SUSE-SU-2026:22493-1: important: Security update 5.1.4 for Multi-Linux Manager Client Tools and Salt Bundle
SLE-UPDATES
null at suse.de
Mon Jul 6 16:35:27 UTC 2026
# Security update 5.1.4 for Multi-Linux Manager Client Tools and Salt Bundle
Announcement ID: SUSE-SU-2026:22493-1
Release Date: 2026-07-06T08:48:50Z
Rating: important
References:
* bsc#1208800
* bsc#1224788
* bsc#1226578
* bsc#1227579
* bsc#1229105
* bsc#1232641
* bsc#1234567
* bsc#1238890
* bsc#1242916
* bsc#1244925
* bsc#1245107
* bsc#1247707
* bsc#1248699
* bsc#1248707
* bsc#1248848
* bsc#1249243
* bsc#1249400
* bsc#1249532
* bsc#1251305
* bsc#1252974
* bsc#1253032
* bsc#1253174
* bsc#1254400
* bsc#1254401
* bsc#1254866
* bsc#1254867
* bsc#1254900
* bsc#1254997
* bsc#1255418
* bsc#1255764
* bsc#1256070
* bsc#1256331
* bsc#1257029
* bsc#1257031
* bsc#1257041
* bsc#1257042
* bsc#1257044
* bsc#1257046
* bsc#1257100
* bsc#1257108
* bsc#1257181
* bsc#1257583
* bsc#1257894
* bsc#1258041
* bsc#1258079
* bsc#1258144
* bsc#1258382
* bsc#1258816
* bsc#1259087
* bsc#1259230
* bsc#1259240
* bsc#1259261
* bsc#1259474
* bsc#1259479
* bsc#1259482
* bsc#1259521
* bsc#1259590
* bsc#1259591
* bsc#1259611
* bsc#1259630
* bsc#1259700
* bsc#1259734
* bsc#1259735
* bsc#1259739
* bsc#1259787
* bsc#1259804
* bsc#1259808
* bsc#1259960
* bsc#1260026
* bsc#1260031
* bsc#1260589
* bsc#1260614
* bsc#1260806
* bsc#1260905
* bsc#1261305
* bsc#1261307
* bsc#1261327
* bsc#1261631
* bsc#1261723
* bsc#1261753
* bsc#1261810
* bsc#1261841
* bsc#1261902
* bsc#1262222
* bsc#1262285
* bsc#1262409
* bsc#1262460
* bsc#1262471
* bsc#1262492
* bsc#1262595
* bsc#1262708
* bsc#1262720
* bsc#1262760
* bsc#1262761
* bsc#1262950
* bsc#1263157
* bsc#1263501
* bsc#1263814
* bsc#1263823
* bsc#1263841
* bsc#1263986
* bsc#1263987
* bsc#1264149
* bsc#1264234
* bsc#1264256
* bsc#1264966
* bsc#1265134
* bsc#1265281
* bsc#1265282
* bsc#1265283
* bsc#1265284
* bsc#1265285
* bsc#1265286
* bsc#1265287
* bsc#1265288
* bsc#1265289
* bsc#1265290
* bsc#1265319
* bsc#1265358
* bsc#1265975
* bsc#1266012
* bsc#1266556
* bsc#1266600
* bsc#1266608
* bsc#1267153
* bsc#1268381
* jsc#MSQA-1056
* jsc#PED-14816
* jsc#SUMA-320
Cross-References:
* CVE-2022-21698
* CVE-2023-52425
* CVE-2024-35195
* CVE-2024-47081
* CVE-2024-52804
* CVE-2025-11468
* CVE-2025-12084
* CVE-2025-12781
* CVE-2025-13462
* CVE-2025-13836
* CVE-2025-13837
* CVE-2025-15282
* CVE-2025-15366
* CVE-2025-15367
* CVE-2025-15444
* CVE-2025-50181
* CVE-2025-6069
* CVE-2025-6075
* CVE-2025-66418
* CVE-2025-66471
* CVE-2025-67724
* CVE-2025-67725
* CVE-2025-67726
* CVE-2025-69277
* CVE-2025-8194
* CVE-2025-8291
* CVE-2026-0672
* CVE-2026-0865
* CVE-2026-10649
* CVE-2026-1299
* CVE-2026-21441
* CVE-2026-2297
* CVE-2026-24049
* CVE-2026-25645
* CVE-2026-25680
* CVE-2026-25681
* CVE-2026-27136
* CVE-2026-27448
* CVE-2026-27459
* CVE-2026-28374
* CVE-2026-28376
* CVE-2026-28379
* CVE-2026-28380
* CVE-2026-28383
* CVE-2026-31958
* CVE-2026-33376
* CVE-2026-33377
* CVE-2026-33378
* CVE-2026-33380
* CVE-2026-33381
* CVE-2026-34986
* CVE-2026-3644
* CVE-2026-39821
* CVE-2026-40179
* CVE-2026-41602
* CVE-2026-42151
* CVE-2026-42154
* CVE-2026-4224
* CVE-2026-42502
* CVE-2026-42506
* CVE-2026-4519
CVSS scores:
* CVE-2022-21698 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2022-21698 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2023-52425 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2023-52425 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2023-52425 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-35195 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:N
* CVE-2024-47081 ( SUSE ): 8.2
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
* CVE-2024-47081 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
* CVE-2024-47081 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N
* CVE-2024-52804 ( SUSE ): 6.9
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
* CVE-2024-52804 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
* CVE-2024-52804 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2025-11468 ( SUSE ): 7.1
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
* CVE-2025-11468 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
* CVE-2025-11468 ( NVD ): 5.7
CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2025-12084 ( SUSE ): 6.3
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2025-12084 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-12084 ( NVD ): 6.3
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2025-12084 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
* CVE-2025-12781 ( SUSE ): 2.0
CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
* CVE-2025-12781 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
* CVE-2025-12781 ( NVD ): 6.3
CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2025-12781 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
* CVE-2025-13462 ( SUSE ): 2.0
CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
* CVE-2025-13462 ( SUSE ): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N
* CVE-2025-13462 ( NVD ): 2.0
CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2025-13462 ( NVD ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
* CVE-2025-13836 ( SUSE ): 6.3
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2025-13836 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2025-13836 ( NVD ): 6.3
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2025-13836 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2025-13837 ( SUSE ): 2.1
CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2025-13837 ( SUSE ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
* CVE-2025-13837 ( NVD ): 2.1
CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2025-13837 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2025-15282 ( SUSE ): 5.9
CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2025-15282 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H
* CVE-2025-15282 ( NVD ): 6.0
CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2025-15366 ( SUSE ): 6.0
CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2025-15366 ( SUSE ): 6.7 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:H
* CVE-2025-15366 ( NVD ): 5.9
CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2025-15367 ( SUSE ): 6.0
CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2025-15367 ( SUSE ): 6.7 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:H
* CVE-2025-15367 ( NVD ): 5.9
CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2025-15444 ( SUSE ): 6.8 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N
* CVE-2025-15444 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2025-50181 ( SUSE ): 6.0
CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
* CVE-2025-50181 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
* CVE-2025-50181 ( NVD ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
* CVE-2025-50181 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
* CVE-2025-6069 ( SUSE ): 6.9
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:N/SI:N/SA:H
* CVE-2025-6069 ( SUSE ): 6.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H
* CVE-2025-6069 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
* CVE-2025-6075 ( SUSE ): 1.8
CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2025-6075 ( SUSE ): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L
* CVE-2025-6075 ( NVD ): 1.8
CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2025-6075 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2025-66418 ( SUSE ): 6.9
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
* CVE-2025-66418 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
* CVE-2025-66418 ( NVD ): 8.9
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2025-66418 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2025-66471 ( SUSE ): 6.3
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
* CVE-2025-66471 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
* CVE-2025-66471 ( NVD ): 8.9
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2025-66471 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2025-67724 ( SUSE ): 5.3
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
* CVE-2025-67724 ( SUSE ): 5.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
* CVE-2025-67724 ( NVD ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
* CVE-2025-67724 ( NVD ): 5.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
* CVE-2025-67725 ( SUSE ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2025-67725 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2025-67725 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2025-67726 ( SUSE ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2025-67726 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2025-67726 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2025-69277 ( SUSE ): 4.8
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
* CVE-2025-69277 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
* CVE-2025-69277 ( NVD ): 4.5 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N
* CVE-2025-8194 ( SUSE ): 7.1
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2025-8194 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2025-8194 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2025-8291 ( SUSE ): 4.8
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
* CVE-2025-8291 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
* CVE-2025-8291 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
* CVE-2026-0672 ( SUSE ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
* CVE-2026-0672 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
* CVE-2026-0672 ( NVD ): 6.0
CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-0865 ( SUSE ): 5.9
CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-0865 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H
* CVE-2026-0865 ( NVD ): 5.9
CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-10649 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-10649 ( NVD ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
* CVE-2026-10649 ( NVD ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
* CVE-2026-1299 ( SUSE ): 8.3
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N
* CVE-2026-1299 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N
* CVE-2026-1299 ( NVD ): 6.0
CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-21441 ( SUSE ): 2.3
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
* CVE-2026-21441 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2026-21441 ( NVD ): 8.9
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-21441 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-21441 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-2297 ( SUSE ): 5.7
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
* CVE-2026-2297 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
* CVE-2026-2297 ( NVD ): 5.7
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-24049 ( SUSE ): 7.2
CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:P/VC:N/VI:H/VA:H/SC:H/SI:H/SA:H
* CVE-2026-24049 ( SUSE ): 7.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H
* CVE-2026-24049 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H
* CVE-2026-24049 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
* CVE-2026-24049 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H
* CVE-2026-25645 ( SUSE ): 6.8
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
* CVE-2026-25645 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
* CVE-2026-25645 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:N
* CVE-2026-25645 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
* CVE-2026-25680 ( SUSE ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-25680 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-25680 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2026-25681 ( SUSE ): 5.3
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:L/SI:L/SA:N
* CVE-2026-25681 ( SUSE ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
* CVE-2026-25681 ( NVD ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
* CVE-2026-27136 ( SUSE ): 5.3
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:L/SI:L/SA:N
* CVE-2026-27136 ( SUSE ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
* CVE-2026-27136 ( NVD ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
* CVE-2026-27448 ( SUSE ): 6.3
CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
* CVE-2026-27448 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
* CVE-2026-27448 ( NVD ): 1.7
CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-27448 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
* CVE-2026-27459 ( SUSE ): 8.3
CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N
* CVE-2026-27459 ( SUSE ): 7.0 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H
* CVE-2026-27459 ( NVD ): 7.2
CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-27459 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-27459 ( NVD ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-28374 ( SUSE ): 5.3
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
