajp` via `ajp_msg_check_header()` (bsc#1264163). - CVE-2026-29168: allocation of resources without limits in `mod_md` via OCSP response (bsc#1264150). - CVE-2026-29169: NULL pointer dereference in `mod_dav_lock` allows server crash via malicious requests (bsc#1263956). - CVE-2026-33006: `mod_auth_digest` timing attack allows bypass of Digest authentication (bsc#1263955). - CVE-2026-33007: NULL pointer dereference in `mod_authn_socache` allows unauthenticated remote user to crash a child processes (bsc#1263954). - CVE-2026-33523: HTTP response splitting forwarding malicious status line (bsc#1263953). - CVE-2026-33857: off-by-one OOB reads in AJP getter functions (bsc#1263952). - CVE-2026-34032: heap buffer overread in `mod_proxy_ajp` due to missing null-termination check (bsc#1263951). - CVE-2026-34059: heap buffer overread and memory disclosure via `ajp_parse_data()` (bsc#1263950). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2231-1 Released: Wed Jun 3 12:57:18 2026 Summary: Security update for glibc Type: security Severity: important References: 1261206,1262464,1262465,CVE-2026-4046,CVE-2026-5450,CVE-2026-5928 This update for glibc fixes the following issues - CVE-2026-4046: assertion failure when converting inputs may be used to remotely crash an application (bsc#1261206). - CVE-2026-5450: stdio-common: scanf %mc pattern will cause heap overflow when width > 1024 (bsc#1262465). - CVE-2026-5928: libio: ungetwc could be used to leak data on special conditions (bsc#1262464). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2259-1 Released: Wed Jun 3 17:31:35 2026 Summary: Security update for python3-pyOpenSSL Type: security Severity: moderate References: 1262803,CVE-2026-40475 This update for python3-pyOpenSSL fixes the following issue - CVE-2026-40475: improper input handling of null bytes can lead to silent data truncation and security-state inconsistency (bsc#1262803). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2261-1 Released: Wed Jun 3 17:32:08 2026 Summary: Security update for python-pyOpenSSL Type: security Severity: moderate References: 1262803,CVE-2026-40475 This update for python-pyOpenSSL fixes the following issue ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2276-1 Released: Fri Jun 5 10:56:23 2026 Summary: Recommended update for apparmor Type: recommended Severity: important References: 1265620 This update for apparmor fixes the following issues: - Allow execution of /usr/bin/zstd (bsc#1265620) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2298-1 Released: Mon Jun 8 12:17:11 2026 Summary: Security update for python311 Type: security Severity: moderate References: 1258364,1261970,CVE-2026-3446 This update for python311 fixes the following issues: - CVE-2026-3446: Base64 decoding stops at first padded quad by default (bsc#1261970). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2392-1 Released: Mon Jun 15 10:05:31 2026 Summary: Security update for openssl-1_1 Type: security Severity: important References: 1250782,1266340,1266341,1266342,1266349,1266357,CVE-2026-34180,CVE-2026-42766,CVE-2026-45447,CVE-2026-7383,CVE-2026-9076 This update for openssl-1_1 fixes the following issues - CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion (bsc#1266340). - CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption (bsc#1266341). - CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing (bsc#1266342). - CVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryption (bsc#1266349). - CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2425-1 Released: Wed Jun 17 08:48:32 2026 Summary: Recommended update for iproute2 Type: recommended Severity: important References: 1255752 This update for iproute2 fixes the following issues: - add DPLL support (bsc#1255752 jsc#PED-14083): * dpll: add dpll command * dpll: fix missing notifications in monitor mode * dpll: send object per event in JSON monitor mode * dpll: add client side filtering for device and pin show * dpll: add direction and state filtering for pin show * dpll: add mode setting support * dpll: add pin filtering by parent device * dpll: add support for fractional frequency offset * dpll: fix pin id get type filter parsing * lib: add string to boolean helper function * lib: move mnlg to lib for shared use * sync UAPI header copies with SL-16.0 ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2434-1 Released: Wed Jun 17 16:40:10 2026 Summary: Recommended update for coreutils Type: recommended Severity: important References: 1259327 This update for coreutils fixes the following issues: - proc: Use affinity mask even on systems with more than 1024 CPUs (bsc#1259327) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2485-1 Released: Mon Jun 22 14:06:22 2026 Summary: Security update for util-linux Type: security Severity: moderate References: 1261606,CVE-2026-27456 This update for util-linux fixes the following issue - CVE-2026-27456: TOCTOU in the mount program when setting up loop devices (bsc#1261606). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2486-1 Released: Mon Jun 22 14:07:07 2026 Summary: Security update for python-urllib3 Type: security Severity: important References: 1265267,CVE-2026-44431 This update for python-urllib3 fixes the following issue - CVE-2026-44431: sensitive information disclosure due to sensitive headers being forwarded across origins in proxied low-level redirects (bsc#1265267). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2528-1 Released: Tue Jun 23 11:06:07 2026 Summary: Security update for sqlite3 Type: security Severity: important References: 1268012,1268013,CVE-2026-11822,CVE-2026-11824 This update for sqlite3 fixes the following issues Update to 3.53.2: - CVE-2026-11822: memory corruption vulnerabilities in the FTS5 full-text search extension that allow attackers to cause process crashes, memory exhaustion, or arbitrary code execution (bsc#1268012). - CVE-2026-11824: heap-based buffer overflow vulnerability in the FTS5 full-text search extension that allows attackers to cause a crash or execute arbitrary code (bsc#1268013). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2531-1 Released: Tue Jun 23 12:25:09 2026 Summary: Security update for libsolv, libzypp, zypper Type: security Severity: important References: 1158038,1239718,1246504,1247948,1249435,1252744,1253193,1253740,1257068,1257882,1258193,1259311,1259706,1259802,1259842,1265223,1265935,1265938,1266039,1267426,1267874,CVE-2026-25707,CVE-2026-44933,CVE-2026-44941,CVE-2026-44942,CVE-2026-48863,CVE-2026-9149,CVE-2026-9150 This update for libsolv, libzypp, zypper fixes the following issues - CVE-2026-9149: Heap buffer overflow in libsolv repo_add_solv via negative maxsize from crafted .solv file (bsc#1265935). - CVE-2026-9150: Stack-based buffer overflow in libsolv's Debian metadata parser when handling SHA384/SHA512 checksums (bsc#1265938). - CVE-2026-25707: Handcrafted repo metadata may cause arbitrary local files to be overwritten (bsc#1259802). - CVE-2026-44933: scan of the Mandatory signature verification plugin support (bsc#1265223). - CVE-2026-44941: path traversal via 'keyhint' (bsc#1267426). - CVE-2026-44942: .repo files can have an optional path which can lead to path traversal attacks (bsc#1267874). - CVE-2026-48863: Fix buffer overflow when parsing EdDSA signature (bsc#1266039). Changes in libzypp: Updated to version 17.38.13 (35): - A .repo files 'path=' entry must not refer to a location outside the repo (bsc#1267874, CVE-2026-44942) A 'path=' entry may solely denote a sub-directory of the baseurl where the metadata are located. A relative path trying to access data outside the baseurl is reported and sanitized. - Fix potential crash on malformed or malicious repository metadata (fixes #740) - Repo metadata: discard entries referring to a location outside the repo (bsc#1259802, CVE-2026-25707) Mirroring those data locally would refer to a location outside the repo's local cache directory. Those data entries are reported and discarded. - zypp.conf: Allow [env] section to add environment variables. This feature is designed to enable environment-specific settings or debugging options over an extended period. See zypp.conf(5). - Prevent configured scripts from escaping the sigcheck directory (bsc#1265223, CVE-2026-44933) - StringV: guard hasPrefix/hasPrefixCI against reading past the view end (fixes #735) - Mandatory signature verification plugin support (PED#11922) - Fix purge-kernel -rc kernel handling (bsc#1239718) - Explicitly_set_pool_DISTTYPE_RPM (fixes #726) - Check for trusted key updates when updating the general keyring (bsc#1259706) - Support multiple MirroredOrigin authorities (bsc#1253193) - Workaround doxygen bug: doxygen/doxygen#12057 - libzypp.spec: Add missing graphviz-gd BuildRequires (boo#1259842) - Fix preloader not caching packages from arch specific subrepos (bsc#1253740) - Deprioritize invalid mirrors (fixes openSUSE/zypper#636) - Fix Product::referencePackage lookup (bsc#1259311) Use a provided autoproduct() as hint to the package name of the release package. It might be that not just multiple versions of the same release package provide the same product version, but also different release packages. - specfile: on fedora use %{_prefix}/share as zyppconfdir if %{_distconfdir} is undefined (fixes #693) This will set '-DZYPPCONFDIR=%{zyppconfdir}' for cmake. - Fall back to a writable location when precaching packages without root (bsc#1247948) - Prepare a legacy /etc/zypp/zypp.conf to be installed on old distros. See the ZYPP.CONF(5) man page for details. - Fix runtime check for broken rpm --runposttrans (bsc#1257068) - Avoid libcurl-mini4 when building as it does not support ftp protocol. - Translation: updated .pot file. - zypp.conf: follow the UAPI configuration file specification (PED-14658) In short terms it means we will no longer ship an /etc/zypp/zypp.conf, but store our own defaults in /usr/etc/zypp/zypp.conf. The systems administrator may choose to keep a full copy in /etc/zypp/zypp.conf ignoring our config file settings completely, or - the preferred way - to overwrite specific settings via /etc/zypp/zypp.conf.d/*.conf overlay files. See the ZYPP.CONF(5) man page for details. - cmake: correctly detect rpm6 (fixes #689) - Use 'zypp.tmp' as temp directory component to ease setting up SELinux policies (bsc#1249435) - zyppng: Update Provider to current MediaCurl2 download approach, drop Metalink ( fixes #682 ) Changes in libsolv: Updated to version 0.7.39: - fix solv_chksum_free segfault when called with a NULL pointer - made repo_add_solv more robust against corrupt files [bsc#1265935] [CVE-2026-9149] - fix potential buffer overflow when verifying EdDSA signatures [bsc#1266039] [CVE-2026-48863] - added limit checks in multiple places to catch overflows - reduce the size of the language id cache - fixed Debian canon selection - fixed dbpath detection in repo_rpmdb_librpm - reduced stack usage in repo page compression (needed for musl) - fix parsing of sha512 checksums in debian repositories [bsc#1265938] [CVE-2026-9150] - improve speed of dirpool_add_dir makeing parsing of filelists.xml twice as fast - fix parsing of recommends in the old Mandriva synthesis format - respect the 'default' attribute in environment optionlist in the comps parser - support suse namespace deps in boolean dependencies [bsc#1258193] - support for the Elbrus2000 (e2k) architecture - support language() suse namespace rewriting Changes in zypper: Update to version 1.14.98: - Transactional systems: Delegate rw-commands to transactional-wrapper if available (jsc#PED-13680, jsc#PED-15607) On a transactional system where the root filesystem is mounted read-only, zypper commands that modify the system cannot be executed directly. If the system provides a transactional-wrapper utility, zypper will automatically attempt to invoke it. The wrapper transparently executes the zypper command within a new, writable snapshot and manages the lifecycle of that snapshot based on the command's exit status. On transactional systems lacking a transactional-wrapper, users must manually invoke specialized tools -such as transactional-update- to install, update, or remove software. - Add --filter-version-change to zypper lu. Adds filtering by version change significance to reduce noise in update listings. Supports levels: rebuild (hides rebuild-only changes) and package (hides all release-only changes). - Autorefresh ris-services the way as plugin-services (bsc#1246504) It's actually wrong to treat service refreshes different depending on the service type. For the purpose of a service it makes no difference how the data about the repos to use are acquired. - Report download progress for command line rpms (fixes #613) - Hint to '-vv ref' to see the mirrors used to download the metadata (bsc#1257882) - Service: Allow 'zypper ls SERVICE ...' to test whether a service with this alias is defined (bsc#1252744) The command prints an abstract of all services passed on the command line. It returns 3-ZYPPER_EXIT_ERR_INVALID_ARGS if some argument does not name an existing service. - Keep repo data when updating the service settings (bsc#1252744) - info: Enhance pattern content table (bsc#1158038) Alternatives (multiple packages providing the same requirement) are now listed as a single entry in the content table. The entry shows either the installed package which satisfies the requirement or the requirement itself as type 'Provides'. Listing all potential alternatives was miss leading, especially if the alternatives were mutual exclusive. It looked like an installed pattern had not-installed requirements and it was not possible to install all requirements at the same time. ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2648-1 Released: Fri Jun 26 13:05:57 2026 Summary: Security update for openssl-3 Type: security Severity: important References: 1266340,1266341,1266342,1266343,1266345,1266349,1266350,1266351,1266352,1266353,1266355,1266356,1266357,CVE-2026-34180,CVE-2026-34181,CVE-2026-34183,CVE-2026-42766,CVE-2026-42767,CVE-2026-42768,CVE-2026-42769,CVE-2026-42770,CVE-2026-45445,CVE-2026-45446,CVE-2026-45447,CVE-2026-7383,CVE-2026-9076 This update for openssl-3 fixes the following issues - CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion (bsc#1266340). - CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption (bsc#1266341). - CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing (bsc#1266342). - CVE-2026-34181: PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys (bsc#1266343). - CVE-2026-34183: Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler (bsc#1266345). - CVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryption (bsc#1266349). - CVE-2026-42767: NULL Pointer Dereference in CRMF EncryptedValue Decryption (bsc#1266350). - CVE-2026-42768: Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt() (bsc#1266351). - CVE-2026-42769: Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate (bsc#1266352). - CVE-2026-42770: FFC-DH Peer Validation Uses Attacker-Supplied q (bsc#1266353). - CVE-2026-45445: AES-OCB IV Ignored on EVP_Cipher() Path (bsc#1266355). - CVE-2026-45446: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes (bsc#1266356). - CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2661-1 Released: Fri Jun 26 15:15:48 2026 Summary: Recommended update for curl Type: recommended Severity: important References: 1264971 This update for curl fixes the following issues: - Call http_size() first to prioritize Transfer-Encoding: chunked over a zero Content-Length empty body check (bsc#1264971) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2725-1 Released: Thu Jul 2 15:52:16 2026 Summary: Security update for python-tornado6 Type: security Severity: important References: 1268395,1268396,1268397,CVE-2026-49853,CVE-2026-49854,CVE-2026-49855 This update for python-tornado6 fixes the following issues - CVE-2026-49853: authorization header forwarded across cross-origin redirects in SimpleAsyncHTTPClient (bsc#1268395). - CVE-2026-49854: out-of-bounds memory access via C extension (bsc#1268396). - CVE-2026-49855: AsyncHTTPClient accumulates decompressed chunks without size limit (bsc#1268397). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2759-1 Released: Mon Jul 6 04:04:11 2026 Summary: Security update for apache2 Type: security Severity: important References: 1267503,1267955,1267956,1267962,1267963,1267965,1267969,1267970,1267971,1267972,1267976,1267977,1267978,CVE-2026-29167,CVE-2026-29170,CVE-2026-34355,CVE-2026-34356,CVE-2026-42535,CVE-2026-42536,CVE-2026-43951,CVE-2026-44119,CVE-2026-44185,CVE-2026-44186,CVE-2026-44631,CVE-2026-48913,CVE-2026-49975 This update for apache2 fixes the following issues - CVE-2026-29167: mod_ldap per-dir use-after-free (bsc#1267976). - CVE-2026-29170: mod_proxy_ftp XSS (bsc#1267977). - CVE-2026-34355: mod_proxy_html buffer overflow (bsc#1267978). - CVE-2026-34356: malicious backend servers can lead to a heap-based buffer overflow (bsc#1267955). - CVE-2026-42535: malicious path manipulation can lead to child process crashes (bsc#1267956). - CVE-2026-42536: processing untrusted content can lead to a heap-based buffer overflow (bsc#1267962). - CVE-2026-43951: out-of-bound read in `merge_response_headers` can cause crash (bsc#1267963). - CVE-2026-44119: improper privilege management can lead to an unauthorized read (bsc#1267965). - CVE-2026-44185: Stack Buffer Over-Read in mod_ssl OCSP `send_request` (bsc#1267969). - CVE-2026-44186: responses from an attacker-controlled FTP backend can lead to resource exhaustion and a denial of service (bsc#1267970). - CVE-2026-44631: crafted regular expression can lead to a buffer underwrite (bsc#1267971). - CVE-2026-48913: file handle exhaustion during request processing in mod_http2 can lead to a use-after-free (bsc#1267972). - CVE-2026-49975: Fix cookie header accounting against LimitRequestFields (bsc#1267503). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2774-1 Released: Mon Jul 6 09:52:16 2026 Summary: Maintenance update for Multi-Linux Manager 5.1: Server, Proxy and Retail Branch Server Type: security Severity: important References: 1208800,1226578,1234567,1238890,1242916,1245107,1247707,1248699,1249243,1253032,1254900,1257583,1257894,1258041,1258079,1258144,1258382,1258816,1259087,1259230,1259261,1259474,1259479,1259482,1259521,1259590,1259591,1259700,1259739,1259787,1259960,1260031,1260614,1260806,1261305,1261307,1261327,1261631,1261723,1261753,1261841,1261902,1262090,1262222,1262285,1262460,1262471,1262492,1262595,1262708,1262720,1262760,1262761,1262950,1263501,1263814,1263841,1263986,1263987,1264149,1264174,1264234,1264256,1264966,1265134,1265281,1265282,1265283,1265284,1265285,1265286,1265287,1265288,1265289,1265290,1265319,1265358,1265975,1266012,1266556,1266600,1269253,1269534,CVE-2022-21698,CVE-2026-28374,CVE-2026-28376,CVE-2026-28379,CVE-2026-28380,CVE-2026-28383,CVE-2026-33376,CVE-2026-33377,CVE-2026-33378,CVE-2026-33380,CVE-2026-33381,CVE-2026-34986,CVE-2026-39821,CVE-2026-40179,CVE-2026-41602,CVE-2026-42151,CVE-2026-42154,CVE-2026-42198 Maintenance update for Multi-Linux Manager 5.1: Server, Proxy and Retail Branch Server This is a codestream only update The following package changes have been done: - glibc-2.38-150600.14.49.1 updated - libuuid1-2.40.4-150700.4.13.1 updated - libsqlite3-0-3.53.2-150000.3.42.1 updated - libsmartcols1-2.40.4-150700.4.13.1 updated - liblzma5-5.4.1-150600.3.6.1 updated - libopenssl3-3.2.3-150700.5.36.1 updated - libblkid1-2.40.4-150700.4.13.1 updated - sed-4.9-150600.3.3.1 updated - coreutils-8.32-150400.9.12.1 updated - libopenssl-3-fips-provider-3.2.3-150700.5.36.1 updated - libmount1-2.40.4-150700.4.13.1 updated - libfdisk1-2.40.4-150700.4.13.1 updated - libcurl4-8.14.1-150700.7.17.1 updated - libsolv-tools-base-0.7.39-150700.11.10.1 updated - libzypp-17.38.13-150700.6.13.1 updated - zypper-1.14.98-150700.13.6.1 updated - util-linux-2.40.4-150700.4.13.1 updated - curl-8.14.1-150700.7.17.1 updated - openssl-3-3.2.3-150700.5.36.1 updated - libapparmor1-3.1.7-150600.5.15.1 updated - libopenssl1_1-1.1.1w-150700.11.22.1 updated - xz-5.4.1-150600.3.6.1 updated - libpython3_11-1_0-3.11.15-150600.3.56.1 updated - python311-base-3.11.15-150600.3.56.1 updated - python311-3.11.15-150600.3.56.1 updated - iproute2-6.4-150600.7.15.1 updated - python311-tornado6-6.3.2-150400.9.18.1 added - apache2-prefork-2.4.66-150700.4.23.1 updated - python3-uyuni-common-libs-5.1.6-150700.3.6.1 updated - python311-pyOpenSSL-23.2.0-150400.3.16.1 updated - python311-urllib3-2.0.7-150400.7.30.1 updated - apache2-2.4.66-150700.4.23.1 updated - python3-pyOpenSSL-21.0.0-150400.13.1 updated - python311-salt-3006.0-150700.14.23.4 updated - salt-3006.0-150700.14.23.4 updated - spacewalk-backend-5.1.17-150700.3.12.7 updated - container:bci-bci-base-15.7-d2aab68ae05470b62bbe38c4ca03ff5bf72b405197482ed96e34dd0087d7bde2-0 updated From sle-container-updates at lists.suse.com Tue Jul 7 08:17:05 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Tue, 7 Jul 2026 10:17:05 +0200 (CEST) Subject: SUSE-CU-2026:6819-1: Security update of suse/multi-linux-manager/5.1/x86_64/proxy-squid Message-ID: <20260707081705.A1ADEFCC9@maintenance.suse.de> SUSE Container Update Advisory: suse/multi-linux-manager/5.1/x86_64/proxy-squid ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6819-1 Container Tags : suse/multi-linux-manager/5.1/x86_64/proxy-squid:5.1.4 , suse/multi-linux-manager/5.1/x86_64/proxy-squid:5.1.4.8.22.1 , suse/multi-linux-manager/5.1/x86_64/proxy-squid:latest Container Release : 8.22.1 Severity : important Type : security References : 1250782 1250782 1259327 1261206 1261280 1262144 1262464 1262465 1266340 1266340 1266341 1266341 1266342 1266342 1266343 1266345 1266349 1266349 1266350 1266351 1266352 1266353 1266355 1266356 1266357 1266357 1268012 1268013 CVE-2026-11822 CVE-2026-11824 CVE-2026-34180 CVE-2026-34180 CVE-2026-34181 CVE-2026-34183 CVE-2026-34743 CVE-2026-4046 CVE-2026-42766 CVE-2026-42766 CVE-2026-42767 CVE-2026-42768 CVE-2026-42769 CVE-2026-42770 CVE-2026-45445 CVE-2026-45446 CVE-2026-45447 CVE-2026-45447 CVE-2026-5450 CVE-2026-5928 CVE-2026-5958 CVE-2026-7383 CVE-2026-7383 CVE-2026-9076 CVE-2026-9076 ----------------------------------------------------------------- The container suse/multi-linux-manager/5.1/x86_64/proxy-squid was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:1941-1 Released: Mon May 18 09:44:34 2026 Summary: Security update for sed Type: security Severity: moderate References: 1262144,CVE-2026-5958 This update for sed fixes the following issue: - CVE-2026-5958: a TOCTOU race can allow to read attacker-controlled content and write it to an unintended file (bsc#1262144). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2041-1 Released: Thu May 21 16:29:18 2026 Summary: Recommended update for openssl-1_1 Type: recommended Severity: moderate References: 1250782 This update for openssl-1_1 fixes the following issues: - Fix 30-test_fips_sli.t fails intermittently on s390x (bsc#1250782): * Fix AES_GCM IV test sometimes failing on s390x. ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2051-1 Released: Mon May 25 15:59:43 2026 Summary: Security update for xz Type: security Severity: important References: 1261280,CVE-2026-34743 This update for xz fixes the following issue - CVE-2026-34743: buffer overflow in lzma_index_append() (bsc#1261280). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2231-1 Released: Wed Jun 3 12:57:18 2026 Summary: Security update for glibc Type: security Severity: important References: 1261206,1262464,1262465,CVE-2026-4046,CVE-2026-5450,CVE-2026-5928 This update for glibc fixes the following issues - CVE-2026-4046: assertion failure when converting inputs may be used to remotely crash an application (bsc#1261206). - CVE-2026-5450: stdio-common: scanf %mc pattern will cause heap overflow when width > 1024 (bsc#1262465). - CVE-2026-5928: libio: ungetwc could be used to leak data on special conditions (bsc#1262464). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2392-1 Released: Mon Jun 15 10:05:31 2026 Summary: Security update for openssl-1_1 Type: security Severity: important References: 1250782,1266340,1266341,1266342,1266349,1266357,CVE-2026-34180,CVE-2026-42766,CVE-2026-45447,CVE-2026-7383,CVE-2026-9076 This update for openssl-1_1 fixes the following issues - CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion (bsc#1266340). - CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption (bsc#1266341). - CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing (bsc#1266342). - CVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryption (bsc#1266349). - CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2434-1 Released: Wed Jun 17 16:40:10 2026 Summary: Recommended update for coreutils Type: recommended Severity: important References: 1259327 This update for coreutils fixes the following issues: - proc: Use affinity mask even on systems with more than 1024 CPUs (bsc#1259327) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2528-1 Released: Tue Jun 23 11:06:07 2026 Summary: Security update for sqlite3 Type: security Severity: important References: 1268012,1268013,CVE-2026-11822,CVE-2026-11824 This update for sqlite3 fixes the following issues Update to 3.53.2: - CVE-2026-11822: memory corruption vulnerabilities in the FTS5 full-text search extension that allow attackers to cause process crashes, memory exhaustion, or arbitrary code execution (bsc#1268012). - CVE-2026-11824: heap-based buffer overflow vulnerability in the FTS5 full-text search extension that allows attackers to cause a crash or execute arbitrary code (bsc#1268013). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2648-1 Released: Fri Jun 26 13:05:57 2026 Summary: Security update for openssl-3 Type: security Severity: important References: 1266340,1266341,1266342,1266343,1266345,1266349,1266350,1266351,1266352,1266353,1266355,1266356,1266357,CVE-2026-34180,CVE-2026-34181,CVE-2026-34183,CVE-2026-42766,CVE-2026-42767,CVE-2026-42768,CVE-2026-42769,CVE-2026-42770,CVE-2026-45445,CVE-2026-45446,CVE-2026-45447,CVE-2026-7383,CVE-2026-9076 This update for openssl-3 fixes the following issues - CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion (bsc#1266340). - CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption (bsc#1266341). - CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing (bsc#1266342). - CVE-2026-34181: PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys (bsc#1266343). - CVE-2026-34183: Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler (bsc#1266345). - CVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryption (bsc#1266349). - CVE-2026-42767: NULL Pointer Dereference in CRMF EncryptedValue Decryption (bsc#1266350). - CVE-2026-42768: Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt() (bsc#1266351). - CVE-2026-42769: Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate (bsc#1266352). - CVE-2026-42770: FFC-DH Peer Validation Uses Attacker-Supplied q (bsc#1266353). - CVE-2026-45445: AES-OCB IV Ignored on EVP_Cipher() Path (bsc#1266355). - CVE-2026-45446: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes (bsc#1266356). - CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357). The following package changes have been done: - glibc-2.38-150600.14.49.1 updated - libsqlite3-0-3.53.2-150000.3.42.1 updated - liblzma5-5.4.1-150600.3.6.1 updated - libopenssl3-3.2.3-150700.5.36.1 updated - sed-4.9-150600.3.3.1 updated - coreutils-8.32-150400.9.12.1 updated - libopenssl-3-fips-provider-3.2.3-150700.5.36.1 updated - libopenssl1_1-1.1.1w-150700.11.22.1 updated - container:bci-bci-base-15.7-d2aab68ae05470b62bbe38c4ca03ff5bf72b405197482ed96e34dd0087d7bde2-0 updated From sle-container-updates at lists.suse.com Tue Jul 7 08:17:09 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Tue, 7 Jul 2026 10:17:09 +0200 (CEST) Subject: SUSE-CU-2026:6820-1: Security update of suse/multi-linux-manager/5.1/x86_64/proxy-ssh Message-ID: <20260707081709.AA996FCC9@maintenance.suse.de> SUSE Container Update Advisory: suse/multi-linux-manager/5.1/x86_64/proxy-ssh ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6820-1 Container Tags : suse/multi-linux-manager/5.1/x86_64/proxy-ssh:5.1.4 , suse/multi-linux-manager/5.1/x86_64/proxy-ssh:5.1.4.8.22.1 , suse/multi-linux-manager/5.1/x86_64/proxy-ssh:latest Container Release : 8.22.1 Severity : important Type : security References : 1250782 1250782 1259327 1259642 1261206 1261280 1261427 1261427 1261430 1261430 1261441 1262464 1262465 1264568 1266340 1266340 1266341 1266341 1266342 1266342 1266343 1266345 1266349 1266349 1266350 1266351 1266352 1266353 1266355 1266356 1266357 1266357 1268012 1268013 CVE-2026-11822 CVE-2026-11824 CVE-2026-34180 CVE-2026-34180 CVE-2026-34181 CVE-2026-34183 CVE-2026-34743 CVE-2026-3497 CVE-2026-35385 CVE-2026-35385 CVE-2026-35388 CVE-2026-35414 CVE-2026-35414 CVE-2026-4046 CVE-2026-42766 CVE-2026-42766 CVE-2026-42767 CVE-2026-42768 CVE-2026-42769 CVE-2026-42770 CVE-2026-45445 CVE-2026-45446 CVE-2026-45447 CVE-2026-45447 CVE-2026-5450 CVE-2026-5928 CVE-2026-7383 CVE-2026-7383 CVE-2026-9076 CVE-2026-9076 ----------------------------------------------------------------- The container suse/multi-linux-manager/5.1/x86_64/proxy-ssh was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:1876-1 Released: Sat May 16 00:06:36 2026 Summary: Security update for openssh Type: security Severity: important References: 1261427,1261430,CVE-2026-35385,CVE-2026-35414 This update for openssh fixes the following issues - CVE-2026-35385: a file downloaded by scp may be installed setuid or setgid (bsc#1261427). - CVE-2026-35414: mishandling of authorized_keys principals option (bsc#1261430). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2041-1 Released: Thu May 21 16:29:18 2026 Summary: Recommended update for openssl-1_1 Type: recommended Severity: moderate References: 1250782 This update for openssl-1_1 fixes the following issues: - Fix 30-test_fips_sli.t fails intermittently on s390x (bsc#1250782): * Fix AES_GCM IV test sometimes failing on s390x. ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2051-1 Released: Mon May 25 15:59:43 2026 Summary: Security update for xz Type: security Severity: important References: 1261280,CVE-2026-34743 This update for xz fixes the following issue - CVE-2026-34743: buffer overflow in lzma_index_append() (bsc#1261280). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2231-1 Released: Wed Jun 3 12:57:18 2026 Summary: Security update for glibc Type: security Severity: important References: 1261206,1262464,1262465,CVE-2026-4046,CVE-2026-5450,CVE-2026-5928 This update for glibc fixes the following issues - CVE-2026-4046: assertion failure when converting inputs may be used to remotely crash an application (bsc#1261206). - CVE-2026-5450: stdio-common: scanf %mc pattern will cause heap overflow when width > 1024 (bsc#1262465). - CVE-2026-5928: libio: ungetwc could be used to leak data on special conditions (bsc#1262464). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2371-1 Released: Thu Jun 11 16:01:35 2026 Summary: Security update for openssh Type: security Severity: important References: 1259642,1261427,1261430,1261441,1264568,CVE-2026-3497,CVE-2026-35385,CVE-2026-35388,CVE-2026-35414 This update for openssh fixes the following issues - CVE-2026-3497: information disclosure or denial of service due to uninitialized variables (bsc#1259642). - CVE-2026-35385: a file downloaded by scp may be installed setuid or setgid (bsc#1261427). - CVE-2026-35388: omitted connection multiplexing confirmation for proxy-mode multiplexing sessions (bsc#1261441). - CVE-2026-35414: mishandling of authorized_keys principals option (bsc#1261430). - potential security issue when validating mac (bsc#1264568). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2392-1 Released: Mon Jun 15 10:05:31 2026 Summary: Security update for openssl-1_1 Type: security Severity: important References: 1250782,1266340,1266341,1266342,1266349,1266357,CVE-2026-34180,CVE-2026-42766,CVE-2026-45447,CVE-2026-7383,CVE-2026-9076 This update for openssl-1_1 fixes the following issues - CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion (bsc#1266340). - CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption (bsc#1266341). - CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing (bsc#1266342). - CVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryption (bsc#1266349). - CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2434-1 Released: Wed Jun 17 16:40:10 2026 Summary: Recommended update for coreutils Type: recommended Severity: important References: 1259327 This update for coreutils fixes the following issues: - proc: Use affinity mask even on systems with more than 1024 CPUs (bsc#1259327) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2528-1 Released: Tue Jun 23 11:06:07 2026 Summary: Security update for sqlite3 Type: security Severity: important References: 1268012,1268013,CVE-2026-11822,CVE-2026-11824 This update for sqlite3 fixes the following issues Update to 3.53.2: - CVE-2026-11822: memory corruption vulnerabilities in the FTS5 full-text search extension that allow attackers to cause process crashes, memory exhaustion, or arbitrary code execution (bsc#1268012). - CVE-2026-11824: heap-based buffer overflow vulnerability in the FTS5 full-text search extension that allows attackers to cause a crash or execute arbitrary code (bsc#1268013). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2648-1 Released: Fri Jun 26 13:05:57 2026 Summary: Security update for openssl-3 Type: security Severity: important References: 1266340,1266341,1266342,1266343,1266345,1266349,1266350,1266351,1266352,1266353,1266355,1266356,1266357,CVE-2026-34180,CVE-2026-34181,CVE-2026-34183,CVE-2026-42766,CVE-2026-42767,CVE-2026-42768,CVE-2026-42769,CVE-2026-42770,CVE-2026-45445,CVE-2026-45446,CVE-2026-45447,CVE-2026-7383,CVE-2026-9076 This update for openssl-3 fixes the following issues - CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion (bsc#1266340). - CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption (bsc#1266341). - CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing (bsc#1266342). - CVE-2026-34181: PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys (bsc#1266343). - CVE-2026-34183: Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler (bsc#1266345). - CVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryption (bsc#1266349). - CVE-2026-42767: NULL Pointer Dereference in CRMF EncryptedValue Decryption (bsc#1266350). - CVE-2026-42768: Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt() (bsc#1266351). - CVE-2026-42769: Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate (bsc#1266352). - CVE-2026-42770: FFC-DH Peer Validation Uses Attacker-Supplied q (bsc#1266353). - CVE-2026-45445: AES-OCB IV Ignored on EVP_Cipher() Path (bsc#1266355). - CVE-2026-45446: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes (bsc#1266356). - CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357). The following package changes have been done: - glibc-2.38-150600.14.49.1 updated - libsqlite3-0-3.53.2-150000.3.42.1 updated - liblzma5-5.4.1-150600.3.6.1 updated - libopenssl3-3.2.3-150700.5.36.1 updated - coreutils-8.32-150400.9.12.1 updated - libopenssl-3-fips-provider-3.2.3-150700.5.36.1 updated - libopenssl1_1-1.1.1w-150700.11.22.1 updated - openssh-common-9.6p1-150600.6.42.1 updated - openssh-fips-9.6p1-150600.6.42.1 updated - openssh-clients-9.6p1-150600.6.42.1 updated - openssh-server-9.6p1-150600.6.42.1 updated - openssh-9.6p1-150600.6.42.1 updated - container:bci-bci-base-15.7-d2aab68ae05470b62bbe38c4ca03ff5bf72b405197482ed96e34dd0087d7bde2-0 updated From sle-container-updates at lists.suse.com Wed Jul 8 08:07:08 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 8 Jul 2026 10:07:08 +0200 (CEST) Subject: SUSE-IU-2026:5534-1: Security update of suse/sl-micro/6.0/baremetal-os-container Message-ID: <20260708080708.77887FCC9@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.0/baremetal-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5534-1 Image Tags : suse/sl-micro/6.0/baremetal-os-container:2.1.3 , suse/sl-micro/6.0/baremetal-os-container:2.1.3-6.202 , suse/sl-micro/6.0/baremetal-os-container:latest Image Release : 6.202 Severity : important Type : security References : 1268131 CVE-2026-11850 ----------------------------------------------------------------- The container suse/sl-micro/6.0/baremetal-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 785 Released: Tue Jul 7 14:04:16 2026 Summary: Security update for krb5 Type: security Severity: important References: 1268131,CVE-2026-11850 This update for krb5 fixes the following issue - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). The following package changes have been done: - SL-Micro-release-6.0-25.107 updated - krb5-1.20.1-9.1 updated - container:SL-Micro-base-container-2.1.3-7.169 updated From sle-container-updates at lists.suse.com Wed Jul 8 08:14:37 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 8 Jul 2026 10:14:37 +0200 (CEST) Subject: SUSE-CU-2026:6821-1: Security update of suse/sl-micro/6.0/baremetal-iso-image Message-ID: <20260708081437.552E0FCC9@maintenance.suse.de> SUSE Container Update Advisory: suse/sl-micro/6.0/baremetal-iso-image ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6821-1 Container Tags : suse/sl-micro/6.0/baremetal-iso-image:2.1.4 , suse/sl-micro/6.0/baremetal-iso-image:2.1.4-6.195 , suse/sl-micro/6.0/baremetal-iso-image:latest Container Release : 6.195 Severity : moderate Type : security References : 1263656 1263658 CVE-2026-5435 CVE-2026-6238 ----------------------------------------------------------------- The container suse/sl-micro/6.0/baremetal-iso-image was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 784 Released: Mon Jul 6 15:38:37 2026 Summary: Security update for glibc Type: security Severity: moderate References: 1263656,1263658,CVE-2026-5435,CVE-2026-6238 This update for glibc fixes the following issues - CVE-2026-5435: unchecked buffer writing in TSIG handling can lead to an out-of-bounds write (bsc#1263656). - CVE-2026-6238: insufficient RDATA length validation can lead to application crashes or uninitialized memory disclosure (bsc#1263658). The following package changes have been done: - glibc-2.38-14.1 updated - container:SL-Micro-container-2.1.3-6.202 updated From sle-container-updates at lists.suse.com Wed Jul 8 08:37:10 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 8 Jul 2026 10:37:10 +0200 (CEST) Subject: SUSE-IU-2026:5542-1: Security update of suse/sl-micro/6.2/baremetal-os-container Message-ID: <20260708083710.EB691FCD7@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.2/baremetal-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5542-1 Image Tags : suse/sl-micro/6.2/baremetal-os-container:2.3.1 , suse/sl-micro/6.2/baremetal-os-container:2.3.1-8.45 , suse/sl-micro/6.2/baremetal-os-container:latest Image Release : 8.45 Severity : important Type : security References : 1244116 1262043 1262044 1262069 1262070 1262071 1262072 1265060 1265061 1265062 1265070 CVE-2025-48060 CVE-2026-32316 CVE-2026-33947 CVE-2026-33948 CVE-2026-39956 CVE-2026-39979 CVE-2026-40164 CVE-2026-40612 CVE-2026-41256 CVE-2026-41257 CVE-2026-43894 ----------------------------------------------------------------- The container suse/sl-micro/6.2/baremetal-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1169 Released: Tue Jul 7 14:32:56 2026 Summary: Security update for jq Type: security Severity: important References: 1244116,1262043,1262044,1262069,1262070,1262071,1262072,1265060,1265061,1265062,1265070,CVE-2025-48060,CVE-2026-32316,CVE-2026-33947,CVE-2026-33948,CVE-2026-39956,CVE-2026-39979,CVE-2026-40164,CVE-2026-40612,CVE-2026-41256,CVE-2026-41257,CVE-2026-43894 This update for jq fixes the following issues: - CVE-2025-48060: improper handling of string data in `jv_string_empty` can lead to heap buffer overflow and a crash when processing crafted input (bsc#1244116). - CVE-2026-32316: integer overflow within the `jvp_string_append()` and `jvp_string_copy_replace_bad` functions can lead to heap buffer overflow when evaluating untrusted jq queries (bsc#1262044). - CVE-2026-33947: unbounded recursion in functions `jv_setpath()`, `jv_getpath()`, and `delpaths_sorted()` can lead to excessive resource consumption when processing crafted JSON input (bsc#1262069). - CVE-2026-39956: missing runtime type checks in `_strindices` and `jv_string_indexes()` can lead to a crash when evaluating untrusted jq filters against a release build (bsc#1262070). - CVE-2026-39979: incorrect processing of non-nul-terminated counted buffers in `jv_parse_sized` can lead to an out-of-bounds read when processing malformed JSON (bsc#1262071). - CVE-2026-40164: use of `MurmurHash3` with a hardcoded seed allows pre-computation of key collisions and can lead to a denial of service via resource exhaustion when processing crafted JSON objects (bsc#1262072). - CVE-2026-40612: recursion into nested arrays/objects with no depth limit in `jv_contains` can lead to a C stack exhaustion when processing crafted input (bsc#1265060). - CVE-2026-41256: truncation of top-level jq programs loaded with `-f` and can lead to the execution of unintended programs (bsc#1265061). - CVE-2026-41257: integer overflow in `stack_reallocate` can lead to memory corruption and DoS when processing jq bytecode (bsc#1265062). - CVE-2026-43894: signed integer overflow in the `decNumberFromString` `D2U()` macro can lead to an out-of-bounds memory write when processing large number literals (bsc#1265070). - CVE-2026-33948: improper handling of buffer sizes via `strlen()` instead of `fgets()` in CLI input parsing allows validation bypass via embedded NUL bytes (bsc#1262043). The following package changes have been done: - libjq1-1.7.1-160000.3.1 updated - jq-1.7.1-160000.3.1 updated From sle-container-updates at lists.suse.com Wed Jul 8 08:43:31 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 8 Jul 2026 10:43:31 +0200 (CEST) Subject: SUSE-IU-2026:5547-1: Recommended update of suse/sl-micro/6.2/base-os-container Message-ID: <20260708084331.5C395FCD7@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.2/base-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5547-1 Image Tags : suse/sl-micro/6.2/base-os-container:2.3.1 , suse/sl-micro/6.2/base-os-container:2.3.1-8.28 , suse/sl-micro/6.2/base-os-container:latest Image Release : 8.28 Severity : important Type : recommended References : 1262515 ----------------------------------------------------------------- The container suse/sl-micro/6.2/base-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1176 Released: Tue Jul 7 18:51:38 2026 Summary: Recommended update for dracut Type: recommended Severity: important References: 1262515 This update for dracut fixes the following issues: - fix (fips): handle zipl (bsc#1262515) The following package changes have been done: - dracut-059+suse.724.gaa87d1594-160000.1.1 updated From sle-container-updates at lists.suse.com Wed Jul 8 08:49:00 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 8 Jul 2026 10:49:00 +0200 (CEST) Subject: SUSE-IU-2026:5549-1: Security update of suse/sl-micro/6.2/kvm-os-container Message-ID: <20260708084900.29773FCC9@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.2/kvm-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5549-1 Image Tags : suse/sl-micro/6.2/kvm-os-container:2.3.1 , suse/sl-micro/6.2/kvm-os-container:2.3.1-8.41 , suse/sl-micro/6.2/kvm-os-container:latest Image Release : 8.41 Severity : important Type : security References : 1199023 1268061 1268279 1268794 1270133 CVE-2026-3886 CVE-2026-48004 CVE-2026-48914 ----------------------------------------------------------------- The container suse/sl-micro/6.2/kvm-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1174 Released: Tue Jul 7 19:20:48 2026 Summary: Security update for qemu Type: security Severity: important References: 1199023,1268061,1268279,1268794,1270133,CVE-2026-3886,CVE-2026-48004,CVE-2026-48914 This update for qemu fixes the following issues: Update to version 10.0.11. Security issues fixed: - CVE-2026-3886: integer overflow leading to privilege escalation due to lack of proper validation of user-supplied data in the virtio-gpu driver (bsc#1268061). - CVE-2026-48914: heap buffer overflow due to improper size validation in virtio-blk SCSI request handling (bsc#1268794). - CVE-2026-48004: heap use-after-free race condition due to missing rename lock in v9fs_co_readdir_many (bsc#1270133). Other updates and bugfixes: - Version 10.0.11: * Full backport list here: https://lore.kernel.org/qemu-devel/20260627082646.D825717AB67 at think4mjt.localdomain/ - Version 10.0.10: * Full backport list here: https://lore.kernel.org/qemu-devel/20260528061820.CEE521691A9 at think4mjt.localdomain/ - ppc/spapr: Skip system reset for quiesced CPUs (bsc#1268279). - i386/tdx: handle TDG.VP.VMCALL (jsc#PED-9266). - i386/tdx: handle TDG.VP.VMCALL (jsc#PED-9266). - update Linux headers to v6.16-rc3 (jsc#PED-9266). - i386/cpu: Warn about why CPUID_EXT_PDCM is not available (jsc#PED-9266). - i386/cpu: Move adjustment of CPUID_EXT_PDCM before feature_dependencies[] check (jsc#PED-9266). - [openSUSE] qemu-ga: fix service file against no-autostart (bsc#1199023). The following package changes have been done: - qemu-guest-agent-10.0.11-160000.1.1 updated From sle-container-updates at lists.suse.com Wed Jul 8 09:10:49 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 8 Jul 2026 11:10:49 +0200 (CEST) Subject: SUSE-CU-2026:6820-1: Security update of suse/multi-linux-manager/5.1/x86_64/proxy-ssh Message-ID: <20260708091049.AD527FCD7@maintenance.suse.de> SUSE Container Update Advisory: suse/multi-linux-manager/5.1/x86_64/proxy-ssh ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6820-1 Container Tags : suse/multi-linux-manager/5.1/x86_64/proxy-ssh:5.1.4 , suse/multi-linux-manager/5.1/x86_64/proxy-ssh:5.1.4.8.22.1 , suse/multi-linux-manager/5.1/x86_64/proxy-ssh:latest Container Release : 8.22.1 Severity : important Type : security References : 1250782 1250782 1259327 1259642 1261206 1261280 1261427 1261427 1261430 1261430 1261441 1262464 1262465 1264568 1266340 1266340 1266341 1266341 1266342 1266342 1266343 1266345 1266349 1266349 1266350 1266351 1266352 1266353 1266355 1266356 1266357 1266357 1268012 1268013 CVE-2026-11822 CVE-2026-11824 CVE-2026-34180 CVE-2026-34180 CVE-2026-34181 CVE-2026-34183 CVE-2026-34743 CVE-2026-3497 CVE-2026-35385 CVE-2026-35385 CVE-2026-35388 CVE-2026-35414 CVE-2026-35414 CVE-2026-4046 CVE-2026-42766 CVE-2026-42766 CVE-2026-42767 CVE-2026-42768 CVE-2026-42769 CVE-2026-42770 CVE-2026-45445 CVE-2026-45446 CVE-2026-45447 CVE-2026-45447 CVE-2026-5450 CVE-2026-5928 CVE-2026-7383 CVE-2026-7383 CVE-2026-9076 CVE-2026-9076 ----------------------------------------------------------------- The container suse/multi-linux-manager/5.1/x86_64/proxy-ssh was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:1876-1 Released: Sat May 16 00:06:36 2026 Summary: Security update for openssh Type: security Severity: important References: 1261427,1261430,CVE-2026-35385,CVE-2026-35414 This update for openssh fixes the following issues - CVE-2026-35385: a file downloaded by scp may be installed setuid or setgid (bsc#1261427). - CVE-2026-35414: mishandling of authorized_keys principals option (bsc#1261430). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2041-1 Released: Thu May 21 16:29:18 2026 Summary: Recommended update for openssl-1_1 Type: recommended Severity: moderate References: 1250782 This update for openssl-1_1 fixes the following issues: - Fix 30-test_fips_sli.t fails intermittently on s390x (bsc#1250782): * Fix AES_GCM IV test sometimes failing on s390x. ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2051-1 Released: Mon May 25 15:59:43 2026 Summary: Security update for xz Type: security Severity: important References: 1261280,CVE-2026-34743 This update for xz fixes the following issue - CVE-2026-34743: buffer overflow in lzma_index_append() (bsc#1261280). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2231-1 Released: Wed Jun 3 12:57:18 2026 Summary: Security update for glibc Type: security Severity: important References: 1261206,1262464,1262465,CVE-2026-4046,CVE-2026-5450,CVE-2026-5928 This update for glibc fixes the following issues - CVE-2026-4046: assertion failure when converting inputs may be used to remotely crash an application (bsc#1261206). - CVE-2026-5450: stdio-common: scanf %mc pattern will cause heap overflow when width > 1024 (bsc#1262465). - CVE-2026-5928: libio: ungetwc could be used to leak data on special conditions (bsc#1262464). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2371-1 Released: Thu Jun 11 16:01:35 2026 Summary: Security update for openssh Type: security Severity: important References: 1259642,1261427,1261430,1261441,1264568,CVE-2026-3497,CVE-2026-35385,CVE-2026-35388,CVE-2026-35414 This update for openssh fixes the following issues - CVE-2026-3497: information disclosure or denial of service due to uninitialized variables (bsc#1259642). - CVE-2026-35385: a file downloaded by scp may be installed setuid or setgid (bsc#1261427). - CVE-2026-35388: omitted connection multiplexing confirmation for proxy-mode multiplexing sessions (bsc#1261441). - CVE-2026-35414: mishandling of authorized_keys principals option (bsc#1261430). - potential security issue when validating mac (bsc#1264568). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2392-1 Released: Mon Jun 15 10:05:31 2026 Summary: Security update for openssl-1_1 Type: security Severity: important References: 1250782,1266340,1266341,1266342,1266349,1266357,CVE-2026-34180,CVE-2026-42766,CVE-2026-45447,CVE-2026-7383,CVE-2026-9076 This update for openssl-1_1 fixes the following issues - CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion (bsc#1266340). - CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption (bsc#1266341). - CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing (bsc#1266342). - CVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryption (bsc#1266349). - CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2434-1 Released: Wed Jun 17 16:40:10 2026 Summary: Recommended update for coreutils Type: recommended Severity: important References: 1259327 This update for coreutils fixes the following issues: - proc: Use affinity mask even on systems with more than 1024 CPUs (bsc#1259327) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2528-1 Released: Tue Jun 23 11:06:07 2026 Summary: Security update for sqlite3 Type: security Severity: important References: 1268012,1268013,CVE-2026-11822,CVE-2026-11824 This update for sqlite3 fixes the following issues Update to 3.53.2: - CVE-2026-11822: memory corruption vulnerabilities in the FTS5 full-text search extension that allow attackers to cause process crashes, memory exhaustion, or arbitrary code execution (bsc#1268012). - CVE-2026-11824: heap-based buffer overflow vulnerability in the FTS5 full-text search extension that allows attackers to cause a crash or execute arbitrary code (bsc#1268013). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2648-1 Released: Fri Jun 26 13:05:57 2026 Summary: Security update for openssl-3 Type: security Severity: important References: 1266340,1266341,1266342,1266343,1266345,1266349,1266350,1266351,1266352,1266353,1266355,1266356,1266357,CVE-2026-34180,CVE-2026-34181,CVE-2026-34183,CVE-2026-42766,CVE-2026-42767,CVE-2026-42768,CVE-2026-42769,CVE-2026-42770,CVE-2026-45445,CVE-2026-45446,CVE-2026-45447,CVE-2026-7383,CVE-2026-9076 This update for openssl-3 fixes the following issues - CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion (bsc#1266340). - CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption (bsc#1266341). - CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing (bsc#1266342). - CVE-2026-34181: PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys (bsc#1266343). - CVE-2026-34183: Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler (bsc#1266345). - CVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryption (bsc#1266349). - CVE-2026-42767: NULL Pointer Dereference in CRMF EncryptedValue Decryption (bsc#1266350). - CVE-2026-42768: Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt() (bsc#1266351). - CVE-2026-42769: Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate (bsc#1266352). - CVE-2026-42770: FFC-DH Peer Validation Uses Attacker-Supplied q (bsc#1266353). - CVE-2026-45445: AES-OCB IV Ignored on EVP_Cipher() Path (bsc#1266355). - CVE-2026-45446: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes (bsc#1266356). - CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357). The following package changes have been done: - glibc-2.38-150600.14.49.1 updated - libsqlite3-0-3.53.2-150000.3.42.1 updated - liblzma5-5.4.1-150600.3.6.1 updated - libopenssl3-3.2.3-150700.5.36.1 updated - coreutils-8.32-150400.9.12.1 updated - libopenssl-3-fips-provider-3.2.3-150700.5.36.1 updated - libopenssl1_1-1.1.1w-150700.11.22.1 updated - openssh-common-9.6p1-150600.6.42.1 updated - openssh-fips-9.6p1-150600.6.42.1 updated - openssh-clients-9.6p1-150600.6.42.1 updated - openssh-server-9.6p1-150600.6.42.1 updated - openssh-9.6p1-150600.6.42.1 updated - container:bci-bci-base-15.7-d2aab68ae05470b62bbe38c4ca03ff5bf72b405197482ed96e34dd0087d7bde2-0 updated From sle-container-updates at lists.suse.com Wed Jul 8 09:10:53 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 8 Jul 2026 11:10:53 +0200 (CEST) Subject: SUSE-CU-2026:6831-1: Security update of suse/multi-linux-manager/5.1/x86_64/proxy-tftpd Message-ID: <20260708091053.3757EFCD7@maintenance.suse.de> SUSE Container Update Advisory: suse/multi-linux-manager/5.1/x86_64/proxy-tftpd ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6831-1 Container Tags : suse/multi-linux-manager/5.1/x86_64/proxy-tftpd:5.1.4 , suse/multi-linux-manager/5.1/x86_64/proxy-tftpd:5.1.4.8.22.1 , suse/multi-linux-manager/5.1/x86_64/proxy-tftpd:latest Container Release : 8.22.1 Severity : important Type : security References : 1250782 1250782 1259327 1261206 1261280 1262464 1262465 1262803 1265267 1266340 1266340 1266341 1266341 1266342 1266342 1266343 1266345 1266349 1266349 1266350 1266351 1266352 1266353 1266355 1266356 1266357 1266357 1268012 1268013 CVE-2026-11822 CVE-2026-11824 CVE-2026-34180 CVE-2026-34180 CVE-2026-34181 CVE-2026-34183 CVE-2026-34743 CVE-2026-4046 CVE-2026-40475 CVE-2026-42766 CVE-2026-42766 CVE-2026-42767 CVE-2026-42768 CVE-2026-42769 CVE-2026-42770 CVE-2026-44431 CVE-2026-45445 CVE-2026-45446 CVE-2026-45447 CVE-2026-45447 CVE-2026-5450 CVE-2026-5928 CVE-2026-7383 CVE-2026-7383 CVE-2026-9076 CVE-2026-9076 ----------------------------------------------------------------- The container suse/multi-linux-manager/5.1/x86_64/proxy-tftpd was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2041-1 Released: Thu May 21 16:29:18 2026 Summary: Recommended update for openssl-1_1 Type: recommended Severity: moderate References: 1250782 This update for openssl-1_1 fixes the following issues: - Fix 30-test_fips_sli.t fails intermittently on s390x (bsc#1250782): * Fix AES_GCM IV test sometimes failing on s390x. ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2051-1 Released: Mon May 25 15:59:43 2026 Summary: Security update for xz Type: security Severity: important References: 1261280,CVE-2026-34743 This update for xz fixes the following issue - CVE-2026-34743: buffer overflow in lzma_index_append() (bsc#1261280). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2119-1 Released: Fri May 29 17:33:15 2026 Summary: Security update for python-urllib3 Type: security Severity: important References: 1265267,CVE-2026-44431 This update for python-urllib3 fixes the following issue - CVE-2026-44431: sensitive information disclosure due to sensitive headers being forwarded across origins in proxied low-level redirects (bsc#1265267). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2231-1 Released: Wed Jun 3 12:57:18 2026 Summary: Security update for glibc Type: security Severity: important References: 1261206,1262464,1262465,CVE-2026-4046,CVE-2026-5450,CVE-2026-5928 This update for glibc fixes the following issues - CVE-2026-4046: assertion failure when converting inputs may be used to remotely crash an application (bsc#1261206). - CVE-2026-5450: stdio-common: scanf %mc pattern will cause heap overflow when width > 1024 (bsc#1262465). - CVE-2026-5928: libio: ungetwc could be used to leak data on special conditions (bsc#1262464). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2259-1 Released: Wed Jun 3 17:31:35 2026 Summary: Security update for python3-pyOpenSSL Type: security Severity: moderate References: 1262803,CVE-2026-40475 This update for python3-pyOpenSSL fixes the following issue - CVE-2026-40475: improper input handling of null bytes can lead to silent data truncation and security-state inconsistency (bsc#1262803). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2392-1 Released: Mon Jun 15 10:05:31 2026 Summary: Security update for openssl-1_1 Type: security Severity: important References: 1250782,1266340,1266341,1266342,1266349,1266357,CVE-2026-34180,CVE-2026-42766,CVE-2026-45447,CVE-2026-7383,CVE-2026-9076 This update for openssl-1_1 fixes the following issues - CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion (bsc#1266340). - CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption (bsc#1266341). - CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing (bsc#1266342). - CVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryption (bsc#1266349). - CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2434-1 Released: Wed Jun 17 16:40:10 2026 Summary: Recommended update for coreutils Type: recommended Severity: important References: 1259327 This update for coreutils fixes the following issues: - proc: Use affinity mask even on systems with more than 1024 CPUs (bsc#1259327) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2528-1 Released: Tue Jun 23 11:06:07 2026 Summary: Security update for sqlite3 Type: security Severity: important References: 1268012,1268013,CVE-2026-11822,CVE-2026-11824 This update for sqlite3 fixes the following issues Update to 3.53.2: - CVE-2026-11822: memory corruption vulnerabilities in the FTS5 full-text search extension that allow attackers to cause process crashes, memory exhaustion, or arbitrary code execution (bsc#1268012). - CVE-2026-11824: heap-based buffer overflow vulnerability in the FTS5 full-text search extension that allows attackers to cause a crash or execute arbitrary code (bsc#1268013). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2648-1 Released: Fri Jun 26 13:05:57 2026 Summary: Security update for openssl-3 Type: security Severity: important References: 1266340,1266341,1266342,1266343,1266345,1266349,1266350,1266351,1266352,1266353,1266355,1266356,1266357,CVE-2026-34180,CVE-2026-34181,CVE-2026-34183,CVE-2026-42766,CVE-2026-42767,CVE-2026-42768,CVE-2026-42769,CVE-2026-42770,CVE-2026-45445,CVE-2026-45446,CVE-2026-45447,CVE-2026-7383,CVE-2026-9076 This update for openssl-3 fixes the following issues - CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion (bsc#1266340). - CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption (bsc#1266341). - CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing (bsc#1266342). - CVE-2026-34181: PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys (bsc#1266343). - CVE-2026-34183: Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler (bsc#1266345). - CVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryption (bsc#1266349). - CVE-2026-42767: NULL Pointer Dereference in CRMF EncryptedValue Decryption (bsc#1266350). - CVE-2026-42768: Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt() (bsc#1266351). - CVE-2026-42769: Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate (bsc#1266352). - CVE-2026-42770: FFC-DH Peer Validation Uses Attacker-Supplied q (bsc#1266353). - CVE-2026-45445: AES-OCB IV Ignored on EVP_Cipher() Path (bsc#1266355). - CVE-2026-45446: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes (bsc#1266356). - CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357). The following package changes have been done: - glibc-2.38-150600.14.49.1 updated - libsqlite3-0-3.53.2-150000.3.42.1 updated - liblzma5-5.4.1-150600.3.6.1 updated - libopenssl3-3.2.3-150700.5.36.1 updated - coreutils-8.32-150400.9.12.1 updated - libopenssl-3-fips-provider-3.2.3-150700.5.36.1 updated - openssl-3-3.2.3-150700.5.36.1 updated - libopenssl1_1-1.1.1w-150700.11.22.1 updated - python3-pyOpenSSL-21.0.0-150400.13.1 updated - python3-urllib3-1.25.10-150300.4.27.1 updated - container:bci-bci-base-15.7-d2aab68ae05470b62bbe38c4ca03ff5bf72b405197482ed96e34dd0087d7bde2-0 updated From sle-container-updates at lists.suse.com Wed Jul 8 09:10:56 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 8 Jul 2026 11:10:56 +0200 (CEST) Subject: SUSE-CU-2026:6832-1: Security update of suse/multi-linux-manager/5.1/x86_64/server-attestation Message-ID: <20260708091056.DAA72FCD7@maintenance.suse.de> SUSE Container Update Advisory: suse/multi-linux-manager/5.1/x86_64/server-attestation ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6832-1 Container Tags : suse/multi-linux-manager/5.1/x86_64/server-attestation:5.1.4 , suse/multi-linux-manager/5.1/x86_64/server-attestation:5.1.4.8.24.1 , suse/multi-linux-manager/5.1/x86_64/server-attestation:latest Container Release : 8.24.1 Severity : important Type : security References : 1259327 1261206 1261280 1262050 1262091 1262092 1262093 1262464 1262465 1264174 1266340 1266341 1266342 1266343 1266345 1266349 1266350 1266351 1266352 1266353 1266355 1266356 1266357 1268012 1268013 CVE-2026-11822 CVE-2026-11824 CVE-2026-34180 CVE-2026-34181 CVE-2026-34183 CVE-2026-34477 CVE-2026-34479 CVE-2026-34480 CVE-2026-34481 CVE-2026-34743 CVE-2026-4046 CVE-2026-42198 CVE-2026-42766 CVE-2026-42767 CVE-2026-42768 CVE-2026-42769 CVE-2026-42770 CVE-2026-45445 CVE-2026-45446 CVE-2026-45447 CVE-2026-5450 CVE-2026-5928 CVE-2026-7383 CVE-2026-9076 ----------------------------------------------------------------- The container suse/multi-linux-manager/5.1/x86_64/server-attestation was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:1843-1 Released: Wed May 13 17:24:48 2026 Summary: Security update for log4j Type: security Severity: moderate References: 1262050,1262091,1262092,1262093,CVE-2026-34477,CVE-2026-34479,CVE-2026-34480,CVE-2026-34481 This update for log4j fixes the following issues: - CVE-2026-34477: TLS connections vulnerable to interception due to incomplete hostname verification configuration checks (bsc#1262050). - CVE-2026-34479: silent log event loss due to improper XML escaping in `Log4j1XmlLayout` (bsc#1262091). - CVE-2026-34480: silent log event loss due to improper XML escaping in `XmlLayout` (bsc#1262092). - CVE-2026-34481: silent log event loss due to improper serialization of non-finite floating-point values in `JsonTemplateLayout` (bsc#1262093). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2028-1 Released: Wed May 20 11:07:11 2026 Summary: Security update for postgresql-jdbc Type: security Severity: important References: 1264174,CVE-2026-42198 This update for postgresql-jdbc fixes the following issue - CVE-2026-42198: client-side denial of service via malicious SCRAM-SHA-256 authentication (bsc#1264174). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2051-1 Released: Mon May 25 15:59:43 2026 Summary: Security update for xz Type: security Severity: important References: 1261280,CVE-2026-34743 This update for xz fixes the following issue - CVE-2026-34743: buffer overflow in lzma_index_append() (bsc#1261280). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2231-1 Released: Wed Jun 3 12:57:18 2026 Summary: Security update for glibc Type: security Severity: important References: 1261206,1262464,1262465,CVE-2026-4046,CVE-2026-5450,CVE-2026-5928 This update for glibc fixes the following issues - CVE-2026-4046: assertion failure when converting inputs may be used to remotely crash an application (bsc#1261206). - CVE-2026-5450: stdio-common: scanf %mc pattern will cause heap overflow when width > 1024 (bsc#1262465). - CVE-2026-5928: libio: ungetwc could be used to leak data on special conditions (bsc#1262464). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2434-1 Released: Wed Jun 17 16:40:10 2026 Summary: Recommended update for coreutils Type: recommended Severity: important References: 1259327 This update for coreutils fixes the following issues: - proc: Use affinity mask even on systems with more than 1024 CPUs (bsc#1259327) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2528-1 Released: Tue Jun 23 11:06:07 2026 Summary: Security update for sqlite3 Type: security Severity: important References: 1268012,1268013,CVE-2026-11822,CVE-2026-11824 This update for sqlite3 fixes the following issues Update to 3.53.2: - CVE-2026-11822: memory corruption vulnerabilities in the FTS5 full-text search extension that allow attackers to cause process crashes, memory exhaustion, or arbitrary code execution (bsc#1268012). - CVE-2026-11824: heap-based buffer overflow vulnerability in the FTS5 full-text search extension that allows attackers to cause a crash or execute arbitrary code (bsc#1268013). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2637-1 Released: Thu Jun 25 17:42:10 2026 Summary: Recommended update for mozilla-nss Type: recommended Severity: moderate References: This update for mozilla-nss fixes the following issues: Update to NSS 3.112.5: * reject DTLS 1.3 Server Hello after HVR without capping ss->vrange.max. * update to version 2.84 of builtins module. - Added 'Suggests: p11-kit-nss-trust' to favor over mozilla-nss-certs (jsc#PED-15633) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2648-1 Released: Fri Jun 26 13:05:57 2026 Summary: Security update for openssl-3 Type: security Severity: important References: 1266340,1266341,1266342,1266343,1266345,1266349,1266350,1266351,1266352,1266353,1266355,1266356,1266357,CVE-2026-34180,CVE-2026-34181,CVE-2026-34183,CVE-2026-42766,CVE-2026-42767,CVE-2026-42768,CVE-2026-42769,CVE-2026-42770,CVE-2026-45445,CVE-2026-45446,CVE-2026-45447,CVE-2026-7383,CVE-2026-9076 This update for openssl-3 fixes the following issues - CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion (bsc#1266340). - CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption (bsc#1266341). - CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing (bsc#1266342). - CVE-2026-34181: PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys (bsc#1266343). - CVE-2026-34183: Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler (bsc#1266345). - CVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryption (bsc#1266349). - CVE-2026-42767: NULL Pointer Dereference in CRMF EncryptedValue Decryption (bsc#1266350). - CVE-2026-42768: Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt() (bsc#1266351). - CVE-2026-42769: Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate (bsc#1266352). - CVE-2026-42770: FFC-DH Peer Validation Uses Attacker-Supplied q (bsc#1266353). - CVE-2026-45445: AES-OCB IV Ignored on EVP_Cipher() Path (bsc#1266355). - CVE-2026-45446: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes (bsc#1266356). - CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357). The following package changes have been done: - glibc-2.38-150600.14.49.1 updated - libsqlite3-0-3.53.2-150000.3.42.1 updated - liblzma5-5.4.1-150600.3.6.1 updated - libopenssl3-3.2.3-150700.5.36.1 updated - coreutils-8.32-150400.9.12.1 updated - libopenssl-3-fips-provider-3.2.3-150700.5.36.1 updated - openssl-3-3.2.3-150700.5.36.1 updated - libfreebl3-3.112.5-150400.3.69.2 updated - mozilla-nss-certs-3.112.5-150400.3.69.2 updated - mozilla-nss-3.112.5-150400.3.69.2 updated - libsoftokn3-3.112.5-150400.3.69.2 updated - log4j-2.20.0-150200.4.33.1 updated - postgresql-jdbc-42.2.25-150400.3.15.1 updated - container:bci-bci-base-15.7-d2aab68ae05470b62bbe38c4ca03ff5bf72b405197482ed96e34dd0087d7bde2-0 updated From sle-container-updates at lists.suse.com Wed Jul 8 09:11:10 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 8 Jul 2026 11:11:10 +0200 (CEST) Subject: SUSE-CU-2026:6835-1: Security update of suse/multi-linux-manager/5.1/x86_64/server-migration-14-16 Message-ID: <20260708091110.A26F3FCD8@maintenance.suse.de> SUSE Container Update Advisory: suse/multi-linux-manager/5.1/x86_64/server-migration-14-16 ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6835-1 Container Tags : suse/multi-linux-manager/5.1/x86_64/server-migration-14-16:5.1.4 , suse/multi-linux-manager/5.1/x86_64/server-migration-14-16:5.1.4.8.22.1 , suse/multi-linux-manager/5.1/x86_64/server-migration-14-16:latest Container Release : 8.22.1 Severity : important Type : security References : 1250782 1250782 1259327 1261206 1261280 1261606 1262464 1262465 1263804 1263804 1263804 1264965 1264971 1265172 1265172 1265172 1265173 1265173 1265173 1265174 1265174 1265174 1265175 1265175 1265175 1265176 1265177 1265177 1265177 1265178 1265178 1265178 1265179 1265179 1265179 1265180 1265181 1265181 1265181 1265182 1265182 1266340 1266340 1266341 1266341 1266342 1266342 1266343 1266345 1266349 1266349 1266350 1266351 1266352 1266353 1266355 1266356 1266357 1266357 CVE-2026-27456 CVE-2026-34180 CVE-2026-34180 CVE-2026-34181 CVE-2026-34183 CVE-2026-34743 CVE-2026-4046 CVE-2026-42766 CVE-2026-42766 CVE-2026-42767 CVE-2026-42768 CVE-2026-42769 CVE-2026-42770 CVE-2026-45445 CVE-2026-45446 CVE-2026-45447 CVE-2026-45447 CVE-2026-5450 CVE-2026-5928 CVE-2026-6472 CVE-2026-6472 CVE-2026-6472 CVE-2026-6473 CVE-2026-6473 CVE-2026-6473 CVE-2026-6474 CVE-2026-6474 CVE-2026-6474 CVE-2026-6475 CVE-2026-6475 CVE-2026-6475 CVE-2026-6476 CVE-2026-6477 CVE-2026-6477 CVE-2026-6477 CVE-2026-6478 CVE-2026-6478 CVE-2026-6478 CVE-2026-6479 CVE-2026-6479 CVE-2026-6479 CVE-2026-6575 CVE-2026-6637 CVE-2026-6637 CVE-2026-6637 CVE-2026-6638 CVE-2026-6638 CVE-2026-7383 CVE-2026-7383 CVE-2026-9076 CVE-2026-9076 ----------------------------------------------------------------- The container suse/multi-linux-manager/5.1/x86_64/server-migration-14-16 was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:1944-1 Released: Mon May 18 09:47:19 2026 Summary: Security update for postgresql18 Type: security Severity: important References: 1263804,1265172,1265173,1265174,1265175,1265176,1265177,1265178,1265179,1265180,1265181,1265182,CVE-2026-6472,CVE-2026-6473,CVE-2026-6474,CVE-2026-6475,CVE-2026-6476,CVE-2026-6477,CVE-2026-6478,CVE-2026-6479,CVE-2026-6575,CVE-2026-6637,CVE-2026-6638 This update for postgresql18 fixes the following issues Update to version 18.4. Security issues: - CVE-2026-6472: ensure the user has CREATE privilege on the schema specified (bsc#1265172). - CVE-2026-6473: integer overflows in memory-allocation calculations (bsc#1265173). - CVE-2026-6474: Guard against malicious time zone names (bsc#1265174). - CVE-2026-6475: Prevent path traversal in pg_basebackup and pg_rewind (bsc#1265175). - CVE-2026-6476: Properly quote subscription names in pg_createsubscriber (bsc#1265176). - CVE-2026-6477: Mark PQfn() as unsafe, and avoid using it within libpq (bsc#1265177). - CVE-2026-6478: Use timing-safe string comparisons in authentication code (bsc#1265178). - CVE-2026-6479: Prevent unbounded recursion while processing startup packets (bsc#1265179). - CVE-2026-6575: Detect faulty input when restoring attribute MCV statistics (bsc#1265180). - CVE-2026-6637: Prevent SQL injection and buffer overruns in contrib/spi (bsc#1265181). - CVE-2026-6638: Properly quote object names in logical replication origin checks (bsc#1265182). Non security issue: - Get rid of update-alternatives for openSUSE/SLE 16.0 and newer to support immutable systems and transactional updates (jsc#PED-14820). - /usr/bin/pg_config is missing after migrating away from update-alternatives (bsc#1263804). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2001-1 Released: Tue May 19 10:20:57 2026 Summary: Security update for postgresql16 Type: security Severity: important References: 1263804,1265172,1265173,1265174,1265175,1265177,1265178,1265179,1265181,1265182,CVE-2026-6472,CVE-2026-6473,CVE-2026-6474,CVE-2026-6475,CVE-2026-6477,CVE-2026-6478,CVE-2026-6479,CVE-2026-6637,CVE-2026-6638 This update for postgresql16 fixes the following issues Update to version 16.13. Security issues: - CVE-2026-6472: ensure the user has CREATE privilege on the schema specified (bsc#1265172). - CVE-2026-6473: integer overflows in memory-allocation calculations (bsc#1265173). - CVE-2026-6474: Guard against malicious time zone names (bsc#1265174). - CVE-2026-6475: Prevent path traversal in pg_basebackup and pg_rewind (bsc#1265175). - CVE-2026-6477: Mark PQfn() as unsafe, and avoid using it within libpq (bsc#1265177). - CVE-2026-6478: Use timing-safe string comparisons in authentication code (bsc#1265178). - CVE-2026-6479: Prevent unbounded recursion while processing startup packets (bsc#1265179). - CVE-2026-6637: Prevent SQL injection and buffer overruns in contrib/spi (bsc#1265181). - CVE-2026-6638: Properly quote object names in logical replication origin checks (bsc#1265182). Non security issue: - Get rid of update-alternatives for openSUSE/SLE 16.0 and newer to support immutable systems and transactional updates (jsc#PED-14824). - /usr/bin/pg_config is missing after migrating away from update-alternatives (bsc#1263804). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2041-1 Released: Thu May 21 16:29:18 2026 Summary: Recommended update for openssl-1_1 Type: recommended Severity: moderate References: 1250782 This update for openssl-1_1 fixes the following issues: - Fix 30-test_fips_sli.t fails intermittently on s390x (bsc#1250782): * Fix AES_GCM IV test sometimes failing on s390x. ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2051-1 Released: Mon May 25 15:59:43 2026 Summary: Security update for xz Type: security Severity: important References: 1261280,CVE-2026-34743 This update for xz fixes the following issue - CVE-2026-34743: buffer overflow in lzma_index_append() (bsc#1261280). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2117-1 Released: Fri May 29 17:29:37 2026 Summary: Security update for postgresql14 Type: security Severity: important References: 1263804,1265172,1265173,1265174,1265175,1265177,1265178,1265179,1265181,CVE-2026-6472,CVE-2026-6473,CVE-2026-6474,CVE-2026-6475,CVE-2026-6477,CVE-2026-6478,CVE-2026-6479,CVE-2026-6637 This update for postgresql14 fixes the following issues Update to version 14.23. Security issues: - CVE-2026-6472: ensure the user has CREATE privilege on the schema specified (bsc#1265172). - CVE-2026-6473: integer overflows in memory-allocation calculations (bsc#1265173). - CVE-2026-6474: Guard against malicious time zone names (bsc#1265174). - CVE-2026-6475: Prevent path traversal in pg_basebackup and pg_rewind (bsc#1265175). - CVE-2026-6477: Mark PQfn() as unsafe, and avoid using it within libpq (bsc#1265177). - CVE-2026-6478: Use timing-safe string comparisons in authentication code (bsc#1265178). - CVE-2026-6479: Prevent unbounded recursion while processing startup packets (bsc#1265179). - CVE-2026-6637: Prevent SQL injection and buffer overruns in contrib/spi (bsc#1265181). Non security issue: - Get rid of update-alternatives for openSUSE/SLE 16.0 and newer to support immutable systems and transactional updates (jsc#PED-14823). - /usr/bin/pg_config is missing after migrating away from update-alternatives (bsc#1263804). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2231-1 Released: Wed Jun 3 12:57:18 2026 Summary: Security update for glibc Type: security Severity: important References: 1261206,1262464,1262465,CVE-2026-4046,CVE-2026-5450,CVE-2026-5928 This update for glibc fixes the following issues - CVE-2026-4046: assertion failure when converting inputs may be used to remotely crash an application (bsc#1261206). - CVE-2026-5450: stdio-common: scanf %mc pattern will cause heap overflow when width > 1024 (bsc#1262465). - CVE-2026-5928: libio: ungetwc could be used to leak data on special conditions (bsc#1262464). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2278-1 Released: Fri Jun 5 11:00:12 2026 Summary: Recommended update for timezone Type: recommended Severity: important References: 1264965 This update for timezone fixes the following issues: - Update to 2026b: * British Columbia moved to permanent -07 on 2026-03-09. (bsc#1264965) * Some more overflow bugs have been fixed in zic. - Update to 2026a: * Moldova has used EU transition times since 2022. * The 'right' TZif files are no longer installed by default. * -DTZ_RUNTIME_LEAPS=0 disables runtime support for leap seconds. * TZif files are no longer limited to 50 bytes of abbreviations. * zic is no longer limited to 50 leap seconds. * Several integer overflow bugs have been fixed. - Update to 2025c: * Update Baja California DST rules in 1953, 1961-1975 * An unset TZ is no longer invalid when /etc/localtime is missing, and is abbreviated 'UTC' not '-00'. This reverts to 2024b behavior * tzset etc. are now more cautious about questionable TZ settings. * tzset etc. now treat ' ' like '_' in time zone abbreviations * tzfree now preserves errno, consistently with POSIX.1-2024 'free'. * zic has new options inspired by FreeBSD. * multiple changes visible to developers - Use 'REDO=posix_right' to keep installing 'right' TZif files. ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2392-1 Released: Mon Jun 15 10:05:31 2026 Summary: Security update for openssl-1_1 Type: security Severity: important References: 1250782,1266340,1266341,1266342,1266349,1266357,CVE-2026-34180,CVE-2026-42766,CVE-2026-45447,CVE-2026-7383,CVE-2026-9076 This update for openssl-1_1 fixes the following issues - CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion (bsc#1266340). - CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption (bsc#1266341). - CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing (bsc#1266342). - CVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryption (bsc#1266349). - CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2434-1 Released: Wed Jun 17 16:40:10 2026 Summary: Recommended update for coreutils Type: recommended Severity: important References: 1259327 This update for coreutils fixes the following issues: - proc: Use affinity mask even on systems with more than 1024 CPUs (bsc#1259327) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2485-1 Released: Mon Jun 22 14:06:22 2026 Summary: Security update for util-linux Type: security Severity: moderate References: 1261606,CVE-2026-27456 This update for util-linux fixes the following issue - CVE-2026-27456: TOCTOU in the mount program when setting up loop devices (bsc#1261606). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2648-1 Released: Fri Jun 26 13:05:57 2026 Summary: Security update for openssl-3 Type: security Severity: important References: 1266340,1266341,1266342,1266343,1266345,1266349,1266350,1266351,1266352,1266353,1266355,1266356,1266357,CVE-2026-34180,CVE-2026-34181,CVE-2026-34183,CVE-2026-42766,CVE-2026-42767,CVE-2026-42768,CVE-2026-42769,CVE-2026-42770,CVE-2026-45445,CVE-2026-45446,CVE-2026-45447,CVE-2026-7383,CVE-2026-9076 This update for openssl-3 fixes the following issues - CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion (bsc#1266340). - CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption (bsc#1266341). - CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing (bsc#1266342). - CVE-2026-34181: PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys (bsc#1266343). - CVE-2026-34183: Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler (bsc#1266345). - CVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryption (bsc#1266349). - CVE-2026-42767: NULL Pointer Dereference in CRMF EncryptedValue Decryption (bsc#1266350). - CVE-2026-42768: Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt() (bsc#1266351). - CVE-2026-42769: Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate (bsc#1266352). - CVE-2026-42770: FFC-DH Peer Validation Uses Attacker-Supplied q (bsc#1266353). - CVE-2026-45445: AES-OCB IV Ignored on EVP_Cipher() Path (bsc#1266355). - CVE-2026-45446: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes (bsc#1266356). - CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2661-1 Released: Fri Jun 26 15:15:48 2026 Summary: Recommended update for curl Type: recommended Severity: important References: 1264971 This update for curl fixes the following issues: - Call http_size() first to prioritize Transfer-Encoding: chunked over a zero Content-Length empty body check (bsc#1264971) The following package changes have been done: - glibc-2.38-150600.14.49.1 updated - libuuid1-2.40.4-150700.4.13.1 updated - liblzma5-5.4.1-150600.3.6.1 updated - libopenssl3-3.2.3-150700.5.36.1 updated - coreutils-8.32-150400.9.12.1 updated - libopenssl-3-fips-provider-3.2.3-150700.5.36.1 updated - libcurl4-8.14.1-150700.7.17.1 updated - postgresql16-contrib-16.14-150600.16.33.1 updated - timezone-2026b-150600.91.9.1 updated - glibc-locale-base-2.38-150600.14.49.1 updated - libopenssl1_1-1.1.1w-150700.11.22.1 updated - libpq5-18.4-150600.13.11.1 updated - glibc-locale-2.38-150600.14.49.1 updated - postgresql14-14.23-150600.16.31.1 updated - postgresql16-16.14-150600.16.33.1 updated - postgresql14-server-14.23-150600.16.31.1 updated - postgresql16-server-16.14-150600.16.33.1 updated - postgresql14-contrib-14.23-150600.16.31.1 updated - container:bci-bci-base-15.7-d2aab68ae05470b62bbe38c4ca03ff5bf72b405197482ed96e34dd0087d7bde2-0 updated From sle-container-updates at lists.suse.com Wed Jul 8 09:11:19 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 8 Jul 2026 11:11:19 +0200 (CEST) Subject: SUSE-CU-2026:6837-1: Security update of suse/multi-linux-manager/5.1/x86_64/server-saline Message-ID: <20260708091119.AB573FCD8@maintenance.suse.de> SUSE Container Update Advisory: suse/multi-linux-manager/5.1/x86_64/server-saline ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6837-1 Container Tags : suse/multi-linux-manager/5.1/x86_64/server-saline:5.1.4 , suse/multi-linux-manager/5.1/x86_64/server-saline:5.1.4.9.22.1 , suse/multi-linux-manager/5.1/x86_64/server-saline:latest Container Release : 9.22.1 Severity : important Type : security References : 1158038 1208800 1226578 1233668 1234567 1238890 1239718 1242916 1243268 1245107 1246504 1247707 1247948 1248699 1249243 1249435 1250782 1250782 1252744 1253032 1253193 1253740 1254900 1254903 1254904 1254905 1257068 1257583 1257882 1257894 1258041 1258079 1258144 1258193 1258364 1258382 1258816 1259087 1259230 1259261 1259311 1259327 1259474 1259479 1259482 1259521 1259553 1259590 1259591 1259630 1259700 1259706 1259739 1259787 1259802 1259842 1259960 1260031 1260614 1260806 1261206 1261280 1261305 1261307 1261327 1261606 1261631 1261723 1261753 1261841 1261902 1261970 1262090 1262144 1262222 1262285 1262460 1262464 1262465 1262471 1262492 1262595 1262708 1262720 1262760 1262761 1262950 1263501 1263814 1263841 1263986 1263987 1264149 1264174 1264234 1264256 1264966 1264971 1265134 1265223 1265281 1265282 1265283 1265284 1265285 1265286 1265287 1265288 1265289 1265290 1265319 1265358 1265935 1265938 1265975 1266012 1266039 1266340 1266340 1266341 1266341 1266342 1266342 1266343 1266345 1266349 1266349 1266350 1266351 1266352 1266353 1266355 1266356 1266357 1266357 1266556 1266600 1267426 1267874 1268012 1268013 1268395 1268396 1268397 1269253 1269534 CVE-2022-21698 CVE-2024-52804 CVE-2025-47287 CVE-2025-67724 CVE-2025-67725 CVE-2025-67726 CVE-2026-11822 CVE-2026-11824 CVE-2026-25707 CVE-2026-27456 CVE-2026-28374 CVE-2026-28376 CVE-2026-28379 CVE-2026-28380 CVE-2026-28383 CVE-2026-31958 CVE-2026-33376 CVE-2026-33377 CVE-2026-33378 CVE-2026-33380 CVE-2026-33381 CVE-2026-34180 CVE-2026-34180 CVE-2026-34181 CVE-2026-34183 CVE-2026-3446 CVE-2026-34743 CVE-2026-34986 CVE-2026-39821 CVE-2026-40179 CVE-2026-4046 CVE-2026-41602 CVE-2026-42151 CVE-2026-42154 CVE-2026-42198 CVE-2026-42766 CVE-2026-42766 CVE-2026-42767 CVE-2026-42768 CVE-2026-42769 CVE-2026-42770 CVE-2026-44933 CVE-2026-44941 CVE-2026-44942 CVE-2026-45445 CVE-2026-45446 CVE-2026-45447 CVE-2026-45447 CVE-2026-48863 CVE-2026-49853 CVE-2026-49854 CVE-2026-49855 CVE-2026-5450 CVE-2026-5928 CVE-2026-5958 CVE-2026-7383 CVE-2026-7383 CVE-2026-9076 CVE-2026-9076 CVE-2026-9149 CVE-2026-9150 ----------------------------------------------------------------- The container suse/multi-linux-manager/5.1/x86_64/server-saline was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2024:4137-1 Released: Mon Dec 2 13:28:37 2024 Summary: Security update for python-tornado6 Type: security Severity: moderate References: 1233668,CVE-2024-52804 This update for python-tornado6 fixes the following issues: - CVE-2024-52804: Fixed a denial of service caused by quadratic performance of cookie parsing (bsc#1233668) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2025:1649-1 Released: Thu May 22 09:44:52 2025 Summary: Security update for python-tornado6 Type: security Severity: important References: 1243268,CVE-2025-47287 This update for python-tornado6 fixes the following issues: - CVE-2025-47287: excessive logging when parsing malformed `multipart/form-data` can lead to a denial-of-service (bsc#1243268). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:10-1 Released: Mon Jan 5 11:26:28 2026 Summary: Security update for python-tornado6 Type: security Severity: important References: 1254903,1254904,1254905,CVE-2025-67724,CVE-2025-67725,CVE-2025-67726 This update for python-tornado6 fixes the following issues: - CVE-2025-67724: unescaped `reason` argument used in HTTP headers and in HTML default error pages can be used by attackers to launch header injection or XSS attacks (bsc#1254903). - CVE-2025-67725: quadratic complexity of string concatenation operations used by the `HTTPHeaders.add` method can lead to DoS when processing a maliciously crafted HTTP request (bsc#1254905). - CVE-2025-67726: quadratic complexity algorithm used in the `_parseparam` function of `httputil.py` can lead to DoS when processing maliciously crafted parameters in a `Content-Disposition` header (bsc#1254904). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:1064-1 Released: Thu Mar 26 11:37:21 2026 Summary: Security update for python-tornado6 Type: security Severity: important References: 1259553,1259630,CVE-2026-31958 This update for python-tornado6 fixes the following issues: - CVE-2026-31958: parsing large multipart bodies with many parts can cause a denial of service (bsc#1259553). - incomplete validation of cookie attributes allows for injection of user-controlled values in other cookie attributes (bsc#1259630). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:1941-1 Released: Mon May 18 09:44:34 2026 Summary: Security update for sed Type: security Severity: moderate References: 1262144,CVE-2026-5958 This update for sed fixes the following issue: - CVE-2026-5958: a TOCTOU race can allow to read attacker-controlled content and write it to an unintended file (bsc#1262144). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2041-1 Released: Thu May 21 16:29:18 2026 Summary: Recommended update for openssl-1_1 Type: recommended Severity: moderate References: 1250782 This update for openssl-1_1 fixes the following issues: - Fix 30-test_fips_sli.t fails intermittently on s390x (bsc#1250782): * Fix AES_GCM IV test sometimes failing on s390x. ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2051-1 Released: Mon May 25 15:59:43 2026 Summary: Security update for xz Type: security Severity: important References: 1261280,CVE-2026-34743 This update for xz fixes the following issue - CVE-2026-34743: buffer overflow in lzma_index_append() (bsc#1261280). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2231-1 Released: Wed Jun 3 12:57:18 2026 Summary: Security update for glibc Type: security Severity: important References: 1261206,1262464,1262465,CVE-2026-4046,CVE-2026-5450,CVE-2026-5928 This update for glibc fixes the following issues - CVE-2026-4046: assertion failure when converting inputs may be used to remotely crash an application (bsc#1261206). - CVE-2026-5450: stdio-common: scanf %mc pattern will cause heap overflow when width > 1024 (bsc#1262465). - CVE-2026-5928: libio: ungetwc could be used to leak data on special conditions (bsc#1262464). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2298-1 Released: Mon Jun 8 12:17:11 2026 Summary: Security update for python311 Type: security Severity: moderate References: 1258364,1261970,CVE-2026-3446 This update for python311 fixes the following issues: - CVE-2026-3446: Base64 decoding stops at first padded quad by default (bsc#1261970). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2392-1 Released: Mon Jun 15 10:05:31 2026 Summary: Security update for openssl-1_1 Type: security Severity: important References: 1250782,1266340,1266341,1266342,1266349,1266357,CVE-2026-34180,CVE-2026-42766,CVE-2026-45447,CVE-2026-7383,CVE-2026-9076 This update for openssl-1_1 fixes the following issues - CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion (bsc#1266340). - CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption (bsc#1266341). - CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing (bsc#1266342). - CVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryption (bsc#1266349). - CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2434-1 Released: Wed Jun 17 16:40:10 2026 Summary: Recommended update for coreutils Type: recommended Severity: important References: 1259327 This update for coreutils fixes the following issues: - proc: Use affinity mask even on systems with more than 1024 CPUs (bsc#1259327) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2485-1 Released: Mon Jun 22 14:06:22 2026 Summary: Security update for util-linux Type: security Severity: moderate References: 1261606,CVE-2026-27456 This update for util-linux fixes the following issue - CVE-2026-27456: TOCTOU in the mount program when setting up loop devices (bsc#1261606). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2528-1 Released: Tue Jun 23 11:06:07 2026 Summary: Security update for sqlite3 Type: security Severity: important References: 1268012,1268013,CVE-2026-11822,CVE-2026-11824 This update for sqlite3 fixes the following issues Update to 3.53.2: - CVE-2026-11822: memory corruption vulnerabilities in the FTS5 full-text search extension that allow attackers to cause process crashes, memory exhaustion, or arbitrary code execution (bsc#1268012). - CVE-2026-11824: heap-based buffer overflow vulnerability in the FTS5 full-text search extension that allows attackers to cause a crash or execute arbitrary code (bsc#1268013). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2531-1 Released: Tue Jun 23 12:25:09 2026 Summary: Security update for libsolv, libzypp, zypper Type: security Severity: important References: 1158038,1239718,1246504,1247948,1249435,1252744,1253193,1253740,1257068,1257882,1258193,1259311,1259706,1259802,1259842,1265223,1265935,1265938,1266039,1267426,1267874,CVE-2026-25707,CVE-2026-44933,CVE-2026-44941,CVE-2026-44942,CVE-2026-48863,CVE-2026-9149,CVE-2026-9150 This update for libsolv, libzypp, zypper fixes the following issues - CVE-2026-9149: Heap buffer overflow in libsolv repo_add_solv via negative maxsize from crafted .solv file (bsc#1265935). - CVE-2026-9150: Stack-based buffer overflow in libsolv's Debian metadata parser when handling SHA384/SHA512 checksums (bsc#1265938). - CVE-2026-25707: Handcrafted repo metadata may cause arbitrary local files to be overwritten (bsc#1259802). - CVE-2026-44933: scan of the Mandatory signature verification plugin support (bsc#1265223). - CVE-2026-44941: path traversal via 'keyhint' (bsc#1267426). - CVE-2026-44942: .repo files can have an optional path which can lead to path traversal attacks (bsc#1267874). - CVE-2026-48863: Fix buffer overflow when parsing EdDSA signature (bsc#1266039). Changes in libzypp: Updated to version 17.38.13 (35): - A .repo files 'path=' entry must not refer to a location outside the repo (bsc#1267874, CVE-2026-44942) A 'path=' entry may solely denote a sub-directory of the baseurl where the metadata are located. A relative path trying to access data outside the baseurl is reported and sanitized. - Fix potential crash on malformed or malicious repository metadata (fixes #740) - Repo metadata: discard entries referring to a location outside the repo (bsc#1259802, CVE-2026-25707) Mirroring those data locally would refer to a location outside the repo's local cache directory. Those data entries are reported and discarded. - zypp.conf: Allow [env] section to add environment variables. This feature is designed to enable environment-specific settings or debugging options over an extended period. See zypp.conf(5). - Prevent configured scripts from escaping the sigcheck directory (bsc#1265223, CVE-2026-44933) - StringV: guard hasPrefix/hasPrefixCI against reading past the view end (fixes #735) - Mandatory signature verification plugin support (PED#11922) - Fix purge-kernel -rc kernel handling (bsc#1239718) - Explicitly_set_pool_DISTTYPE_RPM (fixes #726) - Check for trusted key updates when updating the general keyring (bsc#1259706) - Support multiple MirroredOrigin authorities (bsc#1253193) - Workaround doxygen bug: doxygen/doxygen#12057 - libzypp.spec: Add missing graphviz-gd BuildRequires (boo#1259842) - Fix preloader not caching packages from arch specific subrepos (bsc#1253740) - Deprioritize invalid mirrors (fixes openSUSE/zypper#636) - Fix Product::referencePackage lookup (bsc#1259311) Use a provided autoproduct() as hint to the package name of the release package. It might be that not just multiple versions of the same release package provide the same product version, but also different release packages. - specfile: on fedora use %{_prefix}/share as zyppconfdir if %{_distconfdir} is undefined (fixes #693) This will set '-DZYPPCONFDIR=%{zyppconfdir}' for cmake. - Fall back to a writable location when precaching packages without root (bsc#1247948) - Prepare a legacy /etc/zypp/zypp.conf to be installed on old distros. See the ZYPP.CONF(5) man page for details. - Fix runtime check for broken rpm --runposttrans (bsc#1257068) - Avoid libcurl-mini4 when building as it does not support ftp protocol. - Translation: updated .pot file. - zypp.conf: follow the UAPI configuration file specification (PED-14658) In short terms it means we will no longer ship an /etc/zypp/zypp.conf, but store our own defaults in /usr/etc/zypp/zypp.conf. The systems administrator may choose to keep a full copy in /etc/zypp/zypp.conf ignoring our config file settings completely, or - the preferred way - to overwrite specific settings via /etc/zypp/zypp.conf.d/*.conf overlay files. See the ZYPP.CONF(5) man page for details. - cmake: correctly detect rpm6 (fixes #689) - Use 'zypp.tmp' as temp directory component to ease setting up SELinux policies (bsc#1249435) - zyppng: Update Provider to current MediaCurl2 download approach, drop Metalink ( fixes #682 ) Changes in libsolv: Updated to version 0.7.39: - fix solv_chksum_free segfault when called with a NULL pointer - made repo_add_solv more robust against corrupt files [bsc#1265935] [CVE-2026-9149] - fix potential buffer overflow when verifying EdDSA signatures [bsc#1266039] [CVE-2026-48863] - added limit checks in multiple places to catch overflows - reduce the size of the language id cache - fixed Debian canon selection - fixed dbpath detection in repo_rpmdb_librpm - reduced stack usage in repo page compression (needed for musl) - fix parsing of sha512 checksums in debian repositories [bsc#1265938] [CVE-2026-9150] - improve speed of dirpool_add_dir makeing parsing of filelists.xml twice as fast - fix parsing of recommends in the old Mandriva synthesis format - respect the 'default' attribute in environment optionlist in the comps parser - support suse namespace deps in boolean dependencies [bsc#1258193] - support for the Elbrus2000 (e2k) architecture - support language() suse namespace rewriting Changes in zypper: Update to version 1.14.98: - Transactional systems: Delegate rw-commands to transactional-wrapper if available (jsc#PED-13680, jsc#PED-15607) On a transactional system where the root filesystem is mounted read-only, zypper commands that modify the system cannot be executed directly. If the system provides a transactional-wrapper utility, zypper will automatically attempt to invoke it. The wrapper transparently executes the zypper command within a new, writable snapshot and manages the lifecycle of that snapshot based on the command's exit status. On transactional systems lacking a transactional-wrapper, users must manually invoke specialized tools -such as transactional-update- to install, update, or remove software. - Add --filter-version-change to zypper lu. Adds filtering by version change significance to reduce noise in update listings. Supports levels: rebuild (hides rebuild-only changes) and package (hides all release-only changes). - Autorefresh ris-services the way as plugin-services (bsc#1246504) It's actually wrong to treat service refreshes different depending on the service type. For the purpose of a service it makes no difference how the data about the repos to use are acquired. - Report download progress for command line rpms (fixes #613) - Hint to '-vv ref' to see the mirrors used to download the metadata (bsc#1257882) - Service: Allow 'zypper ls SERVICE ...' to test whether a service with this alias is defined (bsc#1252744) The command prints an abstract of all services passed on the command line. It returns 3-ZYPPER_EXIT_ERR_INVALID_ARGS if some argument does not name an existing service. - Keep repo data when updating the service settings (bsc#1252744) - info: Enhance pattern content table (bsc#1158038) Alternatives (multiple packages providing the same requirement) are now listed as a single entry in the content table. The entry shows either the installed package which satisfies the requirement or the requirement itself as type 'Provides'. Listing all potential alternatives was miss leading, especially if the alternatives were mutual exclusive. It looked like an installed pattern had not-installed requirements and it was not possible to install all requirements at the same time. ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2648-1 Released: Fri Jun 26 13:05:57 2026 Summary: Security update for openssl-3 Type: security Severity: important References: 1266340,1266341,1266342,1266343,1266345,1266349,1266350,1266351,1266352,1266353,1266355,1266356,1266357,CVE-2026-34180,CVE-2026-34181,CVE-2026-34183,CVE-2026-42766,CVE-2026-42767,CVE-2026-42768,CVE-2026-42769,CVE-2026-42770,CVE-2026-45445,CVE-2026-45446,CVE-2026-45447,CVE-2026-7383,CVE-2026-9076 This update for openssl-3 fixes the following issues - CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion (bsc#1266340). - CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption (bsc#1266341). - CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing (bsc#1266342). - CVE-2026-34181: PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys (bsc#1266343). - CVE-2026-34183: Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler (bsc#1266345). - CVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryption (bsc#1266349). - CVE-2026-42767: NULL Pointer Dereference in CRMF EncryptedValue Decryption (bsc#1266350). - CVE-2026-42768: Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt() (bsc#1266351). - CVE-2026-42769: Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate (bsc#1266352). - CVE-2026-42770: FFC-DH Peer Validation Uses Attacker-Supplied q (bsc#1266353). - CVE-2026-45445: AES-OCB IV Ignored on EVP_Cipher() Path (bsc#1266355). - CVE-2026-45446: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes (bsc#1266356). - CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2661-1 Released: Fri Jun 26 15:15:48 2026 Summary: Recommended update for curl Type: recommended Severity: important References: 1264971 This update for curl fixes the following issues: - Call http_size() first to prioritize Transfer-Encoding: chunked over a zero Content-Length empty body check (bsc#1264971) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2725-1 Released: Thu Jul 2 15:52:16 2026 Summary: Security update for python-tornado6 Type: security Severity: important References: 1268395,1268396,1268397,CVE-2026-49853,CVE-2026-49854,CVE-2026-49855 This update for python-tornado6 fixes the following issues - CVE-2026-49853: authorization header forwarded across cross-origin redirects in SimpleAsyncHTTPClient (bsc#1268395). - CVE-2026-49854: out-of-bounds memory access via C extension (bsc#1268396). - CVE-2026-49855: AsyncHTTPClient accumulates decompressed chunks without size limit (bsc#1268397). