From null at suse.de Mon Jun 1 08:30:17 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 08:30:17 -0000 Subject: SUSE-SU-2026:2176-1: important: Security update for the Linux Kernel (Live Patch 2 for SUSE Linux Enterprise 15 SP7) Message-ID: <178030261701.1001.5012615513633171769@b43247fbb5ff> # Security update for the Linux Kernel (Live Patch 2 for SUSE Linux Enterprise 15 SP7) Announcement ID: SUSE-SU-2026:2176-1 Release Date: 2026-05-31T19:36:24Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * openSUSE Leap 15.6 * SUSE Linux Enterprise Live Patching 15-SP6 * SUSE Linux Enterprise Live Patching 15-SP7 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.53.6 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-2175=1 SUSE-2026-2177=1 SUSE-2026-2176=1 * SUSE Linux Enterprise Live Patching 15-SP6 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP6-2026-2176=1 SUSE-SLE- Module-Live-Patching-15-SP6-2026-2175=1 SUSE-SLE-Module-Live- Patching-15-SP6-2026-2177=1 * SUSE Linux Enterprise Live Patching 15-SP7 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP7-2026-2179=1 SUSE-SLE- Module-Live-Patching-15-SP7-2026-2180=1 ## Package List: * openSUSE Leap 15.6 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP6_Update_15-debugsource-12-150600.2.1 * kernel-livepatch-6_4_0-150600_23_84-default-debuginfo-7-150600.2.1 * kernel-livepatch-6_4_0-150600_23_73-default-9-150600.2.1 * kernel-livepatch-SLE15-SP6_Update_16-debugsource-9-150600.2.1 * kernel-livepatch-6_4_0-150600_23_70-default-debuginfo-12-150600.2.1 * kernel-livepatch-6_4_0-150600_23_70-default-12-150600.2.1 * kernel-livepatch-6_4_0-150600_23_84-default-7-150600.2.1 * kernel-livepatch-SLE15-SP6_Update_19-debugsource-7-150600.2.1 * kernel-livepatch-6_4_0-150600_23_73-default-debuginfo-9-150600.2.1 * SUSE Linux Enterprise Live Patching 15-SP6 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP6_Update_15-debugsource-12-150600.2.1 * kernel-livepatch-6_4_0-150600_23_84-default-debuginfo-7-150600.2.1 * kernel-livepatch-6_4_0-150600_23_73-default-9-150600.2.1 * kernel-livepatch-SLE15-SP6_Update_16-debugsource-9-150600.2.1 * kernel-livepatch-6_4_0-150600_23_70-default-debuginfo-12-150600.2.1 * kernel-livepatch-6_4_0-150600_23_70-default-12-150600.2.1 * kernel-livepatch-6_4_0-150600_23_84-default-7-150600.2.1 * kernel-livepatch-SLE15-SP6_Update_19-debugsource-7-150600.2.1 * kernel-livepatch-6_4_0-150600_23_73-default-debuginfo-9-150600.2.1 * SUSE Linux Enterprise Live Patching 15-SP7 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP7_Update_2-debugsource-16-150700.2.1 * kernel-livepatch-6_4_0-150700_53_6-default-16-150700.2.1 * kernel-livepatch-6_4_0-150700_53_3-default-debuginfo-17-150700.2.1 * kernel-livepatch-SLE15-SP7_Update_1-debugsource-17-150700.2.1 * kernel-livepatch-6_4_0-150700_53_6-default-debuginfo-16-150700.2.1 * kernel-livepatch-6_4_0-150700_53_3-default-17-150700.2.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 08:30:30 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 08:30:30 -0000 Subject: SUSE-SU-2026:2178-1: important: Security update for the Linux Kernel (Live Patch 78 for SUSE Linux Enterprise 12 SP5) Message-ID: <178030263050.1001.5288069448829509457@b43247fbb5ff> # Security update for the Linux Kernel (Live Patch 78 for SUSE Linux Enterprise 12 SP5) Announcement ID: SUSE-SU-2026:2178-1 Release Date: 2026-05-31T19:04:38Z Rating: important References: * bsc#1259798 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Live Patching 12-SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves four vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 4.12.14-122.296 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 12-SP5 zypper in -t patch SUSE-SLE-Live-Patching-12-SP5-2026-2178=1 SUSE-SLE-Live- Patching-12-SP5-2026-2174=1 ## Package List: * SUSE Linux Enterprise Live Patching 12-SP5 (ppc64le s390x x86_64) * kgraft-patch-4_12_14-122_266-default-16-2.1 * kgraft-patch-4_12_14-122_296-default-4-2.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 08:30:38 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 08:30:38 -0000 Subject: SUSE-SU-2026:2168-1: important: Security update for the Linux Kernel (Live Patch 76 for SUSE Linux Enterprise 12 SP5) Message-ID: <178030263877.1001.4121789504448271494@b43247fbb5ff> # Security update for the Linux Kernel (Live Patch 76 for SUSE Linux Enterprise 12 SP5) Announcement ID: SUSE-SU-2026:2168-1 Release Date: 2026-05-31T12:34:00Z Rating: important References: * bsc#1259798 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Live Patching 12-SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves four vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 4.12.14-122.290 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 12-SP5 zypper in -t patch SUSE-SLE-Live-Patching-12-SP5-2026-2168=1 ## Package List: * SUSE Linux Enterprise Live Patching 12-SP5 (ppc64le s390x x86_64) * kgraft-patch-4_12_14-122_290-default-8-2.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 08:30:49 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 08:30:49 -0000 Subject: SUSE-SU-2026:2172-1: important: Security update for the Linux Kernel (Live Patch 21 for SUSE Linux Enterprise 15 SP6) Message-ID: <178030264958.1001.687810894422866945@b43247fbb5ff> # Security update for the Linux Kernel (Live Patch 21 for SUSE Linux Enterprise 15 SP6) Announcement ID: SUSE-SU-2026:2172-1 Release Date: 2026-05-31T15:06:21Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * openSUSE Leap 15.5 * openSUSE Leap 15.6 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Live Patching 15-SP6 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-150600.23.92 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2026-2172=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2026-2172=1 * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-2170=1 SUSE-2026-2171=1 SUSE-2026-2165=1 SUSE-2026-2166=1 SUSE-2026-2167=1 SUSE-2026-2173=1 SUSE-2026-2169=1 * SUSE Linux Enterprise Live Patching 15-SP6 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP6-2026-2170=1 SUSE-SLE- Module-Live-Patching-15-SP6-2026-2171=1 SUSE-SLE-Module-Live- Patching-15-SP6-2026-2165=1 SUSE-SLE-Module-Live-Patching-15-SP6-2026-2166=1 SUSE-SLE-Module-Live-Patching-15-SP6-2026-2167=1 SUSE-SLE-Module-Live- Patching-15-SP6-2026-2173=1 SUSE-SLE-Module-Live-Patching-15-SP6-2026-2169=1 ## Package List: * openSUSE Leap 15.5 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150500_55_130-default-debuginfo-8-150500.2.1 * kernel-livepatch-5_14_21-150500_55_130-default-8-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_33-debugsource-8-150500.2.1 * SUSE Linux Enterprise Live Patching 15-SP5 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150500_55_130-default-debuginfo-8-150500.2.1 * kernel-livepatch-5_14_21-150500_55_130-default-8-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_33-debugsource-8-150500.2.1 * openSUSE Leap 15.6 (ppc64le s390x x86_64) * kernel-livepatch-6_4_0-150600_23_50-default-debuginfo-18-150600.2.1 * kernel-livepatch-6_4_0-150600_23_81-default-debuginfo-7-150600.2.1 * kernel-livepatch-SLE15-SP6_Update_13-debugsource-16-150600.2.1 * kernel-livepatch-6_4_0-150600_23_65-default-12-150600.2.1 * kernel-livepatch-SLE15-SP6_Update_20-debugsource-6-150600.2.1 * kernel-livepatch-6_4_0-150600_23_60-default-debuginfo-16-150600.2.1 * kernel-livepatch-6_4_0-150600_23_50-default-18-150600.2.1 * kernel-livepatch-6_4_0-150600_23_60-default-16-150600.2.1 * kernel-livepatch-6_4_0-150600_23_92-default-4-150600.2.1 * kernel-livepatch-SLE15-SP6_Update_14-debugsource-12-150600.2.1 * kernel-livepatch-6_4_0-150600_23_87-default-6-150600.2.1 * kernel-livepatch-SLE15-SP6_Update_11-debugsource-18-150600.2.1 * kernel-livepatch-SLE15-SP6_Update_21-debugsource-4-150600.2.1 * kernel-livepatch-SLE15-SP6_Update_12-debugsource-18-150600.2.1 * kernel-livepatch-6_4_0-150600_23_53-default-18-150600.2.1 * kernel-livepatch-6_4_0-150600_23_81-default-7-150600.2.1 * kernel-livepatch-6_4_0-150600_23_65-default-debuginfo-12-150600.2.1 * kernel-livepatch-SLE15-SP6_Update_18-debugsource-7-150600.2.1 * kernel-livepatch-6_4_0-150600_23_53-default-debuginfo-18-150600.2.1 * kernel-livepatch-6_4_0-150600_23_87-default-debuginfo-6-150600.2.1 * kernel-livepatch-6_4_0-150600_23_92-default-debuginfo-4-150600.2.1 * SUSE Linux Enterprise Live Patching 15-SP6 (ppc64le s390x x86_64) * kernel-livepatch-6_4_0-150600_23_50-default-debuginfo-18-150600.2.1 * kernel-livepatch-6_4_0-150600_23_81-default-debuginfo-7-150600.2.1 * kernel-livepatch-SLE15-SP6_Update_13-debugsource-16-150600.2.1 * kernel-livepatch-6_4_0-150600_23_65-default-12-150600.2.1 * kernel-livepatch-SLE15-SP6_Update_20-debugsource-6-150600.2.1 * kernel-livepatch-6_4_0-150600_23_60-default-debuginfo-16-150600.2.1 * kernel-livepatch-6_4_0-150600_23_50-default-18-150600.2.1 * kernel-livepatch-6_4_0-150600_23_60-default-16-150600.2.1 * kernel-livepatch-6_4_0-150600_23_92-default-4-150600.2.1 * kernel-livepatch-SLE15-SP6_Update_14-debugsource-12-150600.2.1 * kernel-livepatch-6_4_0-150600_23_87-default-6-150600.2.1 * kernel-livepatch-SLE15-SP6_Update_11-debugsource-18-150600.2.1 * kernel-livepatch-SLE15-SP6_Update_21-debugsource-4-150600.2.1 * kernel-livepatch-SLE15-SP6_Update_12-debugsource-18-150600.2.1 * kernel-livepatch-6_4_0-150600_23_53-default-18-150600.2.1 * kernel-livepatch-6_4_0-150600_23_81-default-7-150600.2.1 * kernel-livepatch-6_4_0-150600_23_65-default-debuginfo-12-150600.2.1 * kernel-livepatch-SLE15-SP6_Update_18-debugsource-7-150600.2.1 * kernel-livepatch-6_4_0-150600_23_53-default-debuginfo-18-150600.2.1 * kernel-livepatch-6_4_0-150600_23_87-default-debuginfo-6-150600.2.1 * kernel-livepatch-6_4_0-150600_23_92-default-debuginfo-4-150600.2.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 08:31:01 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 08:31:01 -0000 Subject: SUSE-SU-2026:2159-1: important: Security update for the Linux Kernel (Live Patch 36 for SUSE Linux Enterprise 15 SP5) Message-ID: <178030266166.1001.2056071071443615636@b43247fbb5ff> # Security update for the Linux Kernel (Live Patch 36 for SUSE Linux Enterprise 15 SP5) Announcement ID: SUSE-SU-2026:2159-1 Release Date: 2026-05-31T11:35:08Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 5.14.21-150500.55.141 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2026-2159=1 SUSE-2026-2160=1 SUSE-2026-2155=1 SUSE-2026-2162=1 SUSE-2026-2163=1 SUSE-2026-2164=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2026-2159=1 SUSE-SLE- Module-Live-Patching-15-SP5-2026-2160=1 SUSE-SLE-Module-Live- Patching-15-SP5-2026-2155=1 SUSE-SLE-Module-Live-Patching-15-SP5-2026-2162=1 SUSE-SLE-Module-Live-Patching-15-SP5-2026-2163=1 SUSE-SLE-Module-Live- Patching-15-SP5-2026-2164=1 ## Package List: * openSUSE Leap 15.5 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150500_55_133-default-8-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_32-debugsource-8-150500.2.1 * kernel-livepatch-5_14_21-150500_55_133-default-debuginfo-8-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_29-debugsource-16-150500.2.1 * kernel-livepatch-5_14_21-150500_55_127-default-debuginfo-8-150500.2.1 * kernel-livepatch-5_14_21-150500_55_116-default-debuginfo-16-150500.2.1 * kernel-livepatch-5_14_21-150500_55_124-default-debuginfo-11-150500.2.1 * kernel-livepatch-5_14_21-150500_55_127-default-8-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_31-debugsource-11-150500.2.1 * kernel-livepatch-5_14_21-150500_55_136-default-7-150500.2.1 * kernel-livepatch-5_14_21-150500_55_136-default-debuginfo-7-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_35-debugsource-7-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_34-debugsource-8-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_36-debugsource-4-150500.2.1 * kernel-livepatch-5_14_21-150500_55_141-default-4-150500.2.1 * kernel-livepatch-5_14_21-150500_55_141-default-debuginfo-4-150500.2.1 * kernel-livepatch-5_14_21-150500_55_124-default-11-150500.2.1 * kernel-livepatch-5_14_21-150500_55_116-default-16-150500.2.1 * SUSE Linux Enterprise Live Patching 15-SP5 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150500_55_133-default-8-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_32-debugsource-8-150500.2.1 * kernel-livepatch-5_14_21-150500_55_133-default-debuginfo-8-150500.2.1 * kernel-livepatch-5_14_21-150500_55_127-default-debuginfo-8-150500.2.1 * kernel-livepatch-5_14_21-150500_55_116-default-debuginfo-16-150500.2.1 * kernel-livepatch-5_14_21-150500_55_124-default-debuginfo-11-150500.2.1 * kernel-livepatch-5_14_21-150500_55_127-default-8-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_31-debugsource-11-150500.2.1 * kernel-livepatch-5_14_21-150500_55_136-default-7-150500.2.1 * kernel-livepatch-5_14_21-150500_55_136-default-debuginfo-7-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_35-debugsource-7-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_34-debugsource-8-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_36-debugsource-4-150500.2.1 * kernel-livepatch-5_14_21-150500_55_141-default-4-150500.2.1 * kernel-livepatch-5_14_21-150500_55_141-default-debuginfo-4-150500.2.1 * kernel-livepatch-5_14_21-150500_55_124-default-11-150500.2.1 * kernel-livepatch-5_14_21-150500_55_116-default-16-150500.2.1 * SUSE Linux Enterprise Live Patching 15-SP5 (ppc64le s390x) * kernel-livepatch-SLE15-SP5_Update_29-debugsource-16-150500.2.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 08:31:12 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 08:31:12 -0000 Subject: SUSE-SU-2026:2158-1: important: Security update for the Linux Kernel (Live Patch 49 for SUSE Linux Enterprise 15 SP4) Message-ID: <178030267263.1001.16126421595538942604@b43247fbb5ff> # Security update for the Linux Kernel (Live Patch 49 for SUSE Linux Enterprise 15 SP4) Announcement ID: SUSE-SU-2026:2158-1 Release Date: 2026-05-31T11:34:13Z Rating: important References: * bsc#1259798 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise Live Patching 15-SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 An update that solves five vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 5.14.21-150400.24.197 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2026-2158=1 SUSE-2026-2161=1 SUSE-2026-2156=1 SUSE-2026-2154=1 * SUSE Linux Enterprise Live Patching 15-SP4 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP4-2026-2158=1 SUSE-SLE- Module-Live-Patching-15-SP4-2026-2161=1 SUSE-SLE-Module-Live- Patching-15-SP4-2026-2156=1 SUSE-SLE-Module-Live-Patching-15-SP4-2026-2154=1 ## Package List: * openSUSE Leap 15.4 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150400_24_187-default-debuginfo-8-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_49-debugsource-4-150400.2.1 * kernel-livepatch-5_14_21-150400_24_187-default-8-150400.2.1 * kernel-livepatch-5_14_21-150400_24_194-default-6-150400.2.1 * kernel-livepatch-5_14_21-150400_24_184-default-8-150400.2.1 * kernel-livepatch-5_14_21-150400_24_197-default-debuginfo-4-150400.2.1 * kernel-livepatch-5_14_21-150400_24_184-default-debuginfo-8-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_48-debugsource-6-150400.2.1 * kernel-livepatch-5_14_21-150400_24_197-default-4-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_47-debugsource-8-150400.2.1 * kernel-livepatch-5_14_21-150400_24_194-default-debuginfo-6-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_46-debugsource-8-150400.2.1 * SUSE Linux Enterprise Live Patching 15-SP4 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150400_24_187-default-debuginfo-8-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_49-debugsource-4-150400.2.1 * kernel-livepatch-5_14_21-150400_24_187-default-8-150400.2.1 * kernel-livepatch-5_14_21-150400_24_194-default-6-150400.2.1 * kernel-livepatch-5_14_21-150400_24_184-default-8-150400.2.1 * kernel-livepatch-5_14_21-150400_24_197-default-debuginfo-4-150400.2.1 * kernel-livepatch-5_14_21-150400_24_184-default-debuginfo-8-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_48-debugsource-6-150400.2.1 * kernel-livepatch-5_14_21-150400_24_197-default-4-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_47-debugsource-8-150400.2.1 * kernel-livepatch-5_14_21-150400_24_194-default-debuginfo-6-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_46-debugsource-8-150400.2.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 08:31:21 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 08:31:21 -0000 Subject: SUSE-SU-2026:2153-1: important: Security update for the Linux Kernel (Live Patch 74 for SUSE Linux Enterprise 12 SP5) Message-ID: <178030268176.1001.1504558050333986759@b43247fbb5ff> # Security update for the Linux Kernel (Live Patch 74 for SUSE Linux Enterprise 12 SP5) Announcement ID: SUSE-SU-2026:2153-1 Release Date: 2026-05-31T10:05:53Z Rating: important References: * bsc#1259798 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Live Patching 12-SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves four vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 4.12.14-122.280 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 12-SP5 zypper in -t patch SUSE-SLE-Live-Patching-12-SP5-2026-2153=1 SUSE-SLE-Live- Patching-12-SP5-2026-2157=1 ## Package List: * SUSE Linux Enterprise Live Patching 12-SP5 (ppc64le s390x x86_64) * kgraft-patch-4_12_14-122_280-default-8-2.1 * kgraft-patch-4_12_14-122_272-default-12-2.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 08:31:33 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 08:31:33 -0000 Subject: SUSE-SU-2026:2149-1: important: Security update for the Linux Kernel (Live Patch 30 for SUSE Linux Enterprise 15 SP5) Message-ID: <178030269365.1001.1660206518064523345@b43247fbb5ff> # Security update for the Linux Kernel (Live Patch 30 for SUSE Linux Enterprise 15 SP5) Announcement ID: SUSE-SU-2026:2149-1 Release Date: 2026-05-31T07:07:02Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 5.14.21-150500.55.121 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2026-2150=1 SUSE-2026-2151=1 SUSE-2026-2152=1 SUSE-2026-2149=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2026-2150=1 SUSE-SLE- Module-Live-Patching-15-SP5-2026-2151=1 SUSE-SLE-Module-Live- Patching-15-SP5-2026-2152=1 SUSE-SLE-Module-Live-Patching-15-SP5-2026-2149=1 ## Package List: * openSUSE Leap 15.5 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP5_Update_27-debugsource-19-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_26-debugsource-20-150500.2.1 * kernel-livepatch-5_14_21-150500_55_103-default-debuginfo-20-150500.2.1 * kernel-livepatch-5_14_21-150500_55_103-default-20-150500.2.1 * kernel-livepatch-5_14_21-150500_55_113-default-debuginfo-18-150500.2.1 * kernel-livepatch-5_14_21-150500_55_121-default-13-150500.2.1 * kernel-livepatch-5_14_21-150500_55_121-default-debuginfo-13-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_30-debugsource-13-150500.2.1 * kernel-livepatch-5_14_21-150500_55_110-default-debuginfo-19-150500.2.1 * kernel-livepatch-5_14_21-150500_55_110-default-19-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_28-debugsource-18-150500.2.1 * kernel-livepatch-5_14_21-150500_55_113-default-18-150500.2.1 * SUSE Linux Enterprise Live Patching 15-SP5 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP5_Update_27-debugsource-19-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_26-debugsource-20-150500.2.1 * kernel-livepatch-5_14_21-150500_55_103-default-debuginfo-20-150500.2.1 * kernel-livepatch-5_14_21-150500_55_103-default-20-150500.2.1 * kernel-livepatch-5_14_21-150500_55_113-default-debuginfo-18-150500.2.1 * kernel-livepatch-5_14_21-150500_55_121-default-13-150500.2.1 * kernel-livepatch-5_14_21-150500_55_121-default-debuginfo-13-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_30-debugsource-13-150500.2.1 * kernel-livepatch-5_14_21-150500_55_110-default-debuginfo-19-150500.2.1 * kernel-livepatch-5_14_21-150500_55_110-default-19-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_28-debugsource-18-150500.2.1 * kernel-livepatch-5_14_21-150500_55_113-default-18-150500.2.