* CVE-2026-28374 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
* CVE-2026-28374 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
* CVE-2026-28376 ( SUSE ): 7.1
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-28376 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-28376 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-28379 ( SUSE ): 7.1
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-28379 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-28379 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-28380 ( SUSE ): 7.1
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
* CVE-2026-28380 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
* CVE-2026-28380 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
* CVE-2026-28383 ( SUSE ): 7.1
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-28383 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-28383 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-31958 ( SUSE ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31958 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-31958 ( NVD ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-31958 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-33376 ( SUSE ): 9.1
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
* CVE-2026-33376 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
* CVE-2026-33376 ( NVD ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
* CVE-2026-33377 ( SUSE ): 6.9
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N
* CVE-2026-33377 ( SUSE ): 7.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N
* CVE-2026-33377 ( NVD ): 7.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N
* CVE-2026-33378 ( SUSE ): 7.1
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-33378 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-33378 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-33380 ( SUSE ): 7.0
CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N
* CVE-2026-33380 ( SUSE ): 7.7 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
* CVE-2026-33380 ( NVD ): 6.3 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N
* CVE-2026-33380 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
* CVE-2026-33381 ( SUSE ): 7.4
CVSS:4.0/AV:N/AC:H/AT:P/PR:H/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
* CVE-2026-33381 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N
* CVE-2026-33381 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N
* CVE-2026-33381 ( NVD ): 8.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
* CVE-2026-34986 ( SUSE ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-34986 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-34986 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-34986 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-3644 ( SUSE ): 6.3
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
* CVE-2026-3644 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
* CVE-2026-3644 ( NVD ): 6.0
CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-3644 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
* CVE-2026-39821 ( SUSE ): 9.1
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
* CVE-2026-39821 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
* CVE-2026-39821 ( NVD ): 9.6 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N
* CVE-2026-39821 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N
* CVE-2026-40179 ( SUSE ): 5.3
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
* CVE-2026-40179 ( SUSE ): 5.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
* CVE-2026-40179 ( NVD ): 5.3
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-40179 ( NVD ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
* CVE-2026-41602 ( SUSE ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-41602 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-41602 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-41602 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-42151 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
* CVE-2026-42151 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
* CVE-2026-42151 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
* CVE-2026-42154 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-42154 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-42154 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-4224 ( SUSE ): 8.2
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-4224 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-4224 ( NVD ): 6.0
CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-4224 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-42502 ( SUSE ): 5.3
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:L/SI:L/SA:N
* CVE-2026-42502 ( SUSE ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
* CVE-2026-42502 ( NVD ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
* CVE-2026-42506 ( SUSE ): 5.3
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:L/SI:L/SA:N
* CVE-2026-42506 ( SUSE ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
* CVE-2026-42506 ( NVD ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
* CVE-2026-4519 ( SUSE ): 7.1
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:H/VA:N/SC:L/SI:H/SA:N
* CVE-2026-4519 ( SUSE ): 6.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:H/A:N
* CVE-2026-4519 ( NVD ): 7.0
CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-4519 ( NVD ): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
* CVE-2026-4519 ( NVD ): 7.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:L
Affected Products:
* SUSE Linux Enterprise Server 16.0
* SUSE Linux Enterprise Server for SAP applications 16.0
* SUSE Linux Enterprise Server High Availability Extension 16.0
* SUSE Linux Micro 6.1
* SUSE Linux Micro 6.2
* SUSE Multi-Linux Manager Client Tools for SLE 16
* SUSE Multi-Linux Manager Proxy 5.1
* SUSE Multi-Linux Manager Retail Branch Server 5.1
* SUSE Multi-Linux Manager Server 5.1
An update that solves 61 vulnerabilities, contains three features and has 65
fixes can now be installed.
## Security update 5.1.4 for Multi-Linux Manager Client Tools and Salt Bundle
### Description:
This update fixes the following issues:
golang-github-QubitProducts-exporter_exporter:
* Security issues fixed:
* CVE-2022-21698: Fixed prometheus/client_golang possible denial of service
using InstrumentHandlerCounter (bsc#1248699)
golang-github-prometheus-node_exporter updated to version 1.10.2:
* Key Update Highlights (v1.10.0 to v1.10.2):
* New Collectors: Added new collectors for PCIe devices and swaps.
* New Metrics: Introduced metrics for Zswap/Zswapped, Systemd Virtualization,
and WiFi packets (received/transmitted)
* Bug Fixes: Resolved a duplicate collection bug in filesystem mount points,
fixed a Zswap metric typo, and patched a logging race condition in systemd.
* Changes: Switched mdadm to use sysfs for RAID metrics, and added erofs to
the default excluded filesystems list.
* Internal Refactoring: filesystem mountinfo parsing refactor (bsc#1261810)
golang-github-prometheus-prometheus updated to version 3.5.3:
* Security issues fixed:
* CVE-2026-42151: AzureAD remote write: Fix OAuth client_secret being exposed
in plaintext via /-/config endpoint (v3.5.3) (bsc#1263986)
* CVE-2026-42154: Remote-read: Reject snappy-compressed requests whose
declared decoded length exceeds the decode limit (v3.5.3) (bsc#1263987)
* CVE-2026-40179: UI: Fix stored XSS via unescaped le label values in old UI
heatmap chart tick labels (v3.5.2) (bsc#1262222)
* CVE-2026-39821: Fixed validation bypass and privilege escalation by updating
golang.org/x/net to version 0.55.0 (backported patch) (bsc#1266608)
* Other changes:
* Remote-Write: Reject snappy-compressed requests whose declared decoded
length exceeds the decode limit (v3.5.3)
* Use systemd tmpfiles.d to create /var/lib/prometheus hierarchy
(jsc#PED-14816)
* Internal update with non customer facing changes (v3.5.1)
grafana updated to version 11.6.14+security-04:
* Security issues fixed in v11.6.14+security-04:
* CVE-2026-28374: Fixed insecure direct object reference in Annotations API
(bsc#1265290)
* CVE-2026-28376: Fixed unbounded memory allocation in Grafana Live push
endpoint (bsc#1265289)
* CVE-2026-28383: Fixed unbounded memory allocation in Grafana plugin
resources (bsc#1265286)
* CVE-2026-28380: Fixed broken access control in Snapshot API (bsc#1265287)
* CVE-2026-33376: Fixed Auth Proxy IPv6 whitelist bypass (bsc#1265285)
* CVE-2026-28379: Fixed viewer-triggered race condition in Grafana Live
(bsc#1265288)
* CVE-2026-33377: Fixed dashboard Editor Privilege Escalation (bsc#1265284)
* CVE-2026-33378: Fixed OOM exception in Grafana Data Source Plugin
(bsc#1265283)
* CVE-2026-33381: Prevent users from generating Service Account tokens after
permissions removal (bsc#1265281)
* CVE-2026-33380: Fixed vulnerability in SQL Expressions allowing an
authenticated attacker to read arbitrary files from the Grafana server
filesystem (bsc#1265282)
* Security issues fixed through backported patches:
* CVE-2026-39821: Fixed validation bypass and privilege escalation by updating
golang.org/x/net to version 0.55.0 (bsc#1266600)
* CVE-2026-34986: Fixed panic in JWE decryption (bsc#1262950)
* CVE-2026-41602: Fixed Integer Overflow or Wraparound vulnerability in Apache
Thrift (bsc#1263501)
* CVE-2026-25680, CVE-2026-42502, CVE-2026-27136, CVE-2026-25681,
CVE-2026-42506: Fixed multiple issues when parsing HTML files (bsc#1267153)
prometheus-blackbox_exporter:
* Security issues fixed:
* CVE-2026-39821: Fixed validation bypass and privilege escalation by updating
golang.org/x/net to version 0.55.0 (bsc#1266556)
prometheus-postgres_exporter:
* Security issues fixed:
* CVE-2022-21698: Fixed prometheus/client_golang possible denial of service
using InstrumentHandlerCounter (bsc#1248699)
spacecmd updated to version 5.2.8:
* Key Update Highlights (v5.2.3-0):
* Fixed typo in spacecmd help ca-cert flag (bsc#1253174)
* Add subcommand to check if reboot is needed after applying all available
patches
* Key Update Highlights (v5.2.1-0):
* Use JSON instead of pickle for spacecmd cache (bsc#1227579)
* Fixed methods in api namespace in spacecmd (bsc#1249532)
* Other changes (v5.2.2-0 to 5.2.8-0):
* Translation strings updates
* Internal updates with non customer facing changes
supportutils-plugin-susemanager-client updated to version 5.2.3:
* Internal updates with non customer facing changes across versions (v5.2.1-0
to v5.2.3-0)
uyuni-tools updated to version 5.2.12:
* Key Update Highlights (v5.2.11-0)
* Improved pod readiness checks (bsc#1266012)
* Key Update Highlights (v5.2.10-0)
* Preserve hub replicas during upgrade (bsc#1262708)
* Added mgrctl "ssh" and "ssh remove_known_host" commands
* Fixed startup checks for main server container (bsc#1263157)
* Fixed service dependencies (bsc#1263823)
* Updated default tag to 5.1.3.1 (bsc#1262760)
* Fixed missing registry for db image (bsc#1259739)
* Internal SANs for db and reportdb are no longer required
* Generate the same certificate for server and reportdb
* Fixed Report DB CA certificate (bsc#1260806)
* Removed waitForTraefik function (bsc#1261902)
* Key Update Highlights (v5.2.8-0)
* Generate service template only after secrets are created
* Key Update Highlights (v5.2.7-0)
* Admin secrets no longer required on upgrades (bsc#1262409)
* Key Update Highlights (v5.2.6-0):
* Use podman secrets for SSL on proxy
* Fixed database online backup
* mgrctl copy command now infers target name automatically
* Restored TFTP port to proxy (bsc#1260905)
* TFTP disabled by default on server
* Fixed incorrect package dependencies declaration (bsc#1229105)
* Prevent cobbler port from being exposed
* Bumped zerolog to 1.34
* Ignore spacewalk-service stop return code.
* Stop automatically unhealthy container
* Use container based server setup instead tools bundled one
* Key Update Highlights (v5.2.5-0)
* Removed migrate command
* Removed hub register command
* Split TFTP server into separate container
* Removed Kubernetes install/upgrade from mgrpxy
* Key Update Highlights (v5.2.1-0)
* Fixed --dbupgrade-tag parameter (bsc#1249400)
* Added --registry-host, --registry-user, --registry-password options
* Deprecated --registry option
* Added SUSE Linux Enterprise 15 SP7 support
* Migrated custom SSL CA certificates (bsc#1232641)
* Other changes (v5.2.1-0 to v5.2.12-0):
* Translation strings updates
* Internal updates with version bump but without customer facing changes
venv-salt-minion:
* Improved shutdown reliability when the salt-master/minion is terminated
* Fixed broken "pkg.info_installed" after migration to salt.utils.timeutil
* Calculate UUID grain for Xen PV guests (bsc#1255418)
* Use non vendored tornado with Python 3.11 (bsc#1257583, bsc#1259700)
* BDSA-2025-60810: Harden Tornado from invalid HTTP reason phrases
* Read full URI from ldap pillar config (bsc#1254900)
## Security update for pacemaker
### Description:
This update for pacemaker fixes the following issues:
* CVE-2026-10649: Fixed denial of service via integer overflow in remote
message decompression (bsc#1268381).
