SUSE-IU-2026:3406-1: Security update of suse/sl-micro/6.2/kvm-os-container

sle-container-updates at lists.suse.com sle-container-updates at lists.suse.com
Tue May 19 07:34:07 UTC 2026 

SUSE Image Update Advisory: suse/sl-micro/6.2/kvm-os-container
-----------------------------------------------------------------
Image Advisory ID : SUSE-IU-2026:3406-1
Image Tags        : suse/sl-micro/6.2/kvm-os-container:2.3.0 , suse/sl-micro/6.2/kvm-os-container:2.3.0-7.137 , suse/sl-micro/6.2/kvm-os-container:latest
Image Release     : 7.137
Severity          : important
Type              : security
References        : 1261206 1262464 1262465 1265308 CVE-2026-4046 CVE-2026-46333
                        CVE-2026-5450 CVE-2026-5928 
-----------------------------------------------------------------

The container suse/sl-micro/6.2/kvm-os-container was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: 761
Released:    Mon May 18 07:38:10 2026
Summary:     Security update for glibc
Type:        security
Severity:    important
References:  1261206,1262464,1262465,CVE-2026-4046,CVE-2026-5450,CVE-2026-5928
This update for glibc fixes the following issues

- CVE-2026-4046: assertion failure when converting inputs may be used to remotely crash an application (bsc#1261206).
- CVE-2026-5450: stdio-common: scanf %mc pattern will cause heap overflow when width > 1024 (bsc#1262465).
- CVE-2026-5928: libio: ungetwc could be used to leak data on special conditions (bsc#1262464).

-----------------------------------------------------------------
Advisory ID: 780
Released:    Mon May 18 16:13:40 2026
Summary:     Recommended update for the Linux Kernel
Type:        recommended
Severity:    important
References:  1265308,CVE-2026-46333

The SUSE Linux Enterprise 16.0 kernel was updated to fix one issue

The following non security issue was fixed:

- CVE-2026-46333: Fixed logic bug in the Linux kernel's __ptrace_may_access() function (bsc#1265308).


The following package changes have been done:

- glibc-2.40-160000.5.1 updated
- kernel-default-base-6.12.0-160000.32.1.160000.2.13 updated
- glibc-gconv-modules-extra-2.40-160000.5.1 updated
- glibc-locale-base-2.40-160000.5.1 updated
- container:suse-sl-micro-6.2-base-os-container-latest-fbcb59bf18b351c52863beaedbc30b4d738f782143abec41d8ba42b1e93f8a74-0 updated

More information about the sle-container-updates mailing list