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 08:31:43 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 08:31:43 -0000 Subject: SUSE-SU-2026:2141-1: important: Security update for the Linux Kernel (Live Patch 45 for SUSE Linux Enterprise 15 SP4) Message-ID: <178030270381.1001.16588329711784978607@b43247fbb5ff> # Security update for the Linux Kernel (Live Patch 45 for SUSE Linux Enterprise 15 SP4) Announcement ID: SUSE-SU-2026:2141-1 Release Date: 2026-05-31T04:35:52Z Rating: important References: * bsc#1259798 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise Live Patching 15-SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 An update that solves five vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 5.14.21-150400.24.179 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2026-2141=1 SUSE-2026-2142=1 SUSE-2026-2145=1 SUSE-2026-2143=1 SUSE-2026-2146=1 SUSE-2026-2147=1 * SUSE Linux Enterprise Live Patching 15-SP4 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP4-2026-2141=1 SUSE-SLE- Module-Live-Patching-15-SP4-2026-2142=1 SUSE-SLE-Module-Live- Patching-15-SP4-2026-2145=1 SUSE-SLE-Module-Live-Patching-15-SP4-2026-2143=1 SUSE-SLE-Module-Live-Patching-15-SP4-2026-2146=1 SUSE-SLE-Module-Live- Patching-15-SP4-2026-2147=1 ## Package List: * openSUSE Leap 15.4 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150400_24_167-default-19-150400.2.1 * kernel-livepatch-5_14_21-150400_24_164-default-20-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_44-debugsource-14-150400.2.1 * kernel-livepatch-5_14_21-150400_24_164-default-debuginfo-20-150400.2.1 * kernel-livepatch-5_14_21-150400_24_170-default-18-150400.2.1 * kernel-livepatch-5_14_21-150400_24_173-default-debuginfo-15-150400.2.1 * kernel-livepatch-5_14_21-150400_24_167-default-debuginfo-19-150400.2.1 * kernel-livepatch-5_14_21-150400_24_176-default-debuginfo-14-150400.2.1 * kernel-livepatch-5_14_21-150400_24_179-default-debuginfo-12-150400.2.1 * kernel-livepatch-5_14_21-150400_24_170-default-debuginfo-18-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_41-debugsource-19-150400.2.1 * kernel-livepatch-5_14_21-150400_24_173-default-15-150400.2.1 * kernel-livepatch-5_14_21-150400_24_176-default-14-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_43-debugsource-15-150400.2.1 * kernel-livepatch-5_14_21-150400_24_179-default-12-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_45-debugsource-12-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_42-debugsource-18-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_40-debugsource-20-150400.2.1 * SUSE Linux Enterprise Live Patching 15-SP4 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150400_24_167-default-19-150400.2.1 * kernel-livepatch-5_14_21-150400_24_164-default-20-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_44-debugsource-14-150400.2.1 * kernel-livepatch-5_14_21-150400_24_164-default-debuginfo-20-150400.2.1 * kernel-livepatch-5_14_21-150400_24_170-default-18-150400.2.1 * kernel-livepatch-5_14_21-150400_24_173-default-debuginfo-15-150400.2.1 * kernel-livepatch-5_14_21-150400_24_167-default-debuginfo-19-150400.2.1 * kernel-livepatch-5_14_21-150400_24_176-default-debuginfo-14-150400.2.1 * kernel-livepatch-5_14_21-150400_24_179-default-debuginfo-12-150400.2.1 * kernel-livepatch-5_14_21-150400_24_170-default-debuginfo-18-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_41-debugsource-19-150400.2.1 * kernel-livepatch-5_14_21-150400_24_173-default-15-150400.2.1 * kernel-livepatch-5_14_21-150400_24_176-default-14-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_43-debugsource-15-150400.2.1 * kernel-livepatch-5_14_21-150400_24_179-default-12-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_45-debugsource-12-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_42-debugsource-18-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_40-debugsource-20-150400.2.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 08:31:52 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 08:31:52 -0000 Subject: SUSE-SU-2026:2148-1: important: Security update for the Linux Kernel (Live Patch 77 for SUSE Linux Enterprise 12 SP5) Message-ID: <178030271278.1001.3124361488757551026@b43247fbb5ff> # Security update for the Linux Kernel (Live Patch 77 for SUSE Linux Enterprise 12 SP5) Announcement ID: SUSE-SU-2026:2148-1 Release Date: 2026-05-31T06:04:02Z Rating: important References: * bsc#1259798 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Live Patching 12-SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves four vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 4.12.14-122.293 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 12-SP5 zypper in -t patch SUSE-SLE-Live-Patching-12-SP5-2026-2139=1 SUSE-SLE-Live- Patching-12-SP5-2026-2144=1 SUSE-SLE-Live-Patching-12-SP5-2026-2148=1 SUSE-SLE- Live-Patching-12-SP5-2026-2140=1 ## Package List: * SUSE Linux Enterprise Live Patching 12-SP5 (ppc64le s390x x86_64) * kgraft-patch-4_12_14-122_283-default-8-2.1 * kgraft-patch-4_12_14-122_293-default-7-2.1 * kgraft-patch-4_12_14-122_269-default-13-2.1 * kgraft-patch-4_12_14-122_275-default-10-2.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 08:32:00 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 08:32:00 -0000 Subject: SUSE-SU-2026:2137-1: important: Security update for the Linux Kernel (Live Patch 69 for SUSE Linux Enterprise 12 SP5) Message-ID: <178030272038.1001.16763859664802846187@b43247fbb5ff> # Security update for the Linux Kernel (Live Patch 69 for SUSE Linux Enterprise 12 SP5) Announcement ID: SUSE-SU-2026:2137-1 Release Date: 2026-05-30T19:34:08Z Rating: important References: * bsc#1259798 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Live Patching 12-SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves four vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 4.12.14-122.261 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 12-SP5 zypper in -t patch SUSE-SLE-Live-Patching-12-SP5-2026-2137=1 SUSE-SLE-Live- Patching-12-SP5-2026-2138=1 ## Package List: * SUSE Linux Enterprise Live Patching 12-SP5 (ppc64le s390x x86_64) * kgraft-patch-4_12_14-122_261-default-16-2.1 * kgraft-patch-4_12_14-122_258-default-17-2.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 08:32:08 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 08:32:08 -0000 Subject: SUSE-SU-2026:2133-1: important: Security update for the Linux Kernel RT (Live Patch 13 for SUSE Linux Enterprise 15 SP7) Message-ID: <178030272842.1001.10951948511053715219@b43247fbb5ff> # Security update for the Linux Kernel RT (Live Patch 13 for SUSE Linux Enterprise 15 SP7) Announcement ID: SUSE-SU-2026:2133-1 Release Date: 2026-05-29T23:44:24Z Rating: important References: * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Enterprise Live Patching 15-SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves three vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.7.44 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP7 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP7-2026-2133=1 SUSE-SLE- Module-Live-Patching-15-SP7-2026-2132=1 SUSE-SLE-Module-Live- Patching-15-SP7-2026-2136=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP7 (x86_64) * kernel-livepatch-6_4_0-150700_7_44-rt-debuginfo-2-150700.2.1 * kernel-livepatch-SLE15-SP7-RT_Update_12-debugsource-3-150700.2.1 * kernel-livepatch-SLE15-SP7-RT_Update_11-debugsource-4-150700.2.1 * kernel-livepatch-6_4_0-150700_7_37-rt-4-150700.2.1 * kernel-livepatch-6_4_0-150700_7_44-rt-2-150700.2.1 * kernel-livepatch-6_4_0-150700_7_40-rt-debuginfo-3-150700.2.1 * kernel-livepatch-SLE15-SP7-RT_Update_13-debugsource-2-150700.2.1 * kernel-livepatch-6_4_0-150700_7_37-rt-debuginfo-4-150700.2.1 * kernel-livepatch-6_4_0-150700_7_40-rt-3-150700.2.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 08:32:17 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 08:32:17 -0000 Subject: SUSE-SU-2026:2131-1: important: Security update for the Linux Kernel RT (Live Patch 10 for SUSE Linux Enterprise 15 SP7) Message-ID: <178030273782.1001.4279878740377951097@b43247fbb5ff> # Security update for the Linux Kernel RT (Live Patch 10 for SUSE Linux Enterprise 15 SP7) Announcement ID: SUSE-SU-2026:2131-1 Release Date: 2026-05-29T21:06:53Z Rating: important References: * bsc#1259798 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Enterprise Live Patching 15-SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves five vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.7.34 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP7 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP7-2026-2131=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP7 (x86_64) * kernel-livepatch-6_4_0-150700_7_34-rt-4-150700.2.1 * kernel-livepatch-SLE15-SP7-RT_Update_10-debugsource-4-150700.2.1 * kernel-livepatch-6_4_0-150700_7_34-rt-debuginfo-4-150700.2.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 08:32:28 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 08:32:28 -0000 Subject: SUSE-SU-2026:2134-1: important: Security update for the Linux Kernel RT (Live Patch 9 for SUSE Linux Enterprise 15 SP7) Message-ID: <178030274884.1001.17825104038870209909@b43247fbb5ff> # Security update for the Linux Kernel RT (Live Patch 9 for SUSE Linux Enterprise 15 SP7) Announcement ID: SUSE-SU-2026:2134-1 Release Date: 2026-05-29T23:44:17Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Enterprise Live Patching 15-SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.7.31 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP7 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP7-2026-2134=1 SUSE-SLE- Module-Live-Patching-15-SP7-2026-2123=1 SUSE-SLE-Module-Live- Patching-15-SP7-2026-2126=1 SUSE-SLE-Module-Live-Patching-15-SP7-2026-2124=1 SUSE-SLE-Module-Live-Patching-15-SP7-2026-2127=1 SUSE-SLE-Module-Live- Patching-15-SP7-2026-2128=1 SUSE-SLE-Module-Live-Patching-15-SP7-2026-2129=1 SUSE-SLE-Module-Live-Patching-15-SP7-2026-2130=1 SUSE-SLE-Module-Live- Patching-15-SP7-2026-2125=1 SUSE-SLE-Module-Live-Patching-15-SP7-2026-2135=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP7 (x86_64) * kernel-livepatch-SLE15-SP7-RT_Update_2-debugsource-16-150700.2.1 * kernel-livepatch-6_4_0-150700_7_3-rt-debuginfo-17-150700.2.1 * kernel-livepatch-6_4_0-150700_7_22-rt-debuginfo-8-150700.2.1 * kernel-livepatch-SLE15-SP7-RT_Update_9-debugsource-6-150700.2.1 * kernel-livepatch-SLE15-SP7-RT_Update_6-debugsource-8-150700.2.1 * kernel-livepatch-SLE15-SP7-RT_Update_1-debugsource-17-150700.2.1 * kernel-livepatch-6_4_0-150700_7_19-rt-debuginfo-9-150700.2.1 * kernel-livepatch-6_4_0-150700_7_16-rt-12-150700.2.1 * kernel-livepatch-6_4_0-150700_7_3-rt-17-150700.2.1 * kernel-livepatch-SLE15-SP7-RT_Update_0-debugsource-17-150700.3.1 * kernel-livepatch-6_4_0-150700_7_8-rt-16-150700.2.1 * kernel-livepatch-SLE15-SP7-RT_Update_3-debugsource-12-150700.2.1 * kernel-livepatch-SLE15-SP7-RT_Update_8-debugsource-7-150700.2.1 * kernel-livepatch-6_4_0-150700_7_28-rt-7-150700.2.1 * kernel-livepatch-6_4_0-150700_7_13-rt-12-150700.2.1 * kernel-livepatch-6_4_0-150700_7_16-rt-debuginfo-12-150700.2.1 * kernel-livepatch-6_4_0-150700_7_22-rt-8-150700.2.1 * kernel-livepatch-SLE15-SP7-RT_Update_4-debugsource-12-150700.2.1 * kernel-livepatch-6_4_0-150700_7_31-rt-debuginfo-6-150700.2.1 * kernel-livepatch-6_4_0-150700_5-rt-debuginfo-17-150700.3.1 * kernel-livepatch-6_4_0-150700_7_31-rt-6-150700.2.1 * kernel-livepatch-6_4_0-150700_5-rt-17-150700.3.1 * kernel-livepatch-6_4_0-150700_7_8-rt-debuginfo-16-150700.2.1 * kernel-livepatch-SLE15-SP7-RT_Update_5-debugsource-9-150700.2.1 * kernel-livepatch-6_4_0-150700_7_25-rt-7-150700.2.1 * kernel-livepatch-SLE15-SP7-RT_Update_7-debugsource-7-150700.2.1 * kernel-livepatch-6_4_0-150700_7_13-rt-debuginfo-12-150700.2.1 * kernel-livepatch-6_4_0-150700_7_28-rt-debuginfo-7-150700.2.1 * kernel-livepatch-6_4_0-150700_7_25-rt-debuginfo-7-150700.2.1 * kernel-livepatch-6_4_0-150700_7_19-rt-9-150700.2.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 08:32:32 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 08:32:32 -0000 Subject: SUSE-RU-2026:2122-1: important: Recommended update for crmsh Message-ID: <178030275214.1001.9301632703286579924@b43247fbb5ff> # Recommended update for crmsh Announcement ID: SUSE-RU-2026:2122-1 Release Date: 2026-05-29T16:21:34Z Rating: important References: * bsc#1259683 Affected Products: * openSUSE Leap 15.6 * SUSE Linux Enterprise High Availability Extension 15 SP6 * SUSE Linux Enterprise High Availability Extension 15 SP7 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that has one fix can now be installed. ## Description: This update for crmsh fixes the following issues: * Fix: bootstrap: Ensure robust node identification when removing from cluster (bsc#1259683) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-2122=1 * SUSE Linux Enterprise High Availability Extension 15 SP6 zypper in -t patch SUSE-SLE-Product-HA-15-SP6-2026-2122=1 * SUSE Linux Enterprise High Availability Extension 15 SP7 zypper in -t patch SUSE-SLE-Product-HA-15-SP7-2026-2122=1 ## Package List: * openSUSE Leap 15.6 (noarch) * crmsh-scripts-4.6.2+20260407.5131df91-150600.3.56.1 * crmsh-4.6.2+20260407.5131df91-150600.3.56.1 * crmsh-test-4.6.2+20260407.5131df91-150600.3.56.1 * SUSE Linux Enterprise High Availability Extension 15 SP6 (noarch) * crmsh-scripts-4.6.2+20260407.5131df91-150600.3.56.1 * crmsh-4.6.2+20260407.5131df91-150600.3.56.1 * SUSE Linux Enterprise High Availability Extension 15 SP7 (noarch) * crmsh-scripts-4.6.2+20260407.5131df91-150600.3.56.1 * crmsh-4.6.2+20260407.5131df91-150600.3.56.1 ## References: * https://bugzilla.suse.com/show_bug.cgi?id=1259683 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 12:30:12 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 12:30:12 -0000 Subject: SUSE-SU-2026:2191-1: important: Security update for the Linux Kernel (Live Patch 51 for SUSE Linux Enterprise 15 SP4) Message-ID: <178031701201.904.13795803103098486113@28a6f8bc0cea> # Security update for the Linux Kernel (Live Patch 51 for SUSE Linux Enterprise 15 SP4) Announcement ID: SUSE-SU-2026:2191-1 Release Date: 2026-06-01T06:36:48Z Rating: important References: * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise Live Patching 15-SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 An update that solves three vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 5.14.21-150400.24.205 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2026-2191=1 SUSE-2026-2190=1 * SUSE Linux Enterprise Live Patching 15-SP4 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP4-2026-2191=1 SUSE-SLE- Module-Live-Patching-15-SP4-2026-2190=1 ## Package List: * openSUSE Leap 15.4 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150400_24_200-default-debuginfo-4-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_51-debugsource-3-150400.2.1 * kernel-livepatch-5_14_21-150400_24_200-default-4-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_50-debugsource-4-150400.2.1 * kernel-livepatch-5_14_21-150400_24_205-default-3-150400.2.1 * kernel-livepatch-5_14_21-150400_24_205-default-debuginfo-3-150400.2.1 * SUSE Linux Enterprise Live Patching 15-SP4 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150400_24_200-default-debuginfo-4-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_51-debugsource-3-150400.2.1 * kernel-livepatch-5_14_21-150400_24_200-default-4-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_50-debugsource-4-150400.2.1 * kernel-livepatch-5_14_21-150400_24_205-default-3-150400.2.1 * kernel-livepatch-5_14_21-150400_24_205-default-debuginfo-3-150400.2.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 12:30:25 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 12:30:25 -0000 Subject: SUSE-SU-2026:2189-1: important: Security update for the Linux Kernel (Live Patch 10 for SUSE Linux Enterprise 15 SP7) Message-ID: <178031702551.904.14942426598384493904@28a6f8bc0cea> # Security update for the Linux Kernel (Live Patch 10 for SUSE Linux Enterprise 15 SP7) Announcement ID: SUSE-SU-2026:2189-1 Release Date: 2026-06-01T01:36:34Z Rating: important References: * bsc#1259798 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Enterprise Live Patching 15-SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves five vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.53.34 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP7 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP7-2026-2189=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP7 (ppc64le s390x x86_64) * kernel-livepatch-6_4_0-150700_53_34-default-debuginfo-4-150700.2.1 * kernel-livepatch-SLE15-SP7_Update_10-debugsource-4-150700.2.1 * kernel-livepatch-6_4_0-150700_53_34-default-4-150700.2.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 12:30:37 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 12:30:37 -0000 Subject: SUSE-SU-2026:2181-1: important: Security update for the Linux Kernel (Live Patch 9 for SUSE Linux Enterprise 15 SP7) Message-ID: <178031703721.904.11992270711170679327@28a6f8bc0cea> # Security update for the Linux Kernel (Live Patch 9 for SUSE Linux Enterprise 15 SP7) Announcement ID: SUSE-SU-2026:2181-1 Release Date: 2026-06-01T01:36:25Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Enterprise Live Patching 15-SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.53.31 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP7 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP7-2026-2187=1 SUSE-SLE- Module-Live-Patching-15-SP7-2026-2188=1 SUSE-SLE-Module-Live- Patching-15-SP7-2026-2181=1 SUSE-SLE-Module-Live-Patching-15-SP7-2026-2182=1 SUSE-SLE-Module-Live-Patching-15-SP7-2026-2184=1 SUSE-SLE-Module-Live- Patching-15-SP7-2026-2185=1 SUSE-SLE-Module-Live-Patching-15-SP7-2026-2183=1 SUSE-SLE-Module-Live-Patching-15-SP7-2026-2186=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP7 (ppc64le s390x x86_64) * kernel-livepatch-6_4_0-150700_53_28-default-debuginfo-7-150700.2.1 * kernel-livepatch-SLE15-SP7_Update_8-debugsource-7-150700.2.1 * kernel-livepatch-6_4_0-150700_53_16-default-debuginfo-12-150700.2.1 * kernel-livepatch-6_4_0-150700_53_19-default-9-150700.2.1 * kernel-livepatch-6_4_0-150700_53_22-default-7-150700.2.1 * kernel-livepatch-SLE15-SP7_Update_3-debugsource-12-150700.2.1 * kernel-livepatch-6_4_0-150700_53_31-default-debuginfo-6-150700.2.1 * kernel-livepatch-6_4_0-150700_53_19-default-debuginfo-9-150700.2.1 * kernel-livepatch-6_4_0-150700_51-default-17-150700.3.48.1 * kernel-livepatch-6_4_0-150700_53_25-default-7-150700.2.1 * kernel-livepatch-SLE15-SP7_Update_7-debugsource-7-150700.2.1 * kernel-livepatch-6_4_0-150700_51-default-debuginfo-17-150700.3.48.1 * kernel-livepatch-SLE15-SP7_Update_0-debugsource-17-150700.3.48.1 * kernel-livepatch-6_4_0-150700_53_22-default-debuginfo-7-150700.2.1 * kernel-livepatch-SLE15-SP7_Update_9-debugsource-6-150700.2.1 * kernel-livepatch-6_4_0-150700_53_28-default-7-150700.2.1 * kernel-livepatch-SLE15-SP7_Update_5-debugsource-9-150700.2.1 * kernel-livepatch-6_4_0-150700_53_11-default-debuginfo-12-150700.2.1 * kernel-livepatch-SLE15-SP7_Update_6-debugsource-7-150700.2.1 * kernel-livepatch-6_4_0-150700_53_31-default-6-150700.2.1 * kernel-livepatch-6_4_0-150700_53_11-default-12-150700.2.1 * kernel-livepatch-SLE15-SP7_Update_4-debugsource-12-150700.2.1 * kernel-livepatch-6_4_0-150700_53_25-default-debuginfo-7-150700.2.1 * kernel-livepatch-6_4_0-150700_53_16-default-12-150700.2.