SUSE-CU-2026:6536-1: Security update of suse/sles/16.0/toolbox
sle-container-updates at lists.suse.com
sle-container-updates at lists.suse.com
Sun Jun 28 08:36:08 UTC 2026
SUSE Container Update Advisory: suse/sles/16.0/toolbox
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2026:6536-1
Container Tags : suse/sles/16.0/toolbox:16.3 , suse/sles/16.0/toolbox:16.3-1.87 , suse/sles/16.0/toolbox:latest
Container Release : 1.87
Severity : important
Type : security
References : 1261900 1265450 1267189 CVE-2025-45582 CVE-2026-5704
-----------------------------------------------------------------
The container suse/sles/16.0/toolbox was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: 1092
Released: Fri Jun 26 11:13:30 2026
Summary: Security update for tar
Type: security
Severity: important
References: 1261900,1265450,1267189,CVE-2025-45582,CVE-2026-5704
This update for tar fixes the following issues
- CVE-2026-5704: crafted archives can be used to to hide file injection (bsc#1261900).
- Fix --dereference/-h not working properly after CVE-2025-45582 fix (bsc#1265450).
The following package changes have been done:
- tar-1.35-160000.4.1 updated
More information about the sle-container-updates
mailing list