SUSE-CU-2026:1289-1: Security update of suse/sl-micro/6.1/base-iso-image
sle-container-updates at lists.suse.com
sle-container-updates at lists.suse.com
Tue Mar 3 08:24:30 UTC 2026
SUSE Container Update Advisory: suse/sl-micro/6.1/base-iso-image
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2026:1289-1
Container Tags : suse/sl-micro/6.1/base-iso-image:2.2.1 , suse/sl-micro/6.1/base-iso-image:2.2.1-5.86 , suse/sl-micro/6.1/base-iso-image:latest
Container Release : 5.86
Severity : important
Type : security
References : 1240385 1244933 1246965 1256766 1256822 1257005 CVE-2025-15281
CVE-2025-8058 CVE-2026-0861 CVE-2026-0915
-----------------------------------------------------------------
The container suse/sl-micro/6.1/base-iso-image was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: 417
Released: Mon Mar 2 15:52:11 2026
Summary: Security update for glibc
Type: security
Severity: important
References: 1240385,1244933,1246965,1256766,1256822,1257005,CVE-2025-15281,CVE-2025-8058,CVE-2026-0861,CVE-2026-0915
This update for glibc fixes the following issues:
- CVE-2026-0861: inadequate size check in the memalign suite may result in an integer overflow (bsc#1256766).
- CVE-2026-0915: uninitialized stack buffer used as DNS query name when net==0 in _nss_dns_getnetbyaddr_r (bsc#1256822).
- CVE-2025-15281: uninitialized memory may cause the process abort (bsc#1257005).
- CVE-2025-8058: a malloc failure in regcomp function can lead to a double free (bsc#1246965).
The following package changes have been done:
- glibc-2.38-slfo.1.1_6.1 updated
- container:SL-Micro-base-container-2.2.1-5.82 updated
- container:SL-Micro-container-2.2.1-7.60 updated
More information about the sle-container-updates
mailing list