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 12:30:48 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 12:30:48 -0000 Subject: SUSE-SU-2026:2197-1: important: Security update for strongswan Message-ID: <178031704883.904.13289883717876771109@28a6f8bc0cea> # Security update for strongswan Announcement ID: SUSE-SU-2026:2197-1 Release Date: 2026-06-01T07:45:03Z Rating: important References: * bsc#1261705 * bsc#1261706 * bsc#1261708 * bsc#1261712 * bsc#1261717 * bsc#1261720 Cross-References: * CVE-2026-35328 * CVE-2026-35329 * CVE-2026-35330 * CVE-2026-35332 * CVE-2026-35333 * CVE-2026-35334 CVSS scores: * CVE-2026-35328 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-35328 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-35329 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-35329 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-35330 ( SUSE ): 9.2 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-35330 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-35332 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-35332 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-35333 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-35333 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-35334 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-35334 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves six vulnerabilities can now be installed. ## Description: This update for strongswan fixes the following issues: * CVE-2026-35328: infinite loop when handling supported versions TLS extension (bsc#1261712). * CVE-2026-35329: null pointer dereference when processing padding in PKCS#7 (bsc#1261717). * CVE-2026-35330: integer underflow when handling EAP-SIM/AKA attributes (bsc#1261705). * CVE-2026-35332: null pointer dereference when handling ECDH public value in TLS (bsc#1261708). * CVE-2026-35333: integer underflow when handling RADIUS attributes (bsc#1261706). * CVE-2026-35334: null pointer dereference in RSA decryption (bsc#1261720). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-2197=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2197=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2197=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * strongswan-debuginfo-5.9.12-150600.3.16.1 * strongswan-mysql-debuginfo-5.9.12-150600.3.16.1 * strongswan-ipsec-5.9.12-150600.3.16.1 * strongswan-5.9.12-150600.3.16.1 * strongswan-sqlite-debuginfo-5.9.12-150600.3.16.1 * strongswan-hmac-5.9.12-150600.3.16.1 * strongswan-libs0-5.9.12-150600.3.16.1 * strongswan-libs0-debuginfo-5.9.12-150600.3.16.1 * strongswan-ipsec-debuginfo-5.9.12-150600.3.16.1 * strongswan-sqlite-5.9.12-150600.3.16.1 * strongswan-nm-5.9.12-150600.3.16.1 * strongswan-nm-debuginfo-5.9.12-150600.3.16.1 * strongswan-debugsource-5.9.12-150600.3.16.1 * strongswan-mysql-5.9.12-150600.3.16.1 * openSUSE Leap 15.6 (noarch) * strongswan-doc-5.9.12-150600.3.16.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64) * strongswan-debuginfo-5.9.12-150600.3.16.1 * strongswan-ipsec-5.9.12-150600.3.16.1 * strongswan-5.9.12-150600.3.16.1 * strongswan-hmac-5.9.12-150600.3.16.1 * strongswan-libs0-5.9.12-150600.3.16.1 * strongswan-libs0-debuginfo-5.9.12-150600.3.16.1 * strongswan-ipsec-debuginfo-5.9.12-150600.3.16.1 * strongswan-debugsource-5.9.12-150600.3.16.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (noarch) * strongswan-doc-5.9.12-150600.3.16.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64) * strongswan-debuginfo-5.9.12-150600.3.16.1 * strongswan-ipsec-5.9.12-150600.3.16.1 * strongswan-5.9.12-150600.3.16.1 * strongswan-hmac-5.9.12-150600.3.16.1 * strongswan-libs0-5.9.12-150600.3.16.1 * strongswan-libs0-debuginfo-5.9.12-150600.3.16.1 * strongswan-ipsec-debuginfo-5.9.12-150600.3.16.1 * strongswan-debugsource-5.9.12-150600.3.16.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (noarch) * strongswan-doc-5.9.12-150600.3.16.1 ## References: * https://www.suse.com/security/cve/CVE-2026-35328.html * https://www.suse.com/security/cve/CVE-2026-35329.html * https://www.suse.com/security/cve/CVE-2026-35330.html * https://www.suse.com/security/cve/CVE-2026-35332.html * https://www.suse.com/security/cve/CVE-2026-35333.html * https://www.suse.com/security/cve/CVE-2026-35334.html * https://bugzilla.suse.com/show_bug.cgi?id=1261705 * https://bugzilla.suse.com/show_bug.cgi?id=1261706 * https://bugzilla.suse.com/show_bug.cgi?id=1261708 * https://bugzilla.suse.com/show_bug.cgi?id=1261712 * https://bugzilla.suse.com/show_bug.cgi?id=1261717 * https://bugzilla.suse.com/show_bug.cgi?id=1261720 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 12:32:49 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 12:32:49 -0000 Subject: SUSE-SU-2026:2195-1: important: Security update for the Linux Kernel Message-ID: <178031716984.904.13760534084902419473@28a6f8bc0cea> # Security update for the Linux Kernel Announcement ID: SUSE-SU-2026:2195-1 Release Date: 2026-06-01T07:40:43Z Rating: important References: * bsc#1234634 * bsc#1243603 * bsc#1248754 * bsc#1253754 * bsc#1258518 * bsc#1258718 * bsc#1258849 * bsc#1258850 * bsc#1258854 * bsc#1258855 * bsc#1258856 * bsc#1258857 * bsc#1258961 * bsc#1259484 * bsc#1259485 * bsc#1259857 * bsc#1260010 * bsc#1260018 * bsc#1260522 * bsc#1260526 * bsc#1261287 * bsc#1261295 * bsc#1261584 * bsc#1261638 * bsc#1261648 * bsc#1261707 * bsc#1261710 * bsc#1261779 * bsc#1261781 * bsc#1261796 * bsc#1261797 * bsc#1262020 * bsc#1262179 * bsc#1262181 * bsc#1262602 * bsc#1262665 * bsc#1262734 * bsc#1262758 * bsc#1263001 * bsc#1263065 * bsc#1263085 * bsc#1263093 * bsc#1263095 * bsc#1263131 * bsc#1263141 * bsc#1263165 * bsc#1263170 * bsc#1263176 * bsc#1263582 * bsc#1263600 * bsc#1263668 * bsc#1263723 * bsc#1263797 * bsc#1263815 * bsc#1263882 * bsc#1263901 * bsc#1263931 * bsc#1263933 * bsc#1264013 * bsc#1264059 * bsc#1264082 * bsc#1264087 * bsc#1264097 * bsc#1264482 * bsc#1264634 * bsc#1264651 * bsc#1264801 * bsc#1264848 * bsc#1265085 * bsc#1265090 * bsc#1265116 * bsc#1265119 * bsc#1265126 * bsc#1265421 * bsc#1265449 * bsc#1265456 * bsc#1265626 * bsc#1265846 * jsc#PED-7249 Cross-References: * CVE-2023-2058 * CVE-2025-54518 * CVE-2026-23209 * CVE-2026-23239 * CVE-2026-23240 * CVE-2026-23268 * CVE-2026-23269 * CVE-2026-23271 * CVE-2026-23273 * CVE-2026-23351 * CVE-2026-23393 * CVE-2026-23403 * CVE-2026-23404 * CVE-2026-23405 * CVE-2026-23406 * CVE-2026-23407 * CVE-2026-23408 * CVE-2026-23409 * CVE-2026-23410 * CVE-2026-23411 * CVE-2026-23449 * CVE-2026-23450 * CVE-2026-23458 * CVE-2026-23461 * CVE-2026-23462 * CVE-2026-31402 * CVE-2026-31403 * CVE-2026-31408 * CVE-2026-31436 * CVE-2026-31470 * CVE-2026-31504 * CVE-2026-31505 * CVE-2026-31507 * CVE-2026-31512 * CVE-2026-31528 * CVE-2026-31533 * CVE-2026-31570 * CVE-2026-31586 * CVE-2026-31588 * CVE-2026-31602 * CVE-2026-31607 * CVE-2026-31622 * CVE-2026-31649 * CVE-2026-31656 * CVE-2026-31662 * CVE-2026-31669 * CVE-2026-31685 * CVE-2026-31694 * CVE-2026-31700 * CVE-2026-31738 * CVE-2026-31787 * CVE-2026-43025 * CVE-2026-43027 * CVE-2026-43038 * CVE-2026-43044 * CVE-2026-43050 * CVE-2026-43110 * CVE-2026-43120 * CVE-2026-43126 * CVE-2026-43190 * CVE-2026-43214 * CVE-2026-43329 * CVE-2026-43330 * CVE-2026-43334 * CVE-2026-43365 * CVE-2026-43366 * CVE-2026-43437 * CVE-2026-43494 CVSS scores: * CVE-2023-2058 ( NVD ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N * CVE-2023-2058 ( NVD ): 2.4 CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23209 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23209 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23239 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23239 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23239 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23240 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23240 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23240 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23268 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23268 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23268 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23269 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23269 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23269 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23271 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23271 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23271 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23273 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23273 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23273 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23351 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23351 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23393 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23393 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23393 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23403 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23403 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2026-23403 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23404 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23404 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23404 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23405 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23405 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23405 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23406 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23406 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23406 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23407 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23407 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23407 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23408 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23408 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23408 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23408 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23409 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23409 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-23409 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23410 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23410 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23410 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23410 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23411 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23449 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23449 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23449 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23450 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23450 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23450 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23458 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23458 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23458 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23461 ( SUSE ): 7.7 CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23461 ( SUSE ): 7.5 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23461 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23462 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23462 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23462 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31402 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31402 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-31402 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31403 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31403 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31403 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31408 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31408 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31408 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31436 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31436 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31436 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31470 ( SUSE ): 6.0 CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:H/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31470 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H * CVE-2026-31470 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31504 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31504 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31504 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31505 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31505 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31505 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31507 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31507 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31507 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31512 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31512 ( SUSE ): 7.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-31512 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31528 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31528 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31528 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31533 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31533 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31533 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31570 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:H/SI:N/SA:N * CVE-2026-31570 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31570 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31586 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31586 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31586 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31588 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31588 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31588 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-31602 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31602 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31602 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31607 ( SUSE ): 7.0 CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31607 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H * CVE-2026-31607 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31622 ( SUSE ): 8.7 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31622 ( SUSE ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31622 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31649 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31649 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31649 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31656 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31656 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31656 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31662 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31662 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31662 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31669 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31669 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31669 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31685 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31685 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31685 ( NVD ): 9.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H * CVE-2026-31694 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31694 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31694 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31700 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31700 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31700 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31738 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31738 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31738 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31787 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31787 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31787 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43025 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43025 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H * CVE-2026-43027 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43027 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43038 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43038 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43044 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43044 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43044 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43050 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43050 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43050 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43110 ( SUSE ): 7.7 CVSS:4.0/AV:A/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43110 ( SUSE ): 7.5 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43110 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43120 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43120 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-43120 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43120 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43126 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43126 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43126 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43190 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43190 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-43190 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-43214 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43214 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43214 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43329 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43329 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43329 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43330 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43330 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43330 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43334 ( SUSE ): 8.6 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-43334 ( SUSE ): 8.