SUSE-IU-2026:5191-1: Security update of suse/sl-micro/6.1/base-os-container
sle-container-updates at lists.suse.com
sle-container-updates at lists.suse.com
Tue Jun 30 07:40:56 UTC 2026
SUSE Image Update Advisory: suse/sl-micro/6.1/base-os-container
-----------------------------------------------------------------
Image Advisory ID : SUSE-IU-2026:5191-1
Image Tags : suse/sl-micro/6.1/base-os-container:2.2.1 , suse/sl-micro/6.1/base-os-container:2.2.1-5.147 , suse/sl-micro/6.1/base-os-container:latest
Image Release : 5.147
Severity : important
Type : security
References : 1257908 1268322 CVE-2026-25727 CVE-2026-6893
-----------------------------------------------------------------
The container suse/sl-micro/6.1/base-os-container was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: 596
Released: Mon Jun 29 11:20:34 2026
Summary: Security update for dracut
Type: security
Severity: important
References: 1257908,1268322,CVE-2026-25727,CVE-2026-6893
This update for dracut fixes the following issue
- CVE-2026-6893: Root code execution via DHCP options command injection (bsc#1268322).
Changes for dracut:
- Update to version 059+suse.643.g1f1d880:
* fix(network-legacy): sanitize DHCP values in dhclient-script.sh (bsc#1268322, CVE-2026-6893)
* fix(network-legacy): add input validation to RFC 3442 route parser
The following package changes have been done:
- dracut-059+suse.643.g1f1d880-slfo.1.1_1.1 updated
More information about the sle-container-updates
mailing list