Explore top 10 tips to secure your open-source projects now. Read More
×
This update for polkit fixes the following issue:
* CVE-2026-4897: Fixed possible OOM condition via specially crafted input to
`polkit-agent-helper-1` (bsc#1260859).
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* SUSE Linux Enterprise Micro 5.5
zypper in -t patch SUSE-SLE-Micro-5.5-2026-1424=1
* Basesystem Module 15-SP7
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-1424=1
* openSUSE Leap 15.5
zypper in -t patch SUSE-2026-1424=1
* openSUSE Leap 15.6
zypper in -t patch openSUSE-SLE-15.6-2026-1424=1
* SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64)
* libpolkit-agent-1-0-debuginfo-121-150500.3.11.1
* polkit-121-150500.3.11.1
* libpolkit-gobject-1-0-debuginfo-121-150500.3.11.1
* polkit-debuginfo-121-150500.3.11.1
* polkit-debugsource-121-150500.3.11.1
* libpolkit-agent-1-0-121-150500.3.11.1
* libpolkit-gobject-1-0-121-150500.3.11.1
* Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64)
* libpolkit-agent-1-0-debuginfo-121-150500.3.11.1
* libpolkit-gobject-1-0-debuginfo-121-150500.3.11.1
* polkit-121-150500.3.11.1
* polkit-devel-121-150500.3.11.1
* polkit-debuginfo-121-150500.3.11.1
* typelib-1_0-Polkit-1_0-121-150500.3.11.1
* pkexec-121-150500.3.11.1
* pkexec-debuginfo-121-150500.3.11.1
* polkit-debugsource-121-150500.3.11.1
* polkit-devel-debuginfo-121-150500.3.11.1
* libpolkit-agent-1-0-121-150500.3.11.1
* libpolkit-gobject-1-0-121-150500.3.11.1
* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586)
* libpolkit-agent-1-0-debuginfo-121-150500.3.11.1
*...
Read the Full Advisory* bsc#1260859
## References:
* https://www.suse.com/security/cve/CVE-2026-4897.html
* https://bugzilla.suse.com/show_bug.cgi?id=1260859
Get the latest Linux and open source security news straight to your inbox.