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-43334 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43365 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-43365 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-43365 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-43366 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43366 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43366 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43437 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43437 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43437 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43494 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43494 ( SUSE ): 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.6 * SUSE Linux Enterprise High Availability Extension 15 SP6 * SUSE Linux Enterprise Live Patching 15-SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves 68 vulnerabilities, contains one feature and has 10 security fixes can now be installed. ## Description: The SUSE Linux Enterprise 15 SP6 kernel was updated to fix various security issues The following security issues were fixed: * CVE-2023-2058: x86/CPU: Fix FPDSS on Zen1 (bsc#1243603). * CVE-2025-54518: x86/CPU/AMD: Prevent improper isolation of shared resources in Zen2's op cache (bsc#1264013). * CVE-2026-23239: espintcp: Fix race condition in espintcp_close() (bsc#1259485). * CVE-2026-23240: tls: Fix race condition in tls_sw_cancel_work_tx() (bsc#1259484). * CVE-2026-23271: perf: Fix __perf_event_overflow() vs perf_remove_from_context() race (bsc#1260018). * CVE-2026-23351: netfilter: nft_set_pipapo: split gc into unlink and reclaim phase (bsc#1260526). * CVE-2026-23393: bridge: cfm: Fix race condition in peer_mep deletion (bsc#1260522). * CVE-2026-23449: net/sched: teql: Fix double-free in teql_master_xmit (bsc#1261779). * CVE-2026-23450: net/smc: fix NULL dereference and UAF in smc_tcp_syn_recv_sock() (bsc#1261584). * CVE-2026-23458: netfilter: ctnetlink: fix use-after-free in ctnetlink_dump_exp_ct() (bsc#1261781). * CVE-2026-23461: Bluetooth: L2CAP: Fix use-after-free in l2cap_unregister_user (bsc#1261707). * CVE-2026-23462: Bluetooth: HIDP: Fix possible UAF (bsc#1261710). * CVE-2026-31402: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache (bsc#1261638). * CVE-2026-31403: NFSD: Hold net reference for the lifetime of /proc/fs/nfs/exports fd (bsc#1261796). * CVE-2026-31408: Bluetooth: SCO: Fix use-after-free in sco_recv_frame() due to missing sock_hold (bsc#1261797). * CVE-2026-31436: dmaengine: idxd: fix possible wrong descriptor completion in llist_abort_desc() (bsc#1262602). * CVE-2026-31470: virt: tdx-guest: Fix handling of host controlled 'quote' buffer length (bsc#1262665). * CVE-2026-31504: net: fix fanout UAF in packet_release() via NETDEV_UP race (bsc#1263085). * CVE-2026-31505: iavf: fix out-of-bounds writes in iavf_get_ethtool_stats() (bsc#1263093). * CVE-2026-31507: net/smc: fix double-free of smc_spd_priv when tee() duplicates splice pipe buffer (bsc#1263095). * CVE-2026-31512: Bluetooth: L2CAP: Validate PDU length before reading SDU length in l2cap_ecred_data_rcv() (bsc#1262734). * CVE-2026-31528: perf: Make sure to use pmu_ctx->pmu for groups (bsc#1263001). * CVE-2026-31533: net/tls: fix use-after-free in -EBUSY error path of tls_do_encryption (bsc#1262758). * CVE-2026-31570: can: gw: fix OOB heap access in cgw_csum_crc8_rel() (bsc#1263065). * CVE-2026-31586: mm: blk-cgroup: fix use-after-free in cgwb_release_workfn() (bsc#1263176). * CVE-2026-31588: KVM: x86: Use scratch field in MMIO fragment to hold small write values (bsc#1263165). * CVE-2026-31602: ALSA: ctxfi: Limit PTP to a single page (bsc#1263723). * CVE-2026-31607: usbip: validate number_of_packets in usbip_pack_ret_submit() (bsc#1263600). * CVE-2026-31622: NFC: digital: Bounds check NFC-A cascade depth in SDD response handler (bsc#1263797). * CVE-2026-31649: net: stmmac: fix integer underflow in chain mode (bsc#1263582). * CVE-2026-31656: drm/i915/gt: fix refcount underflow in intel_engine_park_heartbeat (bsc#1263170). * CVE-2026-31662: tipc: fix bc_ackers underflow on duplicate GRP_ACK_MSG (bsc#1263131). * CVE-2026-31669: mptcp: fix slab-use-after-free in __inet_lookup_established (bsc#1263141). * CVE-2026-31685: netfilter: ip6t_eui64: reject invalid MAC header for all packets (bsc#1263668). * CVE-2026-31694: fuse: reject oversized dirents in page cache (bsc#1263901). * CVE-2026-31700: net/packet: fix TOCTOU race on mmap'd vnet_hdr in tpacket_snd() (bsc#1263882). * CVE-2026-31738: vxlan: validate ND option lengths in vxlan_na_create (bsc#1264059). * CVE-2026-31787: xen/privcmd: fix double free via VMA splitting (bsc#1262181). * CVE-2026-43025: netfilter: ctnetlink: ignore explicit helper on new expectations (bsc#1263931). * CVE-2026-43027: netfilter: nf_conntrack_helper: pass helper to expect cleanup (bsc#1263933). * CVE-2026-43038: ipv6: icmp: clear skb2->cb in ip6_err_gen_icmpv6_unreach() (bsc#1264097). * CVE-2026-43044: crypto: caam - fix DMA corruption on long hmac keys (bsc#1264087). * CVE-2026-43050: atm: lec: fix use-after-free in sock_def_readable() (bsc#1264082). * CVE-2026-43110: wifi: brcmfmac: validate bsscfg indices in IF events (bsc#1264482). * CVE-2026-43120: RDMA/irdma: Fix double free related to rereg_user_mr. * CVE-2026-43126: ALSA: mixer: oss: Add card disconnect checkpoints (bsc#1264634). * CVE-2026-43190: netfilter: xt_tcpmss: check remaining length before reading optlen (bsc#1264848). * CVE-2026-43214: KVM: x86: Add SRCU protection for reading PDPTRs in __get_sregs2() (bsc#1264651). * CVE-2026-43329: netfilter: flowtable: strictly check for maximum number of actions (bsc#1265085). * CVE-2026-43330: crypto: caam - fix overflow on long hmac keys (bsc#1264801). * CVE-2026-43334: Bluetooth: SMP: force responder MITM requirements before building the pairing response (bsc#1265090). * CVE-2026-43365: xfs: fix undersized l_iclog_roundoff values (bsc#1265119). * CVE-2026-43366: io_uring/kbuf: check if target buffer list is still legacy on recycle (bsc#1265116). * CVE-2026-43437: ALSA: pcm: fix use-after-free on linked stream runtime in snd_pcm_drain() (bsc#1265126). * CVE-2026-43494: net/rds: reset op_nents when zerocopy page pin fails (bsc#1265626). The following non security issues were fixed: * btrfs: reject root items with drop_progress and zero drop_level (git-fixes). * btrfs: replace BUG() with error handling in __btrfs_balance() (git-fixes). * check-for-config-changes: Exclude CC_MS_EXTENSIONS. * check-for-config-changes: Exclude HAVE_CFI_ICALL_NORMALIZE_INTEGERS{,_RUSTC}. * dm init: ensure device probing has finished in dm-mod.waitfor= (git-fixes). * hv_sock: fix ARM64 support (git-fixes). * ice: set max queues in alloc_etherdev_mqs() (git-fixes). * kdump, documentation: describe craskernel CMA reservation (jsc#PED-7249). * mkspec: Add signature to source list only when it exists. * net/rds: reset op_nents when zerocopy page pin fails (bsc#1265626). * net/sched: fix pedit partial COW leading to page cache corruption (bsc#1265421). * net: mana: Add MAC address to vPort logs and clarify error messages (git- fixes). * net: mana: check xdp_rxq registration before unreg in mana_destroy_rxq() (git-fixes). * net: mana: Don't overwrite port probe error with add_adev result (git- fixes). * net: mana: Fix crash from unvalidated SHM offset read from BAR0 during FLR (bsc#1265846). * net: mana: Fix EQ leak in mana_remove on NULL port (git-fixes). * net: mana: Fix RX skb truesize accounting (bsc#1248754). * net: mana: fix use-after-free in mana_hwc_destroy_channel() by reordering teardown (git-fixes). * net: mana: Guard mana_remove against double invocation (git-fixes). * net: mana: hardening: Validate adapter_mtu from MANA_QUERY_DEV_CONFIG (git- fixes). * net: mana: hardening: Validate doorbell ID from GDMA_REGISTER_DEVICE response (git-fixes). * net: mana: Init gf_stats_work before potential error paths in probe (git- fixes). * net: mana: Init link_change_work before potential error paths in probe (git- fixes). * net: mana: remove double CQ cleanup in mana_create_rxq error path (git- fixes). * net: mana: Set default number of queues to 16 (bsc#1261648). * net: mana: Skip WQ object destruction for uninitialized RXQ (git-fixes). * net: mana: Use at least SZ_4K in doorbell ID range check (git-fixes). * net: mana: Use pci_name() for debugfs directory naming (git-fixes). * ocfs2: fix possible deadlock between unlink and dio_end_io_write (bsc#1258718). * ocfs2: split transactions in dio completion to avoid credit exhaustion (bsc#1258718). * PCI: hv: Set default NUMA node to 0 for devices without affinity info (git- fixes). * RDMA/mana: Fix error unwind in mana_ib_create_qp_rss() (git-fixes). * RDMA/mana: Fix mana_destroy_wq_obj() cleanup in mana_ib_create_qp_rss() (git-fixes). * RDMA/mana: Remove user triggerable WARN_ON() in mana_ib_create_qp_rss() (git-fixes). * RDMA/mana: Validate rx_hash_key_len (git-fixes). * RDMA/mana_ib: cleanup the usage of mana_gd_send_request() (git-fixes). * RDMA/mana_ib: Disable RX steering on RSS QP destroy (git-fixes). * RDMA/mana_ib: Support memory windows (git-fixes). * sched/balancing: Switch the 'DEFINE_SPINLOCK(balancing)' spinlock into an 'atomic_t sched_balance_running' flag (bsc#1253754). * sched/fair: Change likelyhood of nohz.nr_cpus (bsc#1234634 bsc#1258961). * sched/fair: Have SD_SERIALIZE affect newidle balancing (bsc#1253754). * sched/fair: Move checking for nohz cpus after time check (bsc#1234634 bsc#1258961). * sched/fair: Remove nohz.nr_cpus and use weight of cpumask instead (bsc#1234634 bsc#1258961). * sched/fair: Skip sched_balance_running cmpxchg when balance is not due (bsc#1253754). * scsi: storvsc: Handle PERSISTENT_RESERVE_IN truncation for Hyper-V vFC (git- fixes). * scsi: target: iscsi: validate CHAP_R length before base64 decode (bsc#1265449). * tty: tty_io: update timestamps on all device nodes (bsc#1262020). * virt: tdx-guest: Return error for GetQuote failures (git-fixes). * workqueue: Break up enum definitions and give names to the types (bsc#1260522). * workqueue: Clean up enum work_bits and related constants (bsc#1260522). * workqueue: Factor out work_grab_pending() from __cancel_work_sync() (bsc#1260522). * workqueue: Fix UBSAN 'subtraction overflow' error in shift_and_mask() (bsc#1260522). * workqueue: Implement disable/enable for (delayed) work items (bsc#1260522). * workqueue: Introduce work_cancel_flags (bsc#1260522). * workqueue: Make @flags handling consistent across set_work_data() and friends (bsc#1260522). * workqueue: Preserve OFFQ bits in cancel[_sync] paths (bsc#1260522). * workqueue: Rename __cancel_work_timer() to __cancel_timer_sync() (bsc#1260522). * workqueue: Reorganize flush and cancel[_sync] functions (bsc#1260522). * Xarray: do not return sibling entries from xas_find_marked() (bsc#1263815). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-2195=1 * SUSE Linux Enterprise High Availability Extension 15 SP6 zypper in -t patch SUSE-SLE-Product-HA-15-SP6-2026-2195=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2195=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2195=1 * SUSE Linux Enterprise Live Patching 15-SP6 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP6-2026-2195=1 ## Package List: * openSUSE Leap 15.6 (noarch nosrc) * kernel-docs-6.4.0-150600.23.112.1 * openSUSE Leap 15.6 (noarch) * kernel-source-6.4.0-150600.23.112.1 * kernel-source-vanilla-6.4.0-150600.23.112.1 * kernel-macros-6.4.0-150600.23.112.1 * kernel-devel-6.4.0-150600.23.112.1 * kernel-docs-html-6.4.0-150600.23.112.1 * openSUSE Leap 15.6 (nosrc ppc64le x86_64) * kernel-debug-6.4.0-150600.23.112.1 * openSUSE Leap 15.6 (ppc64le x86_64) * kernel-debug-devel-debuginfo-6.4.0-150600.23.112.1 * kernel-debug-devel-6.4.0-150600.23.112.1 * kernel-debug-debugsource-6.4.0-150600.23.112.1 * kernel-debug-debuginfo-6.4.0-150600.23.112.1 * openSUSE Leap 15.6 (x86_64) * kernel-kvmsmall-vdso-6.4.0-150600.23.112.1 * kernel-kvmsmall-vdso-debuginfo-6.4.0-150600.23.112.1 * kernel-debug-vdso-6.4.0-150600.23.112.1 * kernel-default-vdso-6.4.0-150600.23.112.1 * kernel-default-vdso-debuginfo-6.4.0-150600.23.112.1 * kernel-debug-vdso-debuginfo-6.4.0-150600.23.112.1 * openSUSE Leap 15.6 (aarch64 ppc64le x86_64) * kernel-default-base-rebuild-6.4.0-150600.23.112.1.150600.12.52.1 * kernel-kvmsmall-devel-6.4.0-150600.23.112.1 * kernel-kvmsmall-debuginfo-6.4.0-150600.23.112.1 * kernel-default-base-6.4.0-150600.23.112.1.150600.12.52.1 * kernel-kvmsmall-devel-debuginfo-6.4.0-150600.23.112.1 * kernel-kvmsmall-debugsource-6.4.0-150600.23.112.1 * openSUSE Leap 15.6 (ppc64le s390x x86_64) * kernel-default-livepatch-devel-6.4.0-150600.23.112.1 * kernel-livepatch-6_4_0-150600_23_112-default-1-150600.13.3.1 * kernel-livepatch-SLE15-SP6_Update_26-debugsource-1-150600.13.3.1 * kernel-livepatch-6_4_0-150600_23_112-default-debuginfo-1-150600.13.3.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * kernel-obs-build-debugsource-6.4.0-150600.23.112.1 * kernel-default-debuginfo-6.4.0-150600.23.112.1 * gfs2-kmp-default-debuginfo-6.4.0-150600.23.112.1 * kernel-obs-qa-6.4.0-150600.23.112.1 * cluster-md-kmp-default-6.4.0-150600.23.112.1 * kernel-default-devel-6.4.0-150600.23.112.1 * dlm-kmp-default-debuginfo-6.4.0-150600.23.112.1 * kernel-obs-build-6.4.0-150600.23.112.1 * kernel-default-devel-debuginfo-6.4.0-150600.23.112.1 * kernel-default-optional-debuginfo-6.4.0-150600.23.112.1 * reiserfs-kmp-default-debuginfo-6.4.0-150600.23.112.1 * dlm-kmp-default-6.4.0-150600.23.112.1 * kselftests-kmp-default-6.4.0-150600.23.112.1 * kselftests-kmp-default-debuginfo-6.4.0-150600.23.112.1 * ocfs2-kmp-default-debuginfo-6.4.0-150600.23.112.1 * kernel-default-debugsource-6.4.0-150600.23.112.1 * gfs2-kmp-default-6.4.0-150600.23.112.1 * kernel-default-extra-debuginfo-6.4.0-150600.23.112.1 * ocfs2-kmp-default-6.4.0-150600.23.112.1 * reiserfs-kmp-default-6.4.0-150600.23.112.1 * kernel-default-extra-6.4.0-150600.23.112.1 * kernel-syms-6.4.0-150600.23.112.1 * kernel-default-optional-6.4.0-150600.23.112.1 * kernel-default-livepatch-6.4.0-150600.23.112.1 * cluster-md-kmp-default-debuginfo-6.4.0-150600.23.112.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 nosrc) * kernel-default-6.4.0-150600.23.112.1 * openSUSE Leap 15.6 (nosrc s390x) * kernel-zfcpdump-6.4.0-150600.23.112.1 * openSUSE Leap 15.6 (s390x) * kernel-zfcpdump-debugsource-6.4.0-150600.23.112.1 * kernel-zfcpdump-debuginfo-6.4.0-150600.23.112.1 * openSUSE Leap 15.6 (aarch64 nosrc ppc64le x86_64) * kernel-kvmsmall-6.4.0-150600.23.112.1 * openSUSE Leap 15.6 (nosrc) * dtb-aarch64-6.4.0-150600.23.112.1 * openSUSE Leap 15.6 (aarch64) * dtb-apm-6.4.0-150600.23.112.1 * cluster-md-kmp-64kb-debuginfo-6.4.0-150600.23.112.1 * dtb-cavium-6.4.0-150600.23.112.1 * kselftests-kmp-64kb-6.4.0-150600.23.112.1 * dtb-hisilicon-6.4.0-150600.23.112.1 * dtb-marvell-6.4.0-150600.23.112.1 * dtb-mediatek-6.4.0-150600.23.112.1 * dlm-kmp-64kb-debuginfo-6.4.0-150600.23.112.1 * kernel-64kb-extra-debuginfo-6.4.0-150600.23.112.1 * cluster-md-kmp-64kb-6.4.0-150600.23.112.1 * dtb-allwinner-6.4.0-150600.23.112.1 * ocfs2-kmp-64kb-6.4.0-150600.23.112.1 * gfs2-kmp-64kb-debuginfo-6.4.0-150600.23.112.1 * dtb-altera-6.4.0-150600.23.112.1 * kernel-64kb-optional-debuginfo-6.4.0-150600.23.112.1 * dtb-xilinx-6.4.0-150600.23.112.1 * kernel-64kb-debugsource-6.4.0-150600.23.112.1 * dtb-nvidia-6.4.0-150600.23.112.1 * gfs2-kmp-64kb-6.4.0-150600.23.112.1 * dtb-freescale-6.4.0-150600.23.112.1 * dtb-sprd-6.4.0-150600.23.112.1 * dtb-lg-6.4.0-150600.23.112.1 * dtb-rockchip-6.4.0-150600.23.112.1 * kernel-64kb-devel-6.4.0-150600.23.112.1 * dtb-socionext-6.4.0-150600.23.112.1 * dtb-apple-6.4.0-150600.23.112.1 * kernel-64kb-optional-6.4.0-150600.23.112.1 * dlm-kmp-64kb-6.4.0-150600.23.112.1 * reiserfs-kmp-64kb-debuginfo-6.4.0-150600.23.112.1 * dtb-amlogic-6.4.0-150600.23.112.1 * reiserfs-kmp-64kb-6.4.0-150600.23.112.1 * ocfs2-kmp-64kb-debuginfo-6.4.0-150600.23.112.1 * dtb-amazon-6.4.0-150600.23.112.1 * dtb-arm-6.4.0-150600.23.112.1 * kselftests-kmp-64kb-debuginfo-6.4.0-150600.23.112.1 * dtb-exynos-6.4.0-150600.23.112.1 * dtb-amd-6.4.0-150600.23.112.1 * kernel-64kb-devel-debuginfo-6.4.0-150600.23.112.1 * kernel-64kb-debuginfo-6.4.0-150600.23.112.1 * dtb-qcom-6.4.0-150600.23.112.1 * dtb-broadcom-6.4.0-150600.23.112.1 * kernel-64kb-extra-6.4.0-150600.23.112.1 * dtb-renesas-6.4.0-150600.23.112.1 * openSUSE Leap 15.6 (aarch64 nosrc) * kernel-64kb-6.4.0-150600.23.112.1 * SUSE Linux Enterprise High Availability Extension 15 SP6 (nosrc) * kernel-default-6.4.0-150600.23.112.1 * SUSE Linux Enterprise High Availability Extension 15 SP6 (aarch64 ppc64le s390x x86_64) * kernel-default-debuginfo-6.4.0-150600.23.112.1 * kernel-default-debugsource-6.4.0-150600.23.112.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64) * kernel-default-debuginfo-6.4.0-150600.23.112.1 * kernel-obs-build-debugsource-6.4.0-150600.23.112.1 * ocfs2-kmp-default-debuginfo-6.4.0-150600.23.112.1 * gfs2-kmp-default-debuginfo-6.4.0-150600.23.112.1 * reiserfs-kmp-default-debuginfo-6.4.0-150600.23.112.1 * dlm-kmp-default-6.4.0-150600.23.112.1 * kernel-default-debugsource-6.4.0-150600.23.112.1 * kernel-syms-6.4.0-150600.23.112.1 * gfs2-kmp-default-6.4.0-150600.23.112.1 * cluster-md-kmp-default-6.4.0-150600.23.112.1 * cluster-md-kmp-default-debuginfo-6.4.0-150600.23.112.1 * kernel-default-devel-6.4.0-150600.23.112.1 * reiserfs-kmp-default-6.4.0-150600.23.112.1 * ocfs2-kmp-default-6.4.0-150600.23.112.1 * dlm-kmp-default-debuginfo-6.4.0-150600.23.112.1 * kernel-obs-build-6.4.0-150600.23.112.1 * kernel-default-devel-debuginfo-6.4.0-150600.23.112.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 nosrc) * kernel-64kb-6.4.0-150600.23.112.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64) * kernel-64kb-debuginfo-6.4.0-150600.23.112.1 * kernel-64kb-devel-6.4.0-150600.23.112.1 * kernel-64kb-devel-debuginfo-6.4.0-150600.23.112.1 * kernel-64kb-debugsource-6.4.0-150600.23.112.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64 nosrc) * kernel-default-6.4.0-150600.23.112.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le x86_64) * kernel-default-base-6.4.0-150600.23.112.1.150600.12.52.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (noarch) * kernel-source-6.4.0-150600.23.112.1 * kernel-devel-6.4.0-150600.23.112.1 * kernel-macros-6.4.0-150600.23.112.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (noarch nosrc) * kernel-docs-6.4.0-150600.23.112.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (nosrc s390x) * kernel-zfcpdump-6.4.0-150600.23.112.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (s390x) * kernel-zfcpdump-debugsource-6.4.0-150600.23.112.1 * kernel-zfcpdump-debuginfo-6.4.0-150600.23.112.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64) * kernel-default-debuginfo-6.4.0-150600.23.112.1 * kernel-obs-build-debugsource-6.4.0-150600.23.112.1 * ocfs2-kmp-default-debuginfo-6.4.0-150600.23.112.1 * gfs2-kmp-default-debuginfo-6.4.0-150600.23.112.1 * reiserfs-kmp-default-debuginfo-6.4.0-150600.23.112.1 * dlm-kmp-default-6.4.0-150600.23.112.1 * kernel-default-debugsource-6.4.0-150600.23.112.1 * kernel-syms-6.4.0-150600.23.112.1 * gfs2-kmp-default-6.4.0-150600.23.112.1 * cluster-md-kmp-default-6.4.0-150600.23.112.1 * cluster-md-kmp-default-debuginfo-6.4.0-150600.23.112.1 * kernel-default-devel-6.4.0-150600.23.112.1 * kernel-default-base-6.4.0-150600.23.112.1.150600.12.52.1 * reiserfs-kmp-default-6.4.0-150600.23.112.1 * ocfs2-kmp-default-6.4.0-150600.23.112.1 * dlm-kmp-default-debuginfo-6.4.0-150600.23.112.1 * kernel-obs-build-6.4.0-150600.23.112.1 * kernel-default-devel-debuginfo-6.4.0-150600.23.112.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (nosrc ppc64le x86_64) * kernel-default-6.4.0-150600.23.112.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (noarch) * kernel-source-6.4.0-150600.23.112.1 * kernel-devel-6.4.0-150600.23.112.1 * kernel-macros-6.4.0-150600.23.112.