## Recommended update 5.1.4 for Multi-Linux Manager
### Description:
This update fixes the following issues:
proxy-httpd-image:
* Version 5.1.16
* Remove unused repos
proxy-salt-broker-image:
* Version 5.1.15
* Remove unused repos
proxy-squid-image:
* Version 5.1.14
* Remove unused repos
proxy-ssh-image:
* Version 5.1.14
* Remove unused repos
proxy-tftpd-image:
* Version 5.1.14
* Use custom entry id for grub saltboot entries (bsc#1258382, bsc#1208800)
* Remove unused repos
server-attestation-image:
* Version 5.1.15
* Image rebuilt to the newest version with updated dependencies for SUSE
Multi-Linux Manager 5.1.4
server-hub-xmlrpc-api-image:
* Version 5.1.14
* Image rebuilt to the newest version with updated dependencies for SUSE
Multi-Linux Manager 5.1.4
server-image:
* Version 5.1.15
* Healthcheck on disk usage based on taskomatic (bsc#1238890)
* Add mozilla-nss-sysinit to Dockerfile required for FIPS (bsc#1247707)
* Do not get repositories from SCC in the server container (bsc#1242916)
* Add "susemanager-tools", "susemanager" and "susemanager-tools-salt" packages
to server-image
server-migration-14-16-image:
* Version 5.1.14
* Image rebuilt to the newest version with updated dependencies for SUSE
Multi-Linux Manager 5.1.4
server-postgresql-image:
* Version 5.1.13
* Healthcheck on disk usage based on taskomatic (bsc#1238890)
* Add needed pg_hba rules on upgrade (bsc#1262492, bsc#1264149)
server-saline-image:
* Version 5.1.14
* Use python3*-tornado6 package to make it working with Python 3.11
uyuni-tools:
* Version 5.1.29-0 Check backup status only after database is started
(bsc#1262492)
* Version 5.1.28-0
* Remove waitForTraefik function (bsc#1261902)
* Fix inspect: missing registry for db image (bsc#1259739)
* Preserve hub replicas during upgrade (bsc#1262708)
* Stop automatically unhealthy container
* Ignore spacewalk-service stop return code.
* Use correct CA for Report DB (bsc#1260806)
* Do not call podman healthcheck run to wait for pods to be ready
(bsc#1266012)
The following packages are underlying build dependencies and system components
used by the containers:
cobbler:
* Added the distro signature for rhel10 (bsc#1265134)
liberate-formula:
* Version 0.1.4
* No customer facing changes
* Version 0.1.3
* Liberate formula support for EL10 (bsc#1265975)
prometheus-exporters-formula:
* Version 1.4.3
* Add support for Python 3.13
* Drop migrate_formula_data script as it is obsolete
prometheus-postgres_exporter:
* CVE-2022-21698: Replace github.com/prometheus/client_golang with version
1.11.1 (bsc#1248699)
saline:
* Update to version 2026.05.18:
* Explicitly set port number for Prometheus target
* Fix the issue of using non-vendored tornado with Python 3.11
salt:
* Use non vendored tornado with Python 3.11 (bsc#1257583, bsc#1259700)
saltboot-formula:
* Update to version 1.1.0
* When autoselecting saltboot device, ignore cd/dvd (bsc#1259960)
spacecmd:
* Version 5.1.14-0
* Update translation strings
spacewalk-backend:
* Version 5.1.17-0
* Healthcheck on disk usage based on taskomatic (bsc#1238890)
* Kickstart profile for RHEL 8 requires venv-salt-minion instead of salt-
minion (bsc#1259474)
* security(checksums): drop md5 and sha1 from checksum choices (bsc#1234567)
* Use PBKDF2-SHA256 (600000 iterations) for new password hashes; verify legacy
SHA-256 crypt(3) hashes transparently
spacewalk-java:
* Version 5.1.26-0
* Added listMigrationTargetsWithChannels endpoint to return the valid
migration targets channels (jsc#SUMA-320)
* Fix CSV export failure on system Details > Custom Info page
* Added support for migration from SLES 15 to SLES 16
* Minor UI improvements and fixed spinning icon glitch in Admin -> Setup
Wizard
* Updated the tab label for eligible subscription systems (bsc#1249243)
* Fixed missing field labels in the Create User form. (bsc#1259591)
* Enhance buttons readability and consistency across the product
* Fix missing translations (bsc#1259787)
* Fix hub SCC forwarding registration credential filter (bsc#1260031)
* Sanitize inputs to avoid injection in rhn_conf of http proxy settings inputs
(bsc#1245107)
* Move Salt > Remote Commands to its own RBAC namespace (bsc#1261305)
* Make OIDC JWKS initialization startup-safe
* Sync package removal permissions in packages API with the Web UI
(bsc#1261327)
* Run ANALYZE asynchronously after CLM alignment to avoid deadlocks
(bsc#1261753)
* Fix enforcement of consecutive chars in password policy (bsc#1262761)
* Use salt's network module if host or nslookup are not installed
(bsc#1262720)
* Fix Remote Commands hang on direct hostname (bsc#1226578)
* Fix Python SyntaxWarning for invalid escape sequence '\s' in RHUI extract
repo data script (bsc#1262595)
* Add 'unpushed' to AdvisoryStatus enum to handle EPEL errata with unpushed
status (bsc#1264234)
* Kickstart profile for RHEL 8 requires venv-salt-minion instead of salt-
minion (bsc#1259474)
* Healthcheck on disk usage based on taskomatic (bsc#1238890)
* Remove validation of packages in kickstart profiles which are not supported
anymore (bsc#1259474)
* Numeric branch names should not be stored in double format (bsc#1258382)
* Add missing pxeeventfailed notification message
* Do not add non-FQDN hostnames to the proxy fqdn list (bsc#1263841)
* Use supscription matcher output for subscription expiration warning
(bsc#1257894)
* Fix Oval data sync for ubuntu 26.04 (bsc#1265319)
* Recognize PBKDF2-SHA256 hashes alongside legacy SHA-256 crypt(3) in the Java
password check helpers
* Fix non-ASCII em dash in Pbkdf2Sha256Crypt breaking javadoc build with US-
ASCII encoding
* security(saml2): default signature algorithm to rsa-sha256 (bsc#1234567)
* security(tls): remove TLSv1/TLSv1.1, allow TLSv1.3 for SMTP (bsc#1234567)
* Fix CSRFTokenValidator FIPS compatibility by using platform-default
SecureRandom (bsc#1247707)
* Fix conflicting cobbler system migrations
spacewalk-web:
* Version 5.1.21-0
* UI changes to support migration from SLES 15 to SLES 16
* Fixed issue causing a blank tab to appear in the Image Building Details page
(bsc#1253032)
* Minor UI improvements and fixed spinning icon glitch in Admin -> Setup
Wizard
* Fixed an issue where the "Create Token" modal could become unresponsive when
opened
* Fixed an issue causing all existing tokens to be deleted in a loop
* Improved visibility of all parent rows in permissions table
* Enhance buttons placement for a more intuitive experience
* Healthcheck on disk usage based on taskomatic (bsc#1238890)
* Align subscription matching page warning with dashboard warning for expiring
subscriptions (bsc#1257894)
* Add missing fragment import (bsc#1264966)
subscription-matcher:
* Version 0.44
* Fix 2 missing part numbers (bsc#1264256)
supportutils-plugin-susemanager-client:
* Version 5.1.6-0
* No customer facing changes
susemanager:
* Version 5.1.17-0
* Add SUSE LibertyLinux 9.6 x86_64 bootstrap repository definition
* Remove spacewalk-diskcheck enablement
* Use correct CA for Report DB (bsc#1260806)
* Relicense mgr-salt-ssh under Apache-2.0 and move it to a separated package
named susemanager-tools-salt
susemanager-build-keys:
* Add Nvidia Cuda Tools key Added: nvidia-cudatools-9CD0A493D42D0685.asc
susemanager-docs_en:
* Updated the supported features table in the Client Configuration Guide to
include Red Hat Linux Enterprise 10 and clones
* Added documentation on space usage percentage on the server and db container
which can be set using DISKCHECKALERT and DISKTHRESHOLD
* Added Code 16 to Monitoring documentation (bsc#1263814)
* Added documentation for deleting SCAP scan results to Administration Guide
(bsc#1262471)
* Rephrased instructions for RBAC in Administration Guide (bsc#1258079)
* Added troubleshooting section for BTRFS to Administration Guide
(bsc#1258816)
* Removed mentions of Leap 15.5 and 15.4 and specified SUSE requiring general
or LTS support in Client Configuration Guide (bsc#1262285)
* Added information about availability of SLE 16 and SL Micro 6.2 support in
the product versions 5.1.2 and later (bsc#1260614)
* Removed mention of CIS profile (bsc#1262460)
* Corrected path for Salt minion in Retail Guide (#1262090)
* Added explanation for translating mgradm arguments to YAML in Installation
and Upgrade Guide (bsc#1258144)
* Removed Google Cloud Compute from PAYG documentation (bsc#1261631)
* Added link to proxy creation from client to an existing document in
Installation and Upgrade Guide
* Updated features table for EL 10 based distributions
* Document Debian 13
* Added support for Open Enterprise Server 25.4
* Clarified how to get PTF images in air-gapped setup in Installation and
Upgrade Guide (bsc#1261307)
* SUSE Multi-Linux Support does not support autoinstallation (bsc#1259261)
* Added instructions about accessing git repositories when building images to
Administration Guide
* Added online database backup instructions to Administration Guide
* Fixed command for product deployment in Installation and Upgrade Guide
(bsc#1259479)
* Added online database backup instructions
susemanager-schema:
* Version 5.1.19-0
* Added the RBAC mapping for listMigrationTargetsWithChannels end point
(jsc#SUMA-320)
* Add index on rhnPackage (checksum_id) (bsc#1258041) (gh#uyuni-
project/uyuni#11585)
* Move Salt > Remote Commands to its own RBAC namespace (bsc#1261305)
* Sync package removal permissions in packages API with the Web UI
(bsc#1261327)
* Add 'unpushed' to rhn_errata_adv_status_ck constraint to allow importing
EPEL errata with unpushed status (bsc#1264234)
* Healthcheck on disk usage based on taskomatic (bsc#1238890)
* Add missing indexes for channels and tokens (bsc#1259590)
* Increase source_url on table rhncontentsource (bsc#1259230)
susemanager-sls:
* Version 5.1.25-0
* Added salt states to support migration from SLES 15 to SLES 16
* Ignore podman interfaces when resolving FQDNs (bsc#1262720)
* Fix GPG key import on first key deploy (bsc#1259482)
* Use either ansible-core or ansible packages for Ansible Control node, prefer
ansible-core (bsc#1259087)
* Fix CPU reporting for ppc64le clients (bsc#1259521)
* Fix refresh of virtual instance information (bsc#1261723)
susemanager-sync-data:
* Version 5.1.10-0
* Add missing RES-EMS channel family (bsc#1265358)
* Version 5.1.9-0
* Add SUSE Liberty Linux 9.6 x86_64 product entries
uyuni-common-libs:
* Version 5.1.6-0
* security(checksums): drop md5 and sha1 from checksum choices (bsc#1234567)
* Replace deprecated inspect.getargspec with EAFP usedforsecurity detection
uyuni-setup-reportdb:
* Version 5.1.5-0
* Fix delete of a reportdb user with uyuni-setup-reportdb-user (bsc#1261841)
virtual-host-gatherer:
* Version 1.0.31-0
* Drop SUSECloud module as not longer maintained nor used
* Version 1.0.30-0
* No customer facing changes
How to apply this update:
SUSE Multi-Linux Manager Server:
