SUSE-CU-2026:6167-1: Security update of rancher/elemental-operator

sle-container-updates at lists.suse.com sle-container-updates at lists.suse.com
Fri Jun 19 07:05:05 UTC 2026


SUSE Container Update Advisory: rancher/elemental-operator
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2026:6167-1
Container Tags        : rancher/elemental-operator:1.7.5 , rancher/elemental-operator:1.7.5-5.2
Container Release     : 5.2
Severity              : moderate
Type                  : security
References            : 1084929 1248842 1248988 1251679 1253741 1260277 1261206 1262464
                        1262465 1265921 1266789 1267168 1267197 CVE-2025-58050 CVE-2025-58190
                        CVE-2026-25680 CVE-2026-25681 CVE-2026-27136 CVE-2026-33186 CVE-2026-33814
                        CVE-2026-39821 CVE-2026-4046 CVE-2026-42502 CVE-2026-42506 CVE-2026-5450
                        CVE-2026-5928 
-----------------------------------------------------------------

The container rancher/elemental-operator was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: 528
Released:    Fri Apr 10 20:29:30 2026
Summary:     Security update for pcre2
Type:        security
Severity:    moderate
References:  1248842,1253741,1261206,1262464,1262465,CVE-2025-58050,CVE-2026-4046,CVE-2026-5450,CVE-2026-5928
This update for pcre2 fixes the following issue:

- CVE-2025-58050: integer overflow leads to heap buffer overread in match_ref due to missing boundary restoration in SCS
  (bsc#1248842).

-----------------------------------------------------------------
Advisory ID: 571
Released:    Thu Apr 16 12:19:07 2026
Summary:     Recommended update for scanner-databases
Type:        recommended
Severity:    moderate
References:  1084929,1248988,1251679,1260277,1265921,1266789,1267168,1267197,CVE-2025-58190,CVE-2026-25680,CVE-2026-25681,CVE-2026-27136,CVE-2026-33186,CVE-2026-33814,CVE-2026-39821,CVE-2026-42502,CVE-2026-42506
This update for scanner-databases fixes the following issues:

- database refresh on 2026-04-15 (bsc#1084929)


The following package changes have been done:

- compat-usrmerge-tools-84.87-slfo.1.1_1.5 updated
- elemental-operator-1.7.5-slfo.1.1_1.1 updated
- system-user-root-20190513-slfo.1.1_1.2 updated
- filesystem-84.87-slfo.1.1_1.2 updated
- glibc-2.38-slfo.1.1_8.1 updated
- libtasn1-6-4.19.0-slfo.1.1_3.1 updated
- libpcre2-8-0-10.42-slfo.1.1_1.4 updated
- libgmp10-6.3.0-slfo.1.1_1.5 updated
- libgcc_s1-14.3.0+git11799-slfo.1.1_1.1 updated
- libffi8-3.4.6-slfo.1.1_1.4 updated
- libcap2-2.69-slfo.1.1_2.1 updated
- libattr1-2.5.1-slfo.1.1_1.3 updated
- libacl1-2.3.1-slfo.1.1_1.3 updated
- libselinux1-3.5-slfo.1.1_1.3 updated
- libstdc++6-14.3.0+git11799-slfo.1.1_1.1 updated
- libp11-kit0-0.25.3-slfo.1.1_1.2 updated
- libncurses6-6.4.20240224-slfo.1.1_2.1 updated
- terminfo-base-6.4.20240224-slfo.1.1_2.1 updated
- p11-kit-0.25.3-slfo.1.1_1.2 updated
- p11-kit-tools-0.25.3-slfo.1.1_1.2 updated
- libreadline8-8.2-slfo.1.1_1.4 updated
- bash-5.2.15-slfo.1.1_1.6 updated
- bash-sh-5.2.15-slfo.1.1_1.6 updated
- coreutils-9.4-slfo.1.1_2.1 updated
- ca-certificates-2+git20240805.fd24d50-slfo.1.1_1.2 updated
- ca-certificates-mozilla-2.84-slfo.1.1_1.1 updated
- container:suse-toolbox-image-1.0.0-5.68 updated


More information about the sle-container-updates mailing list