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (noarch nosrc) * kernel-docs-6.4.0-150600.23.112.1 * SUSE Linux Enterprise Live Patching 15-SP6 (nosrc) * kernel-default-6.4.0-150600.23.112.1 * SUSE Linux Enterprise Live Patching 15-SP6 (ppc64le s390x x86_64) * kernel-default-debuginfo-6.4.0-150600.23.112.1 * kernel-default-debugsource-6.4.0-150600.23.112.1 * kernel-livepatch-6_4_0-150600_23_112-default-1-150600.13.3.1 * kernel-livepatch-SLE15-SP6_Update_26-debugsource-1-150600.13.3.1 * kernel-default-livepatch-6.4.0-150600.23.112.1 * kernel-livepatch-6_4_0-150600_23_112-default-debuginfo-1-150600.13.3.1 * kernel-default-livepatch-devel-6.4.0-150600.23.112.1 ## References: * https://www.suse.com/security/cve/CVE-2023-2058.html * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23209.html * https://www.suse.com/security/cve/CVE-2026-23239.html * https://www.suse.com/security/cve/CVE-2026-23240.html * https://www.suse.com/security/cve/CVE-2026-23268.html * https://www.suse.com/security/cve/CVE-2026-23269.html * https://www.suse.com/security/cve/CVE-2026-23271.html * https://www.suse.com/security/cve/CVE-2026-23273.html * https://www.suse.com/security/cve/CVE-2026-23351.html * https://www.suse.com/security/cve/CVE-2026-23393.html * https://www.suse.com/security/cve/CVE-2026-23403.html * https://www.suse.com/security/cve/CVE-2026-23404.html * https://www.suse.com/security/cve/CVE-2026-23405.html * https://www.suse.com/security/cve/CVE-2026-23406.html * https://www.suse.com/security/cve/CVE-2026-23407.html * https://www.suse.com/security/cve/CVE-2026-23408.html * https://www.suse.com/security/cve/CVE-2026-23409.html * https://www.suse.com/security/cve/CVE-2026-23410.html * https://www.suse.com/security/cve/CVE-2026-23411.html * https://www.suse.com/security/cve/CVE-2026-23449.html * https://www.suse.com/security/cve/CVE-2026-23450.html * https://www.suse.com/security/cve/CVE-2026-23458.html * https://www.suse.com/security/cve/CVE-2026-23461.html * https://www.suse.com/security/cve/CVE-2026-23462.html * https://www.suse.com/security/cve/CVE-2026-31402.html * https://www.suse.com/security/cve/CVE-2026-31403.html * https://www.suse.com/security/cve/CVE-2026-31408.html * https://www.suse.com/security/cve/CVE-2026-31436.html * https://www.suse.com/security/cve/CVE-2026-31470.html * https://www.suse.com/security/cve/CVE-2026-31504.html * https://www.suse.com/security/cve/CVE-2026-31505.html * https://www.suse.com/security/cve/CVE-2026-31507.html * https://www.suse.com/security/cve/CVE-2026-31512.html * https://www.suse.com/security/cve/CVE-2026-31528.html * https://www.suse.com/security/cve/CVE-2026-31533.html * https://www.suse.com/security/cve/CVE-2026-31570.html * https://www.suse.com/security/cve/CVE-2026-31586.html * https://www.suse.com/security/cve/CVE-2026-31588.html * https://www.suse.com/security/cve/CVE-2026-31602.html * https://www.suse.com/security/cve/CVE-2026-31607.html * https://www.suse.com/security/cve/CVE-2026-31622.html * https://www.suse.com/security/cve/CVE-2026-31649.html * https://www.suse.com/security/cve/CVE-2026-31656.html * https://www.suse.com/security/cve/CVE-2026-31662.html * https://www.suse.com/security/cve/CVE-2026-31669.html * https://www.suse.com/security/cve/CVE-2026-31685.html * https://www.suse.com/security/cve/CVE-2026-31694.html * https://www.suse.com/security/cve/CVE-2026-31700.html * https://www.suse.com/security/cve/CVE-2026-31738.html * https://www.suse.com/security/cve/CVE-2026-31787.html * https://www.suse.com/security/cve/CVE-2026-43025.html * https://www.suse.com/security/cve/CVE-2026-43027.html * https://www.suse.com/security/cve/CVE-2026-43038.html * https://www.suse.com/security/cve/CVE-2026-43044.html * https://www.suse.com/security/cve/CVE-2026-43050.html * https://www.suse.com/security/cve/CVE-2026-43110.html * https://www.suse.com/security/cve/CVE-2026-43120.html * https://www.suse.com/security/cve/CVE-2026-43126.html * https://www.suse.com/security/cve/CVE-2026-43190.html * https://www.suse.com/security/cve/CVE-2026-43214.html * https://www.suse.com/security/cve/CVE-2026-43329.html * https://www.suse.com/security/cve/CVE-2026-43330.html * https://www.suse.com/security/cve/CVE-2026-43334.html * https://www.suse.com/security/cve/CVE-2026-43365.html * https://www.suse.com/security/cve/CVE-2026-43366.html * https://www.suse.com/security/cve/CVE-2026-43437.html * https://www.suse.com/security/cve/CVE-2026-43494.html * https://bugzilla.suse.com/show_bug.cgi?id=1234634 * https://bugzilla.suse.com/show_bug.cgi?id=1243603 * https://bugzilla.suse.com/show_bug.cgi?id=1248754 * https://bugzilla.suse.com/show_bug.cgi?id=1253754 * https://bugzilla.suse.com/show_bug.cgi?id=1258518 * https://bugzilla.suse.com/show_bug.cgi?id=1258718 * https://bugzilla.suse.com/show_bug.cgi?id=1258849 * https://bugzilla.suse.com/show_bug.cgi?id=1258850 * https://bugzilla.suse.com/show_bug.cgi?id=1258854 * https://bugzilla.suse.com/show_bug.cgi?id=1258855 * https://bugzilla.suse.com/show_bug.cgi?id=1258856 * https://bugzilla.suse.com/show_bug.cgi?id=1258857 * https://bugzilla.suse.com/show_bug.cgi?id=1258961 * https://bugzilla.suse.com/show_bug.cgi?id=1259484 * https://bugzilla.suse.com/show_bug.cgi?id=1259485 * https://bugzilla.suse.com/show_bug.cgi?id=1259857 * https://bugzilla.suse.com/show_bug.cgi?id=1260010 * https://bugzilla.suse.com/show_bug.cgi?id=1260018 * https://bugzilla.suse.com/show_bug.cgi?id=1260522 * https://bugzilla.suse.com/show_bug.cgi?id=1260526 * https://bugzilla.suse.com/show_bug.cgi?id=1261287 * https://bugzilla.suse.com/show_bug.cgi?id=1261295 * https://bugzilla.suse.com/show_bug.cgi?id=1261584 * https://bugzilla.suse.com/show_bug.cgi?id=1261638 * https://bugzilla.suse.com/show_bug.cgi?id=1261648 * https://bugzilla.suse.com/show_bug.cgi?id=1261707 * https://bugzilla.suse.com/show_bug.cgi?id=1261710 * https://bugzilla.suse.com/show_bug.cgi?id=1261779 * https://bugzilla.suse.com/show_bug.cgi?id=1261781 * https://bugzilla.suse.com/show_bug.cgi?id=1261796 * https://bugzilla.suse.com/show_bug.cgi?id=1261797 * https://bugzilla.suse.com/show_bug.cgi?id=1262020 * https://bugzilla.suse.com/show_bug.cgi?id=1262179 * https://bugzilla.suse.com/show_bug.cgi?id=1262181 * https://bugzilla.suse.com/show_bug.cgi?id=1262602 * https://bugzilla.suse.com/show_bug.cgi?id=1262665 * https://bugzilla.suse.com/show_bug.cgi?id=1262734 * https://bugzilla.suse.com/show_bug.cgi?id=1262758 * https://bugzilla.suse.com/show_bug.cgi?id=1263001 * https://bugzilla.suse.com/show_bug.cgi?id=1263065 * https://bugzilla.suse.com/show_bug.cgi?id=1263085 * https://bugzilla.suse.com/show_bug.cgi?id=1263093 * https://bugzilla.suse.com/show_bug.cgi?id=1263095 * https://bugzilla.suse.com/show_bug.cgi?id=1263131 * https://bugzilla.suse.com/show_bug.cgi?id=1263141 * https://bugzilla.suse.com/show_bug.cgi?id=1263165 * https://bugzilla.suse.com/show_bug.cgi?id=1263170 * https://bugzilla.suse.com/show_bug.cgi?id=1263176 * https://bugzilla.suse.com/show_bug.cgi?id=1263582 * https://bugzilla.suse.com/show_bug.cgi?id=1263600 * https://bugzilla.suse.com/show_bug.cgi?id=1263668 * https://bugzilla.suse.com/show_bug.cgi?id=1263723 * https://bugzilla.suse.com/show_bug.cgi?id=1263797 * https://bugzilla.suse.com/show_bug.cgi?id=1263815 * https://bugzilla.suse.com/show_bug.cgi?id=1263882 * https://bugzilla.suse.com/show_bug.cgi?id=1263901 * https://bugzilla.suse.com/show_bug.cgi?id=1263931 * https://bugzilla.suse.com/show_bug.cgi?id=1263933 * https://bugzilla.suse.com/show_bug.cgi?id=1264013 * https://bugzilla.suse.com/show_bug.cgi?id=1264059 * https://bugzilla.suse.com/show_bug.cgi?id=1264082 * https://bugzilla.suse.com/show_bug.cgi?id=1264087 * https://bugzilla.suse.com/show_bug.cgi?id=1264097 * https://bugzilla.suse.com/show_bug.cgi?id=1264482 * https://bugzilla.suse.com/show_bug.cgi?id=1264634 * https://bugzilla.suse.com/show_bug.cgi?id=1264651 * https://bugzilla.suse.com/show_bug.cgi?id=1264801 * https://bugzilla.suse.com/show_bug.cgi?id=1264848 * https://bugzilla.suse.com/show_bug.cgi?id=1265085 * https://bugzilla.suse.com/show_bug.cgi?id=1265090 * https://bugzilla.suse.com/show_bug.cgi?id=1265116 * https://bugzilla.suse.com/show_bug.cgi?id=1265119 * https://bugzilla.suse.com/show_bug.cgi?id=1265126 * https://bugzilla.suse.com/show_bug.cgi?id=1265421 * https://bugzilla.suse.com/show_bug.cgi?id=1265449 * https://bugzilla.suse.com/show_bug.cgi?id=1265456 * https://bugzilla.suse.com/show_bug.cgi?id=1265626 * https://bugzilla.suse.com/show_bug.cgi?id=1265846 * https://jira.suse.com/browse/PED-7249 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 12:32:54 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 12:32:54 -0000 Subject: SUSE-SU-2026:2194-1: important: Security update for ignition Message-ID: <178031717402.904.11643940894898901870@28a6f8bc0cea> # Security update for ignition Announcement ID: SUSE-SU-2026:2194-1 Release Date: 2026-06-01T07:08:59Z Rating: important References: * bsc#1265751 Cross-References: * CVE-2026-33814 CVSS scores: * CVE-2026-33814 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-33814 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-33814 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro for Rancher 5.3 An update that solves one vulnerability can now be installed. ## Description: This update for ignition fixes the following issue * CVE-2026-33814: golang.org/x/net/http2: infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE (bsc#1265751). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-2194=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-2194=1 ## Package List: * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * ignition-debuginfo-2.14.0-150400.4.18.1 * ignition-dracut-grub2-2.14.0-150400.4.18.1 * ignition-2.14.0-150400.4.18.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * ignition-debuginfo-2.14.0-150400.4.18.1 * ignition-dracut-grub2-2.14.0-150400.4.18.1 * ignition-2.14.0-150400.4.18.1 ## References: * https://www.suse.com/security/cve/CVE-2026-33814.html * https://bugzilla.suse.com/show_bug.cgi?id=1265751 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 12:32:57 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 12:32:57 -0000 Subject: SUSE-SU-2026:2193-1: important: Security update for ignition Message-ID: <178031717793.904.2377863190895112448@28a6f8bc0cea> # Security update for ignition Announcement ID: SUSE-SU-2026:2193-1 Release Date: 2026-06-01T07:08:53Z Rating: important References: * bsc#1265751 Cross-References: * CVE-2026-33814 CVSS scores: * CVE-2026-33814 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-33814 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-33814 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro for Rancher 5.4 An update that solves one vulnerability can now be installed. ## Description: This update for ignition fixes the following issue * CVE-2026-33814: golang.org/x/net/http2: infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE (bsc#1265751). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-2193=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-2193=1 ## Package List: * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * ignition-dracut-grub2-2.15.0-150400.4.17.1 * ignition-debuginfo-2.15.0-150400.4.17.1 * ignition-2.15.0-150400.4.17.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * ignition-dracut-grub2-2.15.0-150400.4.17.1 * ignition-debuginfo-2.15.0-150400.4.17.1 * ignition-2.15.0-150400.4.17.1 ## References: * https://www.suse.com/security/cve/CVE-2026-33814.html * https://bugzilla.suse.com/show_bug.cgi?id=1265751 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 12:33:01 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 12:33:01 -0000 Subject: SUSE-SU-2026:2192-1: important: Security update for ignition Message-ID: <178031718126.904.4705850237365240627@28a6f8bc0cea> # Security update for ignition Announcement ID: SUSE-SU-2026:2192-1 Release Date: 2026-06-01T07:08:47Z Rating: important References: * bsc#1265751 Cross-References: * CVE-2026-33814 CVSS scores: * CVE-2026-33814 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-33814 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-33814 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise Micro 5.5 An update that solves one vulnerability can now be installed. ## Description: This update for ignition fixes the following issue * CVE-2026-33814: golang.org/x/net/http2: infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE (bsc#1265751). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2026-2192=1 ## Package List: * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * ignition-debuginfo-2.17.0-150500.3.18.1 * ignition-dracut-grub2-2.17.0-150500.3.18.1 * ignition-2.17.0-150500.3.18.1 ## References: * https://www.suse.com/security/cve/CVE-2026-33814.html * https://bugzilla.suse.com/show_bug.cgi?id=1265751 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 16:30:19 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 16:30:19 -0000 Subject: SUSE-SU-2026:2199-1: important: Security update for the Linux Kernel (Live Patch 17 for SUSE Linux Enterprise 15 SP6) Message-ID: <178033141920.1897.9457683179457558838@c5908e215476> # Security update for the Linux Kernel (Live Patch 17 for SUSE Linux Enterprise 15 SP6) Announcement ID: SUSE-SU-2026:2199-1 Release Date: 2026-06-01T08:34:21Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * openSUSE Leap 15.6 * SUSE Linux Enterprise Live Patching 15-SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-150600.23.78 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-2199=1 * SUSE Linux Enterprise Live Patching 15-SP6 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP6-2026-2199=1 ## Package List: * openSUSE Leap 15.6 (ppc64le s390x x86_64) * kernel-livepatch-6_4_0-150600_23_78-default-7-150600.2.1 * kernel-livepatch-6_4_0-150600_23_78-default-debuginfo-7-150600.2.1 * kernel-livepatch-SLE15-SP6_Update_17-debugsource-7-150600.2.1 * SUSE Linux Enterprise Live Patching 15-SP6 (ppc64le s390x x86_64) * kernel-livepatch-6_4_0-150600_23_78-default-7-150600.2.1 * kernel-livepatch-6_4_0-150600_23_78-default-debuginfo-7-150600.2.1 * kernel-livepatch-SLE15-SP6_Update_17-debugsource-7-150600.2.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 16:30:26 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 16:30:26 -0000 Subject: SUSE-SU-2026:2200-1: important: Security update for the Linux Kernel (Live Patch 22 for SUSE Linux Enterprise 15 SP6) Message-ID: <178033142630.1897.12576298151131401518@c5908e215476> # Security update for the Linux Kernel (Live Patch 22 for SUSE Linux Enterprise 15 SP6) Announcement ID: SUSE-SU-2026:2200-1 Release Date: 2026-06-01T10:07:50Z Rating: important References: * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * openSUSE Leap 15.5 * openSUSE Leap 15.6 * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Live Patching 12-SP5 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Live Patching 15-SP6 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves three vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-150600.23.95 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 12-SP5 zypper in -t patch SUSE-SLE-Live-Patching-12-SP5-2026-2200=1 * openSUSE Leap 15.5 zypper in -t patch SUSE-2026-2205=1 SUSE-2026-2198=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2026-2198=1 SUSE-SLE- Module-Live-Patching-15-SP5-2026-2205=1 * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-2201=1 * SUSE Linux Enterprise Live Patching 15-SP6 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP6-2026-2201=1 ## Package List: * SUSE Linux Enterprise Live Patching 12-SP5 (ppc64le s390x x86_64) * kgraft-patch-4_12_14-122_302-default-3-2.1 * openSUSE Leap 15.5 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP5_Update_37-debugsource-4-150500.2.1 * kernel-livepatch-5_14_21-150500_55_149-default-debuginfo-3-150500.2.1 * kernel-livepatch-5_14_21-150500_55_149-default-3-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_38-debugsource-3-150500.2.1 * kernel-livepatch-5_14_21-150500_55_144-default-4-150500.2.1 * kernel-livepatch-5_14_21-150500_55_144-default-debuginfo-4-150500.2.1 * SUSE Linux Enterprise Live Patching 15-SP5 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP5_Update_37-debugsource-4-150500.2.1 * kernel-livepatch-5_14_21-150500_55_149-default-debuginfo-3-150500.2.1 * kernel-livepatch-5_14_21-150500_55_149-default-3-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_38-debugsource-3-150500.2.1 * kernel-livepatch-5_14_21-150500_55_144-default-4-150500.2.1 * kernel-livepatch-5_14_21-150500_55_144-default-debuginfo-4-150500.2.1 * openSUSE Leap 15.6 (ppc64le s390x x86_64) * kernel-livepatch-6_4_0-150600_23_95-default-debuginfo-4-150600.2.1 * kernel-livepatch-6_4_0-150600_23_95-default-4-150600.2.1 * kernel-livepatch-SLE15-SP6_Update_22-debugsource-4-150600.2.1 * SUSE Linux Enterprise Live Patching 15-SP6 (ppc64le s390x x86_64) * kernel-livepatch-6_4_0-150600_23_95-default-debuginfo-4-150600.2.1 * kernel-livepatch-6_4_0-150600_23_95-default-4-150600.2.1 * kernel-livepatch-SLE15-SP6_Update_22-debugsource-4-150600.2.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 16:30:30 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 16:30:30 -0000 Subject: SUSE-SU-2026:2204-1: important: Security update for busybox Message-ID: <178033143025.1897.1405042144329063846@c5908e215476> # Security update for busybox Announcement ID: SUSE-SU-2026:2204-1 Release Date: 2026-06-01T10:04:56Z Rating: important References: * bsc#1263989 Cross-References: * CVE-2026-29004 CVSS scores: * CVE-2026-29004 ( SUSE ): 7.2 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-29004 ( SUSE ): 8.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H * CVE-2026-29004 ( NVD ): 7.2 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-29004 ( NVD ): 8.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP4 An update that solves one vulnerability can now be installed. ## Description: This update for busybox fixes the following issue * CVE-2026-29004: a crafted DHCPv6 response can lead to a heap buffer overflow in the DHCPv6 client (bsc#1263989). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2026-2204=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2204=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2204=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2204=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2204=1 ## Package List: * openSUSE Leap 15.4 (noarch) * busybox-net-tools-1.35.0-150400.4.7.1 * busybox-gzip-1.35.0-150400.4.7.1 * busybox-tar-1.35.0-150400.4.7.1 * busybox-adduser-1.35.0-150400.4.7.1 * busybox-diffutils-1.35.0-150400.4.7.1 * busybox-sendmail-1.35.0-150400.4.7.1 * busybox-patch-1.35.0-150400.4.7.1 * busybox-sh-1.35.0-150400.4.7.1 * busybox-iputils-1.35.0-150400.4.7.1 * busybox-misc-1.35.0-150400.4.7.1 * busybox-ncurses-utils-1.35.0-150400.4.7.1 * busybox-less-1.35.0-150400.4.7.1 * busybox-syslogd-1.35.0-150400.4.7.1 * busybox-dos2unix-1.35.0-150400.4.7.1 * busybox-sysvinit-tools-1.35.0-150400.4.7.1 * busybox-telnet-1.35.0-150400.4.7.1 * busybox-vlan-1.35.0-150400.4.7.1 * busybox-man-1.35.0-150400.4.7.1 * busybox-vi-1.35.0-150400.4.7.1 * busybox-gawk-1.35.0-150400.4.7.1 * busybox-util-linux-1.35.0-150400.4.7.1 * busybox-findutils-1.35.0-150400.4.7.1 * busybox-kbd-1.35.0-150400.4.7.1 * busybox-xz-1.35.0-150400.4.7.1 * busybox-grep-1.35.0-150400.4.7.1 * busybox-links-1.35.0-150400.4.7.1 * busybox-hostname-1.35.0-150400.4.7.1 * busybox-psmisc-1.35.0-150400.4.7.1 * busybox-time-1.35.0-150400.4.7.1 * busybox-netcat-1.35.0-150400.4.7.1 * busybox-procps-1.35.0-150400.4.7.1 * busybox-unzip-1.35.0-150400.4.7.1 * busybox-bc-1.35.0-150400.4.7.1 * busybox-policycoreutils-1.35.0-150400.4.7.1 * busybox-bzip2-1.35.0-150400.4.7.1 * busybox-bind-utils-1.35.0-150400.4.7.1 * busybox-coreutils-1.35.0-150400.4.7.1 * busybox-tunctl-1.35.0-150400.4.7.1 * busybox-attr-1.35.0-150400.4.7.1 * busybox-selinux-tools-1.35.0-150400.4.7.1 * busybox-traceroute-1.35.0-150400.4.7.1 * busybox-cpio-1.35.0-150400.4.7.1 * busybox-which-1.35.0-150400.4.7.1 * busybox-sharutils-1.35.0-150400.4.7.1 * busybox-whois-1.35.0-150400.4.7.1 * busybox-kmod-1.35.0-150400.4.7.1 * busybox-wget-1.35.0-150400.4.7.1 * busybox-iproute2-1.35.0-150400.4.7.1 * busybox-ed-1.35.0-150400.4.7.1 * busybox-sed-1.35.0-150400.4.7.1 * busybox-tftp-1.35.0-150400.4.7.1 * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * busybox-testsuite-1.35.0-150400.3.17.1 * busybox-1.35.0-150400.3.17.1 * busybox-static-1.35.0-150400.3.17.1 * openSUSE Leap 15.4 (aarch64 x86_64 i586) * busybox-warewulf3-1.35.0-150400.3.17.