SUSE-SU-2026:0558-1

Advisory lineage Upstream: 2 Downstream: 0
Published: 16 Feb 2026, 11:42
Last modified:23 Mar 2026, 04:51

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

16 Feb 2026, 11:42
Published
Vulnerability first disclosed
23 Mar 2026, 04:51
Last Modified
Vulnerability information updated

Description

Security update for libnvidia-container This update for libnvidia-container fixes the following issues: Update to version 1.18.0. Security issues fixed: - CVE-2024-0132: time-of-check time-of-use (TOCTOU) race condition in default configuration via specifically crafted container image (bsc#1231033). - CVE-2024-0133: data tampering in host file system via specially crafted container image (bsc#1231032). Other updates and bugfixes: - updated to 1.18.0 - Add clock_gettime to allowed syscalls - Fix pointer accessing local variable out of scope - Require version match between libnvidia-container-tools and libnvidia-container1 - Add libnvidia-gpucomp.so to the list of compute libs - Use VERSION_ prefix for version parts in makefiles - Add additional logging - Do not discard container flags when --cuda-compat-mode is not specified - Remove unneeded --no-cntlibs argument from list command - Add cuda-compat-mode flag to configure command - Skip files when user has insufficient permissions - Fix building with Go 1.24 - Add no-cntlibs CLI option to nvidia-container-cli - Fix always using fallback - Add fallback for systems without memfd_create() - Create virtual copy of host ldconfig binary before calling fexecve() - Fix some typos in text. - update nvidia modprobe to expected 550.54.14. - remove services

Affected Systems

  • opensuselibnvidia-container&distro=openSUSE Leap 15.6

    < 1.18.0-150200.5.9.1

  • suselibnvidia-container&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS

    < 1.18.0-150200.5.9.1

  • suselibnvidia-container&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS

    < 1.18.0-150200.5.9.1

  • suselibnvidia-container&distro=SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS

    < 1.18.0-150200.5.9.1

  • suselibnvidia-container&distro=SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS

    < 1.18.0-150200.5.9.1

  • suselibnvidia-container&distro=SUSE Linux Enterprise Module for Containers 15 SP7

    < 1.18.0-150200.5.9.1

  • suselibnvidia-container&distro=SUSE Linux Enterprise Server 15 SP4-LTSS

    < 1.18.0-150200.5.9.1

  • suselibnvidia-container&distro=SUSE Linux Enterprise Server 15 SP5-LTSS

    < 1.18.0-150200.5.9.1

  • suselibnvidia-container&distro=SUSE Linux Enterprise Server 15 SP6-LTSS

    < 1.18.0-150200.5.9.1

  • suselibnvidia-container&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP4

    < 1.18.0-150200.5.9.1

  • suselibnvidia-container&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP5

    < 1.18.0-150200.5.9.1

  • suselibnvidia-container&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP6

    < 1.18.0-150200.5.9.1

References (5)