SUSE-CU-2026:2041-1: Security update of suse/ltss/sle12.5/sles12sp5
sle-container-updates at lists.suse.com
sle-container-updates at lists.suse.com
Wed Mar 25 08:35:10 UTC 2026
SUSE Container Update Advisory: suse/ltss/sle12.5/sles12sp5
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2026:2041-1
Container Tags : suse/ltss/sle12.5/sles12sp5:8.5.213 , suse/ltss/sle12.5/sles12sp5:latest
Container Release : 8.5.213
Severity : important
Type : security
References : 1259650 1259697 CVE-2026-4105
-----------------------------------------------------------------
The container suse/ltss/sle12.5/sles12sp5 was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2026:991-1
Released: Tue Mar 24 08:23:00 2026
Summary: Security update for systemd
Type: security
Severity: important
References: 1259650,1259697,CVE-2026-4105
This update for systemd fixes the following issue:
- CVE-2026-4105: privilege escalation due to improper access control in RegisterMachine D-Bus method (bsc#1259650).
- udev: check for invalid chars in various fields received from the kernel (bsc#1259697).
Changelog:
cbf8ee66ee machined: reject invalid class types when registering machines
1a55ad48da udev: fix review mixup
1eba76668c udev-builtin-net-id: print cescaped bad attributes
cbd4b55380 udev: ensure tag parsing stays within bounds
5973d3b1cc udev: ensure there is space for trailing NUL before calling sprintf
f038eb6c8b udev: check for invalid chars in various fields received from the kernel
The following package changes have been done:
- libsystemd0-228-157.75.1 updated
- libudev1-228-157.75.1 updated
More information about the sle-container-updates
mailing list