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * busybox-1.35.0-150400.3.17.1 * busybox-static-1.35.0-150400.3.17.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * busybox-1.35.0-150400.3.17.1 * busybox-static-1.35.0-150400.3.17.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * busybox-1.35.0-150400.3.17.1 * busybox-static-1.35.0-150400.3.17.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * busybox-1.35.0-150400.3.17.1 * busybox-static-1.35.0-150400.3.17.1 ## References: * https://www.suse.com/security/cve/CVE-2026-29004.html * https://bugzilla.suse.com/show_bug.cgi?id=1263989 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 16:31:13 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 16:31:13 -0000 Subject: SUSE-SU-2026:2203-1: important: Security update for wireshark Message-ID: <178033147311.1897.18282325154140890365@c5908e215476> # Security update for wireshark Announcement ID: SUSE-SU-2026:2203-1 Release Date: 2026-06-01T10:03:24Z Rating: important References: * bsc#1263725 * bsc#1263726 * bsc#1263727 * bsc#1263728 * bsc#1263731 * bsc#1263732 * bsc#1263734 * bsc#1263736 * bsc#1263737 * bsc#1263739 * bsc#1263740 * bsc#1263742 * bsc#1263743 * bsc#1263744 * bsc#1263745 * bsc#1263746 * bsc#1263747 * bsc#1263750 * bsc#1263752 * bsc#1263753 * bsc#1263754 * bsc#1263756 * bsc#1263758 * bsc#1263759 * bsc#1263762 * bsc#1263765 * bsc#1263766 * bsc#1263767 * bsc#1263809 Cross-References: * CVE-2026-5401 * CVE-2026-5403 * CVE-2026-5404 * CVE-2026-5405 * CVE-2026-5406 * CVE-2026-5407 * CVE-2026-5408 * CVE-2026-5653 * CVE-2026-5656 * CVE-2026-5657 * CVE-2026-6519 * CVE-2026-6520 * CVE-2026-6521 * CVE-2026-6522 * CVE-2026-6523 * CVE-2026-6526 * CVE-2026-6527 * CVE-2026-6529 * CVE-2026-6530 * CVE-2026-6532 * CVE-2026-6534 * CVE-2026-6535 * CVE-2026-6538 * CVE-2026-6867 * CVE-2026-6868 * CVE-2026-6869 * CVE-2026-6870 * CVE-2026-7378 * CVE-2026-7379 CVSS scores: * CVE-2026-5401 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5401 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5403 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5403 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-5404 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5404 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5404 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5405 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-5405 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-5406 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5406 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5407 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5407 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5408 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5408 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5653 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5653 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-5653 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5656 ( SUSE ): 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-5656 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-5656 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-5657 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5657 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5657 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-6519 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6519 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6519 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-6520 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6520 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6520 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-6521 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6521 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6522 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6522 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6523 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6523 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6526 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6526 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6527 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6527 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6529 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6529 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6530 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6530 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6532 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6532 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6534 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6534 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6535 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6535 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6538 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6538 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6867 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6867 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6868 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6868 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6868 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-6869 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6869 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6870 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6870 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-7378 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-7378 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-7378 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-7379 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-7379 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-7379 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves 29 vulnerabilities can now be installed. ## Description: This update for wireshark fixes the following issues * CVE-2026-5401: AFP dissector crash (bsc#1263756). * CVE-2026-5403: SBC audio codec crash (bsc#1263765). * CVE-2026-5404: K12 RF5 file parser crash (bsc#1263766). * CVE-2026-5405: RDP dissector crash (bsc#1263767). * CVE-2026-5406: FC-SWILS dissector crash (bsc#1263754). * CVE-2026-5407: SMB2 dissector infinite loop (bsc#1263753). * CVE-2026-5408: BT-DHT dissector crash (bsc#1263752). * CVE-2026-5653: DCP-ETSI dissector crash (bsc#1263750). * CVE-2026-5656: Profile import crash and possible code execution (bsc#1263809). * CVE-2026-5657: iLBC audio codec crash (bsc#1263747). * CVE-2026-6519: MBIM protocol dissector infinite loop (bsc#1263746). * CVE-2026-6520: OpenFlow v6 protocol dissector infinite loop (bsc#1263745). * CVE-2026-6521: OpenFlow v5 protocol dissector infinite loops (bsc#1263744). * CVE-2026-6522: RPKI-Router protocol dissector infinite loop (bsc#1263743). * CVE-2026-6523: GNW protocol dissector infinite loop (bsc#1263742). * CVE-2026-6526: RTSP protocol dissector crash (bsc#1263740). * CVE-2026-6527: ASN.1 PER dissector crash (bsc#1263739). * CVE-2026-6529: iLBC audio codec crash (bsc#1263737). * CVE-2026-6530: DCP-ETSI protocol dissector crash (bsc#1263736). * CVE-2026-6532: Kismet protocol dissector crash (bsc#1263734). * CVE-2026-6534: USB HID dissector infinite loop (bsc#1263732). * CVE-2026-6535: Dissection engine zlib decompression crash (bsc#1263731). * CVE-2026-6538: BEEP dissector crash (bsc#1263728). * CVE-2026-6867: SMB2 protocol dissector crash (bsc#1263727). * CVE-2026-6868: HTTP protocol dissector crash (bsc#1263762). * CVE-2026-6869: WebSocket protocol dissector crash (bsc#1263726). * CVE-2026-6870: GSM RP protocol dissector crash (bsc#1263725). * CVE-2026-7378: Sharkd utility crash (bsc#1263759). * CVE-2026-7379: Sharkd utility memory leak (bsc#1263758). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2203=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2203=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2203=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2203=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2203=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2203=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2203=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2203=1 ## Package List: * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * libwiretap12-debuginfo-3.6.24-150000.3.133.1 * wireshark-debuginfo-3.6.24-150000.3.133.1 * wireshark-devel-3.6.24-150000.3.133.1 * wireshark-ui-qt-3.6.24-150000.3.133.1 * libwireshark15-3.6.24-150000.3.133.1 * libwsutil13-3.6.24-150000.3.133.1 * wireshark-3.6.24-150000.3.133.1 * libwsutil13-debuginfo-3.6.24-150000.3.133.1 * wireshark-debugsource-3.6.24-150000.3.133.1 * libwireshark15-debuginfo-3.6.24-150000.3.133.1 * wireshark-ui-qt-debuginfo-3.6.24-150000.3.133.1 * libwiretap12-3.6.24-150000.3.133.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * libwiretap12-debuginfo-3.6.24-150000.3.133.1 * wireshark-debuginfo-3.6.24-150000.3.133.1 * libwireshark15-3.6.24-150000.3.133.1 * wireshark-devel-3.6.24-150000.3.133.1 * wireshark-ui-qt-3.6.24-150000.3.133.1 * libwsutil13-3.6.24-150000.3.133.1 * wireshark-3.6.24-150000.3.133.1 * libwsutil13-debuginfo-3.6.24-150000.3.133.1 * wireshark-debugsource-3.6.24-150000.3.133.1 * libwireshark15-debuginfo-3.6.24-150000.3.133.1 * wireshark-ui-qt-debuginfo-3.6.24-150000.3.133.1 * libwiretap12-3.6.24-150000.3.133.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * libwiretap12-debuginfo-3.6.24-150000.3.133.1 * wireshark-debuginfo-3.6.24-150000.3.133.1 * libwireshark15-3.6.24-150000.3.133.1 * wireshark-devel-3.6.24-150000.3.133.1 * wireshark-ui-qt-3.6.24-150000.3.133.1 * libwsutil13-3.6.24-150000.3.133.1 * wireshark-3.6.24-150000.3.133.1 * libwsutil13-debuginfo-3.6.24-150000.3.133.1 * wireshark-debugsource-3.6.24-150000.3.133.1 * libwireshark15-debuginfo-3.6.24-150000.3.133.1 * wireshark-ui-qt-debuginfo-3.6.24-150000.3.133.1 * libwiretap12-3.6.24-150000.3.133.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * libwiretap12-debuginfo-3.6.24-150000.3.133.1 * wireshark-debuginfo-3.6.24-150000.3.133.1 * libwireshark15-3.6.24-150000.3.133.1 * wireshark-devel-3.6.24-150000.3.133.1 * wireshark-ui-qt-3.6.24-150000.3.133.1 * libwsutil13-3.6.24-150000.3.133.1 * wireshark-3.6.24-150000.3.133.1 * libwsutil13-debuginfo-3.6.24-150000.3.133.1 * wireshark-debugsource-3.6.24-150000.3.133.1 * libwireshark15-debuginfo-3.6.24-150000.3.133.1 * wireshark-ui-qt-debuginfo-3.6.24-150000.3.133.1 * libwiretap12-3.6.24-150000.3.133.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * libwiretap12-debuginfo-3.6.24-150000.3.133.1 * wireshark-debuginfo-3.6.24-150000.3.133.1 * libwireshark15-3.6.24-150000.3.133.1 * wireshark-devel-3.6.24-150000.3.133.1 * wireshark-ui-qt-3.6.24-150000.3.133.1 * libwsutil13-3.6.24-150000.3.133.1 * wireshark-3.6.24-150000.3.133.1 * libwsutil13-debuginfo-3.6.24-150000.3.133.1 * wireshark-debugsource-3.6.24-150000.3.133.1 * libwireshark15-debuginfo-3.6.24-150000.3.133.1 * wireshark-ui-qt-debuginfo-3.6.24-150000.3.133.1 * libwiretap12-3.6.24-150000.3.133.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * libwiretap12-debuginfo-3.6.24-150000.3.133.1 * wireshark-debuginfo-3.6.24-150000.3.133.1 * libwireshark15-3.6.24-150000.3.133.1 * wireshark-devel-3.6.24-150000.3.133.1 * wireshark-ui-qt-3.6.24-150000.3.133.1 * libwsutil13-3.6.24-150000.3.133.1 * wireshark-3.6.24-150000.3.133.1 * libwsutil13-debuginfo-3.6.24-150000.3.133.1 * wireshark-debugsource-3.6.24-150000.3.133.1 * libwireshark15-debuginfo-3.6.24-150000.3.133.1 * wireshark-ui-qt-debuginfo-3.6.24-150000.3.133.1 * libwiretap12-3.6.24-150000.3.133.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * libwiretap12-debuginfo-3.6.24-150000.3.133.1 * wireshark-debuginfo-3.6.24-150000.3.133.1 * libwireshark15-3.6.24-150000.3.133.1 * wireshark-devel-3.6.24-150000.3.133.1 * wireshark-ui-qt-3.6.24-150000.3.133.1 * libwsutil13-3.6.24-150000.3.133.1 * wireshark-3.6.24-150000.3.133.1 * libwsutil13-debuginfo-3.6.24-150000.3.133.1 * wireshark-debugsource-3.6.24-150000.3.133.1 * libwireshark15-debuginfo-3.6.24-150000.3.133.1 * wireshark-ui-qt-debuginfo-3.6.24-150000.3.133.1 * libwiretap12-3.6.24-150000.3.133.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * libwiretap12-debuginfo-3.6.24-150000.3.133.1 * wireshark-debuginfo-3.6.24-150000.3.133.1 * libwireshark15-3.6.24-150000.3.133.1 * wireshark-devel-3.6.24-150000.3.133.1 * wireshark-ui-qt-3.6.24-150000.3.133.1 * libwsutil13-3.6.24-150000.3.133.1 * wireshark-3.6.24-150000.3.133.1 * libwsutil13-debuginfo-3.6.24-150000.3.133.1 * wireshark-debugsource-3.6.24-150000.3.133.1 * libwireshark15-debuginfo-3.6.24-150000.3.133.1 * wireshark-ui-qt-debuginfo-3.6.24-150000.3.133.1 * libwiretap12-3.6.24-150000.3.133.1 ## References: * https://www.suse.com/security/cve/CVE-2026-5401.html * https://www.suse.com/security/cve/CVE-2026-5403.html * https://www.suse.com/security/cve/CVE-2026-5404.html * https://www.suse.com/security/cve/CVE-2026-5405.html * https://www.suse.com/security/cve/CVE-2026-5406.html * https://www.suse.com/security/cve/CVE-2026-5407.html * https://www.suse.com/security/cve/CVE-2026-5408.html * https://www.suse.com/security/cve/CVE-2026-5653.html * https://www.suse.com/security/cve/CVE-2026-5656.html * https://www.suse.com/security/cve/CVE-2026-5657.html * https://www.suse.com/security/cve/CVE-2026-6519.html * https://www.suse.com/security/cve/CVE-2026-6520.html * https://www.suse.com/security/cve/CVE-2026-6521.html * https://www.suse.com/security/cve/CVE-2026-6522.html * https://www.suse.com/security/cve/CVE-2026-6523.html * https://www.suse.com/security/cve/CVE-2026-6526.html * https://www.suse.com/security/cve/CVE-2026-6527.html * https://www.suse.com/security/cve/CVE-2026-6529.html * https://www.suse.com/security/cve/CVE-2026-6530.html * https://www.suse.com/security/cve/CVE-2026-6532.html * https://www.suse.com/security/cve/CVE-2026-6534.html * https://www.suse.com/security/cve/CVE-2026-6535.html * https://www.suse.com/security/cve/CVE-2026-6538.html * https://www.suse.com/security/cve/CVE-2026-6867.html * https://www.suse.com/security/cve/CVE-2026-6868.html * https://www.suse.com/security/cve/CVE-2026-6869.html * https://www.suse.com/security/cve/CVE-2026-6870.html * https://www.suse.com/security/cve/CVE-2026-7378.html * https://www.suse.com/security/cve/CVE-2026-7379.html * https://bugzilla.suse.com/show_bug.cgi?id=1263725 * https://bugzilla.suse.com/show_bug.cgi?id=1263726 * https://bugzilla.suse.com/show_bug.cgi?id=1263727 * https://bugzilla.suse.com/show_bug.cgi?id=1263728 * https://bugzilla.suse.com/show_bug.cgi?id=1263731 * https://bugzilla.suse.com/show_bug.cgi?id=1263732 * https://bugzilla.suse.com/show_bug.cgi?id=1263734 * https://bugzilla.suse.com/show_bug.cgi?id=1263736 * https://bugzilla.suse.com/show_bug.cgi?id=1263737 * https://bugzilla.suse.com/show_bug.cgi?id=1263739 * https://bugzilla.suse.com/show_bug.cgi?id=1263740 * https://bugzilla.suse.com/show_bug.cgi?id=1263742 * https://bugzilla.suse.com/show_bug.cgi?id=1263743 * https://bugzilla.suse.com/show_bug.cgi?id=1263744 * https://bugzilla.suse.com/show_bug.cgi?id=1263745 * https://bugzilla.suse.com/show_bug.cgi?id=1263746 * https://bugzilla.suse.com/show_bug.cgi?id=1263747 * https://bugzilla.suse.com/show_bug.cgi?id=1263750 * https://bugzilla.suse.com/show_bug.cgi?id=1263752 * https://bugzilla.suse.com/show_bug.cgi?id=1263753 * https://bugzilla.suse.com/show_bug.cgi?id=1263754 * https://bugzilla.suse.com/show_bug.cgi?id=1263756 * https://bugzilla.suse.com/show_bug.cgi?id=1263758 * https://bugzilla.suse.com/show_bug.cgi?id=1263759 * https://bugzilla.suse.com/show_bug.cgi?id=1263762 * https://bugzilla.suse.com/show_bug.cgi?id=1263765 * https://bugzilla.suse.com/show_bug.cgi?id=1263766 * https://bugzilla.suse.com/show_bug.cgi?id=1263767 * https://bugzilla.suse.com/show_bug.cgi?id=1263809 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 16:32:50 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 16:32:50 -0000 Subject: SUSE-SU-2026:2202-1: important: Security update for the Linux Kernel Message-ID: <178033157059.1897.3238307266468259994@c5908e215476> # Security update for the Linux Kernel Announcement ID: SUSE-SU-2026:2202-1 Release Date: 2026-06-01T10:02:15Z Rating: important References: * bsc#1221010 * bsc#1243603 * bsc#1258248 * bsc#1258518 * bsc#1258718 * bsc#1258849 * bsc#1258850 * bsc#1258854 * bsc#1258855 * bsc#1258856 * bsc#1258857 * bsc#1259484 * bsc#1259485 * bsc#1259857 * bsc#1260010 * bsc#1260018 * bsc#1260522 * bsc#1260526 * bsc#1260983 * bsc#1261287 * bsc#1261295 * bsc#1261638 * bsc#1261710 * bsc#1261779 * bsc#1261781 * bsc#1261796 * bsc#1261797 * bsc#1262179 * bsc#1262181 * bsc#1262602 * bsc#1262734 * bsc#1262758 * bsc#1263065 * bsc#1263085 * bsc#1263095 * bsc#1263131 * bsc#1263141 * bsc#1263165 * bsc#1263170 * bsc#1263176 * bsc#1263582 * bsc#1263600 * bsc#1263668 * bsc#1263723 * bsc#1263882 * bsc#1263901 * bsc#1263931 * bsc#1263933 * bsc#1264059 * bsc#1264082 * bsc#1264450 * bsc#1264482 * bsc#1264634 * bsc#1264651 * bsc#1264848 * bsc#1265085 * bsc#1265090 * bsc#1265119 * bsc#1265126 * bsc#1265308 * bsc#1265456 * bsc#1265626 * bsc#1265960 Cross-References: * CVE-2021-47103 * CVE-2023-20585 * CVE-2026-23209 * CVE-2026-23239 * CVE-2026-23240 * CVE-2026-23268 * CVE-2026-23269 * CVE-2026-23271 * CVE-2026-23273 * CVE-2026-23351 * CVE-2026-23393 * CVE-2026-23403 * CVE-2026-23404 * CVE-2026-23405 * CVE-2026-23406 * CVE-2026-23407 * CVE-2026-23408 * CVE-2026-23409 * CVE-2026-23410 * CVE-2026-23411 * CVE-2026-23449 * CVE-2026-23458 * CVE-2026-23462 * CVE-2026-31402 * CVE-2026-31403 * CVE-2026-31408 * CVE-2026-31436 * CVE-2026-31504 * CVE-2026-31507 * CVE-2026-31512 * CVE-2026-31533 * CVE-2026-31570 * CVE-2026-31586 * CVE-2026-31588 * CVE-2026-31602 * CVE-2026-31607 * CVE-2026-31649 * CVE-2026-31656 * CVE-2026-31662 * CVE-2026-31669 * CVE-2026-31685 * CVE-2026-31694 * CVE-2026-31700 * CVE-2026-31738 * CVE-2026-31787 * CVE-2026-43025 * CVE-2026-43027 * CVE-2026-43050 * CVE-2026-43110 * CVE-2026-43126 * CVE-2026-43190 * CVE-2026-43214 * CVE-2026-43329 * CVE-2026-43334 * CVE-2026-43365 * CVE-2026-43437 * CVE-2026-43494 * CVE-2026-43500 * CVE-2026-43503 * CVE-2026-46333 CVSS scores: * CVE-2021-47103 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2021-47103 