Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 591
Alerts This Week
Warning Icon 1 591

SUSE Linux Micro 6.0 glibc Important Memory Error Fix Advisory 20527-1

suse
Calendar Grey February 27, 2026
Dist Suse Esm H88
An important security update for SUSE glibc addresses four vulnerabilities ensuring system reliability.
An update that solves four vulnerabilities can now be installed.

Summary

## This update for glibc fixes the following issues: * CVE-2026-0861: inadequate size check in the memalign suite may result in an integer overflow (bsc#1256766). * CVE-2026-0915: uninitialized stack buffer used as DNS query name when net==0 in _nss_dns_getnetbyaddr_r (bsc#1256822). * CVE-2025-15281: uninitialized memory may cause the process abort (bsc#1257005). * CVE-2025-8058: a malloc failure in regcomp function can lead to a double free (bsc#1246965). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-597=1 ## Package List: * SUSE Linux Micro 6.0 (aarch64 s390x x86_64)

References

* bsc#1246965

* bsc#1256766

* bsc#1256822

* bsc#1257005

Cross-

* CVE-2025-15281

* CVE-2025-8058

* CVE-2026-0861

* CVE-2026-0915

CVSS scores:

* CVE-2025-15281 ( SUSE ): 6.8

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

* CVE-2025-15281 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

* CVE-2025-15281 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

* CVE-2025-8058 ( SUSE ): 5.9

CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:P/VC:L/VI:L/VA:H/SC:L/SI:L/SA:H

* CVE-2025-8058 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:H

* CVE-2025-8058 ( NVD ): 5.9

CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:P/VC:L/VI:L/VA:H/SC:L/SI:L/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2026:20527-1
Release Date: 2026-02-26T11:23:28Z
Rating: important

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.