1. Log in as root user to the SUSE Multi-Linux Manager Server.
2. Upgrade mgradm and mgrctl.
3. If you are in a disconnected environment, upgrade the image packages.
4. Reboot the system.
5. Run which will use the default image tags.
SUSE Multi-Linux Manager Proxy / Retail Branch Server:
1. Log in as root user to the SUSE Multi-Linux Manager Proxy / Retail Branch Server.
2. Upgrade mgrpxy.
3. If you are in a disconnected environment, upgrade the image packages.
4. Reboot the system.
5. Run which will use the default image tags.
## Recommended update 5.1.4 for Multi-Linux Manager
### Description:
This update fixes the following issues:
proxy-httpd-image:
* Version 5.1.16
* Remove unused repos
proxy-salt-broker-image:
* Version 5.1.15
* Remove unused repos
proxy-squid-image:
* Version 5.1.14
* Remove unused repos
proxy-ssh-image:
* Version 5.1.14
* Remove unused repos
proxy-tftpd-image:
* Version 5.1.14
* Use custom entry id for grub saltboot entries (bsc#1258382, bsc#1208800)
* Remove unused repos
server-attestation-image:
* Version 5.1.15
* Image rebuilt to the newest version with updated dependencies for SUSE
Multi-Linux Manager 5.1.4
server-hub-xmlrpc-api-image:
* Version 5.1.14
* Image rebuilt to the newest version with updated dependencies for SUSE
Multi-Linux Manager 5.1.4
server-image:
* Version 5.1.15
* Healthcheck on disk usage based on taskomatic (bsc#1238890)
* Add mozilla-nss-sysinit to Dockerfile required for FIPS (bsc#1247707)
* Do not get repositories from SCC in the server container (bsc#1242916)
* Add "susemanager-tools", "susemanager" and "susemanager-tools-salt" packages
to server-image
server-migration-14-16-image:
* Version 5.1.14
* Image rebuilt to the newest version with updated dependencies for SUSE
Multi-Linux Manager 5.1.4
server-postgresql-image:
* Version 5.1.13
* Healthcheck on disk usage based on taskomatic (bsc#1238890)
* Add needed pg_hba rules on upgrade (bsc#1262492, bsc#1264149)
server-saline-image:
* Version 5.1.14
* Use python3*-tornado6 package to make it working with Python 3.11
uyuni-tools:
* Version 5.1.29-0 Check backup status only after database is started
(bsc#1262492)
* Version 5.1.28-0
* Remove waitForTraefik function (bsc#1261902)
* Fix inspect: missing registry for db image (bsc#1259739)
* Preserve hub replicas during upgrade (bsc#1262708)
* Stop automatically unhealthy container
* Ignore spacewalk-service stop return code.
* Use correct CA for Report DB (bsc#1260806)
* Do not call podman healthcheck run to wait for pods to be ready
(bsc#1266012)
The following packages are underlying build dependencies and system components
used by the containers:
cobbler:
* Added the distro signature for rhel10 (bsc#1265134)
liberate-formula:
* Version 0.1.4
* No customer facing changes
* Version 0.1.3
* Liberate formula support for EL10 (bsc#1265975)
prometheus-exporters-formula:
* Version 1.4.3
* Add support for Python 3.13
* Drop migrate_formula_data script as it is obsolete
prometheus-postgres_exporter:
* CVE-2022-21698: Replace github.com/prometheus/client_golang with version
1.11.1 (bsc#1248699)
saline:
* Update to version 2026.05.18:
* Explicitly set port number for Prometheus target
* Fix the issue of using non-vendored tornado with Python 3.11
salt:
* Use non vendored tornado with Python 3.11 (bsc#1257583, bsc#1259700)
saltboot-formula:
* Update to version 1.1.0
* When autoselecting saltboot device, ignore cd/dvd (bsc#1259960)
spacecmd:
* Version 5.1.14-0
* Update translation strings
spacewalk-backend:
* Version 5.1.17-0
* Healthcheck on disk usage based on taskomatic (bsc#1238890)
* Kickstart profile for RHEL 8 requires venv-salt-minion instead of salt-
minion (bsc#1259474)
* security(checksums): drop md5 and sha1 from checksum choices (bsc#1234567)
* Use PBKDF2-SHA256 (600000 iterations) for new password hashes; verify legacy
SHA-256 crypt(3) hashes transparently
spacewalk-java:
* Version 5.1.26-0
* Added listMigrationTargetsWithChannels endpoint to return the valid
migration targets channels (jsc#SUMA-320)
* Fix CSV export failure on system Details > Custom Info page
* Added support for migration from SLES 15 to SLES 16
* Minor UI improvements and fixed spinning icon glitch in Admin -> Setup
Wizard
* Updated the tab label for eligible subscription systems (bsc#1249243)
* Fixed missing field labels in the Create User form. (bsc#1259591)
* Enhance buttons readability and consistency across the product
* Fix missing translations (bsc#1259787)
* Fix hub SCC forwarding registration credential filter (bsc#1260031)
* Sanitize inputs to avoid injection in rhn_conf of http proxy settings inputs
(bsc#1245107)
* Move Salt > Remote Commands to its own RBAC namespace (bsc#1261305)
* Make OIDC JWKS initialization startup-safe
* Sync package removal permissions in packages API with the Web UI
(bsc#1261327)
* Run ANALYZE asynchronously after CLM alignment to avoid deadlocks
(bsc#1261753)
* Fix enforcement of consecutive chars in password policy (bsc#1262761)
* Use salt's network module if host or nslookup are not installed
(bsc#1262720)
* Fix Remote Commands hang on direct hostname (bsc#1226578)
* Fix Python SyntaxWarning for invalid escape sequence '\s' in RHUI extract
repo data script (bsc#1262595)
* Add 'unpushed' to AdvisoryStatus enum to handle EPEL errata with unpushed
status (bsc#1264234)
* Kickstart profile for RHEL 8 requires venv-salt-minion instead of salt-
minion (bsc#1259474)
* Healthcheck on disk usage based on taskomatic (bsc#1238890)
* Remove validation of packages in kickstart profiles which are not supported
anymore (bsc#1259474)
* Numeric branch names should not be stored in double format (bsc#1258382)
* Add missing pxeeventfailed notification message
* Do not add non-FQDN hostnames to the proxy fqdn list (bsc#1263841)
* Use supscription matcher output for subscription expiration warning
(bsc#1257894)
* Fix Oval data sync for ubuntu 26.04 (bsc#1265319)
* Recognize PBKDF2-SHA256 hashes alongside legacy SHA-256 crypt(3) in the Java
password check helpers
* Fix non-ASCII em dash in Pbkdf2Sha256Crypt breaking javadoc build with US-
ASCII encoding
* security(saml2): default signature algorithm to rsa-sha256 (bsc#1234567)
* security(tls): remove TLSv1/TLSv1.1, allow TLSv1.3 for SMTP (bsc#1234567)
* Fix CSRFTokenValidator FIPS compatibility by using platform-default
SecureRandom (bsc#1247707)
* Fix conflicting cobbler system migrations
spacewalk-web:
* Version 5.1.21-0
* UI changes to support migration from SLES 15 to SLES 16
* Fixed issue causing a blank tab to appear in the Image Building Details page
(bsc#1253032)
* Minor UI improvements and fixed spinning icon glitch in Admin -> Setup
Wizard
* Fixed an issue where the "Create Token" modal could become unresponsive when
opened
* Fixed an issue causing all existing tokens to be deleted in a loop
* Improved visibility of all parent rows in permissions table
* Enhance buttons placement for a more intuitive experience
* Healthcheck on disk usage based on taskomatic (bsc#1238890)
* Align subscription matching page warning with dashboard warning for expiring
subscriptions (bsc#1257894)
* Add missing fragment import (bsc#1264966)
subscription-matcher:
* Version 0.44
* Fix 2 missing part numbers (bsc#1264256)
supportutils-plugin-susemanager-client:
* Version 5.1.6-0
* No customer facing changes
susemanager:
* Version 5.1.17-0
* Add SUSE LibertyLinux 9.6 x86_64 bootstrap repository definition
* Remove spacewalk-diskcheck enablement
* Use correct CA for Report DB (bsc#1260806)
* Relicense mgr-salt-ssh under Apache-2.0 and move it to a separated package
named susemanager-tools-salt
susemanager-build-keys:
* Add Nvidia Cuda Tools key Added: nvidia-cudatools-9CD0A493D42D0685.asc
susemanager-docs_en:
* Updated the supported features table in the Client Configuration Guide to
include Red Hat Linux Enterprise 10 and clones
* Added documentation on space usage percentage on the server and db container
which can be set using DISKCHECKALERT and DISKTHRESHOLD
* Added Code 16 to Monitoring documentation (bsc#1263814)
* Added documentation for deleting SCAP scan results to Administration Guide
(bsc#1262471)
* Rephrased instructions for RBAC in Administration Guide (bsc#1258079)
* Added troubleshooting section for BTRFS to Administration Guide
(bsc#1258816)
* Removed mentions of Leap 15.5 and 15.4 and specified SUSE requiring general
or LTS support in Client Configuration Guide (bsc#1262285)
* Added information about availability of SLE 16 and SL Micro 6.2 support in
the product versions 5.1.2 and later (bsc#1260614)
* Removed mention of CIS profile (bsc#1262460)
* Corrected path for Salt minion in Retail Guide (#1262090)
* Added explanation for translating mgradm arguments to YAML in Installation
and Upgrade Guide (bsc#1258144)
* Removed Google Cloud Compute from PAYG documentation (bsc#1261631)
* Added link to proxy creation from client to an existing document in
Installation and Upgrade Guide
* Updated features table for EL 10 based distributions
* Document Debian 13
* Added support for Open Enterprise Server 25.4
* Clarified how to get PTF images in air-gapped setup in Installation and
Upgrade Guide (bsc#1261307)
* SUSE Multi-Linux Support does not support autoinstallation (bsc#1259261)
* Added instructions about accessing git repositories when building images to
Administration Guide
* Added online database backup instructions to Administration Guide
* Fixed command for product deployment in Installation and Upgrade Guide
(bsc#1259479)
* Added online database backup instructions
susemanager-schema:
* Version 5.1.19-0
* Added the RBAC mapping for listMigrationTargetsWithChannels end point
(jsc#SUMA-320)
* Add index on rhnPackage (checksum_id) (bsc#1258041) (gh#uyuni-
project/uyuni#11585)
* Move Salt > Remote Commands to its own RBAC namespace (bsc#1261305)
* Sync package removal permissions in packages API with the Web UI
(bsc#1261327)
* Add 'unpushed' to rhn_errata_adv_status_ck constraint to allow importing
EPEL errata with unpushed status (bsc#1264234)
* Healthcheck on disk usage based on taskomatic (bsc#1238890)
* Add missing indexes for channels and tokens (bsc#1259590)
* Increase source_url on table rhncontentsource (bsc#1259230)
susemanager-sls:
* Version 5.1.25-0
* Added salt states to support migration from SLES 15 to SLES 16
* Ignore podman interfaces when resolving FQDNs (bsc#1262720)
* Fix GPG key import on first key deploy (bsc#1259482)
* Use either ansible-core or ansible packages for Ansible Control node, prefer
ansible-core (bsc#1259087)
* Fix CPU reporting for ppc64le clients (bsc#1259521)
* Fix refresh of virtual instance information (bsc#1261723)
susemanager-sync-data:
* Version 5.1.10-0
* Add missing RES-EMS channel family (bsc#1265358)
* Version 5.1.9-0
* Add SUSE Liberty Linux 9.6 x86_64 product entries
uyuni-common-libs:
* Version 5.1.6-0
* security(checksums): drop md5 and sha1 from checksum choices (bsc#1234567)
* Replace deprecated inspect.getargspec with EAFP usedforsecurity detection
uyuni-setup-reportdb:
* Version 5.1.5-0
* Fix delete of a reportdb user with uyuni-setup-reportdb-user (bsc#1261841)
virtual-host-gatherer:
* Version 1.0.31-0
* Drop SUSECloud module as not longer maintained nor used
* Version 1.0.30-0
* No customer facing changes
How to apply this update:
SUSE Multi-Linux Manager Server:
