SUSE-IU-2026:3379-1: Security update of suse/sle-micro/rt-5.5

Mon May 18 07:12:30 UTC 2026

SUSE Image Update Advisory: suse/sle-micro/rt-5.5
-----------------------------------------------------------------
Image Advisory ID : SUSE-IU-2026:3379-1
Image Tags        : suse/sle-micro/rt-5.5:2.0.4 , suse/sle-micro/rt-5.5:2.0.4-4.5.586 , suse/sle-micro/rt-5.5:latest
Image Release     : 4.5.586
Severity          : important
Type              : security
References        : 1264013 1264449 1264450 1265209 1265308 CVE-2025-54518 CVE-2026-43284
                        CVE-2026-43500 CVE-2026-46300 CVE-2026-46333 
-----------------------------------------------------------------

The container suse/sle-micro/rt-5.5 was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2026:1899-1
Released:    Sun May 17 15:17:04 2026
Summary:     Security update for the Linux Kernel
Type:        security
Severity:    important
References:  1264013,1264449,1264450,1265209,1265308,CVE-2025-54518,CVE-2026-43284,CVE-2026-43500,CVE-2026-46300,CVE-2026-46333

The SUSE Linux Enterprise 15 SP5 RT kernel was updated to fix various security issues

The following security issues were fixed:

- CVE-2025-54518: x86/CPU/AMD: Prevent improper isolation of shared resources in Zen2's op cache (bsc#1264013).
- CVE-2026-46300: net: skbuff: propagate shared-frag marker through pskb_copy() (bsc#1265209).
- CVE-2026-43284: xfrm: esp: avoid in-place decrypt on shared skb frags (bsc#1264449).
- CVE-2026-43500: rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present (aka Dirty Frag) (bsc#1264450).
- CVE-2026-46333: ptrace: Logic bug in the Linux kernel's __ptrace_may_access() function (bsc#1265308).

The following non security issues were fixed:

- io-wq: check that the predecessor is hashed in io_wq_remove_pending() (git-fixes).

The following package changes have been done:

- kernel-rt-5.14.21-150500.13.137.1 updated