Explore top 10 tips to secure your open-source projects now. Read More
×
## This update for systemd fixes the following issues: * CVE-2026-4105: privilege escalation due to improper access control in RegisterMachine D-Bus method (bsc#1259650). * CVE-2026-29111: local unprivileged user can trigger an assert in systemd (bsc#1259418). * udev: check for invalid chars in various fields received from the kernel (bsc#1259697). Changelog: * 566517ffcb machined: reject invalid class types when registering machines * abbdd89d78 udev: fix review mixup * c9cedd26be udev-builtin-net-id: print cescaped bad attributes * c0f4ec3db9 udev: ensure tag parsing stays within bounds * 38afcb73cc udev: ensure there is space for trailing NUL before calling sprintf * a64247de62 udev: check for invalid chars in various fields received from the kernel
* bsc#1259418
* bsc#1259650
* bsc#1259697
Cross-
* CVE-2026-29111
* CVE-2026-4105
CVSS scores:
* CVE-2026-29111 ( SUSE ): 6.8
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-29111 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-29111 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-4105 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-4105 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-4105 ( NVD ): 6.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
Affected Products:
* openSUSE Leap 15.3
* SUSE Linux Enterprise Micro 5.2
* SUSE Linux Enterprise Micro for Rancher 5.2
An update that solves two vulnerabilities and has one security fix can now be
Get the latest Linux and open source security news straight to your inbox.