Explore top 10 tips to secure your open-source projects now. Read More
×
This update for glibc fixes the following issues
* CVE-2026-5435: unchecked buffer writing in TSIG handling can lead to an out-
of-bounds write (bsc#1263656).
* CVE-2026-6238: insufficient RDATA length validation can lead to application
crashes or uninitialized memory disclosure (bsc#1263658).
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.3
zypper in -t patch SUSE-2026-3029=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-3029=1
* SUSE Linux Enterprise Micro for Rancher 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2026-3029=1
* SUSE Linux Enterprise Micro 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2026-3029=1
* SUSE Linux Enterprise Server 15 SP5 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-3029=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-3029=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-3029=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch...
Read the Full Advisory* openSUSE Leap 15.3 (aarch64 i586 ppc64le s390x x86_64)
* glibc-utils-src-debugsource-2.31-150300.104.1
* glibc-utils-debuginfo-2.31-150300.104.1
* nscd-2.31-150300.104.1
* glibc-utils-2.31-150300.104.1
* glibc-extra-debuginfo-2.31-150300.104.1
* nscd-debuginfo-2.31-150300.104.1
* glibc-extra-2.31-150300.104.1
* openSUSE Leap 15.3 (aarch64 i586 i686 ppc64le s390x x86_64)
* glibc-locale-2.31-150300.104.1
* glibc-profile-2.31-150300.104.1
* glibc-devel-2.31-150300.104.1
* glibc-locale-base-2.31-150300.104.1
* glibc-locale-base-debuginfo-2.31-150300.104.1
* glibc-devel-debuginfo-2.31-150300.104.1
* glibc-2.31-150300.104.1
* glibc-devel-static-2.31-150300.104.1
* glibc-debugsource-2.31-150300.104.1
* glibc-debuginfo-2.31-150300.104.1
* openSUSE Leap 15.3 (x86_64)
* glibc-profile-32bit-2.31-150300.104.1
* glibc-utils-32bit-debuginfo-2.31-150300.104.1
* glibc-devel-32bit-2.31-150300.104.1
* glibc-locale-base-32bit-debuginfo-2.31-150300.104.1
* glibc-devel-32bit-debuginfo-2.31-150300.104.1
*...
Read the Full Advisory* bsc#1263656
* bsc#1263658
## References:
* https://www.suse.com/security/cve/CVE-2026-5435.html
* https://www.suse.com/security/cve/CVE-2026-6238.html
* https://bugzilla.suse.com/show_bug.cgi?id=1263656
* https://bugzilla.suse.com/show_bug.cgi?id=1263658
Get the latest Linux and open source security news straight to your inbox.