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2774-1 Released: Mon Jul 6 09:52:16 2026 Summary: Maintenance update for Multi-Linux Manager 5.1: Server, Proxy and Retail Branch Server Type: security Severity: important References: 1208800,1226578,1234567,1238890,1242916,1245107,1247707,1248699,1249243,1253032,1254900,1257583,1257894,1258041,1258079,1258144,1258382,1258816,1259087,1259230,1259261,1259474,1259479,1259482,1259521,1259590,1259591,1259700,1259739,1259787,1259960,1260031,1260614,1260806,1261305,1261307,1261327,1261631,1261723,1261753,1261841,1261902,1262090,1262222,1262285,1262460,1262471,1262492,1262595,1262708,1262720,1262760,1262761,1262950,1263501,1263814,1263841,1263986,1263987,1264149,1264174,1264234,1264256,1264966,1265134,1265281,1265282,1265283,1265284,1265285,1265286,1265287,1265288,1265289,1265290,1265319,1265358,1265975,1266012,1266556,1266600,1269253,1269534,CVE-2022-21698,CVE-2026-28374,CVE-2026-28376,CVE-2026-28379,CVE-2026-28380,CVE-2026-28383,CVE-2026-33376,CVE-2026-33377,CVE-2026-33378,CVE-2026-33380,CVE-2026-33381,CVE-2026-34986,CVE-2026-39821,CVE-2026-40179,CVE-2026-41602,CVE-2026-42151,CVE-2026-42154,CVE-2026-42198 Maintenance update for Multi-Linux Manager 5.1: Server, Proxy and Retail Branch Server This is a codestream only update The following package changes have been done: - glibc-2.38-150600.14.49.1 updated - libuuid1-2.40.4-150700.4.13.1 updated - libsqlite3-0-3.53.2-150000.3.42.1 updated - libsmartcols1-2.40.4-150700.4.13.1 updated - liblzma5-5.4.1-150600.3.6.1 updated - libopenssl3-3.2.3-150700.5.36.1 updated - libblkid1-2.40.4-150700.4.13.1 updated - sed-4.9-150600.3.3.1 updated - coreutils-8.32-150400.9.12.1 updated - libopenssl-3-fips-provider-3.2.3-150700.5.36.1 updated - libmount1-2.40.4-150700.4.13.1 updated - libfdisk1-2.40.4-150700.4.13.1 updated - libcurl4-8.14.1-150700.7.17.1 updated - libsolv-tools-base-0.7.39-150700.11.10.1 updated - util-linux-2.40.4-150700.4.13.1 updated - openssl-3-3.2.3-150700.5.36.1 updated - libpython3_11-1_0-3.11.15-150600.3.56.1 updated - python311-base-3.11.15-150600.3.56.1 updated - python311-tornado6-6.3.2-150400.9.18.1 added - salt-3006.0-150700.14.23.4 updated - python311-salt-3006.0-150700.14.23.4 updated - python311-saline-2026.05.18-150700.3.6.1 updated - saline-2026.05.18-150700.3.6.1 updated - libopenssl1_1-1.1.1w-150700.11.22.1 updated - container:bci-bci-base-15.7-d2aab68ae05470b62bbe38c4ca03ff5bf72b405197482ed96e34dd0087d7bde2-0 updated From sle-container-updates at lists.suse.com Wed Jul 8 09:12:18 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 8 Jul 2026 11:12:18 +0200 (CEST) Subject: SUSE-CU-2026:6838-1: Security update of trento/mcp-server-trento Message-ID: <20260708091218.0BAB4FCD8@maintenance.suse.de> SUSE Container Update Advisory: trento/mcp-server-trento ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6838-1 Container Tags : trento/mcp-server-trento:1.1.1 , trento/mcp-server-trento:1.1.1-build1.10.1 , trento/mcp-server-trento:latest Container Release : 1.10.1 Severity : important Type : security References : 1261206 1262464 1262465 CVE-2026-4046 CVE-2026-5450 CVE-2026-5928 ----------------------------------------------------------------- The container trento/mcp-server-trento was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2231-1 Released: Wed Jun 3 12:57:18 2026 Summary: Security update for glibc Type: security Severity: important References: 1261206,1262464,1262465,CVE-2026-4046,CVE-2026-5450,CVE-2026-5928 This update for glibc fixes the following issues - CVE-2026-4046: assertion failure when converting inputs may be used to remotely crash an application (bsc#1261206). - CVE-2026-5450: stdio-common: scanf %mc pattern will cause heap overflow when width > 1024 (bsc#1262465). - CVE-2026-5928: libio: ungetwc could be used to leak data on special conditions (bsc#1262464). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2784-1 Released: Wed Jul 8 07:38:37 2026 Summary: Recommended update for Trento Type: recommended Severity: moderate References: This update for Trento fixes the following issues: This is a patch release for Trento with fixes of the following components: trento-agent: - Release 3.1.1: * Bumped golang.org/x/net to v0.55.0 * Updated contracts references * Bumped github.com/tidwall/gjson from 1.18.0 to 1.19.0 * Bumped golang.org/x/mod from 0.34.0 to 0.36.0 * Bumped gopkg.in/ini.v1 from 1.67.1 to 1.67.2 trento-web, trento-web-image: - Release 3.1.2 * Fixed loading checks execution detail when catalog is still loading * Enforce using erlang26 on SUSE Linux Enterprise 15 * Update initial dashboard Health summary content for the Application Instances column - Release 3.1.1 * Updated analytics docs link profile form * Flip activity log `from_date` and `to_date` LoggerConfig * Support openAPI styles query string arrays usage mcp-server-trento, mcp-server-trento-image: - Release 1.1.1: * Fixed unhandled array parameters trento-checks, trento-checks-image: - Release 1.3.1: - Changed description of check 9FAAD trento-server-helm: - Release 3.1.1 containing version bumps The following package changes have been done: - glibc-2.38-150600.14.49.1 updated - mcp-server-trento-1.1.1-150300.1.9.1 updated - container:registry.suse.com-bci-bci-base-15.7-d2aab68ae05470b62bbe38c4ca03ff5bf72b405197482ed96e34dd0087d7bde2-0 updated From sle-container-updates at lists.suse.com Wed Jul 8 09:12:23 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 8 Jul 2026 11:12:23 +0200 (CEST) Subject: SUSE-CU-2026:6839-1: Security update of trento/trento-checks Message-ID: <20260708091223.9605EFCD8@maintenance.suse.de> SUSE Container Update Advisory: trento/trento-checks ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6839-1 Container Tags : trento/trento-checks:1.3.1 , trento/trento-checks:1.3.1-build1.20.1 , trento/trento-checks:latest Container Release : 1.20.1 Severity : important Type : security References : 1261206 1262464 1262465 CVE-2026-4046 CVE-2026-5450 CVE-2026-5928 ----------------------------------------------------------------- The container trento/trento-checks was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2231-1 Released: Wed Jun 3 12:57:18 2026 Summary: Security update for glibc Type: security Severity: important References: 1261206,1262464,1262465,CVE-2026-4046,CVE-2026-5450,CVE-2026-5928 This update for glibc fixes the following issues - CVE-2026-4046: assertion failure when converting inputs may be used to remotely crash an application (bsc#1261206). - CVE-2026-5450: stdio-common: scanf %mc pattern will cause heap overflow when width > 1024 (bsc#1262465). - CVE-2026-5928: libio: ungetwc could be used to leak data on special conditions (bsc#1262464). The following package changes have been done: - glibc-2.38-150600.14.49.1 updated - container:registry.suse.com-bci-bci-base-15.7-d2aab68ae05470b62bbe38c4ca03ff5bf72b405197482ed96e34dd0087d7bde2-0 updated From sle-container-updates at lists.suse.com Wed Jul 8 09:12:49 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 8 Jul 2026 11:12:49 +0200 (CEST) Subject: SUSE-CU-2026:6841-1: Security update of trento/trento-web Message-ID: <20260708091249.D9965FCE5@maintenance.suse.de> SUSE Container Update Advisory: trento/trento-web ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6841-1 Container Tags : trento/trento-web:3.1.2 , trento/trento-web:3.1.2-build4.60.1 , trento/trento-web:latest Container Release : 4.60.1 Severity : important Type : security References : 1261206 1262464 1262465 1266340 1266341 1266342 1266349 1266357 CVE-2026-34180 CVE-2026-4046 CVE-2026-42766 CVE-2026-45447 CVE-2026-5450 CVE-2026-5928 CVE-2026-7383 CVE-2026-9076 ----------------------------------------------------------------- The container trento/trento-web was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2231-1 Released: Wed Jun 3 12:57:18 2026 Summary: Security update for glibc Type: security Severity: important References: 1261206,1262464,1262465,CVE-2026-4046,CVE-2026-5450,CVE-2026-5928 This update for glibc fixes the following issues - CVE-2026-4046: assertion failure when converting inputs may be used to remotely crash an application (bsc#1261206). - CVE-2026-5450: stdio-common: scanf %mc pattern will cause heap overflow when width > 1024 (bsc#1262465). - CVE-2026-5928: libio: ungetwc could be used to leak data on special conditions (bsc#1262464). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2404-1 Released: Tue Jun 16 08:53:46 2026 Summary: Security update for openssl-1_1 Type: security Severity: important References: 1266340,1266341,1266342,1266349,1266357,CVE-2026-34180,CVE-2026-42766,CVE-2026-45447,CVE-2026-7383,CVE-2026-9076 This update for openssl-1_1 fixes the following issues: - CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357). - CVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryption (bsc#1266349). - CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption (bsc#1266341). - CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion (bsc#1266340). - CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing (bsc#1266342). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2784-1 Released: Wed Jul 8 07:38:37 2026 Summary: Recommended update for Trento Type: recommended Severity: moderate References: This update for Trento fixes the following issues: This is a patch release for Trento with fixes of the following components: trento-agent: - Release 3.1.1: * Bumped golang.org/x/net to v0.55.0 * Updated contracts references * Bumped github.com/tidwall/gjson from 1.18.0 to 1.19.0 * Bumped golang.org/x/mod from 0.34.0 to 0.36.0 * Bumped gopkg.in/ini.v1 from 1.67.1 to 1.67.2 trento-web, trento-web-image: - Release 3.1.2 * Fixed loading checks execution detail when catalog is still loading * Enforce using erlang26 on SUSE Linux Enterprise 15 * Update initial dashboard Health summary content for the Application Instances column - Release 3.1.1 * Updated analytics docs link profile form * Flip activity log `from_date` and `to_date` LoggerConfig * Support openAPI styles query string arrays usage mcp-server-trento, mcp-server-trento-image: - Release 1.1.1: * Fixed unhandled array parameters trento-checks, trento-checks-image: - Release 1.3.1: - Changed description of check 9FAAD trento-server-helm: - Release 3.1.1 containing version bumps The following package changes have been done: - glibc-2.38-150600.14.49.1 updated - libopenssl1_1-1.1.1w-150600.5.32.1 updated - trento-web-3.1.2-150300.1.25.1 updated - container:registry.suse.com-bci-bci-base-15.7-d2aab68ae05470b62bbe38c4ca03ff5bf72b405197482ed96e34dd0087d7bde2-0 updated From sle-container-updates at lists.suse.com Wed Jul 8 09:12:33 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 8 Jul 2026 11:12:33 +0200 (CEST) Subject: SUSE-CU-2026:6840-1: Security update of trento/trento-wanda Message-ID: <20260708091233.49D60FCD8@maintenance.suse.de> SUSE Container Update Advisory: trento/trento-wanda ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6840-1 Container Tags : trento/trento-wanda:2.1.0 , trento/trento-wanda:2.1.0-build1.35.10 , trento/trento-wanda:latest Container Release : 1.35.10 Severity : important Type : security References : 1261206 1262464 1262465 1266340 1266341 1266342 1266349 1266357 CVE-2026-34180 CVE-2026-4046 CVE-2026-42766 CVE-2026-45447 CVE-2026-5450 CVE-2026-5928 CVE-2026-7383 CVE-2026-9076 ----------------------------------------------------------------- The container trento/trento-wanda was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2231-1 Released: Wed Jun 3 12:57:18 2026 Summary: Security update for glibc Type: security Severity: important References: 1261206,1262464,1262465,CVE-2026-4046,CVE-2026-5450,CVE-2026-5928 This update for glibc fixes the following issues - CVE-2026-4046: assertion failure when converting inputs may be used to remotely crash an application (bsc#1261206). - CVE-2026-5450: stdio-common: scanf %mc pattern will cause heap overflow when width > 1024 (bsc#1262465). - CVE-2026-5928: libio: ungetwc could be used to leak data on special conditions (bsc#1262464). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2404-1 Released: Tue Jun 16 08:53:46 2026 Summary: Security update for openssl-1_1 Type: security Severity: important References: 1266340,1266341,1266342,1266349,1266357,CVE-2026-34180,CVE-2026-42766,CVE-2026-45447,CVE-2026-7383,CVE-2026-9076 This update for openssl-1_1 fixes the following issues: - CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357). - CVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryption (bsc#1266349). - CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption (bsc#1266341). - CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion (bsc#1266340). - CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing (bsc#1266342). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2784-1 Released: Wed Jul 8 07:38:37 2026 Summary: Recommended update for Trento Type: recommended Severity: moderate References: This update for Trento fixes the following issues: This is a patch release for Trento with fixes of the following components: trento-agent: - Release 3.1.1: * Bumped golang.org/x/net to v0.55.0 * Updated contracts references * Bumped github.com/tidwall/gjson from 1.18.0 to 1.19.0 * Bumped golang.org/x/mod from 0.34.0 to 0.36.0 * Bumped gopkg.in/ini.v1 from 1.67.1 to 1.67.2 trento-web, trento-web-image: - Release 3.1.2 * Fixed loading checks execution detail when catalog is still loading * Enforce using erlang26 on SUSE Linux Enterprise 15 * Update initial dashboard Health summary content for the Application Instances column - Release 3.1.1 * Updated analytics docs link profile form * Flip activity log `from_date` and `to_date` LoggerConfig * Support openAPI styles query string arrays usage mcp-server-trento, mcp-server-trento-image: - Release 1.1.1: * Fixed unhandled array parameters trento-checks, trento-checks-image: - Release 1.3.1: - Changed description of check 9FAAD trento-server-helm: - Release 3.1.1 containing version bumps The following package changes have been done: - glibc-2.38-150600.14.49.1 updated - libopenssl1_1-1.1.1w-150600.5.32.1 updated - trento-checks-1.3.1-150300.1.15.1 updated - container:registry.suse.com-bci-bci-base-15.7-d2aab68ae05470b62bbe38c4ca03ff5bf72b405197482ed96e34dd0087d7bde2-0 updated From sle-container-updates at lists.suse.com Wed Jul 8 09:11:00 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Wed, 8 Jul 2026 11:11:00 +0200 (CEST) Subject: SUSE-CU-2026:6833-1: Security update of suse/multi-linux-manager/5.1/x86_64/server-hub-xmlrpc-api Message-ID: <20260708091100.871A9FCD7@maintenance.suse.de> SUSE Container Update Advisory: suse/multi-linux-manager/5.1/x86_64/server-hub-xmlrpc-api ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6833-1 Container Tags : suse/multi-linux-manager/5.1/x86_64/server-hub-xmlrpc-api:5.1.4 , suse/multi-linux-manager/5.1/x86_64/server-hub-xmlrpc-api:5.1.4.8.22.1 , suse/multi-linux-manager/5.1/x86_64/server-hub-xmlrpc-api:latest Container Release : 8.22.1 Severity : important Type : security References : 1208800 1226578 1234567 1238890 1242916 1245107 1247707 1248699 1249243 1253032 1254900 1257583 1257894 1258041 1258079 1258144 1258382 1258816 1259087 1259230 1259261 1259327 1259474 1259479 1259482 1259521 1259590 1259591 1259700 1259739 1259787 1259960 1260031 1260614 1260806 1261206 1261280 1261305 1261307 1261327 1261606 1261631 1261723 1261753 1261841 1261902 1262090 1262144 1262222 1262285 1262460 1262464 1262465 1262471 1262492 1262595 1262708 1262720 1262760 1262761 1262950 1263501 1263814 1263841 1263986 1263987 1264149 1264174 1264234 1264256 1264966 1264971 1265134 1265281 1265282 1265283 1265284 1265285 1265286 1265287 1265288 1265289 1265290 1265319 1265358 1265620 1265975 1266012 1266340 1266341 1266342 1266343 1266345 1266349 1266350 1266351 1266352 1266353 1266355 1266356 1266357 1266556 1266600 1269253 1269534 CVE-2022-21698 CVE-2026-27456 CVE-2026-28374 CVE-2026-28376 CVE-2026-28379 CVE-2026-28380 CVE-2026-28383 CVE-2026-33376 CVE-2026-33377 CVE-2026-33378 CVE-2026-33380 CVE-2026-33381 CVE-2026-34180 CVE-2026-34181 CVE-2026-34183 CVE-2026-34743 CVE-2026-34986 CVE-2026-39821 CVE-2026-40179 CVE-2026-4046 CVE-2026-41602 CVE-2026-42151 CVE-2026-42154 CVE-2026-42198 CVE-2026-42766 CVE-2026-42767 CVE-2026-42768 CVE-2026-42769 CVE-2026-42770 CVE-2026-45445 CVE-2026-45446 CVE-2026-45447 CVE-2026-5450 CVE-2026-5928 CVE-2026-5958 CVE-2026-7383 CVE-2026-9076 ----------------------------------------------------------------- The container suse/multi-linux-manager/5.1/x86_64/server-hub-xmlrpc-api was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:1941-1 Released: Mon May 18 09:44:34 2026 Summary: Security update for sed Type: security Severity: moderate References: 1262144,CVE-2026-5958 This update for sed fixes the following issue: - CVE-2026-5958: a TOCTOU race can allow to read attacker-controlled content and write it to an unintended file (bsc#1262144). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2051-1 Released: Mon May 25 15:59:43 2026 Summary: Security update for xz Type: security Severity: important References: 1261280,CVE-2026-34743 This update for xz fixes the following issue - CVE-2026-34743: buffer overflow in lzma_index_append() (bsc#1261280). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2231-1 Released: Wed Jun 3 12:57:18 2026 Summary: Security update for glibc Type: security Severity: important References: 1261206,1262464,1262465,CVE-2026-4046,CVE-2026-5450,CVE-2026-5928 This update for glibc fixes the following issues - CVE-2026-4046: assertion failure when converting inputs may be used to remotely crash an application (bsc#1261206). - CVE-2026-5450: stdio-common: scanf %mc pattern will cause heap overflow when width > 1024 (bsc#1262465). - CVE-2026-5928: libio: ungetwc could be used to leak data on special conditions (bsc#1262464). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2276-1 Released: Fri Jun 5 10:56:23 2026 Summary: Recommended update for apparmor Type: recommended Severity: important References: 1265620 This update for apparmor fixes the following issues: - Allow execution of /usr/bin/zstd (bsc#1265620) ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2434-1 Released: Wed Jun 17 16:40:10 2026 Summary: Recommended update for coreutils Type: recommended Severity: important References: 1259327 This update for coreutils fixes the following issues: - proc: Use affinity mask even on systems with more than 1024 CPUs (bsc#1259327) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2485-1 Released: Mon Jun 22 14:06:22 2026 Summary: Security update for util-linux Type: security Severity: moderate References: 1261606,CVE-2026-27456 This update for util-linux fixes the following issue - CVE-2026-27456: TOCTOU in the mount program when setting up loop devices (bsc#1261606). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2648-1 Released: Fri Jun 26 13:05:57 2026 Summary: Security update for openssl-3 Type: security Severity: important References: 1266340,1266341,1266342,1266343,1266345,1266349,1266350,1266351,1266352,1266353,1266355,1266356,1266357,CVE-2026-34180,CVE-2026-34181,CVE-2026-34183,CVE-2026-42766,CVE-2026-42767,CVE-2026-42768,CVE-2026-42769,CVE-2026-42770,CVE-2026-45445,CVE-2026-45446,CVE-2026-45447,CVE-2026-7383,CVE-2026-9076 This update for openssl-3 fixes the following issues - CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion (bsc#1266340). - CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption (bsc#1266341). - CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing (bsc#1266342). - CVE-2026-34181: PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys (bsc#1266343). - CVE-2026-34183: Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler (bsc#1266345). - CVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryption (bsc#1266349). - CVE-2026-42767: NULL Pointer Dereference in CRMF EncryptedValue Decryption (bsc#1266350). - CVE-2026-42768: Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt() (bsc#1266351). - CVE-2026-42769: Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate (bsc#1266352). - CVE-2026-42770: FFC-DH Peer Validation Uses Attacker-Supplied q (bsc#1266353). - CVE-2026-45445: AES-OCB IV Ignored on EVP_Cipher() Path (bsc#1266355). - CVE-2026-45446: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes (bsc#1266356). - CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2661-1 Released: Fri Jun 26 15:15:48 2026 Summary: Recommended update for curl Type: recommended Severity: important References: 1264971 This update for curl fixes the following issues: - Call http_size() first to prioritize Transfer-Encoding: chunked over a zero Content-Length empty body check (bsc#1264971) ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2774-1 Released: Mon Jul 6 09:52:16 2026 Summary: Maintenance update for Multi-Linux Manager 5.1: Server, Proxy and Retail Branch Server Type: security Severity: important References: 1208800,1226578,1234567,1238890,1242916,1245107,1247707,1248699,1249243,1253032,1254900,1257583,1257894,1258041,1258079,1258144,1258382,1258816,1259087,1259230,1259261,1259474,1259479,1259482,1259521,1259590,1259591,1259700,1259739,1259787,1259960,1260031,1260614,1260806,1261305,1261307,1261327,1261631,1261723,1261753,1261841,1261902,1262090,1262222,1262285,1262460,1262471,1262492,1262595,1262708,1262720,1262760,1262761,1262950,1263501,1263814,1263841,1263986,1263987,1264149,1264174,1264234,1264256,1264966,1265134,1265281,1265282,1265283,1265284,1265285,1265286,1265287,1265288,1265289,1265290,1265319,1265358,1265975,1266012,1266556,1266600,1269253,1269534,CVE-2022-21698,CVE-2026-28374,CVE-2026-28376,CVE-2026-28379,CVE-2026-28380,CVE-2026-28383,CVE-2026-33376,CVE-2026-33377,CVE-2026-33378,CVE-2026-33380,CVE-2026-33381,CVE-2026-34986,CVE-2026-39821,CVE-2026-40179,CVE-2026-41602,CVE-2026-42151,CVE-2026-42154,CVE-2026-42198 Maintenance update for Multi-Linux Manager 5.1: Server, Proxy and Retail Branch Server This is a codestream only update The following package changes have been done: - glibc-2.38-150600.14.49.1 updated - libuuid1-2.40.4-150700.4.13.1 updated - libsmartcols1-2.40.4-150700.4.13.1 updated - liblzma5-5.4.1-150600.3.6.1 updated - libopenssl3-3.2.3-150700.5.36.1 updated - libblkid1-2.40.4-150700.4.13.1 updated - sed-4.9-150600.3.3.1 updated - coreutils-8.32-150400.9.12.1 updated - libopenssl-3-fips-provider-3.2.3-150700.5.36.1 updated - libmount1-2.40.4-150700.4.13.1 updated - libfdisk1-2.40.4-150700.4.13.1 updated - libcurl4-8.14.1-150700.7.17.1 updated - util-linux-2.40.4-150700.4.13.1 updated - libapparmor1-3.1.7-150600.5.15.1 updated - xz-5.4.1-150600.3.6.1 updated - hub-xmlrpc-api-0.9-150700.3.6.1 updated - container:bci-bci-base-15.7-d2aab68ae05470b62bbe38c4ca03ff5bf72b405197482ed96e34dd0087d7bde2-0 updated From sle-container-updates at lists.suse.com Thu Jul 9 07:06:41 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Thu, 9 Jul 2026 09:06:41 +0200 (CEST) Subject: SUSE-IU-2026:5555-1: Security update of suse/sl-micro/6.0/baremetal-os-container Message-ID: <20260709070641.DF078FCD7@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.0/baremetal-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5555-1 Image Tags : suse/sl-micro/6.0/baremetal-os-container:2.1.3 , suse/sl-micro/6.0/baremetal-os-container:2.1.3-6.203 , suse/sl-micro/6.0/baremetal-os-container:latest Image Release : 6.203 Severity : moderate Type : security References : 1248600 1262043 1262044 1262069 1262070 1262071 1262072 CVE-2025-9403 CVE-2026-32316 CVE-2026-33947 CVE-2026-33948 CVE-2026-39956 CVE-2026-39979 CVE-2026-40164 ----------------------------------------------------------------- The container suse/sl-micro/6.0/baremetal-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 788 Released: Wed Jul 8 13:04:31 2026 Summary: Security update for jq Type: security Severity: moderate References: 1248600,1262043,1262044,1262069,1262070,1262071,1262072,CVE-2025-9403,CVE-2026-32316,CVE-2026-33947,CVE-2026-33948,CVE-2026-39956,CVE-2026-39979,CVE-2026-40164 This update for jq fixes the following issues Security issues fixed: - CVE-2025-9403: reacheable assertion in `run_jq_tests` can lead to program termination when processing malformed JSON input containing invalid Unicode escape sequences (bsc#1248600). - CVE-2026-32316: integer overflow within the `jvp_string_append()` and `jvp_string_copy_replace_bad` functions can lead to heap buffer overflow when evaluating untrusted jq queries (bsc#1262044). - CVE-2026-33947: unbounded recursion in functions `jv_setpath()`, `jv_getpath()`, and `delpaths_sorted()` can lead to excessive resource consumption when processing crafted JSON input (bsc#1262069). - CVE-2026-33948: improper handling of buffer sizes via `strlen()` instead of `fgets()` in CLI input parsing allows validation bypass via embedded NUL bytes (bsc#1262043). - CVE-2026-39956: missing runtime type checks in `_strindices` and `jv_string_indexes()` can lead to a crash when evaluating untrusted jq filters against a release build (bsc#1262070). - CVE-2026-39979: incorrect processing of non-nul-terminated counted buffers in `jv_parse_sized` can lead to an out-of-bounds read when processing malformed JSON (bsc#1262071). - CVE-2026-40164: use of `MurmurHash3` with a hardcoded seed allows pre-computation of key collisions and can lead to a denial of service via resource exhaustion when processing crafted JSON objects (bsc#1262072). Other updates and bugfixes: - spec: add `--enable-pthread-tls` to configure invocation. The following package changes have been done: - libjq1-1.6-6.1 updated - jq-1.6-6.1 updated From sle-container-updates at lists.suse.com Thu Jul 9 07:17:13 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Thu, 9 Jul 2026 09:17:13 +0200 (CEST) Subject: SUSE-IU-2026:5557-1: Recommended update of suse/sl-micro/6.2/baremetal-os-container Message-ID: <20260709071713.99BE3FCC9@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.2/baremetal-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5557-1 Image Tags : suse/sl-micro/6.2/baremetal-os-container:2.3.1 , suse/sl-micro/6.2/baremetal-os-container:2.3.1-8.47 , suse/sl-micro/6.2/baremetal-os-container:latest Image Release : 8.47 Severity : important Type : recommended References : 1262515 ----------------------------------------------------------------- The container suse/sl-micro/6.2/baremetal-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1176 Released: Tue Jul 7 18:51:38 2026 Summary: Recommended update for dracut Type: recommended Severity: important References: 1262515 This update for dracut fixes the following issues: - fix (fips): handle zipl (bsc#1262515) The following package changes have been done: - dracut-059+suse.724.gaa87d1594-160000.1.1 updated - container:suse-sl-micro-6.2-base-os-container-latest-44b4a5a12d4898ad7868decad3ceff029698c023e2137e54550bd962a520ec53-0 updated From sle-container-updates at lists.suse.com Thu Jul 9 07:17:15 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Thu, 9 Jul 2026 09:17:15 +0200 (CEST) Subject: SUSE-IU-2026:5558-1: Recommended update of suse/sl-micro/6.2/baremetal-os-container Message-ID: <20260709071715.0F6BAFCD8@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.2/baremetal-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5558-1 Image Tags : suse/sl-micro/6.2/baremetal-os-container:2.3.1 , suse/sl-micro/6.2/baremetal-os-container:2.3.1-8.49 , suse/sl-micro/6.2/baremetal-os-container:latest Image Release : 8.49 Severity : moderate Type : recommended References : ----------------------------------------------------------------- The container suse/sl-micro/6.2/baremetal-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1185 Released: Wed Jul 8 14:26:59 2026 Summary: Recommended update for strace Type: recommended Severity: moderate References: This update for strace fixes the following issues: - Update to strace 7.1: * Implemented wall-clock-aware columns for the -c/--summary-only report, allowing wall-clock and system CPU times to be displayed side by side in a single run. * Included out-of-range syscalls in the -c/--summary-only report. * Updated decoding of sched_getattr syscall. * Implemented decoding of FS_IOC_SHUTDOWN, PIDFD_GET_INFO and PIDFD_GET_*_NAMESPACE ioctl commands. * Implemented decoding of IFLA_BR_FDB_N_LEARNED, IFLA_BR_FDB_MAX_LEARNED and IFLA_BR_STP_MODE netlink attributes. * Updated lists of CLONE_*, FSMOUNT_*, KT_*, KVM_*, LANDLOCK_*, NETDEV_*, NL80211_* and PIDFD_* constants. * Updated lists of ioctl commands from Linux 7.1. * Implement EPERM diagnostics and give a hint about yama (jsc#PED-15928). - Update to strace 7.0: * Implemented optional colorized trace output. * Implemented decoding of rseq and rseq_slice_yield syscalls. * Implemented decoding of BPF_TRACE_FSESSION bpf attach type. * Implemented decoding of BPF_PROG_ASSOC_STRUCT_OPS bpf command. * Implemented decoding of UDMABUF_CREATE, UDMABUF_CREATE_LIST, and VIDIOC_QUERYMENU ioctl commands. * Updated decoding of statmount syscall flags. * Updated lists of BPF_*, BTRFS_*, FS_*, IORING_*, KEY_*, KVM_*, NT_*, OPEN_TREE_*, PR_*, V4L2_* and *_MAGIC constants. * Updated lists of ioctl commands from Linux 7.0. - Update to strace 6.19: * Implemented decoding of listns syscall. * Implemented decoding of F_GET_RW_HINT, F_SET_RW_HINT, F_GET_FILE_RW_HINT, F_SET_FILE_RW_HINT, F_GETDELEG and F_SETDELEG fcntl commands. * Implemented decoding of IORING_REGISTER_SEND_MSG_RING, IORING_REGISTER_ZCRX_IFQ, IORING_REGISTER_RESIZE_RINGS, IORING_REGISTER_MEM_REGION, IORING_REGISTER_QUERY and IORING_REGISTER_ZCRX_CTRL opcodes of io_uring_register syscall. * Implemented decoding of extended argument structures for io_uring_enter syscall when IORING_ENTER_EXT_ARG or IORING_ENTER_EXT_ARG_REG flags are set. * Implemented decoding of attr_ptr and attr_type_mask fields of struct io_uring_sqe for io_uring_register syscall. * Implemented opcode-specific decoding of flags union and ioprio fields of struct io_uring_sqe for io_uring_register syscall. * Implemented decoding of 128-byte SQEs for io_uring_register syscall. * Implemented decoding of socket operations (SOCKET_URING_OP_*) for io_uring URING_CMD and URING_CMD128 operations when the file descriptor is a socket. * Updated decoding of struct mnt_id_req and struct perf_event_attr. * Updated lists of ABS_*, BPF_*, ETHTOOL_*, ETH_P_*, IORING_*, KVM_*, PERF_*, TLS_*, V4L2_* and *_MAGIC constants. * Updated lists of ioctl commands from Linux 6.19. - Update to strace 6.18: * Added -e kvm=vcpu+ option for kvm_run struct decoding. * Implemented decoding of FS_IOC_GETFSUUID, FS_IOC_GETFSSYSFSPATH and FS_IOC_GETLBMD_CAP ioctl commands. * Implemented decoding of BPF_PROG_STREAM_READ_BY_FD bpf command. * Updated decoding of BPF_BTF_LOAD, BPF_MAP_CREATE, BPF_PROG_ATTACH, BPF_PROG_DETACH, BPF_PROG_LOAD, BPF_PROG_QUERY and BPF_*_GET_*_ID bpf commands. * Updated decoding of bpf_map_info and bpf_prog_info structures. * Updated lists of AUDIT_*, BR_*, FF_*, IFLA_*, INPUT_PROP_*, IORING_*, KEXEC_FILE_*, KEY_*, KVM_CAP_*, NL80211_CMD_*, RWF_* and TEE_* constants. - Update to strace 6.17: * Implemented decoding of file_getattr and file_setattr syscalls. * Implemented decoding of SO_INQ socket option. * Updated lists of BPF_*, BTN_*, BTRFS_*, DEVCONF_*, ETHTOOL_*, FALLOC_*, KEXEC_*, KEY_*, KVM_*, NETCONFA_*, NFT_*, PR_*, SCM_*, V4L2_* and XDP_* constants. * Updated lists of ioctl commands from Linux 6.17. - Update to strace 6.16: * Added -N/--arg-names option for printing syscall argument names. * Implemented setting of system call information using PTRACE_SET_SYSCALL_INFO ptrace API introduced in Linux 6.16. * Implemented decoding of SO_RCVPRIORITY and SO_PASSRIGHTS socket options. * Implemented decoding of RTA_NH_ID and RTA_FLOWLABEL netlink attributes. * Updated decoding of statx syscall. * Updated lists of BR_*, CRYPTOCFGA_*, FUTEX2_*, IORING_*, IPSET_*, KVM_*, MDB_*, NETDEV_*, PR_*, RXRPC_*, SW_*, THERMAL_* and V4L2_* constants. * Updated lists of ioctl commands from Linux 6.16. - Update to strace 6.15: * Implemented decoding of open_tree_attr syscall. * Implemented decoding of AF_TIPC socket addresses and socket options. * Updated decoding of statmount syscall. * Updated lists of AUDIT_*, BPF_*, BTRFS_*, COUNTER_*, FAN_*, FRA_*, IFLA_*, IORING_*, KVM_*, LANDLOCK_*, PKEY_*, RTPROT_*, TCP_* and V4L2_* constants. * Updated lists of ioctl commands from Linux 6.15. The following package changes have been done: - strace-7.1-160000.1.1 updated From sle-container-updates at lists.suse.com Thu Jul 9 07:17:18 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Thu, 9 Jul 2026 09:17:18 +0200 (CEST) Subject: SUSE-IU-2026:5559-1: Security update of suse/sl-micro/6.2/baremetal-os-container Message-ID: <20260709071718.C0D71FCC9@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.2/baremetal-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5559-1 Image Tags : suse/sl-micro/6.2/baremetal-os-container:2.3.1 , suse/sl-micro/6.2/baremetal-os-container:2.3.1-8.50 , suse/sl-micro/6.2/baremetal-os-container:latest Image Release : 8.50 Severity : important Type : security References : 1268402 1268407 1268409 1268413 1268415 1268416 1268417 1268420 1268422 1268427 CVE-2026-10536 CVE-2026-12064 CVE-2026-8286 CVE-2026-8458 CVE-2026-8924 CVE-2026-8927 CVE-2026-9079 CVE-2026-9080 CVE-2026-9545 CVE-2026-9547 ----------------------------------------------------------------- The container suse/sl-micro/6.2/baremetal-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1187 Released: Wed Jul 8 15:46:40 2026 Summary: Security update for curl Type: security Severity: important References: 1268402,1268407,1268409,1268413,1268415,1268416,1268417,1268420,1268422,1268427,CVE-2026-10536,CVE-2026-12064,CVE-2026-8286,CVE-2026-8458,CVE-2026-8924,CVE-2026-8927,CVE-2026-9079,CVE-2026-9080,CVE-2026-9545,CVE-2026-9547 This update for curl fixes the following issues - CVE-2026-8286: wrong STARTTLS connection reuse (bsc#1268402). - CVE-2026-8458: wrong reuse for different services (bsc#1268407). - CVE-2026-8924: traling dot domain super cookie (bsc#1268409). - CVE-2026-8927: env-set cross-proxy Digest auth state leak (bsc#1268413). - CVE-2026-9079: stale proxy password leak (bsc#1268415). - CVE-2026-9080: UAF after pause in socket callback (bsc#1268416). - CVE-2026-9545: exposing HTTP/3 early data (bsc#1268417). - CVE-2026-9547: SSH improper host validation (bsc#1268420). - CVE-2026-10536: HTTP/2 stream-dependency tree UAF (bsc#1268422). - CVE-2026-12064: proto-default skips SSH verification (bsc#1268427). The following package changes have been done: - libcurl4-8.14.1-160000.8.1 updated - container:suse-sl-micro-6.2-base-os-container-latest-b4f4d94e8bcaa77cad829007f9dacdd997d8abcd095ea67f21b1fc42efd969bb-0 updated From sle-container-updates at lists.suse.com Thu Jul 9 07:23:16 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Thu, 9 Jul 2026 09:23:16 +0200 (CEST) Subject: SUSE-IU-2026:5566-1: Security update of suse/sl-micro/6.2/base-os-container Message-ID: <20260709072316.ACAD1FCC9@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.2/base-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5566-1 Image Tags : suse/sl-micro/6.2/base-os-container:2.3.1 , suse/sl-micro/6.2/base-os-container:2.3.1-8.29 , suse/sl-micro/6.2/base-os-container:latest