SUSE-SU-2026:0068-1

See a problem?
Please try reporting it to the source first.
Source
https://www.suse.com/support/update/announcement/2026/suse-su-20260068-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2026:0068-1.json
JSON Data
https://api.test.osv.dev/v1/vulns/SUSE-SU-2026:0068-1
Upstream
Related
Published
2026-01-08T12:22:40Z
Modified
2026-03-11T07:31:29.587361Z
Summary
Security update for libvirt
Details

This update for libvirt fixes the following issues:

  • CVE-2025-13193: Fixed umask for 'qemu-img' when creating external inactive snapshots (bsc#1253703)
  • CVE-2025-12748: Fixed Check ACLs before parsing the whole domain XML (bsc#1253278)
References

Affected packages

openSUSE:Leap 15.6 / libvirt

Package

Name
libvirt
Purl
pkg:rpm/opensuse/libvirt&distro=openSUSE%20Leap%2015.6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.0.0-150600.8.12.1

Ecosystem specific 

{
    "binaries": [
        {
            "libvirt-daemon-driver-storage": "10.0.0-150600.8.12.1",
            "libvirt": "10.0.0-150600.8.12.1",
            "libvirt-daemon-log": "10.0.0-150600.8.12.1",
            "libvirt-nss": "10.0.0-150600.8.12.1",
            "libvirt-daemon-driver-libxl": "10.0.0-150600.8.12.1",
            "libvirt-daemon-driver-storage-logical": "10.0.0-150600.8.12.1",
            "libvirt-daemon-driver-storage-iscsi": "10.0.0-150600.8.12.1",
            "libvirt-daemon-driver-storage-scsi": "10.0.0-150600.8.12.1",
            "libvirt-libs": "10.0.0-150600.8.12.1",
            "libvirt-daemon": "10.0.0-150600.8.12.1",
            "libvirt-doc": "10.0.0-150600.8.12.1",
            "libvirt-daemon-plugin-lockd": "10.0.0-150600.8.12.1",
            "libvirt-daemon-proxy": "10.0.0-150600.8.12.1",
            "libvirt-daemon-driver-storage-mpath": "10.0.0-150600.8.12.1",
            "libvirt-daemon-common": "10.0.0-150600.8.12.1",
            "libvirt-daemon-hooks": "10.0.0-150600.8.12.1",
            "libvirt-daemon-driver-storage-gluster": "10.0.0-150600.8.12.1",
            "libvirt-daemon-driver-interface": "10.0.0-150600.8.12.1",
            "libvirt-daemon-driver-storage-iscsi-direct": "10.0.0-150600.8.12.1",
            "libvirt-daemon-driver-secret": "10.0.0-150600.8.12.1",
            "libvirt-daemon-driver-network": "10.0.0-150600.8.12.1",
            "libvirt-daemon-driver-storage-rbd": "10.0.0-150600.8.12.1",
            "libvirt-devel-32bit": "10.0.0-150600.8.12.1",
            "libvirt-client-qemu": "10.0.0-150600.8.12.1",
            "libvirt-daemon-config-network": "10.0.0-150600.8.12.1",
            "libvirt-client": "10.0.0-150600.8.12.1",
            "libvirt-devel": "10.0.0-150600.8.12.1",
            "libvirt-daemon-driver-nodedev": "10.0.0-150600.8.12.1",
            "libvirt-daemon-lock": "10.0.0-150600.8.12.1",
            "libvirt-daemon-driver-storage-core": "10.0.0-150600.8.12.1",
            "libvirt-daemon-driver-nwfilter": "10.0.0-150600.8.12.1",
            "libvirt-daemon-qemu": "10.0.0-150600.8.12.1",
            "libvirt-daemon-driver-qemu": "10.0.0-150600.8.12.1",
            "libvirt-daemon-driver-storage-disk": "10.0.0-150600.8.12.1",
            "libvirt-daemon-xen": "10.0.0-150600.8.12.1",
            "libvirt-daemon-driver-lxc": "10.0.0-150600.8.12.1",
            "libvirt-daemon-lxc": "10.0.0-150600.8.12.1",
            "libvirt-daemon-plugin-sanlock": "10.0.0-150600.8.12.1",
            "libvirt-daemon-config-nwfilter": "10.0.0-150600.8.12.1",
            "wireshark-plugin-libvirt": "10.0.0-150600.8.12.1"
        }
    ]
}

Database specific

source 
"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2026:0068-1.json"