SUSE-IU-2026:3751-1: Security update of suse/sl-micro/6.0/rt-os-container
sle-container-updates at lists.suse.com
sle-container-updates at lists.suse.com
Wed May 27 07:13:21 UTC 2026
SUSE Image Update Advisory: suse/sl-micro/6.0/rt-os-container
-----------------------------------------------------------------
Image Advisory ID : SUSE-IU-2026:3751-1
Image Tags : suse/sl-micro/6.0/rt-os-container:2.1.3 , suse/sl-micro/6.0/rt-os-container:2.1.3-7.174 , suse/sl-micro/6.0/rt-os-container:latest
Image Release : 7.174
Severity : important
Type : security
References : 1201840 1202970 1204538 1234100 1234101 1234102 1234103 1234104
1235475 1254441 1261206 1261280 1261606 1262223 1262223 1262464
1262465 1264013 1264450 1264511 1264512 1264513 1264514 1264515
1265209 1265296 1265308 CVE-2022-29154 CVE-2024-12084 CVE-2024-12085
CVE-2024-12086 CVE-2024-12087 CVE-2024-12088 CVE-2024-12747 CVE-2025-10158
CVE-2025-54518 CVE-2026-27456 CVE-2026-29518 CVE-2026-34743 CVE-2026-4046
CVE-2026-41035 CVE-2026-41035 CVE-2026-43500 CVE-2026-43617 CVE-2026-43618
CVE-2026-43619 CVE-2026-43620 CVE-2026-45232 CVE-2026-46300 CVE-2026-46333
CVE-2026-5450 CVE-2026-5928
-----------------------------------------------------------------
The container suse/sl-micro/6.0/rt-os-container was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: 708
Released: Fri May 15 12:45:40 2026
Summary: Security update for rsync
Type: security
Severity: important
References: 1262223,CVE-2026-41035
This update for rsync fixes the following issue
- CVE-2026-41035: count of entries mismatch can lead to a use-after-free (bsc#1262223).
-----------------------------------------------------------------
Advisory ID: 710
Released: Fri May 15 13:28:08 2026
Summary: Security update for glibc
Type: security
Severity: important
References: 1261206,1262464,1262465,CVE-2026-4046,CVE-2026-5450,CVE-2026-5928
This update for glibc fixes the following issues
- CVE-2026-4046: assertion failure when converting inputs may be used to remotely crash an application (bsc#1261206).
- CVE-2026-5450: stdio-common: scanf %mc pattern will cause heap overflow when width > 1024 (bsc#1262465).
- CVE-2026-5928: libio: ungetwc could be used to leak data on special conditions (bsc#1262464).
-----------------------------------------------------------------
Advisory ID: kernel-427
Released: Fri May 15 18:43:03 2026
Summary: Security update for the Linux Kernel
Type: security
Severity: important
References: 1264013,1264450,1265209,CVE-2025-54518,CVE-2026-43500,CVE-2026-46300
The SUSE Linux Enterprise Micro 6.0 and Micro 6.1 RT kernel was updated to fix various security issues
The following security issues were fixed:
- CVE-2025-54518: x86/CPU/AMD: Prevent improper isolation of shared resources in Zen2's op cache (bsc#1264013).
- CVE-2026-46300: net: skbuff: propagate shared-frag marker through pskb_copy() (bsc#1265209).
- CVE-2026-43500: rxrpc: unshare DATA/RESPONSE packets when paged frags are present (bsc#1264450).
The following non security issues were fixed:
- config: s390x/ppc64le: disable unsupported CONFIG_AFS_FS and CONFIG_AF_RXRPC (bsc#1264450).
- io-wq: check that the predecessor is hashed in io_wq_remove_pending() (git-fixes).
-----------------------------------------------------------------
Advisory ID: kernel-431
Released: Tue May 19 17:51:11 2026
Summary: Security update for the Linux Kernel
Type: security
Severity: important
References: 1265308,CVE-2026-46333
The SUSE Linux Enterprise Micro 6.0 and 6.1 RT kernel was updated to receive various security bugfixes.
The following security bugs were fixed:
- CVE-2026-46333:ptrace: slightly saner 'get_dumpable()' logic (bsc#1265308).
-----------------------------------------------------------------
Advisory ID: 720
Released: Thu May 21 13:04:19 2026
Summary: Security update for rsync
Type: security
Severity: important
References: 1201840,1202970,1204538,1234100,1234101,1234102,1234103,1234104,1235475,1254441,1262223,1264511,1264512,1264513,1264514,1264515,1265296,CVE-2022-29154,CVE-2024-12084,CVE-2024-12085,CVE-2024-12086,CVE-2024-12087,CVE-2024-12088,CVE-2024-12747,CVE-2025-10158,CVE-2026-29518,CVE-2026-41035,CVE-2026-43617,CVE-2026-43618,CVE-2026-43619,CVE-2026-43620,CVE-2026-45232
This update for rsync fixes the following issues
Security issues:
- CVE-2026-29518: Symlink-Race TOCTOU in Daemon (bsc#1264511).
- CVE-2026-43617: Authorization Bypass via Hostname Resolution (bsc#1264515).
- CVE-2026-43618: Integer Overflow Information Disclosure (bsc#1264512).
- CVE-2026-43619: Symlink Race Condition via Path-Based Syscalls (bsc#1264514).
- CVE-2026-43620: Out-of-Bounds Array Read via recv_files() (bsc#1264513).
- CVE-2026-45232: Off-by-one stack OOB write in HTTP CONNECT proxy response parsing (bsc#1265296).
Non security issues:
- rsync --delay-updates never updates after interruption (bsc#1204538).
- Fix duplication of flag causing illegal hashkey failures.
-----------------------------------------------------------------
Advisory ID: 721
Released: Thu May 21 13:18:17 2026
Summary: Security update for util-linux
Type: security
Severity: moderate
References: 1261606,CVE-2026-27456
This update for util-linux fixes the following issue
- CVE-2026-27456: TOCTOU in the mount program when setting up loop devices (bsc#1261606).
-----------------------------------------------------------------
Advisory ID: 723
Released: Thu May 21 14:03:57 2026
Summary: Security update for xz
Type: security
Severity: important
References: 1261280,CVE-2026-34743
This update for xz fixes the following issue
- CVE-2026-34743: buffer overflow in lzma_index_append() (bsc#1261280).
The following package changes have been done:
- glibc-2.38-13.1 updated
- libuuid1-2.39.3-7.1 updated
- libsmartcols1-2.39.3-7.1 updated
- liblzma5-5.4.3-6.1 updated
- libblkid1-2.39.3-7.1 updated
- libfdisk1-2.39.3-7.1 updated
- libmount1-2.39.3-7.1 updated
- xz-5.4.3-6.1 updated
- util-linux-2.39.3-7.1 updated
- SL-Micro-release-6.0-25.100 updated
- util-linux-systemd-2.39.3-7.1 updated
- glibc-locale-base-2.38-13.1 updated
- rsync-3.2.7-7.1 updated
- kernel-rt-6.4.0-46.1 updated
- container:SL-Micro-container-2.1.3-6.177 updated
More information about the sle-container-updates
mailing list