SUSE-IU-2026:4513-1: Security update of suse/sle-micro/kvm-5.5

sle-container-updates at lists.suse.com sle-container-updates at lists.suse.com
Sat Jun 13 07:06:16 UTC 2026


SUSE Image Update Advisory: suse/sle-micro/kvm-5.5
-----------------------------------------------------------------
Image Advisory ID : SUSE-IU-2026:4513-1
Image Tags        : suse/sle-micro/kvm-5.5:2.0.4 , suse/sle-micro/kvm-5.5:2.0.4-3.5.543 , suse/sle-micro/kvm-5.5:latest
Image Release     : 3.5.543
Severity          : moderate
Type              : security
References        : 1199023 1258509 1262089 CVE-2026-2243 CVE-2026-3842 
-----------------------------------------------------------------

The container suse/sle-micro/kvm-5.5 was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2026:2388-1
Released:    Fri Jun 12 15:59:19 2026
Summary:     Security update for qemu
Type:        security
Severity:    moderate
References:  1199023,1258509,1262089,CVE-2026-2243,CVE-2026-3842
This update for qemu fixes the following issues:

Security fixes:

- CVE-2026-2243: incorrect bounds check leads to heap out-of-bounds read and a 12-byte information leak when processing
  specially crafted VMDK files (bsc#1258509).
- CVE-2026-3842: hyperv/syndbg: missing mapped-length guard after cpu_physical_memory_map causes host OOB write
  (bsc#1262089).

Other fixes:

- [openSUSE] qemu-ga: fix service file against no-autostart (bsc#1199023)


The following package changes have been done:

- qemu-guest-agent-7.1.0-150500.49.42.1 updated


More information about the sle-container-updates mailing list