SUSE-IU-2026:4499-1: Security update of suse/sle-micro/rt-5.5
sle-container-updates at lists.suse.com
sle-container-updates at lists.suse.com
Fri Jun 12 07:11:15 UTC 2026
SUSE Image Update Advisory: suse/sle-micro/rt-5.5
-----------------------------------------------------------------
Image Advisory ID : SUSE-IU-2026:4499-1
Image Tags : suse/sle-micro/rt-5.5:2.0.4 , suse/sle-micro/rt-5.5:2.0.4-4.5.610 , suse/sle-micro/rt-5.5:latest
Image Release : 4.5.610
Severity : important
Type : security
References : 1261206 1262464 1262465 1263790 1263995 1264551 1266001 1266009
1266238 1266711 1266901 CVE-2026-31629 CVE-2026-4046 CVE-2026-43037
CVE-2026-43206 CVE-2026-43499 CVE-2026-43501 CVE-2026-45852 CVE-2026-46043
CVE-2026-46243 CVE-2026-5450 CVE-2026-5928
-----------------------------------------------------------------
The container suse/sle-micro/rt-5.5 was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2026:2332-1
Released: Wed Jun 10 10:41:13 2026
Summary: Security update for the Linux Kernel
Type: security
Severity: important
References: 1263790,1263995,1264551,1266001,1266009,1266238,1266711,1266901,CVE-2026-31629,CVE-2026-43037,CVE-2026-43206,CVE-2026-43499,CVE-2026-43501,CVE-2026-45852,CVE-2026-46043,CVE-2026-46243
The SUSE Linux Enterprise 15 SP5 RT kernel was updated to fix various security issues
The following security issues were fixed:
- CVE-2026-31629: nfc: llcp: add missing return after LLCP_CLOSED checks (bsc#1263790).
- CVE-2026-43037: ip6_tunnel: clear skb2->cb in ip4ip6_err() (bsc#1263995).
- CVE-2026-43206: drm/amdkfd: Fix out-of-bounds write in kfd_event_page_set() (bsc#1264551).
- CVE-2026-43499: rtmutex: Use waiter::task instead of current in remove_waiter() (bsc#1266001).
- CVE-2026-43501: ipv6: rpl: reserve mac_len headroom when recompressed SRH grows (bsc#1266009).
- CVE-2026-45852: RDMA/rxe: Fix double free in rxe_srq_from_init (bsc#1266711).
- CVE-2026-46043: RDMA/rxe: Validate pad and ICRC before payload_size() in rxe_rcv (bsc#1266901).
- CVE-2026-46243: smb: client: reject userspace cifs.spnego descriptions (bsc#1266238).
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2026:2333-1
Released: Wed Jun 10 10:41:58 2026
Summary: Security update for glibc
Type: security
Severity: important
References: 1261206,1262464,1262465,CVE-2026-4046,CVE-2026-5450,CVE-2026-5928
This update for glibc fixes the following issues
- CVE-2026-4046: assertion failure when converting inputs may be used to remotely crash an application (bsc#1261206).
- CVE-2026-5450: stdio-common: scanf %mc pattern will cause heap overflow when width > 1024 (bsc#1262465).
- CVE-2026-5928: libio: ungetwc could be used to leak data on special conditions (bsc#1262464).
The following package changes have been done:
- glibc-2.31-150300.101.1 updated
- glibc-locale-base-2.31-150300.101.1 updated
- kernel-rt-5.14.21-150500.13.143.1 updated
- container:suse-sle-micro-5.5-latest-2.0.4-5.8.23 updated
More information about the sle-container-updates
mailing list