Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 573
Alerts This Week
Warning Icon 1 573

openSUSE Leap 16.0 openQA Important Issue Fix Advisory 2026-21266-1

opensuse
Calendar Grey July 8, 2026
Dist Opensuse Esm H88
Find critical updates for openSUSE addressing security risks in openQA and os-autoinst with bug fixes and patches.
An update that solves 3 vulnerabilities and has 3 bug fixes can now be installed.

Description

This update for openQA, os-autoinst fixes the following issues:

Changes in openQA:

- Update to version 5.1783076943.6691832d:

* test: Stabilize `t/05-scheduler-full.t`

- Clarify resolution of three CVEs

* The following CVEs have been fixed (see previous changelog

entries that mentioned only the according Bugzilla tickets):

- bsc#1259005 - CVE-2026-27904

- bsc#1264376 - CVE-2026-6321

- bsc#1258632 - CVE-2026-26996

- Update to version 5.1782995932.ffeb09be:

* feat: throw 404 for nonexistent groups in overview

* feat: Avoid logwarn notifications for non-critical auth error

* chore(deps): Dependency cron 2026-07-02

* git subrepo pull (merge) external/os-autoinst-common

* fix: Check also hidden files in checklist plugin

* test: Enable faster re-connects in full scheduler test consistently

* test: Avoid silent daemons in verbose mode

* test: Allow running `t/43-…-scalability.t` in parallel

* test: Allow running `t/05-scheduler-full.t` in parallel

Read the Full Advisory

Patch

Package List

- openSUSE Leap 16.0:

openQA-5.1783076943.6691832d-bp160.1.1

openQA-auto-update-5.1783076943.6691832d-bp160.1.1

openQA-bootstrap-5.1783076943.6691832d-bp160.1.1

openQA-client-5.1783076943.6691832d-bp160.1.1

openQA-client-bash-completion-5.1783076943.6691832d-bp160.1.1

openQA-client-zsh-completion-5.1783076943.6691832d-bp160.1.1

openQA-common-5.1783076943.6691832d-bp160.1.1

openQA-continuous-update-5.1783076943.6691832d-bp160.1.1

openQA-devel-5.1783076943.6691832d-bp160.1.1

openQA-doc-5.1783076943.6691832d-bp160.1.1

openQA-llm-server-5.1783076943.6691832d-bp160.1.1

openQA-local-db-5.1783076943.6691832d-bp160.1.1

openQA-mcp-5.1783076943.6691832d-bp160.1.1

openQA-munin-5.1783076943.6691832d-bp160.1.1

openQA-python-scripts-5.1783076943.6691832d-bp160.1.1

openQA-single-instance-5.1783076943.6691832d-bp160.1.1

openQA-single-instance-nginx-5.1783076943.6691832d-bp160.1.1

openQA-worker-5.1783076943.6691832d-bp160.1.1

os-autoinst-5.1783082953.c3cb41d-bp160.1.1

os-autoinst-devel-5.1783082953.c3cb41d-bp160.1.1

os-aut...

Read the Full Advisory

References

* bsc#1258632

* bsc#1259005

* bsc#1264376

References:

* https://www.suse.com/security/cve/CVE-2026-26996.html

* https://www.suse.com/security/cve/CVE-2026-27904.html

* https://www.suse.com/security/cve/CVE-2026-6321.html

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2026:21266-1
Rating: important
Affected Products: openSUSE Leap 16.0 -------------------------------------------------------------

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.