1. Log in as root user to the SUSE Multi-Linux Manager Server.
2. Upgrade mgradm and mgrctl.
3. If you are in a disconnected environment, upgrade the image packages.
4. Reboot the system.
5. Run which will use the default image tags.
SUSE Multi-Linux Manager Proxy / Retail Branch Server:
1. Log in as root user to the SUSE Multi-Linux Manager Proxy / Retail Branch Server.
2. Upgrade mgrpxy.
3. If you are in a disconnected environment, upgrade the image packages.
4. Reboot the system.
5. Run which will use the default image tags.
## Recommended update 5.1.4 for Multi-Linux Manager
### Description:
This update fixes the following issues:
proxy-httpd-image:
* Version 5.1.16
* Remove unused repos
proxy-salt-broker-image:
* Version 5.1.15
* Remove unused repos
proxy-squid-image:
* Version 5.1.14
* Remove unused repos
proxy-ssh-image:
* Version 5.1.14
* Remove unused repos
proxy-tftpd-image:
* Version 5.1.14
* Use custom entry id for grub saltboot entries (bsc#1258382, bsc#1208800)
* Remove unused repos
server-attestation-image:
* Version 5.1.15
* Image rebuilt to the newest version with updated dependencies for SUSE
Multi-Linux Manager 5.1.4
server-hub-xmlrpc-api-image:
* Version 5.1.14
* Image rebuilt to the newest version with updated dependencies for SUSE
Multi-Linux Manager 5.1.4
server-image:
* Version 5.1.15
* Healthcheck on disk usage based on taskomatic (bsc#1238890)
* Add mozilla-nss-sysinit to Dockerfile required for FIPS (bsc#1247707)
* Do not get repositories from SCC in the server container (bsc#1242916)
* Add "susemanager-tools", "susemanager" and "susemanager-tools-salt" packages
to server-image
server-migration-14-16-image:
* Version 5.1.14
* Image rebuilt to the newest version with updated dependencies for SUSE
Multi-Linux Manager 5.1.4
server-postgresql-image:
* Version 5.1.13
* Healthcheck on disk usage based on taskomatic (bsc#1238890)
* Add needed pg_hba rules on upgrade (bsc#1262492, bsc#1264149)
server-saline-image:
* Version 5.1.14
* Use python3*-tornado6 package to make it working with Python 3.11
uyuni-tools:
* Version 5.1.29-0 Check backup status only after database is started
(bsc#1262492)
* Version 5.1.28-0
* Remove waitForTraefik function (bsc#1261902)
* Fix inspect: missing registry for db image (bsc#1259739)
* Preserve hub replicas during upgrade (bsc#1262708)
* Stop automatically unhealthy container
* Ignore spacewalk-service stop return code.
* Use correct CA for Report DB (bsc#1260806)
* Do not call podman healthcheck run to wait for pods to be ready
(bsc#1266012)
The following packages are underlying build dependencies and system components
used by the containers:
cobbler:
* Added the distro signature for rhel10 (bsc#1265134)
liberate-formula:
* Version 0.1.4
* No customer facing changes
* Version 0.1.3
* Liberate formula support for EL10 (bsc#1265975)
prometheus-exporters-formula:
* Version 1.4.3
* Add support for Python 3.13
* Drop migrate_formula_data script as it is obsolete
prometheus-postgres_exporter:
* CVE-2022-21698: Replace github.com/prometheus/client_golang with version
1.11.1 (bsc#1248699)
saline:
* Update to version 2026.05.18:
* Explicitly set port number for Prometheus target
* Fix the issue of using non-vendored tornado with Python 3.11
salt:
* Use non vendored tornado with Python 3.11 (bsc#1257583, bsc#1259700)
saltboot-formula:
* Update to version 1.1.0
* When autoselecting saltboot device, ignore cd/dvd (bsc#1259960)
spacecmd:
* Version 5.1.14-0
* Update translation strings
spacewalk-backend:
* Version 5.1.17-0
* Healthcheck on disk usage based on taskomatic (bsc#1238890)
* Kickstart profile for RHEL 8 requires venv-salt-minion instead of salt-
minion (bsc#1259474)
* security(checksums): drop md5 and sha1 from checksum choices (bsc#1234567)
* Use PBKDF2-SHA256 (600000 iterations) for new password hashes; verify legacy
SHA-256 crypt(3) hashes transparently
spacewalk-java:
* Version 5.1.26-0
* Added listMigrationTargetsWithChannels endpoint to return the valid
migration targets channels (jsc#SUMA-320)
* Fix CSV export failure on system Details > Custom Info page
* Added support for migration from SLES 15 to SLES 16
* Minor UI improvements and fixed spinning icon glitch in Admin -> Setup
Wizard
* Updated the tab label for eligible subscription systems (bsc#1249243)
* Fixed missing field labels in the Create User form. (bsc#1259591)
* Enhance buttons readability and consistency across the product
* Fix missing translations (bsc#1259787)
* Fix hub SCC forwarding registration credential filter (bsc#1260031)
* Sanitize inputs to avoid injection in rhn_conf of http proxy settings inputs
(bsc#1245107)
* Move Salt > Remote Commands to its own RBAC namespace (bsc#1261305)
* Make OIDC JWKS initialization startup-safe
* Sync package removal permissions in packages API with the Web UI
(bsc#1261327)
* Run ANALYZE asynchronously after CLM alignment to avoid deadlocks
(bsc#1261753)
* Fix enforcement of consecutive chars in password policy (bsc#1262761)
* Use salt's network module if host or nslookup are not installed
(bsc#1262720)
* Fix Remote Commands hang on direct hostname (bsc#1226578)
* Fix Python SyntaxWarning for invalid escape sequence '\s' in RHUI extract
repo data script (bsc#1262595)
* Add 'unpushed' to AdvisoryStatus enum to handle EPEL errata with unpushed
status (bsc#1264234)
* Kickstart profile for RHEL 8 requires venv-salt-minion instead of salt-
minion (bsc#1259474)
* Healthcheck on disk usage based on taskomatic (bsc#1238890)
* Remove validation of packages in kickstart profiles which are not supported
anymore (bsc#1259474)
* Numeric branch names should not be stored in double format (bsc#1258382)
* Add missing pxeeventfailed notification message
* Do not add non-FQDN hostnames to the proxy fqdn list (bsc#1263841)
* Use supscription matcher output for subscription expiration warning
(bsc#1257894)
* Fix Oval data sync for ubuntu 26.04 (bsc#1265319)
* Recognize PBKDF2-SHA256 hashes alongside legacy SHA-256 crypt(3) in the Java
password check helpers
* Fix non-ASCII em dash in Pbkdf2Sha256Crypt breaking javadoc build with US-
ASCII encoding
* security(saml2): default signature algorithm to rsa-sha256 (bsc#1234567)
* security(tls): remove TLSv1/TLSv1.1, allow TLSv1.3 for SMTP (bsc#1234567)
* Fix CSRFTokenValidator FIPS compatibility by using platform-default
SecureRandom (bsc#1247707)
* Fix conflicting cobbler system migrations
spacewalk-web:
* Version 5.1.21-0
* UI changes to support migration from SLES 15 to SLES 16
* Fixed issue causing a blank tab to appear in the Image Building Details page
(bsc#1253032)
* Minor UI improvements and fixed spinning icon glitch in Admin -> Setup
Wizard
* Fixed an issue where the "Create Token" modal could become unresponsive when
opened
* Fixed an issue causing all existing tokens to be deleted in a loop
* Improved visibility of all parent rows in permissions table
* Enhance buttons placement for a more intuitive experience
* Healthcheck on disk usage based on taskomatic (bsc#1238890)
* Align subscription matching page warning with dashboard warning for expiring
subscriptions (bsc#1257894)
* Add missing fragment import (bsc#1264966)
subscription-matcher:
* Version 0.44
* Fix 2 missing part numbers (bsc#1264256)
supportutils-plugin-susemanager-client:
* Version 5.1.6-0
* No customer facing changes
susemanager:
* Version 5.1.17-0
* Add SUSE LibertyLinux 9.6 x86_64 bootstrap repository definition
* Remove spacewalk-diskcheck enablement
* Use correct CA for Report DB (bsc#1260806)
* Relicense mgr-salt-ssh under Apache-2.0 and move it to a separated package
named susemanager-tools-salt
susemanager-build-keys:
* Add Nvidia Cuda Tools key Added: nvidia-cudatools-9CD0A493D42D0685.asc
susemanager-docs_en:
* Updated the supported features table in the Client Configuration Guide to
include Red Hat Linux Enterprise 10 and clones
