SUSE-IU-2026:4491-1: Security update of suse/sl-micro/6.1/base-os-container
sle-container-updates at lists.suse.com
sle-container-updates at lists.suse.com
Wed Jun 10 07:57:23 UTC 2026
SUSE Image Update Advisory: suse/sl-micro/6.1/base-os-container
-----------------------------------------------------------------
Image Advisory ID : SUSE-IU-2026:4491-1
Image Tags : suse/sl-micro/6.1/base-os-container:2.2.1 , suse/sl-micro/6.1/base-os-container:2.2.1-5.138 , suse/sl-micro/6.1/base-os-container:latest
Image Release : 5.138
Severity : moderate
Type : security
References : 1256105 1267426 1267874 CVE-2025-14017 CVE-2026-44941 CVE-2026-44942
-----------------------------------------------------------------
The container suse/sl-micro/6.1/base-os-container was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: 569
Released: Tue Jun 9 15:27:55 2026
Summary: Security update for libzypp
Type: security
Severity: moderate
References: 1256105,1267426,1267874,CVE-2025-14017,CVE-2026-44941,CVE-2026-44942
This update for libzypp fixes the following issues
Version 17.38.13 (35):
- CVE-2026-44941: path traversal via 'keyhint' (bsc#1267426).
- CVE-2026-44942: .repo files can have an optional path which can lead to path traversal attacks (bsc#1267874).
The following package changes have been done:
- SL-Micro-release-6.1-slfo.1.12.45 updated
- libzypp-17.38.13-slfo.1.1_1.1 updated
- container:suse-toolbox-image-1.0.0-5.63 updated
More information about the sle-container-updates
mailing list