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2021-47103 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-20585 ( SUSE ): 5.6 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2023-20585 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:N * CVE-2023-20585 ( NVD ): 5.6 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23209 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23209 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23239 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23239 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23239 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23240 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23240 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23240 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23268 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23268 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23268 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23269 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23269 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23269 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23271 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23271 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23271 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23273 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23273 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23273 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23351 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23351 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23393 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23393 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23393 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23403 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23403 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2026-23403 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23404 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23404 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23404 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23405 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23405 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23405 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23406 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23406 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23406 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23407 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23407 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23407 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23408 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23408 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23408 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23408 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23409 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23409 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-23409 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23410 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23410 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23410 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23410 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23411 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23449 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23449 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23449 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23458 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23458 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23458 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23462 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23462 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23462 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31402 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31402 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-31402 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31403 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31403 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31403 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31408 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31408 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31408 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31436 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31436 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31436 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31504 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31504 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31504 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31507 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31507 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31507 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31512 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31512 ( SUSE ): 7.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-31512 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31533 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31533 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31533 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31570 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:H/SI:N/SA:N * CVE-2026-31570 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31570 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31586 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31586 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31586 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31588 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31588 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31588 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-31602 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31602 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31602 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31607 ( SUSE ): 7.0 CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31607 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H * CVE-2026-31607 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31649 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31649 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31649 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31656 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31656 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31656 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31662 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31662 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31662 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31669 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31669 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31669 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31685 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31685 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31685 ( NVD ): 9.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H * CVE-2026-31694 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31694 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31694 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31700 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31700 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31700 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31738 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31738 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31738 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31787 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31787 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31787 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43025 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43025 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H * CVE-2026-43027 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43027 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43050 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43050 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43050 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43110 ( SUSE ): 7.7 CVSS:4.0/AV:A/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43110 ( SUSE ): 7.5 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43110 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43126 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43126 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43126 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43190 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43190 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-43190 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-43214 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43214 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43214 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43329 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43329 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43329 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43334 ( SUSE ): 8.6 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-43334 ( SUSE ): 8.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-43334 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43365 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-43365 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-43365 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-43437 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43437 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43437 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43494 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43494 ( SUSE ): 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43500 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-43500 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43500 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43503 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43503 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-43503 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Availability Extension 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Live Patching 15-SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves 60 vulnerabilities and has three security fixes can now be installed. ## Description: The SUSE Linux Enterprise 15 SP4 kernel was updated to fix various security issues The following security issues were fixed: * CVE-2021-47103: inet: fully convert sk->sk_rx_dst to RCU rules (bsc#1221010). * CVE-2023-20585: x86/CPU: Fix FPDSS on Zen1 (bsc#1243603). * CVE-2026-23239: espintcp: Fix race condition in espintcp_close() (bsc#1259485). * CVE-2026-23240: tls: Fix race condition in tls_sw_cancel_work_tx() (bsc#1259484). * CVE-2026-23271: perf: Fix __perf_event_overflow() vs perf_remove_from_context() race (bsc#1260018). * CVE-2026-23351: netfilter: nft_set_pipapo: split gc into unlink and reclaim phase (bsc#1260526). * CVE-2026-23393: bridge: cfm: Fix race condition in peer_mep deletion (bsc#1260522). * CVE-2026-23449: net/sched: teql: Fix double-free in teql_master_xmit (bsc#1261779). * CVE-2026-23458: netfilter: ctnetlink: fix use-after-free in ctnetlink_dump_exp_ct() (bsc#1261781). * CVE-2026-23462: Bluetooth: HIDP: Fix possible UAF (bsc#1261710). * CVE-2026-31402: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache (bsc#1261638). * CVE-2026-31403: NFSD: Hold net reference for the lifetime of /proc/fs/nfs/exports fd (bsc#1261796). * CVE-2026-31408: Bluetooth: SCO: Fix use-after-free in sco_recv_frame() due to missing sock_hold (bsc#1261797). * CVE-2026-31436: dmaengine: idxd: fix possible wrong descriptor completion in llist_abort_desc() (bsc#1262602). * CVE-2026-31504: net: fix fanout UAF in packet_release() via NETDEV_UP race (bsc#1263085). * CVE-2026-31507: net/smc: fix double-free of smc_spd_priv when tee() duplicates splice pipe buffer (bsc#1263095). * CVE-2026-31512: Bluetooth: L2CAP: Validate PDU length before reading SDU length in l2cap_ecred_data_rcv() (bsc#1262734). * CVE-2026-31533: net/tls: fix use-after-free in -EBUSY error path of tls_do_encryption (bsc#1262758). * CVE-2026-31570: can: gw: fix OOB heap access in cgw_csum_crc8_rel() (bsc#1263065). * CVE-2026-31586: mm: blk-cgroup: fix use-after-free in cgwb_release_workfn() (bsc#1263176). * CVE-2026-31588: KVM: x86: Use scratch field in MMIO fragment to hold small write values (bsc#1263165). * CVE-2026-31602: ALSA: ctxfi: Limit PTP to a single page (bsc#1263723). * CVE-2026-31607: usbip: validate number_of_packets in usbip_pack_ret_submit() (bsc#1263600). * CVE-2026-31649: net: stmmac: fix integer underflow in chain mode (bsc#1263582). * CVE-2026-31656: drm/i915/gt: fix refcount underflow in intel_engine_park_heartbeat (bsc#1263170). * CVE-2026-31662: tipc: fix bc_ackers underflow on duplicate GRP_ACK_MSG (bsc#1263131). * CVE-2026-31669: mptcp: fix slab-use-after-free in __inet_lookup_established (bsc#1263141). * CVE-2026-31685: netfilter: ip6t_eui64: reject invalid MAC header for all packets (bsc#1263668). * CVE-2026-31694: fuse: reject oversized dirents in page cache (bsc#1263901). * CVE-2026-31700: net/packet: fix TOCTOU race on mmap'd vnet_hdr in tpacket_snd() (bsc#1263882). * CVE-2026-31738: vxlan: validate ND option lengths in vxlan_na_create (bsc#1264059). * CVE-2026-31787: xen/privcmd: fix double free via VMA splitting (bsc#1262181). * CVE-2026-43025: netfilter: ctnetlink: ignore explicit helper on new expectations (bsc#1263931). * CVE-2026-43027: netfilter: nf_conntrack_helper: pass helper to expect cleanup (bsc#1263933). * CVE-2026-43050: atm: lec: fix use-after-free in sock_def_readable() (bsc#1264082). * CVE-2026-43110: wifi: brcmfmac: validate bsscfg indices in IF events (bsc#1264482). * CVE-2026-43126: ALSA: mixer: oss: Add card disconnect checkpoints (bsc#1264634). * CVE-2026-43190: netfilter: xt_tcpmss: check remaining length before reading optlen (bsc#1264848). * CVE-2026-43214: KVM: x86: Add SRCU protection for reading PDPTRs in __get_sregs2() (bsc#1264651). * CVE-2026-43329: netfilter: flowtable: strictly check for maximum number of actions (bsc#1265085). * CVE-2026-43334: Bluetooth: SMP: force responder MITM requirements before building the pairing response (bsc#1265090). * CVE-2026-43365: xfs: fix undersized l_iclog_roundoff values (bsc#1265119). * CVE-2026-43437: ALSA: pcm: fix use-after-free on linked stream runtime in snd_pcm_drain() (bsc#1265126). * CVE-2026-43494: net/rds: reset op_nents when zerocopy page pin fails (bsc#1265626). * CVE-2026-43500: supported.conf: drop rxrpc and af_kfs (bsc#1264450). * CVE-2026-43503: net: skbuff: propagate shared-frag marker through frag- transfer helpers (bsc#1265960). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265308). The following non security issues were fixed: * check-for-config-changes: Exclude CC_MS_EXTENSIONS. * check-for-config-changes: Exclude HAVE_CFI_ICALL_NORMALIZE_INTEGERS{,_RUSTC}. * crypto: qat - fix ring to service map for QAT GEN4 (bsc#1258248). * crypto: qat - refactor fw config related functions (bsc#1258248). * crypto: qat - use masks for AE groups (bsc#1258248). * dm init: ensure device probing has finished in dm-mod.waitfor= (git-fixes). * mkspec: Add signature to source list only when it exists. * net/rds: reset op_nents when zerocopy page pin fails (bsc#1265626). * net: gro: don't merge zcopy skbs (git-fixes). * nvmet-rdma: fix possible bad dereference when freeing rsps (bsc#1260983). * ocfs2: fix possible deadlock between unlink and dio_end_io_write (bsc#1258718). * ocfs2: split transactions in dio completion to avoid credit exhaustion (bsc#1258718). * xfrm: esp: avoid in-place decrypt on shared skb frags. ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2026-2202=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-2202=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-2202=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-2202=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-2202=1 * SUSE Linux Enterprise High Availability Extension 15 SP4 zypper in -t patch SUSE-SLE-Product-HA-15-SP4-2026-2202=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2202=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2202=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2202=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2202=1 * SUSE Linux Enterprise Live Patching 15-SP4 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP4-2026-2202=1 ## Package List: * openSUSE Leap 15.4 (noarch nosrc) * kernel-docs-5.14.21-150400.24.219.1 * openSUSE Leap 15.4 (noarch) * kernel-devel-5.14.21-150400.24.219.1 * kernel-source-vanilla-5.14.21-150400.24.219.1 * kernel-macros-5.14.21-150400.24.219.1 * kernel-docs-html-5.14.21-150400.24.219.1 * kernel-source-5.14.21-150400.24.219.1 * openSUSE Leap 15.4 (aarch64 ppc64le x86_64) * kernel-default-base-rebuild-5.14.21-150400.24.219.1.150400.24.110.2 * kernel-kvmsmall-debuginfo-5.14.21-150400.24.219.1 * kernel-kvmsmall-debugsource-5.14.21-150400.24.219.1 * kernel-default-base-5.14.21-150400.24.219.1.150400.24.110.2 * kernel-kvmsmall-devel-debuginfo-5.14.21-150400.24.219.1 * kernel-kvmsmall-devel-5.14.21-150400.24.219.1 * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64) * kernel-default-debugsource-5.14.21-150400.24.219.1 * kernel-obs-qa-5.14.21-150400.24.219.1 * kernel-default-extra-5.14.21-150400.24.219.1 * kernel-obs-build-5.14.21-150400.24.219.1 * kernel-default-debuginfo-5.14.21-150400.24.219.1 * kernel-default-devel-debuginfo-5.14.21-150400.24.219.1 * reiserfs-kmp-default-5.14.21-150400.24.219.1 * kernel-default-optional-debuginfo-5.14.21-150400.24.219.1 * kernel-syms-5.14.21-150400.24.219.1 * kselftests-kmp-default-5.14.21-150400.24.219.1 * dlm-kmp-default-debuginfo-5.14.21-150400.24.219.1 * ocfs2-kmp-default-5.14.21-150400.24.219.1 * ocfs2-kmp-default-debuginfo-5.14.21-150400.24.219.1 * gfs2-kmp-default-5.14.21-150400.24.219.1 * kernel-default-extra-debuginfo-5.14.21-150400.24.219.1 * cluster-md-kmp-default-debuginfo-5.14.21-150400.24.219.1 * kselftests-kmp-default-debuginfo-5.14.21-150400.24.219.1 * kernel-default-optional-5.14.21-150400.24.219.1 * kernel-default-devel-5.14.21-150400.24.219.1 * kernel-default-livepatch-5.14.21-150400.24.219.1 * cluster-md-kmp-default-5.14.21-150400.24.219.1 * kernel-obs-build-debugsource-5.14.21-150400.24.219.1 * gfs2-kmp-default-debuginfo-5.14.21-150400.24.219.1 * dlm-kmp-default-5.14.21-150400.24.219.1 * reiserfs-kmp-default-debuginfo-5.14.21-150400.24.219.1 * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 nosrc) * kernel-default-5.14.21-150400.24.219.1 * openSUSE Leap 15.4 (ppc64le s390x x86_64) * kernel-default-livepatch-devel-5.14.21-150400.24.219.1 * kernel-livepatch-5_14_21-150400_24_219-default-debuginfo-1-150400.9.5.1 * kernel-livepatch-SLE15-SP4_Update_54-debugsource-1-150400.9.5.1 * kernel-livepatch-5_14_21-150400_24_219-default-1-150400.9.5.1 * openSUSE Leap 15.4 (aarch64 nosrc ppc64le x86_64) * kernel-kvmsmall-5.14.21-150400.24.219.1 * openSUSE Leap 15.4 (nosrc s390x) * kernel-zfcpdump-5.14.21-150400.24.219.1 * openSUSE Leap 15.4 (s390x) * kernel-zfcpdump-debuginfo-5.14.21-150400.24.219.1 * kernel-zfcpdump-debugsource-5.14.21-150400.24.219.1 * openSUSE Leap 15.4 (nosrc) * dtb-aarch64-5.14.21-150400.24.219.1 * openSUSE Leap 15.4 (aarch64) * dtb-broadcom-5.14.21-150400.24.219.1 * dtb-lg-5.14.21-150400.24.219.1 * dtb-altera-5.14.21-150400.24.219.1 * ocfs2-kmp-64kb-5.14.21-150400.24.219.1 * dtb-xilinx-5.14.21-150400.24.219.1 * reiserfs-kmp-64kb-5.14.21-150400.24.219.1 * dtb-hisilicon-5.14.21-150400.24.219.1 * dtb-exynos-5.14.21-150400.24.219.1 * dtb-cavium-5.14.21-150400.24.219.1 * dlm-kmp-64kb-5.14.21-150400.24.219.1 * kernel-64kb-devel-5.14.21-150400.24.219.1 * dtb-amlogic-5.14.21-150400.24.219.1 * kernel-64kb-devel-debuginfo-5.14.21-150400.24.219.1 * kernel-64kb-optional-debuginfo-5.14.21-150400.24.219.1 * dtb-apm-5.14.21-150400.24.219.1 * dtb-sprd-5.14.21-150400.24.219.1 * dtb-qcom-5.14.21-150400.24.219.1 * dlm-kmp-64kb-debuginfo-5.14.21-150400.24.219.1 * dtb-freescale-5.14.21-150400.24.219.1 * ocfs2-kmp-64kb-debuginfo-5.14.21-150400.24.219.1 * dtb-marvell-5.14.21-150400.24.219.1 * dtb-nvidia-5.14.21-150400.24.219.1 * dtb-apple-5.14.21-150400.24.219.1 * dtb-allwinner-5.14.21-150400.24.219.1 * kselftests-kmp-64kb-5.14.21-150400.24.219.1 * dtb-amd-5.14.21-150400.24.219.1 * dtb-socionext-5.14.21-150400.24.219.1 * gfs2-kmp-64kb-5.14.21-150400.24.219.1 * kernel-64kb-optional-5.14.21-150400.24.219.1 * dtb-mediatek-5.14.21-150400.24.219.1 * dtb-rockchip-5.14.21-150400.24.219.1 * cluster-md-kmp-64kb-debuginfo-5.14.21-150400.24.219.1 * kernel-64kb-debugsource-5.14.21-150400.24.219.1 * kernel-64kb-debuginfo-5.14.21-150400.24.219.1 * kernel-64kb-extra-debuginfo-5.14.21-150400.24.219.1 * dtb-renesas-5.14.21-150400.24.219.1 * kernel-64kb-extra-5.14.21-150400.24.219.1 * dtb-amazon-5.14.21-150400.24.219.1 * kselftests-kmp-64kb-debuginfo-5.14.21-150400.24.219.1 * cluster-md-kmp-64kb-5.14.21-150400.24.219.1 * reiserfs-kmp-64kb-debuginfo-5.14.21-150400.24.219.1 * dtb-arm-5.14.21-150400.24.219.1 * gfs2-kmp-64kb-debuginfo-5.14.21-150400.24.219.1 * openSUSE Leap 15.4 (aarch64 nosrc) * kernel-64kb-5.14.21-150400.24.219.