* Added documentation on space usage percentage on the server and db container
which can be set using DISKCHECKALERT and DISKTHRESHOLD
* Added Code 16 to Monitoring documentation (bsc#1263814)
* Added documentation for deleting SCAP scan results to Administration Guide
(bsc#1262471)
* Rephrased instructions for RBAC in Administration Guide (bsc#1258079)
* Added troubleshooting section for BTRFS to Administration Guide
(bsc#1258816)
* Removed mentions of Leap 15.5 and 15.4 and specified SUSE requiring general
or LTS support in Client Configuration Guide (bsc#1262285)
* Added information about availability of SLE 16 and SL Micro 6.2 support in
the product versions 5.1.2 and later (bsc#1260614)
* Removed mention of CIS profile (bsc#1262460)
* Corrected path for Salt minion in Retail Guide (#1262090)
* Added explanation for translating mgradm arguments to YAML in Installation
and Upgrade Guide (bsc#1258144)
* Removed Google Cloud Compute from PAYG documentation (bsc#1261631)
* Added link to proxy creation from client to an existing document in
Installation and Upgrade Guide
* Updated features table for EL 10 based distributions
* Document Debian 13
* Added support for Open Enterprise Server 25.4
* Clarified how to get PTF images in air-gapped setup in Installation and
Upgrade Guide (bsc#1261307)
* SUSE Multi-Linux Support does not support autoinstallation (bsc#1259261)
* Added instructions about accessing git repositories when building images to
Administration Guide
* Added online database backup instructions to Administration Guide
* Fixed command for product deployment in Installation and Upgrade Guide
(bsc#1259479)
* Added online database backup instructions
susemanager-schema:
* Version 5.1.19-0
* Added the RBAC mapping for listMigrationTargetsWithChannels end point
(jsc#SUMA-320)
* Add index on rhnPackage (checksum_id) (bsc#1258041) (gh#uyuni-
project/uyuni#11585)
* Move Salt > Remote Commands to its own RBAC namespace (bsc#1261305)
* Sync package removal permissions in packages API with the Web UI
(bsc#1261327)
* Add 'unpushed' to rhn_errata_adv_status_ck constraint to allow importing
EPEL errata with unpushed status (bsc#1264234)
* Healthcheck on disk usage based on taskomatic (bsc#1238890)
* Add missing indexes for channels and tokens (bsc#1259590)
* Increase source_url on table rhncontentsource (bsc#1259230)
susemanager-sls:
* Version 5.1.25-0
* Added salt states to support migration from SLES 15 to SLES 16
* Ignore podman interfaces when resolving FQDNs (bsc#1262720)
* Fix GPG key import on first key deploy (bsc#1259482)
* Use either ansible-core or ansible packages for Ansible Control node, prefer
ansible-core (bsc#1259087)
* Fix CPU reporting for ppc64le clients (bsc#1259521)
* Fix refresh of virtual instance information (bsc#1261723)
susemanager-sync-data:
* Version 5.1.10-0
* Add missing RES-EMS channel family (bsc#1265358)
* Version 5.1.9-0
* Add SUSE Liberty Linux 9.6 x86_64 product entries
uyuni-common-libs:
* Version 5.1.6-0
* security(checksums): drop md5 and sha1 from checksum choices (bsc#1234567)
* Replace deprecated inspect.getargspec with EAFP usedforsecurity detection
uyuni-setup-reportdb:
* Version 5.1.5-0
* Fix delete of a reportdb user with uyuni-setup-reportdb-user (bsc#1261841)
virtual-host-gatherer:
* Version 1.0.31-0
* Drop SUSECloud module as not longer maintained nor used
* Version 1.0.30-0
* No customer facing changes
How to apply this update:
SUSE Multi-Linux Manager Server:
1. Log in as root user to the SUSE Multi-Linux Manager Server.
2. Upgrade mgradm and mgrctl.
3. If you are in a disconnected environment, upgrade the image packages.
4. Reboot the system.
5. Run which will use the default image tags.
SUSE Multi-Linux Manager Proxy / Retail Branch Server:
1. Log in as root user to the SUSE Multi-Linux Manager Proxy / Retail Branch Server.
2. Upgrade mgrpxy.
3. If you are in a disconnected environment, upgrade the image packages.
4. Reboot the system.
5. Run which will use the default image tags.
## Special Instructions and Notes:
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* SUSE Multi-Linux Manager Proxy 5.1
zypper in -t patch SUSE-Multi-Linux-Manager-5.1-8=1
* SUSE Multi-Linux Manager Server 5.1
zypper in -t patch SUSE-Multi-Linux-Manager-5.1-8=1 SUSE-Multi-Linux-
Manager-5.1-8=1
* SUSE Linux Enterprise Server High Availability Extension 16.0
zypper in -t patch SUSE-SLES-HA-16.0-1108=1
* SUSE Multi-Linux Manager Client Tools for SLE 16
zypper in -t patch Multi-Linux-ManagerTools-SLE-16-4=1
* SUSE Multi-Linux Manager Retail Branch Server 5.1
zypper in -t patch SUSE-Multi-Linux-Manager-5.1-8=1 SUSE-Multi-Linux-
Manager-5.1-8=1
## Package List:
* SUSE Multi-Linux Manager Client Tools for SLE 16 (aarch64 s390x x86_64)
* golang-github-prometheus-alertmanager-0.28.1-160002.2.1
* grafana-11.6.14+security04-160002.1.1
* golang-github-prometheus-prometheus-3.5.3-160002.1.1
* prometheus-postgres_exporter-debuginfo-0.10.1-160002.2.1
* golang-github-prometheus-alertmanager-debuginfo-0.28.1-160002.2.1
* golang-github-prometheus-prometheus-debuginfo-3.5.3-160002.1.1
* mgrctl-5.2.12-160002.1.1
* venv-salt-minion-3006.0-160002.6.1
* golang-github-QubitProducts-exporter_exporter-0.4.0-160002.3.1
* grafana-debuginfo-11.6.14+security04-160002.1.1
* prometheus-blackbox_exporter-0.26.0-160002.2.1
* golang-github-prometheus-node_exporter-1.10.2-160002.1.1
* mgrctl-debuginfo-5.2.12-160002.1.1
* prometheus-postgres_exporter-0.10.1-160002.2.1
* golang-github-QubitProducts-exporter_exporter-debuginfo-0.4.0-160002.3.1
* prometheus-blackbox_exporter-debuginfo-0.26.0-160002.2.1
* golang-github-prometheus-node_exporter-debuginfo-1.10.2-160002.1.1
* SUSE Multi-Linux Manager Client Tools for SLE 16 (noarch)
* mgrctl-zsh-completion-5.2.12-160002.1.1
* mgrctl-lang-5.2.12-160002.1.1
* supportutils-plugin-susemanager-client-5.2.3-160002.1.1
* spacecmd-5.2.8-160002.1.1
* mgrctl-bash-completion-5.2.12-160002.1.1
* SUSE Linux Enterprise Server High Availability Extension 16.0 (noarch)
* pacemaker-schemas-3.0.0+20250218.64cd85422c-160000.4.1
* python3-pacemaker-3.0.0+20250218.64cd85422c-160000.4.1
* pacemaker-cts-3.0.0+20250218.64cd85422c-160000.4.1
* SUSE Linux Enterprise Server High Availability Extension 16.0 (ppc64le s390x
x86_64)
* pacemaker-remote-3.0.0+20250218.64cd85422c-160000.4.1
* pacemaker-3.0.0+20250218.64cd85422c-160000.4.1
* pacemaker-remote-debuginfo-3.0.0+20250218.64cd85422c-160000.4.1
* pacemaker-cli-3.0.0+20250218.64cd85422c-160000.4.1
* pacemaker-debugsource-3.0.0+20250218.64cd85422c-160000.4.1
* pacemaker-libs-debuginfo-3.0.0+20250218.64cd85422c-160000.4.1
* pacemaker-cli-debuginfo-3.0.0+20250218.64cd85422c-160000.4.1
* pacemaker-debuginfo-3.0.0+20250218.64cd85422c-160000.4.1
* pacemaker-devel-3.0.0+20250218.64cd85422c-160000.4.1
* pacemaker-libs-3.0.0+20250218.64cd85422c-160000.4.1
* SUSE Multi-Linux Manager Server 5.1 (s390x)
* suse-multi-linux-manager-5.1-s390x-server-migration-14-16-image-5.1.4-8.20.10
* suse-multi-linux-manager-5.1-s390x-server-image-5.1.4-8.20.25
* suse-multi-linux-manager-5.1-s390x-server-attestation-image-5.1.4-8.22.7
* suse-multi-linux-manager-5.1-s390x-server-saline-image-5.1.4-9.20.18
* suse-multi-linux-manager-5.1-s390x-server-postgresql-image-5.1.4-6.22.10
* suse-multi-linux-manager-5.1-s390x-server-hub-xmlrpc-api-image-5.1.4-8.20.9
* SUSE Multi-Linux Manager Server 5.1 (noarch)
* mgrctl-bash-completion-5.1.29-slfo.1.1.1
* mgradm-lang-5.1.29-slfo.1.1.1
* mgrctl-lang-5.1.29-slfo.1.1.1
* mgrctl-zsh-completion-5.1.29-slfo.1.1.1
* mgradm-bash-completion-5.1.29-slfo.1.1.1
* mgradm-zsh-completion-5.1.29-slfo.1.1.1
* SUSE Multi-Linux Manager Server 5.1 (x86_64)
* suse-multi-linux-manager-5.1-x86_64-server-postgresql-image-5.1.4-6.22.10
* suse-multi-linux-manager-5.1-x86_64-server-migration-14-16-image-5.1.4-8.20.10