Image Release : 8.29 Severity : important Type : security References : 1268402 1268407 1268409 1268413 1268415 1268416 1268417 1268420 1268422 1268427 CVE-2026-10536 CVE-2026-12064 CVE-2026-8286 CVE-2026-8458 CVE-2026-8924 CVE-2026-8927 CVE-2026-9079 CVE-2026-9080 CVE-2026-9545 CVE-2026-9547 ----------------------------------------------------------------- The container suse/sl-micro/6.2/base-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1187 Released: Wed Jul 8 15:46:40 2026 Summary: Security update for curl Type: security Severity: important References: 1268402,1268407,1268409,1268413,1268415,1268416,1268417,1268420,1268422,1268427,CVE-2026-10536,CVE-2026-12064,CVE-2026-8286,CVE-2026-8458,CVE-2026-8924,CVE-2026-8927,CVE-2026-9079,CVE-2026-9080,CVE-2026-9545,CVE-2026-9547 This update for curl fixes the following issues - CVE-2026-8286: wrong STARTTLS connection reuse (bsc#1268402). - CVE-2026-8458: wrong reuse for different services (bsc#1268407). - CVE-2026-8924: traling dot domain super cookie (bsc#1268409). - CVE-2026-8927: env-set cross-proxy Digest auth state leak (bsc#1268413). - CVE-2026-9079: stale proxy password leak (bsc#1268415). - CVE-2026-9080: UAF after pause in socket callback (bsc#1268416). - CVE-2026-9545: exposing HTTP/3 early data (bsc#1268417). - CVE-2026-9547: SSH improper host validation (bsc#1268420). - CVE-2026-10536: HTTP/2 stream-dependency tree UAF (bsc#1268422). - CVE-2026-12064: proto-default skips SSH verification (bsc#1268427). The following package changes have been done: - libcurl4-8.14.1-160000.8.1 updated - curl-8.14.1-160000.8.1 updated From sle-container-updates at lists.suse.com Thu Jul 9 07:28:37 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Thu, 9 Jul 2026 09:28:37 +0200 (CEST) Subject: SUSE-IU-2026:5570-1: Recommended update of suse/sl-micro/6.2/kvm-os-container Message-ID: <20260709072837.2706DFCC9@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.2/kvm-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5570-1 Image Tags : suse/sl-micro/6.2/kvm-os-container:2.3.1 , suse/sl-micro/6.2/kvm-os-container:2.3.1-8.42 , suse/sl-micro/6.2/kvm-os-container:latest Image Release : 8.42 Severity : important Type : recommended References : 1262515 ----------------------------------------------------------------- The container suse/sl-micro/6.2/kvm-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1176 Released: Tue Jul 7 18:51:38 2026 Summary: Recommended update for dracut Type: recommended Severity: important References: 1262515 This update for dracut fixes the following issues: - fix (fips): handle zipl (bsc#1262515) The following package changes have been done: - dracut-059+suse.724.gaa87d1594-160000.1.1 updated - container:suse-sl-micro-6.2-base-os-container-latest-44b4a5a12d4898ad7868decad3ceff029698c023e2137e54550bd962a520ec53-0 updated From sle-container-updates at lists.suse.com Thu Jul 9 07:34:27 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Thu, 9 Jul 2026 09:34:27 +0200 (CEST) Subject: SUSE-IU-2026:5583-1: Recommended update of suse/sl-micro/6.2/rt-os-container Message-ID: <20260709073427.CA749FCC9@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.2/rt-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5583-1 Image Tags : suse/sl-micro/6.2/rt-os-container:2.3.1 , suse/sl-micro/6.2/rt-os-container:2.3.1-7.57 , suse/sl-micro/6.2/rt-os-container:latest Image Release : 7.57 Severity : important Type : recommended References : 1262515 ----------------------------------------------------------------- The container suse/sl-micro/6.2/rt-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1176 Released: Tue Jul 7 18:51:38 2026 Summary: Recommended update for dracut Type: recommended Severity: important References: 1262515 This update for dracut fixes the following issues: - fix (fips): handle zipl (bsc#1262515) The following package changes have been done: - dracut-059+suse.724.gaa87d1594-160000.1.1 updated - container:suse-sl-micro-6.2-baremetal-os-container-latest-24e1fb2c1922c46e7d7a15f349b3d81ba2abe81c7dec77d277e2697d38a05bdd-0 updated From sle-container-updates at lists.suse.com Thu Jul 9 07:46:48 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Thu, 9 Jul 2026 09:46:48 +0200 (CEST) Subject: SUSE-CU-2026:6852-1: Security update of suse/kiosk/xorg Message-ID: <20260709074648.AB173FCC9@maintenance.suse.de> SUSE Container Update Advisory: suse/kiosk/xorg ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6852-1 Container Tags : suse/kiosk/xorg:21 , suse/kiosk/xorg:21.1 , suse/kiosk/xorg:21.1-82.11 , suse/kiosk/xorg:latest , suse/kiosk/xorg:notaskbar Container Release : 82.11 Severity : important Type : security References : 1268893 1268894 1269018 1269019 1269020 CVE-2026-55999 CVE-2026-56000 CVE-2026-56001 CVE-2026-56002 CVE-2026-56003 ----------------------------------------------------------------- The container suse/kiosk/xorg was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2788-1 Released: Wed Jul 8 09:22:08 2026 Summary: Security update for xorg-x11-server Type: security Severity: important References: 1268893,1268894,CVE-2026-55999,CVE-2026-56000 This update for xorg-x11-server fixes the following issues - CVE-2026-55999: missing bounds check in `glamor_font_get` can lead to a heap buffer overflow when a font loaded from a malicious PCF file is processed (bsc#1268893). - CVE-2026-56000: improper memory management in `CommonMakeCurrent` can lead to a heap use-after-free when an interaction with a malicious client creating GLX contexts happens (bsc#1268894). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2794-1 Released: Wed Jul 8 10:07:50 2026 Summary: Security update for libXfont2 Type: security Severity: important References: 1269018,1269019,1269020,CVE-2026-56001,CVE-2026-56002,CVE-2026-56003 This update for libXfont2 fixes the following issues - CVE-2026-56001: integer overflow in `BitmapScaleBitmaps` can lead to a heap buffer overflow (bsc#1269018). - CVE-2026-56002: insufficient checks in `pcfReadFont` can lead to a heap buffer overflow (bsc#1269019). - CVE-2026-56003: missing bounds check in `ComputeScaledProperties` can lead to a heap buffer overflow (bsc#1269020). The following package changes have been done: - libXfont2-2-2.0.3-150000.3.3.1 updated - xorg-x11-server-Xvfb-21.1.15-150700.5.22.1 updated - xorg-x11-server-21.1.15-150700.5.22.1 updated From sle-container-updates at lists.suse.com Thu Jul 9 07:52:42 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Thu, 9 Jul 2026 09:52:42 +0200 (CEST) Subject: SUSE-CU-2026:6860-1: Security update of suse/sles/16.0/toolbox Message-ID: <20260709075243.001FEFCC9@maintenance.suse.de> SUSE Container Update Advisory: suse/sles/16.0/toolbox ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6860-1 Container Tags : suse/sles/16.0/toolbox:16.3 , suse/sles/16.0/toolbox:16.3-1.92 , suse/sles/16.0/toolbox:latest Container Release : 1.92 Severity : important Type : security References : 1268402 1268407 1268409 1268413 1268415 1268416 1268417 1268420 1268422 1268427 CVE-2026-10536 CVE-2026-12064 CVE-2026-8286 CVE-2026-8458 CVE-2026-8924 CVE-2026-8927 CVE-2026-9079 CVE-2026-9080 CVE-2026-9545 CVE-2026-9547 ----------------------------------------------------------------- The container suse/sles/16.0/toolbox was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1185 Released: Wed Jul 8 14:26:59 2026 Summary: Recommended update for strace Type: recommended Severity: moderate References: This update for strace fixes the following issues: - Update to strace 7.1: * Implemented wall-clock-aware columns for the -c/--summary-only report, allowing wall-clock and system CPU times to be displayed side by side in a single run. * Included out-of-range syscalls in the -c/--summary-only report. * Updated decoding of sched_getattr syscall. * Implemented decoding of FS_IOC_SHUTDOWN, PIDFD_GET_INFO and PIDFD_GET_*_NAMESPACE ioctl commands. * Implemented decoding of IFLA_BR_FDB_N_LEARNED, IFLA_BR_FDB_MAX_LEARNED and IFLA_BR_STP_MODE netlink attributes. * Updated lists of CLONE_*, FSMOUNT_*, KT_*, KVM_*, LANDLOCK_*, NETDEV_*, NL80211_* and PIDFD_* constants. * Updated lists of ioctl commands from Linux 7.1. * Implement EPERM diagnostics and give a hint about yama (jsc#PED-15928). - Update to strace 7.0: * Implemented optional colorized trace output. * Implemented decoding of rseq and rseq_slice_yield syscalls. * Implemented decoding of BPF_TRACE_FSESSION bpf attach type. * Implemented decoding of BPF_PROG_ASSOC_STRUCT_OPS bpf command. * Implemented decoding of UDMABUF_CREATE, UDMABUF_CREATE_LIST, and VIDIOC_QUERYMENU ioctl commands. * Updated decoding of statmount syscall flags. * Updated lists of BPF_*, BTRFS_*, FS_*, IORING_*, KEY_*, KVM_*, NT_*, OPEN_TREE_*, PR_*, V4L2_* and *_MAGIC constants. * Updated lists of ioctl commands from Linux 7.0. - Update to strace 6.19: * Implemented decoding of listns syscall. * Implemented decoding of F_GET_RW_HINT, F_SET_RW_HINT, F_GET_FILE_RW_HINT, F_SET_FILE_RW_HINT, F_GETDELEG and F_SETDELEG fcntl commands. * Implemented decoding of IORING_REGISTER_SEND_MSG_RING, IORING_REGISTER_ZCRX_IFQ, IORING_REGISTER_RESIZE_RINGS, IORING_REGISTER_MEM_REGION, IORING_REGISTER_QUERY and IORING_REGISTER_ZCRX_CTRL opcodes of io_uring_register syscall. * Implemented decoding of extended argument structures for io_uring_enter syscall when IORING_ENTER_EXT_ARG or IORING_ENTER_EXT_ARG_REG flags are set. * Implemented decoding of attr_ptr and attr_type_mask fields of struct io_uring_sqe for io_uring_register syscall. * Implemented opcode-specific decoding of flags union and ioprio fields of struct io_uring_sqe for io_uring_register syscall. * Implemented decoding of 128-byte SQEs for io_uring_register syscall. * Implemented decoding of socket operations (SOCKET_URING_OP_*) for io_uring URING_CMD and URING_CMD128 operations when the file descriptor is a socket. * Updated decoding of struct mnt_id_req and struct perf_event_attr. * Updated lists of ABS_*, BPF_*, ETHTOOL_*, ETH_P_*, IORING_*, KVM_*, PERF_*, TLS_*, V4L2_* and *_MAGIC constants. * Updated lists of ioctl commands from Linux 6.19. - Update to strace 6.18: * Added -e kvm=vcpu+ option for kvm_run struct decoding. * Implemented decoding of FS_IOC_GETFSUUID, FS_IOC_GETFSSYSFSPATH and FS_IOC_GETLBMD_CAP ioctl commands. * Implemented decoding of BPF_PROG_STREAM_READ_BY_FD bpf command. * Updated decoding of BPF_BTF_LOAD, BPF_MAP_CREATE, BPF_PROG_ATTACH, BPF_PROG_DETACH, BPF_PROG_LOAD, BPF_PROG_QUERY and BPF_*_GET_*_ID bpf commands. * Updated decoding of bpf_map_info and bpf_prog_info structures. * Updated lists of AUDIT_*, BR_*, FF_*, IFLA_*, INPUT_PROP_*, IORING_*, KEXEC_FILE_*, KEY_*, KVM_CAP_*, NL80211_CMD_*, RWF_* and TEE_* constants. - Update to strace 6.17: * Implemented decoding of file_getattr and file_setattr syscalls. * Implemented decoding of SO_INQ socket option. * Updated lists of BPF_*, BTN_*, BTRFS_*, DEVCONF_*, ETHTOOL_*, FALLOC_*, KEXEC_*, KEY_*, KVM_*, NETCONFA_*, NFT_*, PR_*, SCM_*, V4L2_* and XDP_* constants. * Updated lists of ioctl commands from Linux 6.17. - Update to strace 6.16: * Added -N/--arg-names option for printing syscall argument names. * Implemented setting of system call information using PTRACE_SET_SYSCALL_INFO ptrace API introduced in Linux 6.16. * Implemented decoding of SO_RCVPRIORITY and SO_PASSRIGHTS socket options. * Implemented decoding of RTA_NH_ID and RTA_FLOWLABEL netlink attributes. * Updated decoding of statx syscall. * Updated lists of BR_*, CRYPTOCFGA_*, FUTEX2_*, IORING_*, IPSET_*, KVM_*, MDB_*, NETDEV_*, PR_*, RXRPC_*, SW_*, THERMAL_* and V4L2_* constants. * Updated lists of ioctl commands from Linux 6.16. - Update to strace 6.15: * Implemented decoding of open_tree_attr syscall. * Implemented decoding of AF_TIPC socket addresses and socket options. * Updated decoding of statmount syscall. * Updated lists of AUDIT_*, BPF_*, BTRFS_*, COUNTER_*, FAN_*, FRA_*, IFLA_*, IORING_*, KVM_*, LANDLOCK_*, PKEY_*, RTPROT_*, TCP_* and V4L2_* constants. * Updated lists of ioctl commands from Linux 6.15. ----------------------------------------------------------------- Advisory ID: 1187 Released: Wed Jul 8 15:46:40 2026 Summary: Security update for curl Type: security Severity: important References: 1268402,1268407,1268409,1268413,1268415,1268416,1268417,1268420,1268422,1268427,CVE-2026-10536,CVE-2026-12064,CVE-2026-8286,CVE-2026-8458,CVE-2026-8924,CVE-2026-8927,CVE-2026-9079,CVE-2026-9080,CVE-2026-9545,CVE-2026-9547 This update for curl fixes the following issues - CVE-2026-8286: wrong STARTTLS connection reuse (bsc#1268402). - CVE-2026-8458: wrong reuse for different services (bsc#1268407). - CVE-2026-8924: traling dot domain super cookie (bsc#1268409). - CVE-2026-8927: env-set cross-proxy Digest auth state leak (bsc#1268413). - CVE-2026-9079: stale proxy password leak (bsc#1268415). - CVE-2026-9080: UAF after pause in socket callback (bsc#1268416). - CVE-2026-9545: exposing HTTP/3 early data (bsc#1268417). - CVE-2026-9547: SSH improper host validation (bsc#1268420). - CVE-2026-10536: HTTP/2 stream-dependency tree UAF (bsc#1268422). - CVE-2026-12064: proto-default skips SSH verification (bsc#1268427). The following package changes have been done: - curl-8.14.1-160000.8.1 updated - libcurl-mini4-8.14.1-160000.8.1 updated - strace-7.1-160000.1.1 updated From sle-container-updates at lists.suse.com Fri Jul 10 07:06:21 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Fri, 10 Jul 2026 09:06:21 +0200 (CEST) Subject: SUSE-IU-2026:5592-1: Security update of suse/sle-micro/base-5.5 Message-ID: <20260710070621.0EFF9FCD7@maintenance.suse.de> SUSE Image Update Advisory: suse/sle-micro/base-5.5 ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5592-1 Image Tags : suse/sle-micro/base-5.5:2.0.4 , suse/sle-micro/base-5.5:2.0.4-5.8.291 , suse/sle-micro/base-5.5:latest Image Release : 5.8.291 Severity : moderate Type : security References : 1261400 1261982 1261983 1267647 CVE-2026-40226 ----------------------------------------------------------------- The container suse/sle-micro/base-5.5 was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2809-1 Released: Thu Jul 9 08:08:18 2026 Summary: Security update for systemd Type: security Severity: moderate References: 1261400,1261982,1261983,1267647,CVE-2026-40226 This update for systemd fixes the following issue Security issues fixed: - CVE-2026-40226: nspawn: escape-to-host via malformed optional config file (bsc#1261400). Other updates and bugfixes: - Import commit 37508f8ec1 (bsc#1267647). - Import commit c7530fbea3 (bsc#1261982 bsc#1261983). - Import commit 5c4ed461a7 (bsc#1261982). - Import commit 4b963df038 (bsc#1261983). The following package changes have been done: - libudev1-249.17-150400.8.64.1 updated - libsystemd0-249.17-150400.8.64.1 updated - systemd-249.17-150400.8.64.1 updated - systemd-sysvinit-249.17-150400.8.64.1 updated - udev-249.17-150400.8.64.1 updated From sle-container-updates at lists.suse.com Fri Jul 10 07:08:17 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Fri, 10 Jul 2026 09:08:17 +0200 (CEST) Subject: SUSE-IU-2026:5593-1: Security update of suse/sle-micro/kvm-5.5 Message-ID: <20260710070817.2591CFCD7@maintenance.suse.de> SUSE Image Update Advisory: suse/sle-micro/kvm-5.5 ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5593-1 Image Tags : suse/sle-micro/kvm-5.5:2.0.4 , suse/sle-micro/kvm-5.5:2.0.4-3.5.561 , suse/sle-micro/kvm-5.5:latest Image Release : 3.5.561 Severity : moderate Type : security References : 1261400 1261982 1261983 1267647 CVE-2026-40226 ----------------------------------------------------------------- The container suse/sle-micro/kvm-5.5 was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2809-1 Released: Thu Jul 9 08:08:18 2026 Summary: Security update for systemd Type: security Severity: moderate References: 1261400,1261982,1261983,1267647,CVE-2026-40226 This update for systemd fixes the following issue Security issues fixed: - CVE-2026-40226: nspawn: escape-to-host via malformed optional config file (bsc#1261400). Other updates and bugfixes: - Import commit 37508f8ec1 (bsc#1267647). - Import commit c7530fbea3 (bsc#1261982 bsc#1261983). - Import commit 5c4ed461a7 (bsc#1261982). - Import commit 4b963df038 (bsc#1261983). The following package changes have been done: - libudev1-249.17-150400.8.64.1 updated - libsystemd0-249.17-150400.8.64.1 updated - systemd-249.17-150400.8.64.1 updated - udev-249.17-150400.8.64.1 updated - container:suse-sle-micro-base-5.5-latest-2.0.4-5.8.291 updated From sle-container-updates at lists.suse.com Fri Jul 10 07:11:05 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Fri, 10 Jul 2026 09:11:05 +0200 (CEST) Subject: SUSE-IU-2026:5594-1: Security update of suse/sle-micro/rt-5.5 Message-ID: <20260710071105.0E1DAFCD7@maintenance.suse.de> SUSE Image Update Advisory: suse/sle-micro/rt-5.5 ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5594-1 Image Tags : suse/sle-micro/rt-5.5:2.0.4 , suse/sle-micro/rt-5.5:2.0.4-4.5.639 , suse/sle-micro/rt-5.5:latest Image Release : 4.5.639 Severity : moderate Type : security References : 1261400 1261982 1261983 1267647 CVE-2026-40226 ----------------------------------------------------------------- The container suse/sle-micro/rt-5.5 was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2809-1 Released: Thu Jul 9 08:08:18 2026 Summary: Security update for systemd Type: security Severity: moderate References: 1261400,1261982,1261983,1267647,CVE-2026-40226 This update for systemd fixes the following issue Security issues fixed: - CVE-2026-40226: nspawn: escape-to-host via malformed optional config file (bsc#1261400). Other updates and bugfixes: - Import commit 37508f8ec1 (bsc#1267647). - Import commit c7530fbea3 (bsc#1261982 bsc#1261983). - Import commit 5c4ed461a7 (bsc#1261982). - Import commit 4b963df038 (bsc#1261983). The following package changes have been done: - libudev1-249.17-150400.8.64.1 updated - libsystemd0-249.17-150400.8.64.1 updated - systemd-249.17-150400.8.64.1 updated - udev-249.17-150400.8.64.1 updated - container:suse-sle-micro-5.5-latest-2.0.4-5.8.48 updated From sle-container-updates at lists.suse.com Fri Jul 10 07:13:16 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Fri, 10 Jul 2026 09:13:16 +0200 (CEST) Subject: SUSE-IU-2026:5595-1: Security update of suse/sle-micro/5.5 Message-ID: <20260710071316.DCE24FCD7@maintenance.suse.de> SUSE Image Update Advisory: suse/sle-micro/5.5 ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5595-1 Image Tags : suse/sle-micro/5.5:2.0.4 , suse/sle-micro/5.5:2.0.4-5.8.48 , suse/sle-micro/5.5:latest Image Release : 5.8.48 Severity : moderate Type : security References : 1261400 1261982 1261983 1267647 CVE-2026-40226 ----------------------------------------------------------------- The container suse/sle-micro/5.5 was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2809-1 Released: Thu Jul 9 08:08:18 2026 Summary: Security update for systemd Type: security Severity: moderate References: 1261400,1261982,1261983,1267647,CVE-2026-40226 This update for systemd fixes the following issue Security issues fixed: - CVE-2026-40226: nspawn: escape-to-host via malformed optional config file (bsc#1261400). Other updates and bugfixes: - Import commit 37508f8ec1 (bsc#1267647). - Import commit c7530fbea3 (bsc#1261982 bsc#1261983). - Import commit 5c4ed461a7 (bsc#1261982). - Import commit 4b963df038 (bsc#1261983). The following package changes have been done: - libudev1-249.17-150400.8.64.1 updated - libsystemd0-249.17-150400.8.64.1 updated - systemd-249.17-150400.8.64.1 updated - systemd-sysvinit-249.17-150400.8.64.1 updated - udev-249.17-150400.8.64.1 updated - container:suse-sle-micro-base-5.5-latest-2.0.4-5.8.291 updated From sle-container-updates at lists.suse.com Fri Jul 10 07:30:39 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Fri, 10 Jul 2026 09:30:39 +0200 (CEST) Subject: SUSE-CU-2026:6885-1: Security update of suse/sle-micro/5.3/toolbox Message-ID: <20260710073039.7C725FCC9@maintenance.suse.de> SUSE Container Update Advisory: suse/sle-micro/5.3/toolbox ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6885-1 Container Tags : suse/sle-micro/5.3/toolbox:16.3 , suse/sle-micro/5.3/toolbox:16.3-6.11.246 , suse/sle-micro/5.3/toolbox:latest Container Release : 6.11.246 Severity : moderate Type : security References : 1261400 1261982 1261983 1267647 CVE-2026-40226 ----------------------------------------------------------------- The container suse/sle-micro/5.3/toolbox was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2809-1 Released: Thu Jul 9 08:08:18 2026 Summary: Security update for systemd Type: security Severity: moderate References: 1261400,1261982,1261983,1267647,CVE-2026-40226 This update for systemd fixes the following issue Security issues fixed: - CVE-2026-40226: nspawn: escape-to-host via malformed optional config file (bsc#1261400). Other updates and bugfixes: - Import commit 37508f8ec1 (bsc#1267647). - Import commit c7530fbea3 (bsc#1261982 bsc#1261983). - Import commit 5c4ed461a7 (bsc#1261982). - Import commit 4b963df038 (bsc#1261983). The following package changes have been done: - libsystemd0-249.17-150400.8.64.1 updated - libudev1-249.17-150400.8.64.1 updated From sle-container-updates at lists.suse.com Fri Jul 10 07:34:13 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Fri, 10 Jul 2026 09:34:13 +0200 (CEST) Subject: SUSE-CU-2026:6886-1: Security update of suse/sle-micro-rancher/5.4 Message-ID: <20260710073413.5C79DFCC9@maintenance.suse.de> SUSE Container Update Advisory: suse/sle-micro-rancher/5.4 ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6886-1 Container Tags : suse/sle-micro-rancher/5.4:5.4.4.5.143 , suse/sle-micro-rancher/5.4:latest Container Release : 4.5.143 Severity : moderate Type : security References : 1261400 1261982 1261983 1267647 CVE-2026-40226 ----------------------------------------------------------------- The container suse/sle-micro-rancher/5.4 was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2809-1 Released: Thu Jul 9 08:08:18 2026 Summary: Security update for systemd Type: security Severity: moderate References: 1261400,1261982,1261983,1267647,CVE-2026-40226 This update for systemd fixes the following issue Security issues fixed: - CVE-2026-40226: nspawn: escape-to-host via malformed optional config file (bsc#1261400). Other updates and bugfixes: - Import commit 37508f8ec1 (bsc#1267647). - Import commit c7530fbea3 (bsc#1261982 bsc#1261983). - Import commit 5c4ed461a7 (bsc#1261982). - Import commit 4b963df038 (bsc#1261983). The following package changes have been done: - libsystemd0-249.17-150400.8.64.1 updated - libudev1-249.17-150400.8.64.1 updated - systemd-sysvinit-249.17-150400.8.64.1 updated - systemd-249.17-150400.8.64.1 updated - udev-249.17-150400.8.64.1 updated From sle-container-updates at lists.suse.com Fri Jul 10 07:36:09 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Fri, 10 Jul 2026 09:36:09 +0200 (CEST) Subject: SUSE-CU-2026:6887-1: Security update of suse/sle-micro/5.4/toolbox Message-ID: <20260710073609.3799FFCC9@maintenance.suse.de> SUSE Container Update Advisory: suse/sle-micro/5.4/toolbox ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6887-1 Container Tags : suse/sle-micro/5.4/toolbox:16.3 , suse/sle-micro/5.4/toolbox:16.3-5.19.247 , suse/sle-micro/5.4/toolbox:latest Container Release : 5.19.247 Severity : moderate Type : security References : 1261400 1261982 1261983 1267647 CVE-2026-40226 ----------------------------------------------------------------- The container suse/sle-micro/5.4/toolbox was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2809-1 Released: Thu Jul 9 08:08:18 2026 Summary: Security update for systemd Type: security Severity: moderate References: 1261400,1261982,1261983,1267647,CVE-2026-40226 This update for systemd fixes the following issue Security issues fixed: - CVE-2026-40226: nspawn: escape-to-host via malformed optional config file (bsc#1261400). Other updates and bugfixes: - Import commit 37508f8ec1 (bsc#1267647). - Import commit c7530fbea3 (bsc#1261982 bsc#1261983). - Import commit 5c4ed461a7 (bsc#1261982). - Import commit 4b963df038 (bsc#1261983). The following package changes have been done: - libsystemd0-249.17-150400.8.64.1 updated - libudev1-249.17-150400.8.64.1 updated From sle-container-updates at lists.suse.com Fri Jul 10 07:37:49 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Fri, 10 Jul 2026 09:37:49 +0200 (CEST) Subject: SUSE-CU-2026:6888-1: Security update of suse/sle-micro/5.5/toolbox Message-ID: <20260710073749.48A28FCC9@maintenance.suse.de> SUSE Container Update Advisory: suse/sle-micro/5.5/toolbox ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6888-1 Container Tags : suse/sle-micro/5.5/toolbox:16.3 , suse/sle-micro/5.5/toolbox:16.3-3.12.155 , suse/sle-micro/5.5/toolbox:latest Container Release : 3.12.155 Severity : moderate Type : security References : 1261400 1261982 1261983 1267647 CVE-2026-40226 ----------------------------------------------------------------- The container suse/sle-micro/5.5/toolbox was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2809-1 Released: Thu Jul 9 08:08:18 2026 Summary: Security update for systemd Type: security Severity: moderate References: 1261400,1261982,1261983,1267647,CVE-2026-40226 This update for systemd fixes the following issue Security issues fixed: - CVE-2026-40226: nspawn: escape-to-host via malformed optional config file (bsc#1261400). Other updates and bugfixes: - Import commit 37508f8ec1 (bsc#1267647). - Import commit c7530fbea3 (bsc#1261982 bsc#1261983). - Import commit 5c4ed461a7 (bsc#1261982). - Import commit 4b963df038 (bsc#1261983). The following package changes have been done: - libsystemd0-249.17-150400.8.64.1 updated - libudev1-249.17-150400.8.64.1 updated From sle-container-updates at lists.suse.com Fri Jul 10 07:39:57 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Fri, 10 Jul 2026 09:39:57 +0200 (CEST) Subject: SUSE-IU-2026:5597-1: Recommended update of suse/sl-micro/6.2/baremetal-os-container Message-ID: <20260710073957.2F4EEFCC9@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.2/baremetal-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5597-1 Image Tags : suse/sl-micro/6.2/baremetal-os-container:2.3.1 , suse/sl-micro/6.2/baremetal-os-container:2.3.1-8.52 , suse/sl-micro/6.2/baremetal-os-container:latest Image Release : 8.52 Severity : moderate Type : recommended References : 1270439 ----------------------------------------------------------------- The container suse/sl-micro/6.2/baremetal-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1191 Released: Thu Jul 9 14:39:23 2026 Summary: Recommended update for systemd Type: recommended Severity: moderate References: 1270439 This update for systemd fixes the following issues: Changes in systemd: - do not make mounting of debugfs optional yet. The following package changes have been done: - libudev1-257.13-160000.3.1 updated - libsystemd0-257.13-160000.3.1 updated - systemd-257.13-160000.3.1 updated - udev-257.13-160000.3.1 updated - container:suse-sl-micro-6.2-base-os-container-latest-647b99d00eaddc642192611a34c42132f507f6665d002241ac5daf113c028e2b-0 updated From sle-container-updates at lists.suse.com Fri Jul 10 07:45:27 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Fri, 10 Jul 2026 09:45:27 +0200 (CEST) Subject: SUSE-IU-2026:5603-1: Recommended update of suse/sl-micro/6.2/base-os-container Message-ID: <20260710074527.AEC02FCC9@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.2/base-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5603-1 Image Tags : suse/sl-micro/6.2/base-os-container:2.3.1 , suse/sl-micro/6.2/base-os-container:2.3.1-8.30 , suse/sl-micro/6.2/base-os-container:latest Image Release : 8.30 Severity : moderate Type : recommended References : 1270439 ----------------------------------------------------------------- The container suse/sl-micro/6.2/base-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1191 Released: Thu Jul 9 14:39:23 2026 Summary: Recommended update for systemd Type: recommended Severity: moderate References: 1270439 This update for systemd fixes the following issues: Changes in systemd: - do not make mounting of debugfs optional yet. The following package changes have been done: - libudev1-257.13-160000.3.1 updated - libsystemd0-257.13-160000.3.1 updated - systemd-257.13-160000.3.1 updated - udev-257.13-160000.3.1 updated From sle-container-updates at lists.suse.com Fri Jul 10 07:50:24 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Fri, 10 Jul 2026 09:50:24 +0200 (CEST) Subject: SUSE-IU-2026:5606-1: Security update of suse/sl-micro/6.2/kvm-os-container Message-ID: <20260710075024.E2362FCC9@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.2/kvm-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5606-1 Image Tags : suse/sl-micro/6.2/kvm-os-container:2.3.1 , suse/sl-micro/6.2/kvm-os-container:2.3.1-8.45 , suse/sl-micro/6.2/kvm-os-container:latest Image Release : 8.45 Severity : important Type : security References : 1268402 1268407 1268409 1268413 1268415 1268416 1268417 1268420 1268422 1268427 CVE-2026-10536 CVE-2026-12064 CVE-2026-8286 CVE-2026-8458 CVE-2026-8924 CVE-2026-8927 CVE-2026-9079 CVE-2026-9080 CVE-2026-9545 CVE-2026-9547 ----------------------------------------------------------------- The container suse/sl-micro/6.2/kvm-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1187 Released: Wed Jul 8 15:46:40 2026 Summary: Security update for curl Type: security Severity: important References: 1268402,1268407,1268409,1268413,1268415,1268416,1268417,1268420,1268422,1268427,CVE-2026-10536,CVE-2026-12064,CVE-2026-8286,CVE-2026-8458,CVE-2026-8924,CVE-2026-8927,CVE-2026-9079,CVE-2026-9080,CVE-2026-9545,CVE-2026-9547 This update for curl fixes the following issues - CVE-2026-8286: wrong STARTTLS connection reuse (bsc#1268402). - CVE-2026-8458: wrong reuse for different services (bsc#1268407). - CVE-2026-8924: traling dot domain super cookie (bsc#1268409). - CVE-2026-8927: env-set cross-proxy Digest auth state leak (bsc#1268413). - CVE-2026-9079: stale proxy password leak (bsc#1268415). - CVE-2026-9080: UAF after pause in socket callback (bsc#1268416). - CVE-2026-9545: exposing HTTP/3 early data (bsc#1268417). - CVE-2026-9547: SSH improper host validation (bsc#1268420). - CVE-2026-10536: HTTP/2 stream-dependency tree UAF (bsc#1268422). - CVE-2026-12064: proto-default skips SSH verification (bsc#1268427). The following package changes have been done: - system-user-root-20190513-160000.2.2 added - filesystem-84.87-160000.2.2 added - branding-SLE-16-160000.2.2 added - crypto-policies-20250714.cd6043a-160000.2.1 added - dbus-broker-block-restart-36-160000.3.1 added - file-magic-5.46-160000.2.2 added - glibc-2.40-160000.6.1 added - libsemanage-conf-3.8.1-160000.3.1 added - pkgconf-m4-2.2.0-160000.2.2 added - systemd-default-settings-branding-upstream-0.10-160000.2.2 added - terminfo-base-6.5.20250531-160000.3.1 added - libncurses6-6.5.20250531-160000.3.1 added - ncurses-utils-6.5.20250531-160000.3.1 added - libzstd1-1.5.7-160000.2.2 added - libz1-1.2.13-160000.3.1 added - libuuid1-2.41.1-160000.4.1 added - libunistring5-1.3-160000.3.2 added - libtextstyle0-0.22.5-160000.2.2 added - libtasn1-6-4.21.0-160000.1.1 added - libsqlite3-0-3.53.2-160000.1.1 added - libsmartcols1-2.41.1-160000.4.1 added - libsepol2-3.8.1-160000.2.2 added - libseccomp2-2.6.0-160000.2.2 added - libpopt0-1.19-160000.2.2 added - libpkgconf5-2.2.0-160000.2.2 added - libpcre2-8-0-10.45-160000.3.1 added - libnss_usrfiles2-2.27.1-160000.3.2 added - liblzma5-5.8.1-160000.3.1 added - liblz1-1.15-160000.2.2 added - liblua5_4-5-5.4.7-160000.2.2 added - libkbdfile1-2.7.1-160000.2.2 added - libjson-c5-0.17-160000.2.2 added - libjitterentropy3-3.6.3-160000.2.2 added - libgpg-error0-1.58-160000.1.1 added - libgmp10-6.3.0-160000.2.2 added - libgcc_s1-15.3.0+git11272-160000.1.1 added - libexpat1-2.7.1-160000.5.1 added - libeconf0-0.7.9-160000.2.2 added - libcrypt1-4.4.38-160000.3.2 added - libcap2-2.73-160000.3.1 added - libcap-ng0-0.8.5-160000.3.2 added - libbz2-1-1.0.8-160000.2.2 added - libbrotlicommon1-1.1.0-160000.2.2 added - libaudit1-4.0-160000.2.2 added - libattr1-2.5.2-160000.2.2 added - libalternatives1-1.2+30.a5431e9-160000.2.2 added - libacl1-2.3.2-160000.2.2 added - fillup-1.42-160000.2.2 added - envsubst-0.22.5-160000.2.2 added - diffutils-3.12-160000.2.2 added - libreadline8-8.2.13-160000.2.2 added - pigz-2.8-160000.2.2 added - libpng16-16-1.6.44-160000.7.1 added - libelf1-0.192-160000.3.1 added - libidn2-0-2.3.8-160000.2.2 added - liblastlog2-2-2.41.1-160000.4.1 added - pkgconf-2.2.0-160000.2.2 added - libselinux1-3.8.1-160000.4.1 added - netcfg-11.6-160000.3.1 added - libxml2-2-2.13.8-160000.4.1 added - libkfont0-2.7.1-160000.2.2 added - libkeymap1-2.7.1-160000.2.2 added - libgcrypt20-1.12.1-160000.2.1 added - libmpfr6-4.2.1-160000.2.2 added - libstdc++6-15.3.0+git11272-160000.1.1 added - libblkid1-2.41.1-160000.4.1 added - perl-base-5.42.0-160000.2.2 added - libudev1-257.13-160000.2.1 added - libsystemd0-257.13-160000.2.1 added - libmagic1-5.46-160000.2.2 added - libbrotlidec1-1.1.0-160000.2.2 added - alts-1.2+30.a5431e9-160000.2.2 added - permctl-1699_20250120-160000.2.2 added - bash-5.2.37-160000.2.2 added - bash-sh-5.2.37-160000.2.2 added - libdw1-0.192-160000.3.1 added - sed-4.9-160000.3.1 added - libsubid5-4.17.2-160000.2.2 added - libsemanage2-3.8.1-160000.3.1 added - findutils-4.10.0-160000.2.2 added - libmount1-2.41.1-160000.4.1 added - libfdisk1-2.41.1-160000.4.1 added - file-5.46-160000.2.2 added - libfreetype6-2.13.3-160000.3.1 added - zstd-1.5.7-160000.2.2 added - xz-5.8.1-160000.3.1 added - pkgconf-pkg-config-2.2.0-160000.2.2 added - login_defs-4.17.2-160000.2.2 added - libdevmapper1_03-2.03.29_1.02.203-160000.3.1 added - gzip-1.13-160000.2.2 added - grep-3.11-160000.2.2 added - gettext-runtime-0.22.5-160000.2.2 added - gawk-5.3.2-160000.2.2 added - cpio-2.15-160000.2.2 added - coreutils-9.6-160000.2.2 added - libasm1-0.192-160000.3.1 added - libdevmapper-event1_03-2.03.29_1.02.203-160000.3.1 