SUSE-IU-2026:5185-1: Security update of suse/sl-micro/6.0/baremetal-os-container

sle-container-updates at lists.suse.com sle-container-updates at lists.suse.com
Tue Jun 30 07:25:30 UTC 2026


SUSE Image Update Advisory: suse/sl-micro/6.0/baremetal-os-container
-----------------------------------------------------------------
Image Advisory ID : SUSE-IU-2026:5185-1
Image Tags        : suse/sl-micro/6.0/baremetal-os-container:2.1.3 , suse/sl-micro/6.0/baremetal-os-container:2.1.3-6.196 , suse/sl-micro/6.0/baremetal-os-container:latest
Image Release     : 6.196
Severity          : important
Type              : security
References        : 1268322 CVE-2026-6893 
-----------------------------------------------------------------

The container suse/sl-micro/6.0/baremetal-os-container was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: 772
Released:    Mon Jun 29 11:20:29 2026
Summary:     Security update for dracut
Type:        security
Severity:    important
References:  1268322,CVE-2026-6893
This update for dracut fixes the following issue

- CVE-2026-6893: Root code execution via DHCP options command injection (bsc#1268322).

Changes for dracut:

- Update to version 059+suse.609.g1a2492e:
 * fix(network-legacy): sanitize DHCP values in dhclient-script.sh (bsc#1268322, CVE-2026-6893)
 * fix(network-legacy): add input validation to RFC 3442 route parser


The following package changes have been done:

- dracut-059+suse.609.g1a2492e-1.1 updated
- container:SL-Micro-base-container-2.1.3-7.161 updated


More information about the sle-container-updates mailing list