* suse-multi-linux-manager-5.1-x86_64-server-attestation-image-5.1.4-8.22.7
* suse-multi-linux-manager-5.1-x86_64-server-image-5.1.4-8.20.25
* suse-multi-linux-manager-5.1-x86_64-server-saline-image-5.1.4-9.20.18
* suse-multi-linux-manager-5.1-x86_64-server-hub-xmlrpc-api-image-5.1.4-8.20.9
* SUSE Multi-Linux Manager Server 5.1 (aarch64 ppc64le s390x x86_64)
* mgrctl-debuginfo-5.1.29-slfo.1.1.1
* mgrctl-5.1.29-slfo.1.1.1
* mgradm-debuginfo-5.1.29-slfo.1.1.1
* mgradm-5.1.29-slfo.1.1.1
* SUSE Multi-Linux Manager Server 5.1 (ppc64le)
* suse-multi-linux-manager-5.1-ppc64le-server-migration-14-16-image-5.1.4-8.20.10
* suse-multi-linux-manager-5.1-ppc64le-server-saline-image-5.1.4-9.20.18
* suse-multi-linux-manager-5.1-ppc64le-server-postgresql-image-5.1.4-6.22.10
* suse-multi-linux-manager-5.1-ppc64le-server-attestation-image-5.1.4-8.22.7
* suse-multi-linux-manager-5.1-ppc64le-server-image-5.1.4-8.20.25
* suse-multi-linux-manager-5.1-ppc64le-server-hub-xmlrpc-api-image-5.1.4-8.20.9
* SUSE Multi-Linux Manager Server 5.1 (aarch64)
* suse-multi-linux-manager-5.1-aarch64-server-postgresql-image-5.1.4-6.22.10
* suse-multi-linux-manager-5.1-aarch64-server-saline-image-5.1.4-9.20.18
* suse-multi-linux-manager-5.1-aarch64-server-attestation-image-5.1.4-8.22.7
* suse-multi-linux-manager-5.1-aarch64-server-image-5.1.4-8.20.25
* suse-multi-linux-manager-5.1-aarch64-server-migration-14-16-image-5.1.4-8.20.10
* suse-multi-linux-manager-5.1-aarch64-server-hub-xmlrpc-api-image-5.1.4-8.20.9
* SUSE Multi-Linux Manager Retail Branch Server 5.1 (noarch)
* mgrpxy-zsh-completion-5.1.29-slfo.1.1.1
* mgrpxy-lang-5.1.29-slfo.1.1.1
* mgrpxy-bash-completion-5.1.29-slfo.1.1.1
* SUSE Multi-Linux Manager Retail Branch Server 5.1 (x86_64)
* suse-multi-linux-manager-5.1-x86_64-proxy-ssh-image-5.1.4-8.20.9
* suse-multi-linux-manager-5.1-x86_64-proxy-salt-broker-image-5.1.4-9.20.19
* suse-multi-linux-manager-5.1-x86_64-proxy-tftpd-image-5.1.4-8.20.10
* suse-multi-linux-manager-5.1-x86_64-proxy-squid-image-5.1.4-8.20.8
* suse-multi-linux-manager-5.1-x86_64-proxy-httpd-image-5.1.4-8.22.17
* SUSE Multi-Linux Manager Retail Branch Server 5.1 (aarch64 ppc64le s390x
x86_64)
* mgrpxy-5.1.29-slfo.1.1.1
* mgrpxy-debuginfo-5.1.29-slfo.1.1.1
* SUSE Multi-Linux Manager Retail Branch Server 5.1 (s390x)
* suse-multi-linux-manager-5.1-s390x-proxy-salt-broker-image-5.1.4-9.20.19
* suse-multi-linux-manager-5.1-s390x-proxy-ssh-image-5.1.4-8.20.9
* suse-multi-linux-manager-5.1-s390x-proxy-tftpd-image-5.1.4-8.20.10
* suse-multi-linux-manager-5.1-s390x-proxy-squid-image-5.1.4-8.20.8
* suse-multi-linux-manager-5.1-s390x-proxy-httpd-image-5.1.4-8.22.17
* SUSE Multi-Linux Manager Retail Branch Server 5.1 (aarch64)
* suse-multi-linux-manager-5.1-aarch64-proxy-ssh-image-5.1.4-8.20.9
* suse-multi-linux-manager-5.1-aarch64-proxy-squid-image-5.1.4-8.20.8
* suse-multi-linux-manager-5.1-aarch64-proxy-httpd-image-5.1.4-8.22.17
* suse-multi-linux-manager-5.1-aarch64-proxy-tftpd-image-5.1.4-8.20.10
* suse-multi-linux-manager-5.1-aarch64-proxy-salt-broker-image-5.1.4-9.20.19
* SUSE Multi-Linux Manager Retail Branch Server 5.1 (ppc64le)
* suse-multi-linux-manager-5.1-ppc64le-proxy-salt-broker-image-5.1.4-9.20.19
* suse-multi-linux-manager-5.1-ppc64le-proxy-ssh-image-5.1.4-8.20.9
* suse-multi-linux-manager-5.1-ppc64le-proxy-tftpd-image-5.1.4-8.20.10
* suse-multi-linux-manager-5.1-ppc64le-proxy-squid-image-5.1.4-8.20.8
* suse-multi-linux-manager-5.1-ppc64le-proxy-httpd-image-5.1.4-8.22.17
* SUSE Multi-Linux Manager Proxy 5.1 (x86_64)
* suse-multi-linux-manager-5.1-x86_64-proxy-ssh-image-5.1.4-8.20.9
* suse-multi-linux-manager-5.1-x86_64-proxy-salt-broker-image-5.1.4-9.20.19
* suse-multi-linux-manager-5.1-x86_64-proxy-tftpd-image-5.1.4-8.20.10
* suse-multi-linux-manager-5.1-x86_64-proxy-squid-image-5.1.4-8.20.8
* suse-multi-linux-manager-5.1-x86_64-proxy-httpd-image-5.1.4-8.22.17
* SUSE Multi-Linux Manager Proxy 5.1 (ppc64le)
* suse-multi-linux-manager-5.1-ppc64le-proxy-salt-broker-image-5.1.4-9.20.19
* suse-multi-linux-manager-5.1-ppc64le-proxy-ssh-image-5.1.4-8.20.9
* suse-multi-linux-manager-5.1-ppc64le-proxy-tftpd-image-5.1.4-8.20.10
* suse-multi-linux-manager-5.1-ppc64le-proxy-squid-image-5.1.4-8.20.8
* suse-multi-linux-manager-5.1-ppc64le-proxy-httpd-image-5.1.4-8.22.17
* SUSE Multi-Linux Manager Proxy 5.1 (noarch)
* mgrpxy-zsh-completion-5.1.29-slfo.1.1.1
* mgrpxy-bash-completion-5.1.29-slfo.1.1.1
* mgrpxy-lang-5.1.29-slfo.1.1.1
* SUSE Multi-Linux Manager Proxy 5.1 (aarch64 ppc64le s390x x86_64)
* mgrpxy-5.1.29-slfo.1.1.1
* mgrpxy-debuginfo-5.1.29-slfo.1.1.1
* SUSE Multi-Linux Manager Proxy 5.1 (s390x)
* suse-multi-linux-manager-5.1-s390x-proxy-salt-broker-image-5.1.4-9.20.19
* suse-multi-linux-manager-5.1-s390x-proxy-ssh-image-5.1.4-8.20.9
* suse-multi-linux-manager-5.1-s390x-proxy-tftpd-image-5.1.4-8.20.10
* suse-multi-linux-manager-5.1-s390x-proxy-squid-image-5.1.4-8.20.8
* suse-multi-linux-manager-5.1-s390x-proxy-httpd-image-5.1.4-8.22.17
* SUSE Multi-Linux Manager Proxy 5.1 (aarch64)
* suse-multi-linux-manager-5.1-aarch64-proxy-ssh-image-5.1.4-8.20.9
* suse-multi-linux-manager-5.1-aarch64-proxy-squid-image-5.1.4-8.20.8
* suse-multi-linux-manager-5.1-aarch64-proxy-httpd-image-5.1.4-8.22.17
* suse-multi-linux-manager-5.1-aarch64-proxy-tftpd-image-5.1.4-8.20.10
* suse-multi-linux-manager-5.1-aarch64-proxy-salt-broker-image-5.1.4-9.20.19
## References:
* https://www.suse.com/security/cve/CVE-2022-21698.html
* https://www.suse.com/security/cve/CVE-2023-52425.html
* https://www.suse.com/security/cve/CVE-2024-35195.html
* https://www.suse.com/security/cve/CVE-2024-47081.html
* https://www.suse.com/security/cve/CVE-2024-52804.html
* https://www.suse.com/security/cve/CVE-2025-11468.html
* https://www.suse.com/security/cve/CVE-2025-12084.html
* https://www.suse.com/security/cve/CVE-2025-12781.html
* https://www.suse.com/security/cve/CVE-2025-13462.html
* https://www.suse.com/security/cve/CVE-2025-13836.html
* https://www.suse.com/security/cve/CVE-2025-13837.html
* https://www.suse.com/security/cve/CVE-2025-15282.html
* https://www.suse.com/security/cve/CVE-2025-15366.html
* https://www.suse.com/security/cve/CVE-2025-15367.html
* https://www.suse.com/security/cve/CVE-2025-15444.html
* https://www.suse.com/security/cve/CVE-2025-50181.html
* https://www.suse.com/security/cve/CVE-2025-6069.html
* https://www.suse.com/security/cve/CVE-2025-6075.html
* https://www.suse.com/security/cve/CVE-2025-66418.html
* https://www.suse.com/security/cve/CVE-2025-66471.html
* https://www.suse.com/security/cve/CVE-2025-67724.html
* https://www.suse.com/security/cve/CVE-2025-67725.html
* https://www.suse.com/security/cve/CVE-2025-67726.html
* https://www.suse.com/security/cve/CVE-2025-69277.html
* https://www.suse.com/security/cve/CVE-2025-8194.html
* https://www.suse.com/security/cve/CVE-2025-8291.html
* https://www.suse.com/security/cve/CVE-2026-0672.html
* https://www.suse.com/security/cve/CVE-2026-0865.html
* https://www.suse.com/security/cve/CVE-2026-10649.html
* https://www.suse.com/security/cve/CVE-2026-1299.html
* https://www.suse.com/security/cve/CVE-2026-21441.html
* https://www.suse.com/security/cve/CVE-2026-2297.html
* https://www.suse.com/security/cve/CVE-2026-24049.html
* https://www.suse.com/security/cve/CVE-2026-25645.html
* https://www.suse.com/security/cve/CVE-2026-25680.html
* https://www.suse.com/security/cve/CVE-2026-25681.html
* https://www.suse.com/security/cve/CVE-2026-27136.html
* https://www.suse.com/security/cve/CVE-2026-27448.html
* https://www.suse.com/security/cve/CVE-2026-27459.html
* https://www.suse.com/security/cve/CVE-2026-28374.html
* https://www.suse.com/security/cve/CVE-2026-28376.html
* https://www.suse.com/security/cve/CVE-2026-28379.html
* https://www.suse.com/security/cve/CVE-2026-28380.html
* https://www.suse.com/security/cve/CVE-2026-28383.html