added - thin-provisioning-tools-1.1.0-160000.2.2 added - systemd-rpm-macros-26-160000.2.2 added - systemd-presets-common-SUSE-15-160000.2.2 added - rpm-config-SUSE-20250328-160000.2.2 added - rpm-4.20.1-160000.2.2 added - permissions-config-1699_20250120-160000.2.2 added - libopenssl3-3.5.0-160000.8.1 added - elfutils-0.192-160000.3.1 added - device-mapper-2.03.29_1.02.203-160000.3.1 added - systemd-presets-branding-Elemental-20240807-160000.2.2 added - permissions-1699_20250120-160000.2.2 added - libkmod2-34.2-160000.3.2 added - libcryptsetup12-2.8.4-160000.1.1 added - pam-1.7.1-160000.4.1 added - util-linux-2.41.1-160000.4.1 added - shadow-4.17.2-160000.2.2 added - pam-extra-1.7.1-160000.4.1 added - kbd-2.7.1-160000.2.2 added - libfuse3-3-3.16.2-160000.3.1 added - fuse3-3.16.2-160000.3.1 added - sysuser-shadow-3.3-160000.2.2 added - pam-config-2.13+git.20250715-160000.2.2 added - grub2-common-2.12-160000.6.1 added - system-user-lp-20170617-160000.2.2 added - system-group-kvm-20170617-160000.2.2 added - system-group-hardware-20170617-160000.2.2 added - dbus-1-common-1.14.10-160000.2.2 added - grub2-i386-pc-2.12-160000.6.1 added - libdbus-1-3-1.14.10-160000.2.2 added - grub2-2.12-160000.6.1 added - dbus-1-tools-1.14.10-160000.2.2 added - SL-Micro-release-6.2-160000.18.1 added - aaa_base-84.87+git20260610.3b5a868c-160000.1.1 added - systemd-257.13-160000.2.1 added - dbus-broker-36-160000.3.1 added - dbus-1-1.14.10-160000.2.2 added - util-linux-systemd-2.41.1-160000.4.1 added - suse-module-tools-16.0.65-160000.1.1 added - kmod-34.2-160000.3.2 added - udev-257.13-160000.2.1 added - dracut-059+suse.724.gaa87d1594-160000.1.1 added - suse-module-tools-scriptlets-16.0.65-160000.1.1 added - libnuma1-2.0.19.14.g690a72c-160000.2.2 added - liburing2-2.8-160000.3.1 added - kernel-default-base-6.12.0-160000.35.1.160000.2.16 added - qemu-guest-agent-10.0.11-160000.1.1 added - libcom_err2-1.47.0-160000.3.2 added - libffi8-3.4.6-160000.2.2 added - libfreebl3-3.112.5-160000.1.1 added - libglib-2_0-0-2.84.4-160000.3.1 added - libkeyutils1-1.6.3-160000.3.2 added - libldap-data-2.6.10+10-160000.3.1 added - liblz4-1-1.10.0-160000.3.1 added - liblzo2-2-2.10-160000.3.2 added - libndp0-1.8-160000.2.2 added - libnghttp2-14-1.64.0-160000.3.1 added - libnl-config-3.11.0-160000.2.2 added - libpsl5-0.21.5-160000.3.2 added - libsasl2-3-2.1.28-160000.3.1 added - libssh-config-0.11.4-160000.1.1 added - libverto1-0.3.2-160000.2.2 added - logrotate-3.22.0-160000.2.2 added - mozilla-nspr-4.36.2-160000.1.1 added - shared-mime-info-2.4-160000.2.2 added - libgobject-2_0-0-2.84.4-160000.3.1 added - libgmodule-2_0-0-2.84.4-160000.3.1 added - squashfs-4.6.1-160000.2.2 added - libnl3-200-3.11.0-160000.2.2 added - libldap-2-2.6.10+10-160000.3.1 added - krb5-1.21.3-160000.4.1 added - mozilla-nss-certs-3.112.5-160000.1.1 added - gio-branding-SLE-16-160000.2.3 added - libgio-2_0-0-2.84.4-160000.3.1 added - glib2-tools-2.84.4-160000.3.1 added - wpa_supplicant-2.11-160000.3.1 added - libssh4-0.11.4-160000.1.1 added - mozilla-nss-3.112.5-160000.1.1 added - libsoftokn3-3.112.5-160000.1.1 added - libcurl4-8.14.1-160000.8.1 added - libnm0-1.52.0-160000.4.1 added - NetworkManager-1.52.0-160000.4.1 added - btrfsprogs-udev-rules-6.14-160000.2.2 added - libext2fs2-1.47.0-160000.3.2 added - btrfsprogs-6.14-160000.2.2 added - libaio1-0.3.113-160000.3.2 added - liblvm2cmd2_03-2.03.29-160000.3.1 added - lvm2-2.03.29-160000.3.1 added - boost-license1_86_0-1.86.0-160000.2.2 added - dosfstools-4.2-160000.2.2 added - e2fsprogs-1.47.0-160000.3.2 added - elemental-register-1.9.2-160000.1.1 added - elemental-support-1.9.2-160000.1.1 added - elemental-system-agent-0.3.16-160000.1.1 added - elemental-updater-2.3.1-160000.1.1 added - glibc-gconv-modules-extra-2.40-160000.6.1 added - glibc-locale-base-2.40-160000.6.1 added - gptfdisk-1.0.10-160000.2.2 added - libbtrfs0-6.14-160000.2.2 added - libbtrfsutil1-6.14-160000.2.2 added - libburn4-1.5.6-160000.2.2 added - libedit0-20210910.3.1-160000.2.2 added - libinih0-58-160000.2.2 added - libjte2-1.22-160000.2.2 added - libmpdec4-4.0.1-160000.2.2 added - libparted-fs-resize0-3.6-160000.2.2 added - libparted2-3.6-160000.2.2 added - libproc2-1-4.0.5-160000.2.2 added - liburcu8-0.14.0-160000.2.2 added - libxxhash0-0.8.3-160000.2.2 added - libzio1-1.09-160000.2.2 added - libboost_thread1_86_0-1.86.0-160000.2.2 added - mtools-4.0.45-160000.2.2 added - libisofs6-1.5.6-160000.2.2 added - python313-base-3.13.13-160000.1.1 added - libpython3_13-1_0-3.13.13-160000.1.1 added - parted-3.6-160000.2.2 added - procps-4.0.5-160000.2.2 added - rsync-3.4.1-160000.5.1 added - info-7.1-160000.2.2 added - libsnapper7-0.12.1-160000.2.2 added - libisoburn1-1.5.6-160000.3.2 added - xfsprogs-6.19.0-160000.2.1 added - snapper-0.12.1-160000.2.2 added - xorriso-1.5.6-160000.3.2 added - elemental-toolkit-2.3.4-160000.1.1 added - elemental-2.3.1-160000.1.1 added - compat-usrmerge-tools-84.87-160000.2.2 added - container:suse-sl-micro-6.2-base-os-container-latest-b4f4d94e8bcaa77cad829007f9dacdd997d8abcd095ea67f21b1fc42efd969bb-0 added From sle-container-updates at lists.suse.com Fri Jul 10 07:50:25 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Fri, 10 Jul 2026 09:50:25 +0200 (CEST) Subject: SUSE-IU-2026:5607-1: Recommended update of suse/sl-micro/6.2/kvm-os-container Message-ID: <20260710075025.C3EE3FCD7@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.2/kvm-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5607-1 Image Tags : suse/sl-micro/6.2/kvm-os-container:2.3.1 , suse/sl-micro/6.2/kvm-os-container:2.3.1-8.46 , suse/sl-micro/6.2/kvm-os-container:latest Image Release : 8.46 Severity : moderate Type : recommended References : 1270439 ----------------------------------------------------------------- The container suse/sl-micro/6.2/kvm-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1191 Released: Thu Jul 9 14:39:23 2026 Summary: Recommended update for systemd Type: recommended Severity: moderate References: 1270439 This update for systemd fixes the following issues: Changes in systemd: - do not make mounting of debugfs optional yet. The following package changes have been done: - libudev1-257.13-160000.3.1 updated - libsystemd0-257.13-160000.3.1 updated - systemd-257.13-160000.3.1 updated - udev-257.13-160000.3.1 updated - container:suse-sl-micro-6.2-base-os-container-latest-647b99d00eaddc642192611a34c42132f507f6665d002241ac5daf113c028e2b-0 updated From sle-container-updates at lists.suse.com Fri Jul 10 07:55:14 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Fri, 10 Jul 2026 09:55:14 +0200 (CEST) Subject: SUSE-IU-2026:5613-1: Security update of suse/sl-micro/6.2/rt-os-container Message-ID: <20260710075514.9C2EFFCC9@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.2/rt-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5613-1 Image Tags : suse/sl-micro/6.2/rt-os-container:2.3.1 , suse/sl-micro/6.2/rt-os-container:2.3.1-7.59 , suse/sl-micro/6.2/rt-os-container:latest Image Release : 7.59 Severity : important Type : security References : 1268402 1268407 1268409 1268413 1268415 1268416 1268417 1268420 1268422 1268427 CVE-2026-10536 CVE-2026-12064 CVE-2026-8286 CVE-2026-8458 CVE-2026-8924 CVE-2026-8927 CVE-2026-9079 CVE-2026-9080 CVE-2026-9545 CVE-2026-9547 ----------------------------------------------------------------- The container suse/sl-micro/6.2/rt-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1187 Released: Wed Jul 8 15:46:40 2026 Summary: Security update for curl Type: security Severity: important References: 1268402,1268407,1268409,1268413,1268415,1268416,1268417,1268420,1268422,1268427,CVE-2026-10536,CVE-2026-12064,CVE-2026-8286,CVE-2026-8458,CVE-2026-8924,CVE-2026-8927,CVE-2026-9079,CVE-2026-9080,CVE-2026-9545,CVE-2026-9547 This update for curl fixes the following issues - CVE-2026-8286: wrong STARTTLS connection reuse (bsc#1268402). - CVE-2026-8458: wrong reuse for different services (bsc#1268407). - CVE-2026-8924: traling dot domain super cookie (bsc#1268409). - CVE-2026-8927: env-set cross-proxy Digest auth state leak (bsc#1268413). - CVE-2026-9079: stale proxy password leak (bsc#1268415). - CVE-2026-9080: UAF after pause in socket callback (bsc#1268416). - CVE-2026-9545: exposing HTTP/3 early data (bsc#1268417). - CVE-2026-9547: SSH improper host validation (bsc#1268420). - CVE-2026-10536: HTTP/2 stream-dependency tree UAF (bsc#1268422). - CVE-2026-12064: proto-default skips SSH verification (bsc#1268427). The following package changes have been done: - libcurl4-8.14.1-160000.8.1 updated - container:suse-sl-micro-6.2-baremetal-os-container-latest-0f1d94be92a28b31a184b20450aca192400fb270768443e60a45f9b6b56e34db-0 updated From sle-container-updates at lists.suse.com Fri Jul 10 07:55:17 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Fri, 10 Jul 2026 09:55:17 +0200 (CEST) Subject: SUSE-IU-2026:5616-1: Recommended update of suse/sl-micro/6.2/rt-os-container Message-ID: <20260710075517.BC097FCC9@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.2/rt-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5616-1 Image Tags : suse/sl-micro/6.2/rt-os-container:2.3.1 , suse/sl-micro/6.2/rt-os-container:2.3.1-7.62 , suse/sl-micro/6.2/rt-os-container:latest Image Release : 7.62 Severity : moderate Type : recommended References : 1270439 ----------------------------------------------------------------- The container suse/sl-micro/6.2/rt-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1191 Released: Thu Jul 9 14:39:23 2026 Summary: Recommended update for systemd Type: recommended Severity: moderate References: 1270439 This update for systemd fixes the following issues: Changes in systemd: - do not make mounting of debugfs optional yet. The following package changes have been done: - libudev1-257.13-160000.3.1 updated - libsystemd0-257.13-160000.3.1 updated - systemd-257.13-160000.3.1 updated - udev-257.13-160000.3.1 updated - container:suse-sl-micro-6.2-baremetal-os-container-latest-b8cd154260eeb76516b8d4f48a327cf3fdb63b741becff824d7cbd37f9c46cdc-0 updated From sle-container-updates at lists.suse.com Fri Jul 10 07:59:40 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Fri, 10 Jul 2026 09:59:40 +0200 (CEST) Subject: SUSE-CU-2026:6889-1: Security update of suse/ltss/sle15.4/bci-base-fips Message-ID: <20260710075940.35176FCC9@maintenance.suse.de> SUSE Container Update Advisory: suse/ltss/sle15.4/bci-base-fips ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6889-1 Container Tags : suse/ltss/sle15.4/bci-base-fips:15.4 , suse/ltss/sle15.4/bci-base-fips:15.4.2.83 , suse/ltss/sle15.4/bci-base-fips:latest Container Release : 2.83 Severity : important Type : security References : 1259327 1259611 1259734 1259735 1259989 1260026 1261206 1261280 1261809 1261969 1261970 1262098 1262319 1262464 1262465 1262654 CVE-2025-13462 CVE-2026-1502 CVE-2026-3446 CVE-2026-34743 CVE-2026-3479 CVE-2026-3644 CVE-2026-4046 CVE-2026-4224 CVE-2026-4519 CVE-2026-4786 CVE-2026-4878 CVE-2026-5450 CVE-2026-5928 CVE-2026-6019 CVE-2026-6100 ----------------------------------------------------------------- The container suse/ltss/sle15.4/bci-base-fips was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:1432-1 Released: Fri Apr 17 12:12:08 2026 Summary: Security update for libcap Type: security Severity: important References: 1261809,CVE-2026-4878 This update for libcap fixes the following issue: - CVE-2026-4878: Address a potential TOCTOU race condition in cap_set_file() (bsc#1261809). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:1715-1 Released: Wed May 6 14:09:30 2026 Summary: Security update for python3 Type: security Severity: important References: 1259611,1259734,1259735,1259989,1260026,1261969,1261970,1262098,1262319,1262654,CVE-2025-13462,CVE-2026-1502,CVE-2026-3446,CVE-2026-3479,CVE-2026-3644,CVE-2026-4224,CVE-2026-4519,CVE-2026-4786,CVE-2026-6019,CVE-2026-6100 This update for python3 fixes the following issues: - CVE-2025-13462: incorrect parsing of TarInfo when GNU long name and type AREGTYPE are combined can lead to misinterpretation of tar archives (bsc#1259611). - CVE-2026-1502: HTTP client proxy tunnel headers not validated for CR/LF (bsc#1261969). - CVE-2026-3446: base64 decoding stops at first padded quad by default and ignores other information that could be processed (bsc#1261970). - CVE-2026-3479: improper resource argument validation in `pkgutil.get_data()` can lead to path traversal (bsc#1259989). - CVE-2026-3644: incomplete control character validation in http.cookies can lead to input validation bypass (bsc#1259734). - CVE-2026-4224: parsing XML with deeply nested DTD content models can lead to C stack overflow (bsc#1259735). - CVE-2026-4519: failure to sanitize leading dashes in URLs in the `webbrowser.open()` API can lead to web browser command line option injection (bsc#1260026). - CVE-2026-4786: URLs prefixed with `%action` can pass the dash-prefix safety check and allow for command injection (bsc#1262319). - CVE-2026-6019: `BaseCookie.js_output()` does not neutralize characters in cookie values embedded in JS (bsc#1262654). - CVE-2026-6100: use-after-free in `lzma.LZMADecompressor`, `bz2.BZ2Decompressor`, and `gzip.GzipFile` when process is under memory pressure(bsc#1262098). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2118-1 Released: Fri May 29 17:31:19 2026 Summary: Security update for xz Type: security Severity: important References: 1261280,CVE-2026-34743 This update for xz fixes the following issue - CVE-2026-34743: buffer overflow in lzma_index_append() (bsc#1261280). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2333-1 Released: Wed Jun 10 10:41:58 2026 Summary: Security update for glibc Type: security Severity: important References: 1261206,1262464,1262465,CVE-2026-4046,CVE-2026-5450,CVE-2026-5928 This update for glibc fixes the following issues - CVE-2026-4046: assertion failure when converting inputs may be used to remotely crash an application (bsc#1261206). - CVE-2026-5450: stdio-common: scanf %mc pattern will cause heap overflow when width > 1024 (bsc#1262465). - CVE-2026-5928: libio: ungetwc could be used to leak data on special conditions (bsc#1262464). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2434-1 Released: Wed Jun 17 16:40:10 2026 Summary: Recommended update for coreutils Type: recommended Severity: important References: 1259327 This update for coreutils fixes the following issues: - proc: Use affinity mask even on systems with more than 1024 CPUs (bsc#1259327) The following package changes have been done: - glibc-2.31-150300.101.1 updated - liblzma5-5.2.3-150000.4.10.1 updated - libcap2-2.63-150400.3.6.1 updated - coreutils-8.32-150400.9.12.1 updated - python3-base-3.6.15-150300.10.118.1 updated - libpython3_6m1_0-3.6.15-150300.10.118.1 updated - container:sles15-ltss-image-15.4.0-6.30 updated From sle-container-updates at lists.suse.com Fri Jul 10 08:05:48 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Fri, 10 Jul 2026 10:05:48 +0200 (CEST) Subject: SUSE-CU-2026:6892-1: Security update of bci/golang Message-ID: <20260710080548.A9F44FCC9@maintenance.suse.de> SUSE Container Update Advisory: bci/golang ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6892-1 Container Tags : bci/golang:1.25 , bci/golang:1.25-sles15 , bci/golang:1.25.12 , bci/golang:1.25.12-2.76.6 , bci/golang:oldstable Container Release : 76.6 Severity : important Type : security References : 1244485 1245878 1259264 1259265 1259268 1264394 1271014 1271015 CVE-2026-25679 CVE-2026-27139 CVE-2026-27142 CVE-2026-39822 CVE-2026-42505 ----------------------------------------------------------------- The container bci/golang was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2817-1 Released: Thu Jul 9 19:07:47 2026 Summary: Security update for go1.25 Type: security Severity: important References: 1244485,1245878,1259264,1259265,1259268,1264394,1271014,1271015,CVE-2026-25679,CVE-2026-27139,CVE-2026-27142,CVE-2026-39822,CVE-2026-42505 This update for go1.25 fixes the following issues - Update to version go1.25.12 (bsc#1244485). - CVE-2026-25679: net/url: reject IPv6 literal not at start of host (bsc#1259264). - CVE-2026-27139: os: FileInfo can escape from a Root (bsc#1259268). - CVE-2026-27142: html/template: URLs in meta content attribute actions are not escaped (bsc#1259265). - CVE-2026-39822: os: Root escape via symlink plus trailing slash (bsc#1271014). - CVE-2026-42505: crypto/tls: omit PSK in ECH outer client hello (bsc#1271015). The following package changes have been done: - go1.25-doc-1.25.12-150000.1.44.1 updated - go1.25-1.25.12-150000.1.44.1 updated - go1.25-race-1.25.12-150000.1.44.1 updated From sle-container-updates at lists.suse.com Fri Jul 10 08:07:45 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Fri, 10 Jul 2026 10:07:45 +0200 (CEST) Subject: SUSE-CU-2026:6895-1: Security update of bci/golang Message-ID: <20260710080745.66351FCC9@maintenance.suse.de> SUSE Container Update Advisory: bci/golang ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6895-1 Container Tags : bci/golang:1.26 , bci/golang:1.26-sles15 , bci/golang:1.26.5 , bci/golang:1.26.5-1.75.6 , bci/golang:latest , bci/golang:stable Container Release : 75.6 Severity : important Type : security References : 1245878 1255111 1264395 1271014 1271015 CVE-2026-39822 CVE-2026-42505 ----------------------------------------------------------------- The container bci/golang was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2818-1 Released: Thu Jul 9 19:09:01 2026 Summary: Security update for go1.26 Type: security Severity: important References: 1245878,1255111,1264395,1271014,1271015,CVE-2026-39822,CVE-2026-42505 This update for go1.26 fixes the following issues - Update to version go1.26.5 (bsc#1255111) - CVE-2026-39822: os: Root escape via symlink plus trailing slash (bsc#1271014). - CVE-2026-42505: crypto/tls: omit PSK in ECH outer client hello (bsc#1271015). The following package changes have been done: - go1.26-doc-1.26.5-150000.1.18.1 updated - go1.26-1.26.5-150000.1.18.1 updated - go1.26-race-1.26.5-150000.1.18.1 updated From sle-container-updates at lists.suse.com Fri Jul 10 08:10:25 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Fri, 10 Jul 2026 10:10:25 +0200 (CEST) Subject: SUSE-CU-2026:6899-1: Security update of suse/kiosk/firefox-esr Message-ID: <20260710081025.B7AC1FCC9@maintenance.suse.de> SUSE Container Update Advisory: suse/kiosk/firefox-esr ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6899-1 Container Tags : suse/kiosk/firefox-esr:140.12 , suse/kiosk/firefox-esr:140.12-74.15 , suse/kiosk/firefox-esr:esr , suse/kiosk/firefox-esr:latest Container Release : 74.15 Severity : important Type : security References : 1268071 1269226 CVE-2026-12289 CVE-2026-12290 CVE-2026-12291 CVE-2026-12292 CVE-2026-12294 CVE-2026-12295 CVE-2026-12296 CVE-2026-12297 CVE-2026-12298 CVE-2026-12299 CVE-2026-12302 CVE-2026-12304 CVE-2026-12305 CVE-2026-12306 CVE-2026-12307 CVE-2026-12308 CVE-2026-12309 CVE-2026-12310 CVE-2026-12311 CVE-2026-12312 CVE-2026-12313 CVE-2026-12314 CVE-2026-12315 CVE-2026-12324 CVE-2026-12325 CVE-2026-12327 CVE-2026-12328 CVE-2026-12329 CVE-2026-12330 ----------------------------------------------------------------- The container suse/kiosk/firefox-esr was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2814-1 Released: Thu Jul 9 14:25:54 2026 Summary: Security update for MozillaFirefox Type: security Severity: important References: 1268071,1269226,CVE-2026-12289,CVE-2026-12290,CVE-2026-12291,CVE-2026-12292,CVE-2026-12294,CVE-2026-12295,CVE-2026-12296,CVE-2026-12297,CVE-2026-12298,CVE-2026-12299,CVE-2026-12302,CVE-2026-12304,CVE-2026-12305,CVE-2026-12306,CVE-2026-12307,CVE-2026-12308,CVE-2026-12309,CVE-2026-12310,CVE-2026-12311,CVE-2026-12312,CVE-2026-12313,CVE-2026-12314,CVE-2026-12315,CVE-2026-12324,CVE-2026-12325,CVE-2026-12327,CVE-2026-12328,CVE-2026-12329,CVE-2026-12330 This update for MozillaFirefox fixes the following issues: - Removed obsolete mozilla-nss-certs and recommends p11-kit-nss-trust (bsc#1269226) Update to Firefox 140.12.0 ESR (MFSA 2026-58, bsc#1268071): - CVE-2026-12289: Privilege escalation in the Graphics: WebRender component. - CVE-2026-12290: Memory safety bug fixed in Firefox ESR 140.12. - CVE-2026-12291: Use-after-free in the Networking: HTTP component. - CVE-2026-12292: Incorrect boundary conditions in the Web Audio component. - CVE-2026-12294: Sandbox escape in the DOM: Workers component. - CVE-2026-12295: Sandbox escape in the DOM: Navigation component. - CVE-2026-12296: Sandbox escape in the Security: Process Sandboxing component. - CVE-2026-12297: Sandbox escape due to incorrect boundary conditions in the Networking component. - CVE-2026-12298: Memory safety bug fixed in Firefox ESR 140.12. - CVE-2026-12299: JIT miscompilation in the DOM: Core & HTML component. - CVE-2026-12302: Mitigation bypass in the DOM: Security component. - CVE-2026-12304: Same-origin policy bypass in the Networking: Cookies component. - CVE-2026-12305: Memory safety bug fixed in Firefox ESR 140.12. - CVE-2026-12306: Memory safety bug fixed in Firefox ESR 140.12. - CVE-2026-12307: Memory safety bug fixed in Firefox ESR 140.12. - CVE-2026-12308: Memory safety bug fixed in Firefox ESR 140.12. - CVE-2026-12309: Memory safety bug fixed in Firefox ESR 140.12. - CVE-2026-12310: Memory safety bug fixed in Firefox ESR 140.12. - CVE-2026-12311: Information disclosure, sandbox escape in the Security: Process Sandboxing component. - CVE-2026-12312: Memory safety bug fixed in Firefox ESR 140.12. - CVE-2026-12313: Information disclosure, sandbox escape in the Security: Process Sandboxing component. - CVE-2026-12314: Memory safety bug fixed in Firefox ESR 140.12. - CVE-2026-12315: Mitigation bypass in the DOM: Security component. - CVE-2026-12324: Incorrect boundary conditions in the Graphics: CanvasWebGL component. - CVE-2026-12325: Denial-of-service in the Graphics: ImageLib component. - CVE-2026-12327: Memory safety bugs fixed in Firefox ESR 140.12, Thunderbird ESR 140.12, Firefox 152 and Thunderbird 152. - CVE-2026-12328: Memory safety bugs fixed in Firefox ESR 115.37, Firefox ESR 140.12, Thunderbird ESR 140.12, Firefox 152 and Thunderbird 152. - CVE-2026-12329: Memory safety bug fixed in Firefox ESR 140.12. - CVE-2026-12330: Incorrect boundary conditions in the Internationalization component. The following package changes have been done: - mozilla-nss-certs-3.112.5-150400.3.69.2 added - MozillaFirefox-140.12.0-150200.152.245.1 updated - p11-kit-0.23.22-150500.8.3.1 removed - p11-kit-nss-trust-0.23.22-150500.8.3.1 removed From sle-container-updates at lists.suse.com Fri Jul 10 08:10:46 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Fri, 10 Jul 2026 10:10:46 +0200 (CEST) Subject: SUSE-CU-2026:6900-1: Security update of suse/kubectl Message-ID: <20260710081046.E12D2FCC9@maintenance.suse.de> SUSE Container Update Advisory: suse/kubectl ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6900-1 Container Tags : suse/kubectl:1.33 , suse/kubectl:1.33.11 , suse/kubectl:1.33.11-2.69.7 , suse/kubectl:oldstable Container Release : 69.7 Severity : important Type : security References : 1266598 1270127 CVE-2026-39821 CVE-2026-48978 ----------------------------------------------------------------- The container suse/kubectl was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2823-1 Released: Thu Jul 9 20:13:16 2026 Summary: Security update for helm Type: security Severity: important References: 1266598,1270127,CVE-2026-39821,CVE-2026-48978 This update for helm fixes the following issues - Update to version 3.21.2 - CVE-2026-39821: golang.org/x/net/idna: failure to reject ASCII-only Punycode-encoded labels allows for validation bypass and privilege escalation (bsc#1266598). - CVE-2026-48978: oras.land/oras-go/v2/registry/remote/auth: Malicious registry can hijack Bearer token realm to exfiltrate credentials and refresh tokens (bsc#1270127). The following package changes have been done: - helm-3.21.2-150000.1.80.1 updated - container:suse-sle15-15.7-d2aab68ae05470b62bbe38c4ca03ff5bf72b405197482ed96e34dd0087d7bde2-0 updated From sle-container-updates at lists.suse.com Fri Jul 10 08:11:08 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Fri, 10 Jul 2026 10:11:08 +0200 (CEST) Subject: SUSE-CU-2026:6901-1: Security update of suse/kubectl Message-ID: <20260710081108.7F6C8FCC9@maintenance.suse.de> SUSE Container Update Advisory: suse/kubectl ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6901-1 Container Tags : suse/kubectl:1.35 , suse/kubectl:1.35.4 , suse/kubectl:1.35.4-1.69.7 , suse/kubectl:latest , suse/kubectl:stable Container Release : 69.7 Severity : important Type : security References : 1266598 1270127 CVE-2026-39821 CVE-2026-48978 ----------------------------------------------------------------- The container suse/kubectl was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2823-1 Released: Thu Jul 9 20:13:16 2026 Summary: Security update for helm Type: security Severity: important References: 1266598,1270127,CVE-2026-39821,CVE-2026-48978 This update for helm fixes the following issues - Update to version 3.21.2 - CVE-2026-39821: golang.org/x/net/idna: failure to reject ASCII-only Punycode-encoded labels allows for validation bypass and privilege escalation (bsc#1266598). - CVE-2026-48978: oras.land/oras-go/v2/registry/remote/auth: Malicious registry can hijack Bearer token realm to exfiltrate credentials and refresh tokens (bsc#1270127). The following package changes have been done: - helm-3.21.2-150000.1.80.1 updated - container:suse-sle15-15.7-d2aab68ae05470b62bbe38c4ca03ff5bf72b405197482ed96e34dd0087d7bde2-0 updated - container:registry.suse.com-bci-bci-micro-15.7-fd964d3e322cd11669fadf2e46074accd2ee37f3d9beec5f3469869cb8b6678c-0 updated From sle-container-updates at lists.suse.com Fri Jul 10 08:22:11 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Fri, 10 Jul 2026 10:22:11 +0200 (CEST) Subject: SUSE-CU-2026:6913-1: Security update of bci/rust Message-ID: <20260710082211.E835AFCC9@maintenance.suse.de> SUSE Container Update Advisory: bci/rust ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6913-1 Container Tags : bci/rust:1.96 , bci/rust:1.96-sles15 , bci/rust:1.96.0 , bci/rust:1.96.0-1.4.5 , bci/rust:latest , bci/rust:stable Container Release : 4.5 Severity : important Type : security References : 1264971 1266340 1266341 1266342 1266343 1266345 1266349 1266350 1266351 1266352 1266353 1266355 1266356 1266357 CVE-2026-34180 CVE-2026-34181 CVE-2026-34183 CVE-2026-42766 CVE-2026-42767 CVE-2026-42768 CVE-2026-42769 CVE-2026-42770 CVE-2026-45445 CVE-2026-45446 CVE-2026-45447 CVE-2026-7383 CVE-2026-9076 ----------------------------------------------------------------- The container bci/rust was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2648-1 Released: Fri Jun 26 13:05:57 2026 Summary: Security update for openssl-3 Type: security Severity: important References: 1266340,1266341,1266342,1266343,1266345,1266349,1266350,1266351,1266352,1266353,1266355,1266356,1266357,CVE-2026-34180,CVE-2026-34181,CVE-2026-34183,CVE-2026-42766,CVE-2026-42767,CVE-2026-42768,CVE-2026-42769,CVE-2026-42770,CVE-2026-45445,CVE-2026-45446,CVE-2026-45447,CVE-2026-7383,CVE-2026-9076 This update for openssl-3 fixes the following issues - CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion (bsc#1266340). - CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption (bsc#1266341). - CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing (bsc#1266342). - CVE-2026-34181: PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys (bsc#1266343). - CVE-2026-34183: Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler (bsc#1266345). - CVE-2026-42766: Possible NULL Dereference in Password-Based CMS Decryption (bsc#1266349). - CVE-2026-42767: NULL Pointer Dereference in CRMF EncryptedValue Decryption (bsc#1266350). - CVE-2026-42768: Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt() (bsc#1266351). - CVE-2026-42769: Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate (bsc#1266352). - CVE-2026-42770: FFC-DH Peer Validation Uses Attacker-Supplied q (bsc#1266353). - CVE-2026-45445: AES-OCB IV Ignored on EVP_Cipher() Path (bsc#1266355). - CVE-2026-45446: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes (bsc#1266356). - CVE-2026-45447: Heap Use-After-Free in OpenSSL PKCS7_verify() (bsc#1266357). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2026:2661-1 Released: Fri Jun 26 15:15:48 2026 Summary: Recommended update for curl Type: recommended Severity: important References: 1264971 This update for curl fixes the following issues: - Call http_size() first to prioritize Transfer-Encoding: chunked over a zero Content-Length empty body check (bsc#1264971) The following package changes have been done: - libopenssl3-3.2.3-150700.5.36.1 updated - libopenssl-3-fips-provider-3.2.3-150700.5.36.1 updated - libcurl4-8.14.1-150700.7.17.1 updated - container:registry.suse.com-bci-bci-base-15.7-0180bc786e784f4f99302a008c5991e2d05f7fac404ce0fa2a07aaef564e6ef8-0 updated From sle-container-updates at lists.suse.com Sat Jul 11 07:04:07 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sat, 11 Jul 2026 09:04:07 +0200 (CEST) Subject: SUSE-CU-2026:6914-1: Security update of private-registry/1.2/harbor-core Message-ID: <20260711070407.11EF6FCD7@maintenance.suse.de> SUSE Container Update Advisory: private-registry/1.2/harbor-core ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6914-1 Container Tags : private-registry/1.2/harbor-core:1.2.0 , private-registry/1.2/harbor-core:1.2.0-1.45 , private-registry/1.2/harbor-core:latest Container Release : 1.45 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container private-registry/1.2/harbor-core was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - system-user-harbor-2.15.1-150700.1.16 updated - harbor-core-2.15.1-150700.1.16 updated - container:suse-sle15-15.7-0180bc786e784f4f99302a008c5991e2d05f7fac404ce0fa2a07aaef564e6ef8-0 updated From sle-container-updates at lists.suse.com Sat Jul 11 07:04:13 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sat, 11 Jul 2026 09:04:13 +0200 (CEST) Subject: SUSE-CU-2026:6915-1: Security update of private-registry/1.2/harbor-exporter Message-ID: <20260711070413.F1DB7FCD7@maintenance.suse.de> SUSE Container Update Advisory: private-registry/1.2/harbor-exporter ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6915-1 Container Tags : private-registry/1.2/harbor-exporter:1.2.0 , private-registry/1.2/harbor-exporter:1.2.0-1.45 , private-registry/1.2/harbor-exporter:latest Container Release : 1.45 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container private-registry/1.2/harbor-exporter was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - harbor-exporter-2.15.1-150700.1.16 updated - krb5-1.20.1-150600.11.19.1 updated - system-user-harbor-2.15.1-150700.1.16 updated - container:suse-sle15-15.7-0180bc786e784f4f99302a008c5991e2d05f7fac404ce0fa2a07aaef564e6ef8-0 updated From sle-container-updates at lists.suse.com Sat Jul 11 07:04:21 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sat, 11 Jul 2026 09:04:21 +0200 (CEST) Subject: SUSE-CU-2026:6916-1: Security update of private-registry/1.2/harbor-jobservice Message-ID: <20260711070421.7B1A6FCD7@maintenance.suse.de> SUSE Container Update Advisory: private-registry/1.2/harbor-jobservice ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6916-1 Container Tags : private-registry/1.2/harbor-jobservice:1.2.0 , private-registry/1.2/harbor-jobservice:1.2.0-1.43 , private-registry/1.2/harbor-jobservice:latest Container Release : 1.43 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container private-registry/1.2/harbor-jobservice was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - system-user-harbor-2.15.1-150700.1.16 updated - harbor-jobservice-2.15.1-150700.1.16 updated From sle-container-updates at lists.suse.com Sat Jul 11 07:04:29 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sat, 11 Jul 2026 09:04:29 +0200 (CEST) Subject: SUSE-CU-2026:6917-1: Security update of private-registry/1.2/harbor-portal Message-ID: <20260711070429.36ACDFCD7@maintenance.suse.de> SUSE Container Update Advisory: private-registry/1.2/harbor-portal ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6917-1 Container Tags : private-registry/1.2/harbor-portal:1.2.0 , private-registry/1.2/harbor-portal:1.2.0-1.48 , private-registry/1.2/harbor-portal:latest Container Release : 1.48 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container private-registry/1.2/harbor-portal was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - system-user-harbor-2.15.1-150700.1.16 updated - harbor-portal-2.15.1-150700.1.16 updated - container:suse-sle15-15.7-0180bc786e784f4f99302a008c5991e2d05f7fac404ce0fa2a07aaef564e6ef8-0 updated From sle-container-updates at lists.suse.com Sat Jul 11 07:04:37 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sat, 11 Jul 2026 09:04:37 +0200 (CEST) Subject: SUSE-CU-2026:6918-1: Security update of private-registry/1.2/harbor-registry Message-ID: <20260711070437.C6964FCD7@maintenance.suse.de> SUSE Container Update Advisory: private-registry/1.2/harbor-registry ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6918-1 Container Tags : private-registry/1.2/harbor-registry:1.2.0 , private-registry/1.2/harbor-registry:1.2.0-1.44 , private-registry/1.2/harbor-registry:latest Container Release : 1.44 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container private-registry/1.2/harbor-registry was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - system-user-harbor-2.15.1-150700.1.16 updated - container:suse-sle15-15.7-0180bc786e784f4f99302a008c5991e2d05f7fac404ce0fa2a07aaef564e6ef8-0 updated From sle-container-updates at lists.suse.com Sat Jul 11 07:04:47 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sat, 11 Jul 2026 09:04:47 +0200 (CEST) Subject: SUSE-CU-2026:6919-1: Security update of private-registry/1.2/harbor-registryctl Message-ID: <20260711070447.3F931FCD7@maintenance.suse.de> SUSE Container Update Advisory: private-registry/1.2/harbor-registryctl ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6919-1 Container Tags : private-registry/1.2/harbor-registryctl:1.2.0 , private-registry/1.2/harbor-registryctl:1.2.0-1.44 , private-registry/1.2/harbor-registryctl:latest Container Release : 1.44 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container private-registry/1.2/harbor-registryctl was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - system-user-harbor-2.15.1-150700.1.16 updated - harbor-registryctl-2.15.1-150700.1.16 updated - container:suse-sle15-15.7-0180bc786e784f4f99302a008c5991e2d05f7fac404ce0fa2a07aaef564e6ef8-0 updated From sle-container-updates at lists.suse.com Sat Jul 11 07:04:57 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sat, 11 Jul 2026 09:04:57 +0200 (CEST) Subject: SUSE-CU-2026:6920-1: Security update of private-registry/1.2/harbor-trivy-adapter Message-ID: <20260711070457.940D9FCD7@maintenance.suse.de> SUSE Container Update Advisory: private-registry/1.2/harbor-trivy-adapter ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6920-1 Container Tags : private-registry/1.2/harbor-trivy-adapter:1.2.0 , private-registry/1.2/harbor-trivy-adapter:1.2.0-1.48 , private-registry/1.2/harbor-trivy-adapter:latest Container Release : 1.48 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container private-registry/1.2/harbor-trivy-adapter was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - harbor-scanner-trivy-0.36.0-150700.1.8 updated - system-user-harbor-2.15.1-150700.1.16 updated - container:suse-sle15-15.7-0180bc786e784f4f99302a008c5991e2d05f7fac404ce0fa2a07aaef564e6ef8-0 updated From sle-container-updates at lists.suse.com Sat Jul 11 07:05:48 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sat, 11 Jul 2026 09:05:48 +0200 (CEST) Subject: SUSE-CU-2026:6921-1: Security update of private-registry/harbor-core Message-ID: <20260711070548.3703DFCD7@maintenance.suse.de> SUSE Container Update Advisory: private-registry/harbor-core ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6921-1 Container Tags : private-registry/harbor-core:1.1.3 , private-registry/harbor-core:1.1.3-2.60 , private-registry/harbor-core:latest Container Release : 2.60 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container private-registry/harbor-core was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - system-user-harbor-2.14.4-150700.1.15 updated - harbor-core-2.14.4-150700.1.15 updated - container:suse-sle15-15.7-0180bc786e784f4f99302a008c5991e2d05f7fac404ce0fa2a07aaef564e6ef8-0 updated From sle-container-updates at lists.suse.com Sat Jul 11 07:06:37 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sat, 11 Jul 2026 09:06:37 +0200 (CEST) Subject: SUSE-CU-2026:6922-1: Security update of private-registry/harbor-exporter Message-ID: <20260711070637.25AFCFCD7@maintenance.suse.de> SUSE Container Update Advisory: private-registry/harbor-exporter ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6922-1 Container Tags : private-registry/harbor-exporter:1.1.3 , private-registry/harbor-exporter:1.1.3-2.61 , private-registry/harbor-exporter:latest Container Release : 2.61 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container private-registry/harbor-exporter was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - harbor-exporter-2.14.4-150700.1.15 updated - krb5-1.20.1-150600.11.19.1 updated - system-user-harbor-2.14.4-150700.1.15 updated - container:suse-sle15-15.7-0180bc786e784f4f99302a008c5991e2d05f7fac404ce0fa2a07aaef564e6ef8-0 updated From sle-container-updates at lists.suse.com Sat Jul 11 07:07:24 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sat, 11 Jul 2026 09:07:24 +0200 (CEST) Subject: SUSE-CU-2026:6923-1: Security update of private-registry/harbor-jobservice Message-ID: <20260711070724.6A792FCD7@maintenance.suse.de> SUSE Container Update Advisory: private-registry/harbor-jobservice ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6923-1 Container Tags : private-registry/harbor-jobservice:1.1.3 , private-registry/harbor-jobservice:1.1.3-2.60 , private-registry/harbor-jobservice:latest Container Release : 2.60 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container private-registry/harbor-jobservice was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - system-user-harbor-2.14.4-150700.1.15 updated - harbor-jobservice-2.14.4-150700.1.15 updated - container:suse-sle15-15.7-0180bc786e784f4f99302a008c5991e2d05f7fac404ce0fa2a07aaef564e6ef8-0 updated From sle-container-updates at lists.suse.com Sat Jul 11 07:08:15 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sat, 11 Jul 2026 09:08:15 +0200 (CEST) Subject: SUSE-CU-2026:6924-1: Security update of private-registry/harbor-portal Message-ID: <20260711070815.38775FCD7@maintenance.suse.de> SUSE Container Update Advisory: private-registry/harbor-portal ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6924-1 Container Tags : private-registry/harbor-portal:1.1.3 , private-registry/harbor-portal:1.1.3-2.66 , private-registry/harbor-portal:latest Container Release : 2.66 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container private-registry/harbor-portal was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - system-user-harbor-2.14.4-150700.1.15 updated - harbor-portal-2.14.4-150700.1.15 updated - container:suse-sle15-15.7-0180bc786e784f4f99302a008c5991e2d05f7fac404ce0fa2a07aaef564e6ef8-0 updated From sle-container-updates at lists.suse.com Sat Jul 11 07:08:35 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sat, 11 Jul 2026 09:08:35 +0200 (CEST) Subject: SUSE-CU-2026:6925-1: Security update of private-registry/harbor-registry Message-ID: <20260711070835.D1D0AFCD7@maintenance.suse.de> SUSE Container Update Advisory: private-registry/harbor-registry ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6925-1 Container Tags : private-registry/harbor-registry:1.1.3 , private-registry/harbor-registry:1.1.3-2.60 , private-registry/harbor-registry:latest Container Release : 2.60 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container private-registry/harbor-registry was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - system-user-harbor-2.14.4-150700.1.15 updated - container:suse-sle15-15.7-0180bc786e784f4f99302a008c5991e2d05f7fac404ce0fa2a07aaef564e6ef8-0 updated From sle-container-updates at lists.suse.com Sat Jul 11 07:09:24 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sat, 11 Jul 2026 09:09:24 +0200 (CEST) Subject: SUSE-CU-2026:6926-1: Security update of private-registry/harbor-registryctl Message-ID: <20260711070924.E9793FCD7@maintenance.suse.de> SUSE Container Update Advisory: private-registry/harbor-registryctl ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6926-1 Container Tags : private-registry/harbor-registryctl:1.1.3 , private-registry/harbor-registryctl:1.1.3-2.61 , private-registry/harbor-registryctl:latest Container Release : 2.61 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container private-registry/harbor-registryctl was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - system-user-harbor-2.14.4-150700.1.15 updated - harbor-registryctl-2.14.4-150700.1.15 updated - container:suse-sle15-15.7-0180bc786e784f4f99302a008c5991e2d05f7fac404ce0fa2a07aaef564e6ef8-0 updated From sle-container-updates at lists.suse.com Sat Jul 11 07:10:16 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sat, 11 Jul 2026 09:10:16 +0200 (CEST) Subject: SUSE-CU-2026:6927-1: Security update of private-registry/harbor-trivy-adapter Message-ID: <20260711071016.B854AFCD7@maintenance.suse.de> SUSE Container Update Advisory: private-registry/harbor-trivy-adapter ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6927-1 Container Tags : private-registry/harbor-trivy-adapter:1.1.3 , private-registry/harbor-trivy-adapter:1.1.3-2.68 , private-registry/harbor-trivy-adapter:latest Container Release : 2.68 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container private-registry/harbor-trivy-adapter was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - harbor-scanner-trivy-0.36.0-150700.1.7 updated - system-user-harbor-2.14.4-150700.1.15 updated - container:suse-sle15-15.7-0180bc786e784f4f99302a008c5991e2d05f7fac404ce0fa2a07aaef564e6ef8-0 updated From sle-container-updates at lists.suse.com Sat Jul 11 07:10:19 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sat, 11 Jul 2026 09:10:19 +0200 (CEST) Subject: SUSE-CU-2026:6928-1: Security update of private-registry/harbor-core Message-ID: <20260711071019.4606FFCD7@maintenance.suse.de> SUSE Container Update Advisory: private-registry/harbor-core ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6928-1 Container Tags : private-registry/harbor-core:2.13 , private-registry/harbor-core:2.13.5 , private-registry/harbor-core:2.13.5 , private-registry/harbor-core:2.13.5-1.12 , private-registry/harbor-core:2.13.5-1.12 , private-registry/harbor-core:latest Container Release : 1.12 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container private-registry/harbor-core was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - system-user-harbor-2.13.5-150700.1.7 updated - harbor213-core-2.13.5-150700.1.7 updated - container:suse-sle15-15.7-0180bc786e784f4f99302a008c5991e2d05f7fac404ce0fa2a07aaef564e6ef8-0 updated From sle-container-updates at lists.suse.com Sat Jul 11 07:10:23 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sat, 11 Jul 2026 09:10:23 +0200 (CEST) Subject: SUSE-CU-2026:6930-1: Security update of private-registry/harbor-jobservice Message-ID: <20260711071023.585D5FCD7@maintenance.suse.de> SUSE Container Update Advisory: private-registry/harbor-jobservice ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6930-1 Container Tags : private-registry/harbor-jobservice:2.13 , private-registry/harbor-jobservice:2.13.5 , private-registry/harbor-jobservice:2.13.5 , private-registry/harbor-jobservice:2.13.5-1.12 , private-registry/harbor-jobservice:2.13.5-1.12 , private-registry/harbor-jobservice:latest Container Release : 1.12 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container private-registry/harbor-jobservice was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - system-user-harbor-2.13.5-150700.1.7 updated - harbor213-jobservice-2.13.5-150700.1.7 updated - container:suse-sle15-15.7-0180bc786e784f4f99302a008c5991e2d05f7fac404ce0fa2a07aaef564e6ef8-0 updated From sle-container-updates at lists.suse.com Sat Jul 11 07:10:21 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sat, 11 Jul 2026 09:10:21 +0200 (CEST) Subject: SUSE-CU-2026:6929-1: Security update of private-registry/harbor-exporter Message-ID: <20260711071021.4FFC4FCD7@maintenance.suse.de> SUSE Container Update Advisory: private-registry/harbor-exporter ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6929-1 Container Tags : private-registry/harbor-exporter:2.13 , private-registry/harbor-exporter:2.13.5 , private-registry/harbor-exporter:2.13.5 , private-registry/harbor-exporter:2.13.5-1.12 , private-registry/harbor-exporter:2.13.5-1.12 , private-registry/harbor-exporter:latest Container Release : 1.12 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container private-registry/harbor-exporter was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - harbor213-exporter-2.13.5-150700.1.7 updated - krb5-1.20.1-150600.11.19.1 updated - system-user-harbor-2.13.5-150700.1.7 updated - container:suse-sle15-15.7-0180bc786e784f4f99302a008c5991e2d05f7fac404ce0fa2a07aaef564e6ef8-0 updated From sle-container-updates at lists.suse.com Sat Jul 11 07:10:24 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sat, 11 Jul 2026 09:10:24 +0200 (CEST) Subject: SUSE-CU-2026:6931-1: Security update of private-registry/harbor-portal Message-ID: <20260711071024.EF53DFCD7@maintenance.suse.de> SUSE Container Update Advisory: private-registry/harbor-portal ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6931-1 Container Tags : private-registry/harbor-portal:2.13 , private-registry/harbor-portal:2.13.5 , private-registry/harbor-portal:2.13.5 , private-registry/harbor-portal:2.13.5-1.11 , private-registry/harbor-portal:2.13.5-1.11 , private-registry/harbor-portal:latest Container Release : 1.11 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container private-registry/harbor-portal was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - system-user-harbor-2.13.5-150700.1.7 updated - harbor213-portal-2.13.5-150700.1.7 updated - container:suse-sle15-15.7-0180bc786e784f4f99302a008c5991e2d05f7fac404ce0fa2a07aaef564e6ef8-0 updated From sle-container-updates at lists.suse.com Sat Jul 11 07:10:29 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sat, 11 Jul 2026 09:10:29 +0200 (CEST) Subject: SUSE-CU-2026:6933-1: Security update of private-registry/harbor-registryctl Message-ID: <20260711071029.051C5FCD7@maintenance.suse.de> SUSE Container Update Advisory: private-registry/harbor-registryctl ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6933-1 Container Tags : private-registry/harbor-registryctl:2.13 , private-registry/harbor-registryctl:2.13.5 , private-registry/harbor-registryctl:2.13.5 , private-registry/harbor-registryctl:2.13.5-1.11 , private-registry/harbor-registryctl:2.13.5-1.11 , private-registry/harbor-registryctl:latest Container Release : 1.11 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container private-registry/harbor-registryctl was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - system-user-harbor-2.13.5-150700.1.7 updated - harbor213-registryctl-2.13.5-150700.1.7 updated From sle-container-updates at lists.suse.com Sat Jul 11 07:10:26 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sat, 11 Jul 2026 09:10:26 +0200 (CEST) Subject: SUSE-CU-2026:6932-1: Security update of private-registry/harbor-registry Message-ID: <20260711071026.F2E05FCD7@maintenance.suse.de> SUSE Container Update Advisory: private-registry/harbor-registry ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6932-1 Container Tags : private-registry/harbor-registry:2.8.3 , private-registry/harbor-registry:2.8.3-1.12 , private-registry/harbor-registry:latest Container Release : 1.12 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container private-registry/harbor-registry was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - system-user-harbor-2.13.5-150700.1.7 updated - container:suse-sle15-15.7-0180bc786e784f4f99302a008c5991e2d05f7fac404ce0fa2a07aaef564e6ef8-0 updated From sle-container-updates at lists.suse.com Sat Jul 11 07:10:31 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sat, 11 Jul 2026 09:10:31 +0200 (CEST) Subject: SUSE-CU-2026:6934-1: Security update of private-registry/harbor-trivy-adapter Message-ID: <20260711071031.10E16FCD7@maintenance.suse.de> SUSE Container Update Advisory: private-registry/harbor-trivy-adapter ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6934-1 Container Tags : private-registry/harbor-trivy-adapter:0.35.1 , private-registry/harbor-trivy-adapter:0.35.1-1.11 , private-registry/harbor-trivy-adapter:latest Container Release : 1.11 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container private-registry/harbor-trivy-adapter was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - system-user-harbor-2.13.5-150700.1.7 updated - container:suse-sle15-15.7-0180bc786e784f4f99302a008c5991e2d05f7fac404ce0fa2a07aaef564e6ef8-0 updated From sle-container-updates at lists.suse.com Sun Jul 12 07:06:25 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sun, 12 Jul 2026 09:06:25 +0200 (CEST) Subject: SUSE-IU-2026:5625-1: Security update of suse/sle-micro/base-5.5 Message-ID: <20260712070625.3A7ABFCD8@maintenance.suse.de> SUSE Image Update Advisory: suse/sle-micro/base-5.5 ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5625-1 Image Tags : suse/sle-micro/base-5.5:2.0.4 , suse/sle-micro/base-5.5:2.0.4-5.8.292 , suse/sle-micro/base-5.5:latest Image Release : 5.8.292 Severity : important Type : security References : 1268131 CVE-2026-11850 ----------------------------------------------------------------- The container suse/sle-micro/base-5.5 was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2847-1 Released: Fri Jul 10 13:38:22 2026 Summary: Security update for krb5 Type: security Severity: important References: 1268131,CVE-2026-11850 This update for krb5 fixes the following issue - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). The following package changes have been done: - krb5-1.20.1-150500.3.23.1 updated From sle-container-updates at lists.suse.com Sun Jul 12 07:08:37 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sun, 12 Jul 2026 09:08:37 +0200 (CEST) Subject: SUSE-IU-2026:5626-1: Security update of suse/sle-micro/kvm-5.5 Message-ID: <20260712070837.901F3FCD8@maintenance.suse.de> SUSE Image Update Advisory: suse/sle-micro/kvm-5.5 ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5626-1 Image Tags : suse/sle-micro/kvm-5.5:2.0.4 , suse/sle-micro/kvm-5.5:2.0.4-3.5.563 , suse/sle-micro/kvm-5.5:latest Image Release : 3.5.563 Severity : important Type : security References : 1268131 CVE-2026-11850 ----------------------------------------------------------------- The container suse/sle-micro/kvm-5.5 was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2847-1 Released: Fri Jul 10 13:38:22 2026 Summary: Security update for krb5 Type: security Severity: important References: 1268131,CVE-2026-11850 This update for krb5 fixes the following issue - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). The following package changes have been done: - krb5-1.20.1-150500.3.23.1 updated - container:suse-sle-micro-base-5.5-latest-2.0.4-5.8.292 updated From sle-container-updates at lists.suse.com Sun Jul 12 07:11:40 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sun, 12 Jul 2026 09:11:40 +0200 (CEST) Subject: SUSE-IU-2026:5627-1: Security update of suse/sle-micro/rt-5.5 Message-ID: <20260712071140.6F1B3FCD8@maintenance.suse.de> SUSE Image Update Advisory: suse/sle-micro/rt-5.5 ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5627-1 Image Tags : suse/sle-micro/rt-5.5:2.0.4 , suse/sle-micro/rt-5.5:2.0.4-4.5.642 , suse/sle-micro/rt-5.5:latest Image Release : 4.5.642 Severity : important Type : security References : 1264097 1264145 1265421 1267381 1267531 1267567 1267635 1267684 1267722 1267918 1267993 1268022 1268049 1268131 1268660 1269022 1269033 1269036 1269090 1269100 1269159 1269184 1269193 1269195 1269310 1269398 1269574 1269678 1269681 1269821 1270059 CVE-2026-11850 CVE-2026-31771 CVE-2026-43038 CVE-2026-46090 CVE-2026-46173 CVE-2026-46197 CVE-2026-46229 CVE-2026-46253 CVE-2026-46266 CVE-2026-46274 CVE-2026-46319 CVE-2026-46320 CVE-2026-46330 CVE-2026-46331 CVE-2026-52909 CVE-2026-52918 CVE-2026-52923 CVE-2026-52924 CVE-2026-52943 CVE-2026-52955 CVE-2026-52969 CVE-2026-52972 CVE-2026-52993 CVE-2026-53016 CVE-2026-53041 CVE-2026-53053 CVE-2026-53071 CVE-2026-53072 CVE-2026-53133 CVE-2026-53253 CVE-2026-53359 ----------------------------------------------------------------- The container suse/sle-micro/rt-5.5 was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2840-1 Released: Fri Jul 10 11:24:44 2026 Summary: Security update for the Linux Kernel Type: security Severity: important References: 1264097,1264145,1265421,1267381,1267531,1267567,1267635,1267684,1267722,1267918,1267993,1268022,1268049,1268660,1269022,1269033,1269036,1269090,1269100,1269159,1269184,1269193,1269195,1269310,1269398,1269574,1269678,1269681,1269821,1270059,CVE-2026-31771,CVE-2026-43038,CVE-2026-46090,CVE-2026-46173,CVE-2026-46197,CVE-2026-46229,CVE-2026-46253,CVE-2026-46266,CVE-2026-46274,CVE-2026-46319,CVE-2026-46320,CVE-2026-46330,CVE-2026-46331,CVE-2026-52909,CVE-2026-52918,CVE-2026-52923,CVE-2026-52924,CVE-2026-52943,CVE-2026-52955,CVE-2026-52969,CVE-2026-52972,CVE-2026-52993,CVE-2026-53016,CVE-2026-53041,CVE-2026-53053,CVE-2026-53071,CVE-2026-53072,CVE-2026-53133,CVE-2026-53253,CVE-2026-53359 The SUSE Linux Enterprise 15 SP5 RT kernel was updated to fix various security issues The following security issues were fixed: - CVE-2026-31771: Bluetooth: hci_event: move wake reason storage into validated event handlers (bsc#1264145). - CVE-2026-43038: ipv6: icmp: clear skb2->cb in ip6_err_gen_icmpv6_unreach() (bsc#1264097). - CVE-2026-46090: ALSA: aloop: Fix peer runtime UAF during format-change stop (bsc#1267531). - CVE-2026-46173: exit: prevent preemption of oopsing TASK_DEAD task (bsc#1267722). - CVE-2026-46197: drm/amdkfd: validate SVM ioctl nattr against buffer size (bsc#1267381). - CVE-2026-46229: drm/amdkfd: Clear VRAM on allocation to prevent stale data exposure (bsc#1267567). - CVE-2026-46253: pstore/ram: fix buffer overflow in persistent_ram_save_old() (bsc#1267635). - CVE-2026-46266: inet: RAW sockets using IPPROTO_RAW MUST drop incoming ICMP (bsc#1267684). - CVE-2026-46319: net/sched: act_ct: Only release RCU read lock after ct_ft (bsc#1268022). - CVE-2026-46320: tap: free page on error paths in tap_get_user_xdp() (bsc#1267993). - CVE-2026-46330: Revert 'net/smc: Introduce TCP ULP support' (bsc#1268049). - CVE-2026-46331: net/sched: fix pedit partial COW leading to page cache (bsc#1265421). - CVE-2026-52909: ip6_vti: set netns_immutable on the fallback device (bsc#1268660). - CVE-2026-52918: Bluetooth: serialize accept_q access (bsc#1269100). - CVE-2026-52923: ipc: limit next_id allocation to the valid ID range (bsc#1269033). - CVE-2026-52924: sctp: purge outqueue on stale COOKIE-ECHO handling (bsc#1269036). - CVE-2026-52943: net: skbuff: fix missing zerocopy reference in pskb_carve helpers (bsc#1269022). - CVE-2026-52955: libceph: Fix potential out-of-bounds access in crush_decode() (bsc#1269159). - CVE-2026-52969: KVM: Reject wrapped offset in kvm_reset_dirty_gfn() (bsc#1269184). - CVE-2026-52972: crypto: af_alg - Cap AEAD AD length to 0x80000000 (bsc#1269195). - CVE-2026-52993: tipc: fix double-free in tipc_buf_append() (bsc#1269193). - CVE-2026-53016: crypto: ccp - copy IV using skcipher ivsize (bsc#1269090). - CVE-2026-53041: ocfs2: fix listxattr handling when the buffer is full (bsc#1269398). - CVE-2026-53053: iommu/amd: Fix clone_alias() to use the original device's devid (bsc#1269310). - CVE-2026-53071: Bluetooth: l2cap: Add missing chan lock in l2cap_ecred_reconf_rsp (bsc#1269678). - CVE-2026-53072: Bluetooth: fix locking in hci_conn_request_evt() with HCI_PROTO_DEFER (bsc#1269681). - CVE-2026-53133: RDMA/umem: Fix truncation for block sizes >= 4G (bsc#1269821). - CVE-2026-53253: Bluetooth: bnep: reject short frames before parsing (bsc#1269574). - CVE-2026-53359: KVM: x86: Fix shadow paging use-after-free due to unexpected role (bsc#1270059). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2847-1 Released: Fri Jul 10 13:38:22 2026 Summary: Security update for krb5 Type: security Severity: important References: 1268131,CVE-2026-11850 This update for krb5 fixes the following issue - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). The following package changes have been done: - krb5-1.20.1-150500.3.23.1 updated - kernel-rt-5.14.21-150500.13.151.1 updated - container:suse-sle-micro-5.5-latest-2.0.4-5.8.50 updated From sle-container-updates at lists.suse.com Sun Jul 12 07:14:13 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sun, 12 Jul 2026 09:14:13 +0200 (CEST) Subject: SUSE-IU-2026:5628-1: Security update of suse/sle-micro/5.5 Message-ID: <20260712071413.23704FCD7@maintenance.suse.de> SUSE Image Update Advisory: suse/sle-micro/5.5 ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5628-1 Image Tags : suse/sle-micro/5.5:2.0.4 , suse/sle-micro/5.5:2.0.4-5.8.50 , suse/sle-micro/5.5:latest Image Release : 5.8.50 Severity : important Type : security References : 1268131 CVE-2026-11850 ----------------------------------------------------------------- The container suse/sle-micro/5.5 was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2847-1 Released: Fri Jul 10 13:38:22 2026 Summary: Security update for krb5 Type: security Severity: important References: 1268131,CVE-2026-11850 This update for krb5 fixes the following issue - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). The following package changes have been done: - krb5-1.20.1-150500.3.23.1 updated - container:suse-sle-micro-base-5.5-latest-2.0.4-5.8.292 updated From sle-container-updates at lists.suse.com Sun Jul 12 07:18:33 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sun, 12 Jul 2026 09:18:33 +0200 (CEST) Subject: SUSE-CU-2026:6934-1: Security update of private-registry/harbor-trivy-adapter Message-ID: <20260712071833.A66FBFCD7@maintenance.suse.de> SUSE Container Update Advisory: private-registry/harbor-trivy-adapter ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6934-1 Container Tags : private-registry/harbor-trivy-adapter:0.35.1 , private-registry/harbor-trivy-adapter:0.35.1-1.11 , private-registry/harbor-trivy-adapter:latest Container Release : 1.11 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container private-registry/harbor-trivy-adapter was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - system-user-harbor-2.13.5-150700.1.7 updated - container:suse-sle15-15.7-0180bc786e784f4f99302a008c5991e2d05f7fac404ce0fa2a07aaef564e6ef8-0 updated From sle-container-updates at lists.suse.com Sun Jul 12 07:20:46 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sun, 12 Jul 2026 09:20:46 +0200 (CEST) Subject: SUSE-CU-2026:6937-1: Security update of suse/sle-micro/5.5/toolbox Message-ID: <20260712072046.DA1F5FCD7@maintenance.suse.de> SUSE Container Update Advisory: suse/sle-micro/5.5/toolbox ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6937-1 Container Tags : suse/sle-micro/5.5/toolbox:16.3 , suse/sle-micro/5.5/toolbox:16.3-3.12.157 , suse/sle-micro/5.5/toolbox:latest Container Release : 3.12.157 Severity : important Type : security References : 1268131 CVE-2026-11850 ----------------------------------------------------------------- The container suse/sle-micro/5.5/toolbox was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2847-1 Released: Fri Jul 10 13:38:22 2026 Summary: Security update for krb5 Type: security Severity: important References: 1268131,CVE-2026-11850 This update for krb5 fixes the following issue - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). The following package changes have been done: - krb5-1.20.1-150500.3.23.1 updated From sle-container-updates at lists.suse.com Sun Jul 12 07:22:55 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sun, 12 Jul 2026 09:22:55 +0200 (CEST) Subject: SUSE-IU-2026:5629-1: Security update of suse/sl-micro/6.0/baremetal-os-container Message-ID: <20260712072255.F11E3FCD7@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.0/baremetal-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5629-1 Image Tags : suse/sl-micro/6.0/baremetal-os-container:2.1.3 , suse/sl-micro/6.0/baremetal-os-container:2.1.3-6.205 , suse/sl-micro/6.0/baremetal-os-container:latest Image Release : 6.205 Severity : moderate Type : security References : 1269489 CVE-2026-58055 ----------------------------------------------------------------- The container suse/sl-micro/6.0/baremetal-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 791 Released: Fri Jul 10 10:05:09 2026 Summary: Security update for nghttp2 Type: security Severity: moderate References: 1269489,CVE-2026-58055 This update for nghttp2 fixes the following issue - CVE-2026-58055: HTTP request/response smuggling via upgrade request with `Content-Length` (bsc#1269489). The following package changes have been done: - SL-Micro-release-6.0-25.108 updated - libnghttp2-14-1.52.0-7.1 updated - container:SL-Micro-base-container-2.1.3-7.172 updated From sle-container-updates at lists.suse.com Sun Jul 12 07:29:31 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sun, 12 Jul 2026 09:29:31 +0200 (CEST) Subject: SUSE-IU-2026:5632-1: Security update of suse/sl-micro/6.0/rt-os-container Message-ID: <20260712072931.5D483FCE5@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.0/rt-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5632-1 Image Tags : suse/sl-micro/6.0/rt-os-container:2.1.3 , suse/sl-micro/6.0/rt-os-container:2.1.3-7.200 , suse/sl-micro/6.0/rt-os-container:latest Image Release : 7.200 Severity : moderate Type : security References : 1269489 CVE-2026-58055 ----------------------------------------------------------------- The container suse/sl-micro/6.0/rt-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 791 Released: Fri Jul 10 10:05:09 2026 Summary: Security update for nghttp2 Type: security Severity: moderate References: 1269489,CVE-2026-58055 This update for nghttp2 fixes the following issue - CVE-2026-58055: HTTP request/response smuggling via upgrade request with `Content-Length` (bsc#1269489). The following package changes have been done: - SL-Micro-release-6.0-25.108 updated - libnghttp2-14-1.52.0-7.1 updated - container:SL-Micro-container-2.1.3-6.205 updated From sle-container-updates at lists.suse.com Sun Jul 12 07:25:00 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sun, 12 Jul 2026 09:25:00 +0200 (CEST) Subject: SUSE-IU-2026:5630-1: Security update of suse/sl-micro/6.0/base-os-container Message-ID: <20260712072500.BECEAFCD7@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.0/base-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5630-1 Image Tags : suse/sl-micro/6.0/base-os-container:2.1.3 , suse/sl-micro/6.0/base-os-container:2.1.3-7.172 , suse/sl-micro/6.0/base-os-container:latest Image Release : 7.172 Severity : moderate Type : security References : 1269489 CVE-2026-58055 ----------------------------------------------------------------- The container suse/sl-micro/6.0/base-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 791 Released: Fri Jul 10 10:05:09 2026 Summary: Security update for nghttp2 Type: security Severity: moderate References: 1269489,CVE-2026-58055 This update for nghttp2 fixes the following issue - CVE-2026-58055: HTTP request/response smuggling via upgrade request with `Content-Length` (bsc#1269489). The following package changes have been done: - SL-Micro-release-6.0-25.108 updated - libnghttp2-14-1.52.0-7.1 updated - container:suse-toolbox-image-1.0.0-9.133 updated From sle-container-updates at lists.suse.com Sun Jul 12 07:27:09 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sun, 12 Jul 2026 09:27:09 +0200 (CEST) Subject: SUSE-IU-2026:5631-1: Security update of suse/sl-micro/6.0/kvm-os-container Message-ID: <20260712072709.4D920FCD8@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.0/kvm-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5631-1 Image Tags : suse/sl-micro/6.0/kvm-os-container:2.1.3 , suse/sl-micro/6.0/kvm-os-container:2.1.3-6.182 , suse/sl-micro/6.0/kvm-os-container:latest Image Release : 6.182 Severity : moderate Type : security References : 1269489 CVE-2026-58055 ----------------------------------------------------------------- The container suse/sl-micro/6.0/kvm-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 791 Released: Fri Jul 10 10:05:09 2026 Summary: Security update for nghttp2 Type: security Severity: moderate References: 1269489,CVE-2026-58055 This update for nghttp2 fixes the following issue - CVE-2026-58055: HTTP request/response smuggling via upgrade request with `Content-Length` (bsc#1269489). The following package changes have been done: - SL-Micro-release-6.0-25.108 updated - libnghttp2-14-1.52.0-7.1 updated - container:SL-Micro-base-container-2.1.3-7.172 updated From sle-container-updates at lists.suse.com Sun Jul 12 07:37:06 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sun, 12 Jul 2026 09:37:06 +0200 (CEST) Subject: SUSE-CU-2026:6942-1: Security update of suse/sl-micro/6.0/toolbox Message-ID: <20260712073706.0D1F4FCD7@maintenance.suse.de> SUSE Container Update Advisory: suse/sl-micro/6.0/toolbox ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6942-1 Container Tags : suse/sl-micro/6.0/toolbox:13.2 , suse/sl-micro/6.0/toolbox:13.2-9.133 , suse/sl-micro/6.0/toolbox:latest Container Release : 9.133 Severity : moderate Type : security References : 1269489 CVE-2026-58055 ----------------------------------------------------------------- The container suse/sl-micro/6.0/toolbox was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 791 Released: Fri Jul 10 10:05:09 2026 Summary: Security update for nghttp2 Type: security Severity: moderate References: 1269489,CVE-2026-58055 This update for nghttp2 fixes the following issue - CVE-2026-58055: HTTP request/response smuggling via upgrade request with `Content-Length` (bsc#1269489). The following package changes have been done: - SL-Micro-release-6.0-25.108 updated - libnghttp2-14-1.52.0-7.1 updated - skelcd-EULA-SL-Micro-2024.01.19-8.107 updated From sle-container-updates at lists.suse.com Sun Jul 12 07:39:42 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sun, 12 Jul 2026 09:39:42 +0200 (CEST) Subject: SUSE-IU-2026:5634-1: Security update of suse/sl-micro/6.2/baremetal-os-container Message-ID: <20260712073942.8C087FCD7@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.2/baremetal-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5634-1 Image Tags : suse/sl-micro/6.2/baremetal-os-container:2.3.1 , suse/sl-micro/6.2/baremetal-os-container:2.3.1-8.54 , suse/sl-micro/6.2/baremetal-os-container:latest Image Release : 8.54 Severity : moderate Type : security References : 1269489 CVE-2026-58055 ----------------------------------------------------------------- The container suse/sl-micro/6.2/baremetal-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1213 Released: Fri Jul 10 15:13:53 2026 Summary: Security update for nghttp2 Type: security Severity: moderate References: 1269489,CVE-2026-58055 This update for nghttp2 fixes the following issue - CVE-2026-58055: HTTP request/response smuggling via upgrade request with `Content-Length` (bsc#1269489). The following package changes have been done: - libnghttp2-14-1.64.0-160000.4.1 updated - container:suse-sl-micro-6.2-base-os-container-latest-aa14cb2519e1c5587e9dffa3e4aacf5095572469c72c0a72f7d5b7184ff06b31-0 updated From sle-container-updates at lists.suse.com Sun Jul 12 07:39:44 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sun, 12 Jul 2026 09:39:44 +0200 (CEST) Subject: SUSE-IU-2026:5635-1: Recommended update of suse/sl-micro/6.2/baremetal-os-container Message-ID: <20260712073944.8B9F1FCD7@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.2/baremetal-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5635-1 Image Tags : suse/sl-micro/6.2/baremetal-os-container:2.3.1 , suse/sl-micro/6.2/baremetal-os-container:2.3.1-8.55 , suse/sl-micro/6.2/baremetal-os-container:latest Image Release : 8.55 Severity : moderate Type : recommended References : ----------------------------------------------------------------- The container suse/sl-micro/6.2/baremetal-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1215 Released: Sat Jul 11 21:15:31 2026 Summary: Recommended update for vim Type: recommended Severity: moderate References: This update for vim fixes the following issues: - Updated to version 9.2.0725: * fixes issues The following package changes have been done: - vim-data-common-9.2.0725-160000.1.1 updated - vim-small-9.2.0725-160000.1.1 updated From sle-container-updates at lists.suse.com Sun Jul 12 07:46:35 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sun, 12 Jul 2026 09:46:35 +0200 (CEST) Subject: SUSE-IU-2026:5642-1: Security update of suse/sl-micro/6.2/base-os-container Message-ID: <20260712074635.B4904FCD7@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.2/base-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5642-1 Image Tags : suse/sl-micro/6.2/base-os-container:2.3.1 , suse/sl-micro/6.2/base-os-container:2.3.1-8.31 , suse/sl-micro/6.2/base-os-container:latest Image Release : 8.31 Severity : moderate Type : security References : 1269489 CVE-2026-58055 ----------------------------------------------------------------- The container suse/sl-micro/6.2/base-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1213 Released: Fri Jul 10 15:13:53 2026 Summary: Security update for nghttp2 Type: security Severity: moderate References: 1269489,CVE-2026-58055 This update for nghttp2 fixes the following issue - CVE-2026-58055: HTTP request/response smuggling via upgrade request with `Content-Length` (bsc#1269489). The following package changes have been done: - libnghttp2-14-1.64.0-160000.4.1 updated From sle-container-updates at lists.suse.com Sun Jul 12 07:52:53 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sun, 12 Jul 2026 09:52:53 +0200 (CEST) Subject: SUSE-IU-2026:5646-1: Security update of suse/sl-micro/6.2/kvm-os-container Message-ID: <20260712075253.C2EFDFCD7@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.2/kvm-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5646-1 Image Tags : suse/sl-micro/6.2/kvm-os-container:2.3.1 , suse/sl-micro/6.2/kvm-os-container:2.3.1-8.48 , suse/sl-micro/6.2/kvm-os-container:latest Image Release : 8.48 Severity : moderate Type : security References : 1269489 CVE-2026-58055 ----------------------------------------------------------------- The container suse/sl-micro/6.2/kvm-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1213 Released: Fri Jul 10 15:13:53 2026 Summary: Security update for nghttp2 Type: security Severity: moderate References: 1269489,CVE-2026-58055 This update for nghttp2 fixes the following issue - CVE-2026-58055: HTTP request/response smuggling via upgrade request with `Content-Length` (bsc#1269489). The following package changes have been done: - libnghttp2-14-1.64.0-160000.4.1 updated - container:suse-sl-micro-6.2-base-os-container-latest-aa14cb2519e1c5587e9dffa3e4aacf5095572469c72c0a72f7d5b7184ff06b31-0 updated From sle-container-updates at lists.suse.com Sun Jul 12 07:58:41 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sun, 12 Jul 2026 09:58:41 +0200 (CEST) Subject: SUSE-IU-2026:5653-1: Security update of suse/sl-micro/6.2/rt-os-container Message-ID: <20260712075841.D47D0FCD7@maintenance.suse.de> SUSE Image Update Advisory: suse/sl-micro/6.2/rt-os-container ----------------------------------------------------------------- Image Advisory ID : SUSE-IU-2026:5653-1 Image Tags : suse/sl-micro/6.2/rt-os-container:2.3.1 , suse/sl-micro/6.2/rt-os-container:2.3.1-7.65 , suse/sl-micro/6.2/rt-os-container:latest Image Release : 7.65 Severity : moderate Type : security References : 1269489 CVE-2026-58055 ----------------------------------------------------------------- The container suse/sl-micro/6.2/rt-os-container was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: 1213 Released: Fri Jul 10 15:13:53 2026 Summary: Security update for nghttp2 Type: security Severity: moderate References: 1269489,CVE-2026-58055 This update for nghttp2 fixes the following issue - CVE-2026-58055: HTTP request/response smuggling via upgrade request with `Content-Length` (bsc#1269489). The following package changes have been done: - libnghttp2-14-1.64.0-160000.4.1 updated - container:suse-sl-micro-6.2-baremetal-os-container-latest-6b13de75cd48f00d3cde00e1679abf419851aac5b782d830031e023a43645295-0 updated From sle-container-updates at lists.suse.com Sun Jul 12 08:07:53 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sun, 12 Jul 2026 10:07:53 +0200 (CEST) Subject: SUSE-CU-2026:6944-1: Security update of suse/ltss/sle15.5/sle15 Message-ID: <20260712080753.DA5C2FCD7@maintenance.suse.de> SUSE Container Update Advisory: suse/ltss/sle15.5/sle15 ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6944-1 Container Tags : suse/ltss/sle15.5/bci-base:15.5 , suse/ltss/sle15.5/bci-base:15.5-8.48 , suse/ltss/sle15.5/sle15:15.5 , suse/ltss/sle15.5/sle15:15.5-8.48 , suse/ltss/sle15.5/sle15:latest Container Release : 8.48 Severity : important Type : security References : 1241219 1263366 1263367 1268131 CVE-2025-3576 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container suse/ltss/sle15.5/sle15 was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-RU-2025:2723-1 Released: Thu Aug 7 09:36:30 2025 Summary: Recommended update for SSSD Type: recommended Severity: moderate References: This update for fixes the following issues: - Added additional SSSD packages and dependencies to SUSE Linux Enterprise Micro 5.5 (no source changes) (jsc#PED-12639) - krb5-client - python3-sssd-config - sssd-dbus - sssd-tools - realmd ----------------------------------------------------------------- Advisory ID: SUSE-SU-2025:3270-1 Released: Thu Sep 18 13:18:05 2025 Summary: Security update for krb5 Type: security Severity: moderate References: 1241219,CVE-2025-3576 This update for krb5 fixes the following issues: - CVE-2025-3576: weakness in the MD5 checksum design allows for spoofing of GSSAPI-protected messages that are using RC4-HMAC-MD5 (bsc#1241219). Krb5 as very old protocol supported quite a number of ciphers that are not longer up to current cryptographic standards. To avoid problems with those, SUSE has by default now disabled those alorithms. The following algorithms have been removed from valid krb5 enctypes: - des3-cbc-sha1 - arcfour-hmac-md5 To reenable those algorithms, you can use allow options in krb5.conf: [libdefaults] allow_des3 = true allow_rc4 = true to reenable them. ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:1816-1 Released: Tue May 12 09:56:32 2026 Summary: Security update for krb5 Type: security Severity: moderate References: 1263366,1263367,CVE-2026-40355,CVE-2026-40356 This update for krb5 fixes the following issues - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2847-1 Released: Fri Jul 10 13:38:22 2026 Summary: Security update for krb5 Type: security Severity: important References: 1268131,CVE-2026-11850 This update for krb5 fixes the following issue - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). The following package changes have been done: - krb5-1.20.1-150500.3.23.1 updated From sle-container-updates at lists.suse.com Sun Jul 12 08:08:39 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sun, 12 Jul 2026 10:08:39 +0200 (CEST) Subject: SUSE-CU-2026:6945-1: Security update of suse/ltss/sle15.6/bci-base-fips Message-ID: <20260712080839.93552FCD7@maintenance.suse.de> SUSE Container Update Advisory: suse/ltss/sle15.6/bci-base-fips ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6945-1 Container Tags : suse/ltss/sle15.6/bci-base-fips:15.6 , suse/ltss/sle15.6/bci-base-fips:15.6-35.78 , suse/ltss/sle15.6/bci-base-fips:latest Container Release : 35.78 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container suse/ltss/sle15.6/bci-base-fips was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - container:sles15-ltss-image-15.6.0-5.68 updated From sle-container-updates at lists.suse.com Sun Jul 12 08:10:40 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sun, 12 Jul 2026 10:10:40 +0200 (CEST) Subject: SUSE-CU-2026:6946-1: Security update of suse/ltss/sle15.6/sle15 Message-ID: <20260712081040.ECCCEFCD7@maintenance.suse.de> SUSE Container Update Advisory: suse/ltss/sle15.6/sle15 ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6946-1 Container Tags : suse/ltss/sle15.6/bci-base:15.6 , suse/ltss/sle15.6/bci-base:15.6-5.68 , suse/ltss/sle15.6/bci-base:latest , suse/ltss/sle15.6/sle15:15.6 , suse/ltss/sle15.6/sle15:15.6-5.68 , suse/ltss/sle15.6/sle15:latest Container Release : 5.68 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container suse/ltss/sle15.6/sle15 was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated From sle-container-updates at lists.suse.com Sun Jul 12 08:14:31 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sun, 12 Jul 2026 10:14:31 +0200 (CEST) Subject: SUSE-CU-2026:6953-1: Security update of bci/bci-base-fips Message-ID: <20260712081431.AD713FCD7@maintenance.suse.de> SUSE Container Update Advisory: bci/bci-base-fips ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6953-1 Container Tags : bci/bci-base-fips:15.7 , bci/bci-base-fips:15.7-21.9 , bci/bci-base-fips:latest Container Release : 21.9 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container bci/bci-base-fips was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - container:registry.suse.com-bci-bci-base-15.7-5ff809d19262d313d69f1ae0865ec528937c6413d54b48b7e5a70737c361767d-0 updated From sle-container-updates at lists.suse.com Sun Jul 12 08:21:11 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Sun, 12 Jul 2026 10:21:11 +0200 (CEST) Subject: SUSE-CU-2026:6966-1: Security update of bci/gcc Message-ID: <20260712082111.4C899FCD7@maintenance.suse.de> SUSE Container Update Advisory: bci/gcc ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6966-1 Container Tags : bci/gcc:14 , bci/gcc:14-sles15 , bci/gcc:14.3 , bci/gcc:14.3-23.8 , bci/gcc:latest Container Release : 23.8 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container bci/gcc was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - container:registry.suse.com-bci-bci-base-15.7-5ff809d19262d313d69f1ae0865ec528937c6413d54b48b7e5a70737c361767d-0 updated From sle-container-updates at lists.suse.com Mon Jul 13 07:17:10 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Mon, 13 Jul 2026 09:17:10 +0200 (CEST) Subject: SUSE-CU-2026:6966-1: Security update of bci/gcc Message-ID: <20260713071710.6CFE8FCC9@maintenance.suse.de> SUSE Container Update Advisory: bci/gcc ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6966-1 Container Tags : bci/gcc:14 , bci/gcc:14-sles15 , bci/gcc:14.3 , bci/gcc:14.3-23.8 , bci/gcc:latest Container Release : 23.8 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container bci/gcc was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - container:registry.suse.com-bci-bci-base-15.7-5ff809d19262d313d69f1ae0865ec528937c6413d54b48b7e5a70737c361767d-0 updated From sle-container-updates at lists.suse.com Mon Jul 13 07:17:57 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Mon, 13 Jul 2026 09:17:57 +0200 (CEST) Subject: SUSE-CU-2026:6967-1: Security update of bci/golang Message-ID: <20260713071757.E3DE2FCC9@maintenance.suse.de> SUSE Container Update Advisory: bci/golang ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6967-1 Container Tags : bci/golang:1.25 , bci/golang:1.25-sles15 , bci/golang:1.25.12 , bci/golang:1.25.12-2.76.9 , bci/golang:oldstable Container Release : 76.9 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container bci/golang was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - container:registry.suse.com-bci-bci-base-15.7-5ff809d19262d313d69f1ae0865ec528937c6413d54b48b7e5a70737c361767d-0 updated From sle-container-updates at lists.suse.com Mon Jul 13 07:18:46 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Mon, 13 Jul 2026 09:18:46 +0200 (CEST) Subject: SUSE-CU-2026:6968-1: Security update of bci/golang Message-ID: <20260713071846.ABB71FCC9@maintenance.suse.de> SUSE Container Update Advisory: bci/golang ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6968-1 Container Tags : bci/golang:1.25-openssl , bci/golang:1.25-sles15-openssl , bci/golang:1.25.10-openssl , bci/golang:1.25.10-openssl-89.8 , bci/golang:oldstable-openssl Container Release : 89.8 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container bci/golang was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - container:registry.suse.com-bci-bci-base-15.7-5ff809d19262d313d69f1ae0865ec528937c6413d54b48b7e5a70737c361767d-0 updated From sle-container-updates at lists.suse.com Mon Jul 13 07:19:34 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Mon, 13 Jul 2026 09:19:34 +0200 (CEST) Subject: SUSE-CU-2026:6969-1: Security update of bci/golang Message-ID: <20260713071934.1A9C7FCC9@maintenance.suse.de> SUSE Container Update Advisory: bci/golang ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6969-1 Container Tags : bci/golang:1.26 , bci/golang:1.26-sles15 , bci/golang:1.26.5 , bci/golang:1.26.5-1.75.9 , bci/golang:latest , bci/golang:stable Container Release : 75.9 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container bci/golang was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - container:registry.suse.com-bci-bci-base-15.7-5ff809d19262d313d69f1ae0865ec528937c6413d54b48b7e5a70737c361767d-0 updated From sle-container-updates at lists.suse.com Mon Jul 13 07:20:22 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Mon, 13 Jul 2026 09:20:22 +0200 (CEST) Subject: SUSE-CU-2026:6970-1: Security update of bci/golang Message-ID: <20260713072022.AFF48FCC9@maintenance.suse.de> SUSE Container Update Advisory: bci/golang ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6970-1 Container Tags : bci/golang:1.26-openssl , bci/golang:1.26-sles15-openssl , bci/golang:1.26.3-openssl , bci/golang:1.26.3-openssl-89.8 , bci/golang:latest , bci/golang:stable-openssl Container Release : 89.8 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container bci/golang was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - container:registry.suse.com-bci-bci-base-15.7-5ff809d19262d313d69f1ae0865ec528937c6413d54b48b7e5a70737c361767d-0 updated From sle-container-updates at lists.suse.com Mon Jul 13 07:21:05 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Mon, 13 Jul 2026 09:21:05 +0200 (CEST) Subject: SUSE-CU-2026:6971-1: Security update of bci/bci-init Message-ID: <20260713072105.D7539FCC9@maintenance.suse.de> SUSE Container Update Advisory: bci/bci-init ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6971-1 Container Tags : bci/bci-init:15.7 , bci/bci-init:15.7-53.9 , bci/bci-init:latest Container Release : 53.9 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container bci/bci-init was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - container:registry.suse.com-bci-bci-base-15.7-5ff809d19262d313d69f1ae0865ec528937c6413d54b48b7e5a70737c361767d-0 updated From sle-container-updates at lists.suse.com Mon Jul 13 07:21:46 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Mon, 13 Jul 2026 09:21:46 +0200 (CEST) Subject: SUSE-CU-2026:6972-1: Security update of suse/kea Message-ID: <20260713072146.79BBFFCC9@maintenance.suse.de> SUSE Container Update Advisory: suse/kea ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6972-1 Container Tags : suse/kea:2.6 , suse/kea:2.6-78.11 Container Release : 78.11 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container suse/kea was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - container:suse-sle15-15.7-5ff809d19262d313d69f1ae0865ec528937c6413d54b48b7e5a70737c361767d-0 updated From sle-container-updates at lists.suse.com Mon Jul 13 07:22:46 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Mon, 13 Jul 2026 09:22:46 +0200 (CEST) Subject: SUSE-CU-2026:6973-1: Security update of suse/kiosk/firefox-esr Message-ID: <20260713072246.A04ECFCC9@maintenance.suse.de> SUSE Container Update Advisory: suse/kiosk/firefox-esr ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6973-1 Container Tags : suse/kiosk/firefox-esr:140.12 , suse/kiosk/firefox-esr:140.12-74.18 , suse/kiosk/firefox-esr:esr , suse/kiosk/firefox-esr:latest Container Release : 74.18 Severity : important Type : security References : 1263366 1263367 1268131 1268434 1269779 CVE-2026-11850 CVE-2026-12912 CVE-2026-36849 CVE-2026-40355 CVE-2026-40356 CVE-2026-4775 ----------------------------------------------------------------- The container suse/kiosk/firefox-esr was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2853-1 Released: Fri Jul 10 19:54:25 2026 Summary: Security update for tiff Type: security Severity: important References: 1268434,1269779,CVE-2026-12912,CVE-2026-36849,CVE-2026-4775 This update for tiff fixes the following issues: Update to version 4.7.2. Security issues fixed: - CVE-2026-12912: heap-based buffer overflow when processing crafted PixarLog-compressed TIFF image (bsc#1269779). - CVE-2026-36849: denial of service when processing a a crafted TIFF file containing a large SamplesPerPixel tag value (bsc#1268434). Other updates and bugfixes: - Version 4.7.2: - Software configuration changes: * cmake: Fix bundle identifiers to use reverse-DNS format * cmake: Fix and improve Apple framework build support * cmake: Use TurboJPEG CONFIG by default (issue #767) * cmake: changes related to 8-/12-bit modes * cmake: Replace CMath::CMath with direct link to avoid export. * Support for iOS-derived builds * Simplify cmake byte order version check * Add additional warnings, primarily floating precision conversions and integer arithmetic conversions * configure.ac: Require bootstrap with at least Autoconf 2.71. - Library changes: * New/improved functionalities:: + Add TIFFGetMaxCompressionRatio() and use it in _TIFFReadEncoded[Tile|Strip)AndAllocBuffer() (issue #781) - Bug fixes: * Handle negative TIFFReadFile results before state updates (issue #854) * tif_dirread.c: fix copy-paste bug in ChopUpSingleUncompressedStrip * tif_read.c: Fixed division by zero in TIFFStartStrip() (issue #777) * tif_dirwrite.c: add integer overflow checks to allocation size calculations * tif_print.c: add integer overflow checks to allocation size calculations * tif_write.c: fix OOB read and underflow in TIFFAppendToStrip copy loop * DumpModeSeek: add bounds check to prevent OOB pointer advance * TIFFGrowStrips: fix use-after-free on partial realloc failure. * Fix NULL dereference in _TIFFReserveLargeEnoughWriteBuffer() by validating the strip bytecount array before accessing it. * TIFFRGBAImage: avoid int overflows in put functions (issue #830) * tif_getimage: fix inconsistent fromskew handling in put16bitbwtile (issue #792) * tif_getimage: Widen pointer-offset arithmetic in tif_getimage * putcontig8bitYCbCr44tile: fix wrong fromskew computation (issue #798) * putcontig8bitYCbCr42tile: Reject invalid YCbCr subsampling when image dimensions are smaller than the subsampling block to prevent out-of-bounds writes. (issue #753) * TIFFReadRGBAImage(): prevent integer overflow and later heap overflow (issue #787) * TIFFFillStrip/Tile(): avoid excessive memory allocation (issue #831) * TIFFLinkDirectory() checks for IFD loops (issue #788) * Check result of _TIFFCheckRealloc to prevent memory leaks and segmentation fault when reallocation fails. * TIFFVTileSize64(): in YCbCr contig non upsampled mode, validate td_samplesperpixel==3 (issue #805) * TIFFReadDirEntryPersampleShort(): be tolerant to tags like SampleFormat not having 1 or SamplesPerPixel values (https://github.com/OSGeo/gdal/issues/13465) * tif_getimage: reject tile widths that would overflow toskew (issue #808) * Fix integer overflow in _TIFFPartialReadStripArray on 32-bit. * TIFFAppendToStrip(): add some checks to avoid null-pointer-dereferencing (issue #777). * _TIFFGetStrileOffsetOrByteCountValue(): fix potential crash on corrupted files when file opened in 'O' mode (https://issues.oss-fuzz.com/issues/471328917) * TIFFReadDirectory(): re-set TIFF_LAZYSTRILELOAD if file opened in 'O' mode * _TIFFMergeFields(): avoid NULL ptr dereference (issue #755). * Check td_stripbytecount_p and td_stripoffset_p for NULL pointer before (re-)writing to file. (issue #749) * JPEGDecodeRaw: initialize output buffer to avoid returning uninitialized memory (issue #892) * JPEG decompressor: initialize output buffer when JPEG image is smaller than strile dimension to avoid heap memory disclosure (issue #826) * JPEG: fix generation of tiled 12-bit JPEG compressed files with libjpeg-turbo 3.0.3 (issue #773) * JPEGDecode(): fix memory leak in error code path (https://issues.oss-fuzz.com/issues/471945501) * tif_jpeg: reject mismatched JPEG data precision to avoid write overflow * Fix signed left-shift UB in LogLuv RANDITHER encoding (issue #850) * PixarLog: error out on invalid ABGR output buffer sizes. * PixarLog: complete ABGR bounds check for multi-row strip decoding. * PixarLog: fix heap-buffer-overflow in 8BITABGR decode with stride 3 (issue #824) * PixarLog: fix undoing horizontal differencing when SamplesPerPixel != 3 and 4 (issue #789). * PixarLog codec: fix potential integer overflow/out-of-bounds access (issue #797) * TIFFAdvanceDirectory(): avoid potential read heap-buffer-overflow in mmap code path on 32 bit builds (https://issues.oss-fuzz.com/issues/506737072) * OJPEG: fix integer overflow in subsampling buffer allocation. * OJPEG: fix nullptr deref when changing compression method from OJPEG to something else (issue #795). * OJPEG fix potential integer overflow/out-of-bounds access (issue #796). * ojpeg: prevent EOF infinite loop (fixes commit 2a3d55b) * fix null pointer deference in issue #782. * fix stack-overflow in issue #784. - Other changes: * Change EXIF and GPS tag type from IFD8 to LONG8 per EXIF-specification (issue #739). * Harden integer size and offset calculations (issue #897) * TIFFComputeTile/TIFFComputeStrip: use overflow-checked multiplication * Move widening casts inside multiplication scope. * Lots of compiler warning fixes related to enabling more warning flags * Align writing and reading of TIFF_LONG8 and TIFF_IFD8 tags (issue #773) * TIFFFillStrip(): prevent harmless unsigned integer overflow The following package changes have been done: - libtiff6-4.7.2-150600.3.29.1 updated - krb5-1.20.1-150600.11.19.1 updated - container:suse-sle15-15.7-0180bc786e784f4f99302a008c5991e2d05f7fac404ce0fa2a07aaef564e6ef8-0 updated From sle-container-updates at lists.suse.com Mon Jul 13 07:23:34 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Mon, 13 Jul 2026 09:23:34 +0200 (CEST) Subject: SUSE-CU-2026:6974-1: Security update of bci/nodejs Message-ID: <20260713072334.7CD56FCC9@maintenance.suse.de> SUSE Container Update Advisory: bci/nodejs ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6974-1 Container Tags : bci/node:22 , bci/node:22-sles15 , bci/node:22.23.0 , bci/node:22.23.0-24.9 , bci/nodejs:22 , bci/nodejs:22-sles15 , bci/nodejs:22.23.0 , bci/nodejs:22.23.0-24.9 Container Release : 24.9 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container bci/nodejs was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - container:registry.suse.com-bci-bci-base-15.7-5ff809d19262d313d69f1ae0865ec528937c6413d54b48b7e5a70737c361767d-0 updated From sle-container-updates at lists.suse.com Mon Jul 13 07:24:28 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Mon, 13 Jul 2026 09:24:28 +0200 (CEST) Subject: SUSE-CU-2026:6975-1: Security update of bci/openjdk-devel Message-ID: <20260713072428.3A38CFCC9@maintenance.suse.de> SUSE Container Update Advisory: bci/openjdk-devel ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6975-1 Container Tags : bci/openjdk-devel:17 , bci/openjdk-devel:17-sles15 , bci/openjdk-devel:17.0.19.0 , bci/openjdk-devel:17.0.19.0-21.12 Container Release : 21.12 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container bci/openjdk-devel was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - container:bci-openjdk-17-15.7.17-20.11 updated From sle-container-updates at lists.suse.com Mon Jul 13 07:25:20 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Mon, 13 Jul 2026 09:25:20 +0200 (CEST) Subject: SUSE-CU-2026:6976-1: Security update of bci/openjdk Message-ID: <20260713072520.DE9ECFCC9@maintenance.suse.de> SUSE Container Update Advisory: bci/openjdk ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6976-1 Container Tags : bci/openjdk:17 , bci/openjdk:17-sles15 , bci/openjdk:17.0.19.0 , bci/openjdk:17.0.19.0-20.11 Container Release : 20.11 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container bci/openjdk was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - container:registry.suse.com-bci-bci-base-15.7-5ff809d19262d313d69f1ae0865ec528937c6413d54b48b7e5a70737c361767d-0 updated From sle-container-updates at lists.suse.com Mon Jul 13 07:26:12 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Mon, 13 Jul 2026 09:26:12 +0200 (CEST) Subject: SUSE-CU-2026:6977-1: Security update of bci/openjdk-devel Message-ID: <20260713072612.07EEAFCC9@maintenance.suse.de> SUSE Container Update Advisory: bci/openjdk-devel ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6977-1 Container Tags : bci/openjdk-devel:21 , bci/openjdk-devel:21-sles15 , bci/openjdk-devel:21.0.11.0 , bci/openjdk-devel:21.0.11.0-25.13 Container Release : 25.13 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container bci/openjdk-devel was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - container:bci-openjdk-21-15.7.21-24.11 updated From sle-container-updates at lists.suse.com Mon Jul 13 07:26:59 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Mon, 13 Jul 2026 09:26:59 +0200 (CEST) Subject: SUSE-CU-2026:6978-1: Security update of bci/openjdk Message-ID: <20260713072659.6F8F2FCC9@maintenance.suse.de> SUSE Container Update Advisory: bci/openjdk ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6978-1 Container Tags : bci/openjdk:21 , bci/openjdk:21-sles15 , bci/openjdk:21.0.11.0 , bci/openjdk:21.0.11.0-24.11 Container Release : 24.11 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container bci/openjdk was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - container:registry.suse.com-bci-bci-base-15.7-5ff809d19262d313d69f1ae0865ec528937c6413d54b48b7e5a70737c361767d-0 updated From sle-container-updates at lists.suse.com Mon Jul 13 07:27:31 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Mon, 13 Jul 2026 09:27:31 +0200 (CEST) Subject: SUSE-CU-2026:6979-1: Security update of bci/openjdk-devel Message-ID: <20260713072731.05941FCC9@maintenance.suse.de> SUSE Container Update Advisory: bci/openjdk-devel ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6979-1 Container Tags : bci/openjdk-devel:25 , bci/openjdk-devel:25-sles15 , bci/openjdk-devel:25.0.3.0 , bci/openjdk-devel:25.0.3.0-9.14 , bci/openjdk-devel:latest Container Release : 9.14 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container bci/openjdk-devel was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - container:bci-openjdk-25-15.7.25-9.11 updated From sle-container-updates at lists.suse.com Mon Jul 13 07:28:02 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Mon, 13 Jul 2026 09:28:02 +0200 (CEST) Subject: SUSE-CU-2026:6980-1: Security update of bci/openjdk Message-ID: <20260713072802.562E6FCC9@maintenance.suse.de> SUSE Container Update Advisory: bci/openjdk ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6980-1 Container Tags : bci/openjdk:25 , bci/openjdk:25-sles15 , bci/openjdk:25.0.3.0 , bci/openjdk:25.0.3.0-9.11 , bci/openjdk:latest Container Release : 9.11 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container bci/openjdk was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - container:registry.suse.com-bci-bci-base-15.7-5ff809d19262d313d69f1ae0865ec528937c6413d54b48b7e5a70737c361767d-0 updated From sle-container-updates at lists.suse.com Mon Jul 13 07:28:51 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Mon, 13 Jul 2026 09:28:51 +0200 (CEST) Subject: SUSE-CU-2026:6981-1: Security update of bci/php-apache Message-ID: <20260713072851.2C977FCC9@maintenance.suse.de> SUSE Container Update Advisory: bci/php-apache ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6981-1 Container Tags : bci/php-apache:8 , bci/php-apache:8-sles15 , bci/php-apache:8.3.31 , bci/php-apache:8.3.31-24.10 , bci/php-apache:latest Container Release : 24.10 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container bci/php-apache was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - container:bci-bci-base-15.7-5ff809d19262d313d69f1ae0865ec528937c6413d54b48b7e5a70737c361767d-0 updated - container:registry.suse.com-bci-bci-base-15.7-5ff809d19262d313d69f1ae0865ec528937c6413d54b48b7e5a70737c361767d-0 updated From sle-container-updates at lists.suse.com Mon Jul 13 07:29:34 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Mon, 13 Jul 2026 09:29:34 +0200 (CEST) Subject: SUSE-CU-2026:6982-1: Security update of bci/php-fpm Message-ID: <20260713072934.CDA52FCC9@maintenance.suse.de> SUSE Container Update Advisory: bci/php-fpm ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6982-1 Container Tags : bci/php-fpm:8 , bci/php-fpm:8-sles15 , bci/php-fpm:8.3.31 , bci/php-fpm:8.3.31-24.8 , bci/php-fpm:latest Container Release : 24.8 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container bci/php-fpm was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - container:bci-bci-base-15.7-5ff809d19262d313d69f1ae0865ec528937c6413d54b48b7e5a70737c361767d-0 updated - container:registry.suse.com-bci-bci-base-15.7-5ff809d19262d313d69f1ae0865ec528937c6413d54b48b7e5a70737c361767d-0 updated From sle-container-updates at lists.suse.com Mon Jul 13 07:30:17 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Mon, 13 Jul 2026 09:30:17 +0200 (CEST) Subject: SUSE-CU-2026:6983-1: Security update of bci/php Message-ID: <20260713073017.016B1FCC9@maintenance.suse.de> SUSE Container Update Advisory: bci/php ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6983-1 Container Tags : bci/php:8 , bci/php:8-sles15 , bci/php:8.3.31 , bci/php:8.3.31-24.7 , bci/php:latest Container Release : 24.7 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container bci/php was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - container:bci-bci-base-15.7-5ff809d19262d313d69f1ae0865ec528937c6413d54b48b7e5a70737c361767d-0 updated - container:registry.suse.com-bci-bci-base-15.7-5ff809d19262d313d69f1ae0865ec528937c6413d54b48b7e5a70737c361767d-0 updated From sle-container-updates at lists.suse.com Mon Jul 13 07:30:51 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Mon, 13 Jul 2026 09:30:51 +0200 (CEST) Subject: SUSE-CU-2026:6984-1: Security update of suse/postgres Message-ID: <20260713073051.D164AFCC9@maintenance.suse.de> SUSE Container Update Advisory: suse/postgres ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6984-1 Container Tags : suse/postgres:16-contrib , suse/postgres:16.14 , suse/postgres:16.14-contrib , suse/postgres:16.14-contrib-92.4 Container Release : 92.4 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container suse/postgres was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - container:suse-sle15-15.7-5ff809d19262d313d69f1ae0865ec528937c6413d54b48b7e5a70737c361767d-0 updated From sle-container-updates at lists.suse.com Mon Jul 13 07:31:04 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Mon, 13 Jul 2026 09:31:04 +0200 (CEST) Subject: SUSE-CU-2026:6985-1: Security update of suse/postgres Message-ID: <20260713073104.C1F82FCC9@maintenance.suse.de> SUSE Container Update Advisory: suse/postgres ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6985-1 Container Tags : suse/postgres:16 , suse/postgres:16.14 , suse/postgres:16.14 , suse/postgres:16.14-92.4 Container Release : 92.4 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container suse/postgres was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - container:suse-sle15-15.7-5ff809d19262d313d69f1ae0865ec528937c6413d54b48b7e5a70737c361767d-0 updated From sle-container-updates at lists.suse.com Mon Jul 13 07:31:38 2026 From: sle-container-updates at lists.suse.com (sle-container-updates at lists.suse.com) Date: Mon, 13 Jul 2026 09:31:38 +0200 (CEST) Subject: SUSE-CU-2026:6986-1: Security update of suse/postgres Message-ID: <20260713073138.30450FCC9@maintenance.suse.de> SUSE Container Update Advisory: suse/postgres ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2026:6986-1 Container Tags : suse/postgres:17-contrib , suse/postgres:17.10 , suse/postgres:17.10-contrib , suse/postgres:17.10-contrib-82.4 Container Release : 82.4 Severity : important Type : security References : 1263366 1263367 1268131 CVE-2026-11850 CVE-2026-40355 CVE-2026-40356 ----------------------------------------------------------------- The container suse/postgres was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2026:2848-1 Released: Fri Jul 10 13:38:57 2026 Summary: Security update for krb5, krb5-mini Type: security Severity: important References: 1263366,1263367,1268131,CVE-2026-11850,CVE-2026-40355,CVE-2026-40356 This update for krb5, krb5-mini fixes the following issues - CVE-2026-11850: integer underflow in berval2tl_data() leads to heap out-of-bounds read (bsc#1268131). - CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism (bsc#1263366). - CVE-2026-40356: Denial of Service via integer underflow and out-of-bounds read (bsc#1263367). The following package changes have been done: - krb5-1.20.1-150600.11.19.1 updated - container:suse-sle15-15.7-5ff809d19262d313d69f1ae0865ec528937c6413d54b48b7e5a70737c361767d-0 updated