openSUSE-SU-2026:20132-1

See a problem?
Import Source
https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2026:20132-1.json
JSON Data
https://api.osv.dev/v1/vulns/openSUSE-SU-2026:20132-1
Upstream
Related
Published
2026-01-29T15:32:26Z
Modified
2026-03-23T04:54:45.260085Z
Summary
Security update for elemental-register, elemental-toolkit
Details

This update for elemental-register, elemental-toolkit fixes the following issues:

elemental-register was updated to 1.8.1:

Changes on top of v1.8.1:

  • Update headers to 2026
  • Update questions to include SL Micro 6.2

Update to v1.8.1:

  • Install yip config files in before-install step
  • Bump github.com/rancher-sandbox/go-tpm and its dependencies This includes few CVE fixes:
    • bsc#1241826 (CVE-2025-22872)
    • bsc#1241857 (CVE-2025-22872)
    • bsc#1251511 (CVE-2025-47911)
    • bsc#1251679 (CVE-2025-58190)

elemental-toolkit was updated to v2.3.2:

  • Bump golang.org/x/crypto library This includes few CVE fixes:
    • bsc#1241826 (CVE-2025-22872)
    • bsc#1241857 (CVE-2025-22872)
    • bsc#1251511 (CVE-2025-47911)
    • bsc#1251679 (CVE-2025-58190)
    • bsc#1253581 (CVE-2025-47913)
    • bsc#1253901 (CVE-2025-58181)
    • bsc#1254079 (CVE-2025-47914)
References

Affected packages

openSUSE:Leap 16.0 / elemental-register

Package

Name
elemental-register
Purl
pkg:rpm/opensuse/elemental-register&distro=openSUSE%20Leap%2016.0

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.8.1-160000.1.1

Ecosystem specific 

{
    "binaries": [
        {
            "elemental-toolkit": "2.3.2-160000.1.1",
            "elemental-register": "1.8.1-160000.1.1",
            "elemental-support": "1.8.1-160000.1.1"
        }
    ]
}

Database specific

source 
"https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2026:20132-1.json"

openSUSE:Leap 16.0 / elemental-toolkit

Package

Name
elemental-toolkit
Purl
pkg:rpm/opensuse/elemental-toolkit&distro=openSUSE%20Leap%2016.0

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.3.2-160000.1.1

Ecosystem specific 

{
    "binaries": [
        {
            "elemental-toolkit": "2.3.2-160000.1.1",
            "elemental-register": "1.8.1-160000.1.1",
            "elemental-support": "1.8.1-160000.1.1"
        }
    ]
}

Database specific

source 
"https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2026:20132-1.json"