* https://www.suse.com/security/cve/CVE-2026-31958.html
* https://www.suse.com/security/cve/CVE-2026-33376.html
* https://www.suse.com/security/cve/CVE-2026-33377.html
* https://www.suse.com/security/cve/CVE-2026-33378.html
* https://www.suse.com/security/cve/CVE-2026-33380.html
* https://www.suse.com/security/cve/CVE-2026-33381.html
* https://www.suse.com/security/cve/CVE-2026-34986.html
* https://www.suse.com/security/cve/CVE-2026-3644.html
* https://www.suse.com/security/cve/CVE-2026-39821.html
* https://www.suse.com/security/cve/CVE-2026-40179.html
* https://www.suse.com/security/cve/CVE-2026-41602.html
* https://www.suse.com/security/cve/CVE-2026-42151.html
* https://www.suse.com/security/cve/CVE-2026-42154.html
* https://www.suse.com/security/cve/CVE-2026-4224.html
* https://www.suse.com/security/cve/CVE-2026-42502.html
* https://www.suse.com/security/cve/CVE-2026-42506.html
* https://www.suse.com/security/cve/CVE-2026-4519.html
* https://bugzilla.suse.com/show_bug.cgi?id=1208800
* https://bugzilla.suse.com/show_bug.cgi?id=1224788
* https://bugzilla.suse.com/show_bug.cgi?id=1226578
* https://bugzilla.suse.com/show_bug.cgi?id=1227579
* https://bugzilla.suse.com/show_bug.cgi?id=1229105
* https://bugzilla.suse.com/show_bug.cgi?id=1232641
* https://bugzilla.suse.com/show_bug.cgi?id=1234567
* https://bugzilla.suse.com/show_bug.cgi?id=1238890
* https://bugzilla.suse.com/show_bug.cgi?id=1242916
* https://bugzilla.suse.com/show_bug.cgi?id=1244925
* https://bugzilla.suse.com/show_bug.cgi?id=1245107
* https://bugzilla.suse.com/show_bug.cgi?id=1247707
* https://bugzilla.suse.com/show_bug.cgi?id=1248699
* https://bugzilla.suse.com/show_bug.cgi?id=1248707
* https://bugzilla.suse.com/show_bug.cgi?id=1248848
* https://bugzilla.suse.com/show_bug.cgi?id=1249243
* https://bugzilla.suse.com/show_bug.cgi?id=1249400
* https://bugzilla.suse.com/show_bug.cgi?id=1249532
* https://bugzilla.suse.com/show_bug.cgi?id=1251305
* https://bugzilla.suse.com/show_bug.cgi?id=1252974
* https://bugzilla.suse.com/show_bug.cgi?id=1253032
* https://bugzilla.suse.com/show_bug.cgi?id=1253174
* https://bugzilla.suse.com/show_bug.cgi?id=1254400
* https://bugzilla.suse.com/show_bug.cgi?id=1254401
* https://bugzilla.suse.com/show_bug.cgi?id=1254866
* https://bugzilla.suse.com/show_bug.cgi?id=1254867
* https://bugzilla.suse.com/show_bug.cgi?id=1254900
* https://bugzilla.suse.com/show_bug.cgi?id=1254997
* https://bugzilla.suse.com/show_bug.cgi?id=1255418
* https://bugzilla.suse.com/show_bug.cgi?id=1255764
* https://bugzilla.suse.com/show_bug.cgi?id=1256070
* https://bugzilla.suse.com/show_bug.cgi?id=1256331
* https://bugzilla.suse.com/show_bug.cgi?id=1257029
* https://bugzilla.suse.com/show_bug.cgi?id=1257031
* https://bugzilla.suse.com/show_bug.cgi?id=1257041
* https://bugzilla.suse.com/show_bug.cgi?id=1257042
* https://bugzilla.suse.com/show_bug.cgi?id=1257044
* https://bugzilla.suse.com/show_bug.cgi?id=1257046
* https://bugzilla.suse.com/show_bug.cgi?id=1257100
* https://bugzilla.suse.com/show_bug.cgi?id=1257108
* https://bugzilla.suse.com/show_bug.cgi?id=1257181
* https://bugzilla.suse.com/show_bug.cgi?id=1257583
* https://bugzilla.suse.com/show_bug.cgi?id=1257894
* https://bugzilla.suse.com/show_bug.cgi?id=1258041
* https://bugzilla.suse.com/show_bug.cgi?id=1258079
* https://bugzilla.suse.com/show_bug.cgi?id=1258144
* https://bugzilla.suse.com/show_bug.cgi?id=1258382
* https://bugzilla.suse.com/show_bug.cgi?id=1258816
* https://bugzilla.suse.com/show_bug.cgi?id=1259087
* https://bugzilla.suse.com/show_bug.cgi?id=1259230
* https://bugzilla.suse.com/show_bug.cgi?id=1259240
* https://bugzilla.suse.com/show_bug.cgi?id=1259261
* https://bugzilla.suse.com/show_bug.cgi?id=1259474
* https://bugzilla.suse.com/show_bug.cgi?id=1259479
* https://bugzilla.suse.com/show_bug.cgi?id=1259482
* https://bugzilla.suse.com/show_bug.cgi?id=1259521
* https://bugzilla.suse.com/show_bug.cgi?id=1259590
* https://bugzilla.suse.com/show_bug.cgi?id=1259591
* https://bugzilla.suse.com/show_bug.cgi?id=1259611
* https://bugzilla.suse.com/show_bug.cgi?id=1259630
* https://bugzilla.suse.com/show_bug.cgi?id=1259700
* https://bugzilla.suse.com/show_bug.cgi?id=1259734
* https://bugzilla.suse.com/show_bug.cgi?id=1259735
* https://bugzilla.suse.com/show_bug.cgi?id=1259739
* https://bugzilla.suse.com/show_bug.cgi?id=1259787
* https://bugzilla.suse.com/show_bug.cgi?id=1259804
* https://bugzilla.suse.com/show_bug.cgi?id=1259808
* https://bugzilla.suse.com/show_bug.cgi?id=1259960
* https://bugzilla.suse.com/show_bug.cgi?id=1260026
* https://bugzilla.suse.com/show_bug.cgi?id=1260031
* https://bugzilla.suse.com/show_bug.cgi?id=1260589
* https://bugzilla.suse.com/show_bug.cgi?id=1260614
* https://bugzilla.suse.com/show_bug.cgi?id=1260806
* https://bugzilla.suse.com/show_bug.cgi?id=1260905
* https://bugzilla.suse.com/show_bug.cgi?id=1261305
* https://bugzilla.suse.com/show_bug.cgi?id=1261307
* https://bugzilla.suse.com/show_bug.cgi?id=1261327
* https://bugzilla.suse.com/show_bug.cgi?id=1261631
* https://bugzilla.suse.com/show_bug.cgi?id=1261723
* https://bugzilla.suse.com/show_bug.cgi?id=1261753
* https://bugzilla.suse.com/show_bug.cgi?id=1261810
* https://bugzilla.suse.com/show_bug.cgi?id=1261841
* https://bugzilla.suse.com/show_bug.cgi?id=1261902
* https://bugzilla.suse.com/show_bug.cgi?id=1262222
* https://bugzilla.suse.com/show_bug.cgi?id=1262285
* https://bugzilla.suse.com/show_bug.cgi?id=1262409
* https://bugzilla.suse.com/show_bug.cgi?id=1262460
* https://bugzilla.suse.com/show_bug.cgi?id=1262471
* https://bugzilla.suse.com/show_bug.cgi?id=1262492
* https://bugzilla.suse.com/show_bug.cgi?id=1262595
* https://bugzilla.suse.com/show_bug.cgi?id=1262708
* https://bugzilla.suse.com/show_bug.cgi?id=1262720
* https://bugzilla.suse.com/show_bug.cgi?id=1262760
* https://bugzilla.suse.com/show_bug.cgi?id=1262761
* https://bugzilla.suse.com/show_bug.cgi?id=1262950
* https://bugzilla.suse.com/show_bug.cgi?id=1263157
* https://bugzilla.suse.com/show_bug.cgi?id=1263501
* https://bugzilla.suse.com/show_bug.cgi?id=1263814
* https://bugzilla.suse.com/show_bug.cgi?id=1263823
* https://bugzilla.suse.com/show_bug.cgi?id=1263841
* https://bugzilla.suse.com/show_bug.cgi?id=1263986
* https://bugzilla.suse.com/show_bug.cgi?id=1263987
* https://bugzilla.suse.com/show_bug.cgi?id=1264149
* https://bugzilla.suse.com/show_bug.cgi?id=1264234
* https://bugzilla.suse.com/show_bug.cgi?id=1264256
* https://bugzilla.suse.com/show_bug.cgi?id=1264966
* https://bugzilla.suse.com/show_bug.cgi?id=1265134
* https://bugzilla.suse.com/show_bug.cgi?id=1265281
* https://bugzilla.suse.com/show_bug.cgi?id=1265282
* https://bugzilla.suse.com/show_bug.cgi?id=1265283
* https://bugzilla.suse.com/show_bug.cgi?id=1265284
* https://bugzilla.suse.com/show_bug.cgi?id=1265285
* https://bugzilla.suse.com/show_bug.cgi?id=1265286
* https://bugzilla.suse.com/show_bug.cgi?id=1265287
* https://bugzilla.suse.com/show_bug.cgi?id=1265288
* https://bugzilla.suse.com/show_bug.cgi?id=1265289
* https://bugzilla.suse.com/show_bug.cgi?id=1265290
* https://bugzilla.suse.com/show_bug.cgi?id=1265319
* https://bugzilla.suse.com/show_bug.cgi?id=1265358
* https://bugzilla.suse.com/show_bug.cgi?id=1265975
* https://bugzilla.suse.com/show_bug.cgi?id=1266012
* https://bugzilla.suse.com/show_bug.cgi?id=1266556
* https://bugzilla.suse.com/show_bug.cgi?id=1266600
* https://bugzilla.suse.com/show_bug.cgi?id=1266608
* https://bugzilla.suse.com/show_bug.cgi?id=1267153
* https://bugzilla.suse.com/show_bug.cgi?id=1268381
* https://jira.suse.com/browse/MSQA-1056
* https://jira.suse.com/browse/PED-14816
* https://jira.suse.com/browse/SUMA-320
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.suse.com/pipermail/sle-updates/attachments/20260706/37c194ef/attachment.htm>
More information about the sle-updates
mailing list