This update for apptainer fixes the following issues:
Security fixes:
* CVE-2024-45310: Fixed runc being tricked into creating empty
files/directories on host (bsc#1257432)
* CVE-2025-65105: Fixed security bypass due to disabling security options
(bsc#1255462)
* CVE-2025-47914: Fixed malformed constraint may cause denial of service in
golang.org/x/crypto/ssh/agent (bsc#1253967)
* CVE-2025-58181: Fixed unbounded memory consumption in
golang.org/x/crypto/ssh (bsc#1253784)
* CVE-2025-47913: Fixed potential denial of service in
golang.org/x/crypto/ssh/agent (bsc#1253506)
* CVE-2025-22872: Fixed incorrect Neutralization of Input During Web Page
Generation in x/net (bsc#1241710)
* CVE-2025-22870: Fixed HTTP Proxy bypass using IPv6 Zone IDs in
golang.org/x/net (bsc#1238611)
* CVE-2025-22869: Fixed potential denial of service in golang.org/x/crypto
(bsc#1239322)
* CVE-2025-27144: Fixed DoS in go-jose Parsing in github.com/go-jose/go-jose
...
Read the Full Advisory## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.6
zypper in -t patch SUSE-2026-439=1 openSUSE-SLE-15.6-2026-439=1
* HPC Module 15-SP7
zypper in -t patch SUSE-SLE-Module-HPC-15-SP7-2026-439=1
* SUSE Linux Enterprise Server 15 SP6 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-439=1
* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586)
* libsquashfuse0-0.5.0-150600.3.2.1
* squashfuse-debugsource-0.5.0-150600.3.2.1
* libsquashfuse0-debuginfo-0.5.0-150600.3.2.1
* squashfuse-0.5.0-150600.3.2.1
* squashfuse-debuginfo-0.5.0-150600.3.2.1
* squashfuse-tools-debuginfo-0.5.0-150600.3.2.1
* squashfuse-devel-0.5.0-150600.3.2.1
* squashfuse-tools-0.5.0-150600.3.2.1
* openSUSE Leap 15.6 (aarch64 x86_64)
* apptainer-1.4.5-150600.4.12.1
* apptainer-debuginfo-1.4.5-150600.4.12.1
* openSUSE Leap 15.6 (noarch)
* apptainer-sle16-1.4.5-150600.4.12.1
* apptainer-sle15_6-1.4.5-150600.4.12.1
* apptainer-leap-1.4.5-150600.4.12.1
* apptainer-sle15_7-1.4.5-150600.4.12.1
* HPC Module 15-SP7 (aarch64 x86_64)
* apptainer-1.4.5-150600.4.12.1
* libsquashfuse0-0.5.0-150600.3.2.1
* squashfuse-debugsource-0.5.0-150600.3.2.1
* libsquashfuse0-debuginfo-0.5.0-150600.3.2.1
* squashfuse-0.5.0-150600.3.2.1
* squashfuse-debuginfo-0.5.0-150600.3.2.1
* squashfuse-tools-debuginfo-0.5.0-150600.3.2.1
*...
Read the Full Advisory* bsc#1237608
* bsc#1238611
* bsc#1239322
* bsc#1241710
* bsc#1253506
* bsc#1253784
* bsc#1253967
* bsc#1255462
* bsc#1257432
## References:
* https://www.suse.com/security/cve/CVE-2024-45310.html
* https://www.suse.com/security/cve/CVE-2025-22869.html
* https://www.suse.com/security/cve/CVE-2025-22870.html
* https://www.suse.com/security/cve/CVE-2025-22872.html
* https://www.suse.com/security/cve/CVE-2025-27144.html
* https://www.suse.com/security/cve/CVE-2025-47913.html
* https://www.suse.com/security/cve/CVE-2025-47914.html
* https://www.suse.com/security/cve/CVE-2025-58181.html
* https://www.suse.com/security/cve/CVE-2025-65105.html
* https://www.suse.com/security/cve/CVE-2025-8556.html
* https://bugzilla.suse.com/show_bug.cgi?id=1237608
* https://bugzilla.suse.com/show_bug.cgi?id=1238611
* https://bugzilla.suse.com/show_bug.cgi?id=1239322
* https://bugzilla.suse.com/show_bug.cgi?id=1241710
* https://bugzilla.suse.com/show_bug.cgi?id=1253506
* https://bugzilla.suse.com/show_bug.cgi?id=1253784
*...
Read the Full AdvisoryGet the latest Linux and open source security news straight to your inbox.