SUSE-IU-2026:1619-1: Security update of suse/sl-micro/6.2/baremetal-os-container
sle-container-updates at lists.suse.com
sle-container-updates at lists.suse.com
Sat Mar 28 08:11:26 UTC 2026
SUSE Image Update Advisory: suse/sl-micro/6.2/baremetal-os-container
-----------------------------------------------------------------
Image Advisory ID : SUSE-IU-2026:1619-1
Image Tags : suse/sl-micro/6.2/baremetal-os-container:2.3.0 , suse/sl-micro/6.2/baremetal-os-container:2.3.0-7.83 , suse/sl-micro/6.2/baremetal-os-container:latest
Image Release : 7.83
Severity : moderate
Type : security
References : 1243581 1248410 1248687 142461 430864 544339 CVE-2025-46836
-----------------------------------------------------------------
The container suse/sl-micro/6.2/baremetal-os-container was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: 454
Released: Thu Mar 26 16:12:43 2026
Summary: Security update for net-tools
Type: security
Severity: moderate
References: 1243581,1248410,1248687,142461,430864,544339,CVE-2025-46836
This update for net-tools fixes the following issues:
- Fix stack buffer overflow in parse_hex (bsc#1248687, GHSA-h667-qrp8-gj58).
- Fix stack-based buffer overflow in proc_gen_fmt (bsc#1248687, GHSA-w7jq-cmw2-cq59).
- Avoid unsafe memcpy in ifconfig (bsc#1248687).
- Prevent overflow in ax25 and netrom (bsc#1248687)
- Keep possibility to enter long interface names, even if they are
not accepted by the kernel, because it was always possible up to
CVE-2025-46836 fix. But issue a warning about an interface name
concatenation (bsc#1248410).
The following package changes have been done:
- net-tools-2.10-160000.3.1 updated
More information about the sle-container-updates
mailing list