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 nosrc s390x x86_64) * kernel-default-5.14.21-150400.24.219.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 x86_64) * kernel-default-base-5.14.21-150400.24.219.1.150400.24.110.2 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * kernel-default-debugsource-5.14.21-150400.24.219.1 * kernel-default-debuginfo-5.14.21-150400.24.219.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (noarch) * kernel-macros-5.14.21-150400.24.219.1 * kernel-source-5.14.21-150400.24.219.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 nosrc s390x x86_64) * kernel-default-5.14.21-150400.24.219.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 x86_64) * kernel-default-base-5.14.21-150400.24.219.1.150400.24.110.2 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * kernel-default-debugsource-5.14.21-150400.24.219.1 * kernel-default-debuginfo-5.14.21-150400.24.219.1 * SUSE Linux Enterprise Micro 5.3 (noarch) * kernel-macros-5.14.21-150400.24.219.1 * kernel-source-5.14.21-150400.24.219.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 nosrc s390x x86_64) * kernel-default-5.14.21-150400.24.219.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 x86_64) * kernel-default-base-5.14.21-150400.24.219.1.150400.24.110.2 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * kernel-default-debugsource-5.14.21-150400.24.219.1 * kernel-default-debuginfo-5.14.21-150400.24.219.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (noarch) * kernel-macros-5.14.21-150400.24.219.1 * kernel-source-5.14.21-150400.24.219.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 nosrc s390x x86_64) * kernel-default-5.14.21-150400.24.219.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 x86_64) * kernel-default-base-5.14.21-150400.24.219.1.150400.24.110.2 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * kernel-default-debugsource-5.14.21-150400.24.219.1 * kernel-default-debuginfo-5.14.21-150400.24.219.1 * SUSE Linux Enterprise Micro 5.4 (noarch) * kernel-macros-5.14.21-150400.24.219.1 * kernel-source-5.14.21-150400.24.219.1 * SUSE Linux Enterprise High Availability Extension 15 SP4 (aarch64 ppc64le s390x x86_64) * kernel-default-debugsource-5.14.21-150400.24.219.1 * dlm-kmp-default-debuginfo-5.14.21-150400.24.219.1 * ocfs2-kmp-default-5.14.21-150400.24.219.1 * cluster-md-kmp-default-5.14.21-150400.24.219.1 * ocfs2-kmp-default-debuginfo-5.14.21-150400.24.219.1 * gfs2-kmp-default-5.14.21-150400.24.219.1 * gfs2-kmp-default-debuginfo-5.14.21-150400.24.219.1 * cluster-md-kmp-default-debuginfo-5.14.21-150400.24.219.1 * kernel-default-debuginfo-5.14.21-150400.24.219.1 * dlm-kmp-default-5.14.21-150400.24.219.1 * SUSE Linux Enterprise High Availability Extension 15 SP4 (nosrc) * kernel-default-5.14.21-150400.24.219.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 nosrc) * kernel-64kb-5.14.21-150400.24.219.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64) * kernel-64kb-devel-debuginfo-5.14.21-150400.24.219.1 * kernel-64kb-devel-5.14.21-150400.24.219.1 * kernel-64kb-debugsource-5.14.21-150400.24.219.1 * kernel-64kb-debuginfo-5.14.21-150400.24.219.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 nosrc x86_64) * kernel-default-5.14.21-150400.24.219.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * kernel-default-debugsource-5.14.21-150400.24.219.1 * kernel-default-devel-5.14.21-150400.24.219.1 * kernel-obs-build-debugsource-5.14.21-150400.24.219.1 * kernel-default-base-5.14.21-150400.24.219.1.150400.24.110.2 * kernel-default-devel-debuginfo-5.14.21-150400.24.219.1 * kernel-default-debuginfo-5.14.21-150400.24.219.1 * reiserfs-kmp-default-5.14.21-150400.24.219.1 * kernel-obs-build-5.14.21-150400.24.219.1 * kernel-syms-5.14.21-150400.24.219.1 * reiserfs-kmp-default-debuginfo-5.14.21-150400.24.219.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * kernel-macros-5.14.21-150400.24.219.1 * kernel-devel-5.14.21-150400.24.219.1 * kernel-source-5.14.21-150400.24.219.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch nosrc) * kernel-docs-5.14.21-150400.24.219.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 nosrc) * kernel-64kb-5.14.21-150400.24.219.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64) * kernel-64kb-devel-debuginfo-5.14.21-150400.24.219.1 * kernel-64kb-devel-5.14.21-150400.24.219.1 * kernel-64kb-debugsource-5.14.21-150400.24.219.1 * kernel-64kb-debuginfo-5.14.21-150400.24.219.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 nosrc x86_64) * kernel-default-5.14.21-150400.24.219.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * kernel-default-debugsource-5.14.21-150400.24.219.1 * kernel-default-devel-5.14.21-150400.24.219.1 * kernel-obs-build-debugsource-5.14.21-150400.24.219.1 * kernel-default-base-5.14.21-150400.24.219.1.150400.24.110.2 * kernel-default-devel-debuginfo-5.14.21-150400.24.219.1 * kernel-default-debuginfo-5.14.21-150400.24.219.1 * reiserfs-kmp-default-5.14.21-150400.24.219.1 * kernel-obs-build-5.14.21-150400.24.219.1 * kernel-syms-5.14.21-150400.24.219.1 * reiserfs-kmp-default-debuginfo-5.14.21-150400.24.219.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * kernel-macros-5.14.21-150400.24.219.1 * kernel-devel-5.14.21-150400.24.219.1 * kernel-source-5.14.21-150400.24.219.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch nosrc) * kernel-docs-5.14.21-150400.24.219.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 nosrc) * kernel-64kb-5.14.21-150400.24.219.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64) * kernel-64kb-devel-debuginfo-5.14.21-150400.24.219.1 * kernel-64kb-devel-5.14.21-150400.24.219.1 * kernel-64kb-debugsource-5.14.21-150400.24.219.1 * kernel-64kb-debuginfo-5.14.21-150400.24.219.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64 nosrc) * kernel-default-5.14.21-150400.24.219.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le x86_64) * kernel-default-base-5.14.21-150400.24.219.1.150400.24.110.2 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * kernel-default-debugsource-5.14.21-150400.24.219.1 * kernel-default-devel-5.14.21-150400.24.219.1 * kernel-obs-build-debugsource-5.14.21-150400.24.219.1 * kernel-default-devel-debuginfo-5.14.21-150400.24.219.1 * kernel-default-debuginfo-5.14.21-150400.24.219.1 * reiserfs-kmp-default-5.14.21-150400.24.219.1 * kernel-obs-build-5.14.21-150400.24.219.1 * kernel-syms-5.14.21-150400.24.219.1 * reiserfs-kmp-default-debuginfo-5.14.21-150400.24.219.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (noarch) * kernel-macros-5.14.21-150400.24.219.1 * kernel-devel-5.14.21-150400.24.219.1 * kernel-source-5.14.21-150400.24.219.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (noarch nosrc) * kernel-docs-5.14.21-150400.24.219.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (nosrc s390x) * kernel-zfcpdump-5.14.21-150400.24.219.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (s390x) * kernel-zfcpdump-debuginfo-5.14.21-150400.24.219.1 * kernel-zfcpdump-debugsource-5.14.21-150400.24.219.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (nosrc ppc64le x86_64) * kernel-default-5.14.21-150400.24.219.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * kernel-default-debugsource-5.14.21-150400.24.219.1 * kernel-default-devel-5.14.21-150400.24.219.1 * kernel-obs-build-debugsource-5.14.21-150400.24.219.1 * kernel-default-base-5.14.21-150400.24.219.1.150400.24.110.2 * kernel-default-devel-debuginfo-5.14.21-150400.24.219.1 * kernel-default-debuginfo-5.14.21-150400.24.219.1 * reiserfs-kmp-default-5.14.21-150400.24.219.1 * kernel-obs-build-5.14.21-150400.24.219.1 * kernel-syms-5.14.21-150400.24.219.1 * reiserfs-kmp-default-debuginfo-5.14.21-150400.24.219.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * kernel-macros-5.14.21-150400.24.219.1 * kernel-devel-5.14.21-150400.24.219.1 * kernel-source-5.14.21-150400.24.219.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch nosrc) * kernel-docs-5.14.21-150400.24.219.1 * SUSE Linux Enterprise Live Patching 15-SP4 (nosrc) * kernel-default-5.14.21-150400.24.219.1 * SUSE Linux Enterprise Live Patching 15-SP4 (ppc64le s390x x86_64) * kernel-default-livepatch-devel-5.14.21-150400.24.219.1 * kernel-default-debugsource-5.14.21-150400.24.219.1 * kernel-default-livepatch-5.14.21-150400.24.219.1 * kernel-livepatch-5_14_21-150400_24_219-default-debuginfo-1-150400.9.5.1 * kernel-livepatch-SLE15-SP4_Update_54-debugsource-1-150400.9.5.1 * kernel-default-debuginfo-5.14.21-150400.24.219.1 * kernel-livepatch-5_14_21-150400_24_219-default-1-150400.9.5.1 ## References: * https://www.suse.com/security/cve/CVE-2021-47103.html * https://www.suse.com/security/cve/CVE-2023-20585.html * https://www.suse.com/security/cve/CVE-2026-23209.html * https://www.suse.com/security/cve/CVE-2026-23239.html * https://www.suse.com/security/cve/CVE-2026-23240.html * https://www.suse.com/security/cve/CVE-2026-23268.html * https://www.suse.com/security/cve/CVE-2026-23269.html * https://www.suse.com/security/cve/CVE-2026-23271.html * https://www.suse.com/security/cve/CVE-2026-23273.html * https://www.suse.com/security/cve/CVE-2026-23351.html * https://www.suse.com/security/cve/CVE-2026-23393.html * https://www.suse.com/security/cve/CVE-2026-23403.html * https://www.suse.com/security/cve/CVE-2026-23404.html * https://www.suse.com/security/cve/CVE-2026-23405.html * https://www.suse.com/security/cve/CVE-2026-23406.html * https://www.suse.com/security/cve/CVE-2026-23407.html * https://www.suse.com/security/cve/CVE-2026-23408.html * https://www.suse.com/security/cve/CVE-2026-23409.html * https://www.suse.com/security/cve/CVE-2026-23410.html * https://www.suse.com/security/cve/CVE-2026-23411.html * https://www.suse.com/security/cve/CVE-2026-23449.html * https://www.suse.com/security/cve/CVE-2026-23458.html * https://www.suse.com/security/cve/CVE-2026-23462.html * https://www.suse.com/security/cve/CVE-2026-31402.html * https://www.suse.com/security/cve/CVE-2026-31403.html * https://www.suse.com/security/cve/CVE-2026-31408.html * https://www.suse.com/security/cve/CVE-2026-31436.html * https://www.suse.com/security/cve/CVE-2026-31504.html * https://www.suse.com/security/cve/CVE-2026-31507.html * https://www.suse.com/security/cve/CVE-2026-31512.html * https://www.suse.com/security/cve/CVE-2026-31533.html * https://www.suse.com/security/cve/CVE-2026-31570.html * https://www.suse.com/security/cve/CVE-2026-31586.html * https://www.suse.com/security/cve/CVE-2026-31588.html * https://www.suse.com/security/cve/CVE-2026-31602.html * https://www.suse.com/security/cve/CVE-2026-31607.html * https://www.suse.com/security/cve/CVE-2026-31649.html * https://www.suse.com/security/cve/CVE-2026-31656.html * https://www.suse.com/security/cve/CVE-2026-31662.html * https://www.suse.com/security/cve/CVE-2026-31669.html * https://www.suse.com/security/cve/CVE-2026-31685.html * https://www.suse.com/security/cve/CVE-2026-31694.html * https://www.suse.com/security/cve/CVE-2026-31700.html * https://www.suse.com/security/cve/CVE-2026-31738.html * https://www.suse.com/security/cve/CVE-2026-31787.html * https://www.suse.com/security/cve/CVE-2026-43025.html * https://www.suse.com/security/cve/CVE-2026-43027.html * https://www.suse.com/security/cve/CVE-2026-43050.html * https://www.suse.com/security/cve/CVE-2026-43110.html * https://www.suse.com/security/cve/CVE-2026-43126.html * https://www.suse.com/security/cve/CVE-2026-43190.html * https://www.suse.com/security/cve/CVE-2026-43214.html * https://www.suse.com/security/cve/CVE-2026-43329.html * https://www.suse.com/security/cve/CVE-2026-43334.html * https://www.suse.com/security/cve/CVE-2026-43365.html * https://www.suse.com/security/cve/CVE-2026-43437.html * https://www.suse.com/security/cve/CVE-2026-43494.html * https://www.suse.com/security/cve/CVE-2026-43500.html * https://www.suse.com/security/cve/CVE-2026-43503.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1221010 * https://bugzilla.suse.com/show_bug.cgi?id=1243603 * https://bugzilla.suse.com/show_bug.cgi?id=1258248 * https://bugzilla.suse.com/show_bug.cgi?id=1258518 * https://bugzilla.suse.com/show_bug.cgi?id=1258718 * https://bugzilla.suse.com/show_bug.cgi?id=1258849 * https://bugzilla.suse.com/show_bug.cgi?id=1258850 * https://bugzilla.suse.com/show_bug.cgi?id=1258854 * https://bugzilla.suse.com/show_bug.cgi?id=1258855 * https://bugzilla.suse.com/show_bug.cgi?id=1258856 * https://bugzilla.suse.com/show_bug.cgi?id=1258857 * https://bugzilla.suse.com/show_bug.cgi?id=1259484 * https://bugzilla.suse.com/show_bug.cgi?id=1259485 * https://bugzilla.suse.com/show_bug.cgi?id=1259857 * https://bugzilla.suse.com/show_bug.cgi?id=1260010 * https://bugzilla.suse.com/show_bug.cgi?id=1260018 * https://bugzilla.suse.com/show_bug.cgi?id=1260522 * https://bugzilla.suse.com/show_bug.cgi?id=1260526 * https://bugzilla.suse.com/show_bug.cgi?id=1260983 * https://bugzilla.suse.com/show_bug.cgi?id=1261287 * https://bugzilla.suse.com/show_bug.cgi?id=1261295 * https://bugzilla.suse.com/show_bug.cgi?id=1261638 * https://bugzilla.suse.com/show_bug.cgi?id=1261710 * https://bugzilla.suse.com/show_bug.cgi?id=1261779 * https://bugzilla.suse.com/show_bug.cgi?id=1261781 * https://bugzilla.suse.com/show_bug.cgi?id=1261796 * https://bugzilla.suse.com/show_bug.cgi?id=1261797 * https://bugzilla.suse.com/show_bug.cgi?id=1262179 * https://bugzilla.suse.com/show_bug.cgi?id=1262181 * https://bugzilla.suse.com/show_bug.cgi?id=1262602 * https://bugzilla.suse.com/show_bug.cgi?id=1262734 * https://bugzilla.suse.com/show_bug.cgi?id=1262758 * https://bugzilla.suse.com/show_bug.cgi?id=1263065 * https://bugzilla.suse.com/show_bug.cgi?id=1263085 * https://bugzilla.suse.com/show_bug.cgi?id=1263095 * https://bugzilla.suse.com/show_bug.cgi?id=1263131 * https://bugzilla.suse.com/show_bug.cgi?id=1263141 * https://bugzilla.suse.com/show_bug.cgi?id=1263165 * https://bugzilla.suse.com/show_bug.cgi?id=1263170 * https://bugzilla.suse.com/show_bug.cgi?id=1263176 * https://bugzilla.suse.com/show_bug.cgi?id=1263582 * https://bugzilla.suse.com/show_bug.cgi?id=1263600 * https://bugzilla.suse.com/show_bug.cgi?id=1263668 * https://bugzilla.suse.com/show_bug.cgi?id=1263723 * https://bugzilla.suse.com/show_bug.cgi?id=1263882 * https://bugzilla.suse.com/show_bug.cgi?id=1263901 * https://bugzilla.suse.com/show_bug.cgi?id=1263931 * https://bugzilla.suse.com/show_bug.cgi?id=1263933 * https://bugzilla.suse.com/show_bug.cgi?id=1264059 * https://bugzilla.suse.com/show_bug.cgi?id=1264082 * https://bugzilla.suse.com/show_bug.cgi?id=1264450 * https://bugzilla.suse.com/show_bug.cgi?id=1264482 * https://bugzilla.suse.com/show_bug.cgi?id=1264634 * https://bugzilla.suse.com/show_bug.cgi?id=1264651 * https://bugzilla.suse.com/show_bug.cgi?id=1264848 * https://bugzilla.suse.com/show_bug.cgi?id=1265085 * https://bugzilla.suse.com/show_bug.cgi?id=1265090 * https://bugzilla.suse.com/show_bug.cgi?id=1265119 * https://bugzilla.suse.com/show_bug.cgi?id=1265126 * https://bugzilla.suse.com/show_bug.cgi?id=1265308 * https://bugzilla.suse.com/show_bug.cgi?id=1265456 * https://bugzilla.suse.com/show_bug.cgi?id=1265626 * https://bugzilla.suse.com/show_bug.cgi?id=1265960 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 20:30:07 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 20:30:07 -0000 Subject: SUSE-RU-2026:21865-1: important: Recommended update for health-checker Message-ID: <178034580793.1034.5169353932172063207@cf67f1158b88> # Recommended update for health-checker Announcement ID: SUSE-RU-2026:21865-1 Release Date: 2026-05-28T15:58:36Z Rating: important References: * bsc#1244078 Affected Products: * SUSE Linux Enterprise Server for SAP applications 16.0 An update that has one fix can now be installed. ## Description: This update for health-checker fixes the following issues: * Update to version 1.13+git20260414.bb3e4ad: * Update configure.ac with autoupdate * Remove dependencies on cloud-init and for removed plugins (bsc#1244078) * Revert "fix(systemd): Fix dependency cycle with other systemd services" * fix(systemd): Fix dependency cycle with other systemd services * fix(dracut): Skip dracut module on BLS systems * Release version 1.13 * Use Automatic Boot Assessment for systemd-boot/grub2-bls * README: clearify services in After section * Set RemainAfterExit=yes ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server for SAP applications 16.0 zypper in -t patch SUSE-SLES-16.0-819=1 ## Package List: * SUSE Linux Enterprise Server for SAP applications 16.0 (noarch) * health-checker-1.13+git20260414.bb3e4ad-160000.1.1 * health-checker-testing-1.13+git20260414.bb3e4ad-160000.1.1 * health-checker-plugins-MicroOS-1.13+git20260414.bb3e4ad-160000.1.1 ## References: * https://bugzilla.suse.com/show_bug.cgi?id=1244078 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 20:30:09 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 20:30:09 -0000 Subject: SUSE-RU-2026:21864-1: moderate: Recommended update for supportutils-plugin-ha-sap Message-ID: <178034580924.1034.7249559856564028499@cf67f1158b88> # Recommended update for supportutils-plugin-ha-sap Announcement ID: SUSE-RU-2026:21864-1 Release Date: 2026-05-28T12:39:17Z Rating: moderate References: * jsc#PED-16104 Affected Products: * SUSE Linux Enterprise Server for SAP applications 16.0 An update that contains one feature can now be installed. ## Description: This update for supportutils-plugin-ha-sap fixes the following issues: Changes in supportutils-plugin-ha-sap: * Added XSA support (jsc#PED-16104) * Fixed error for 'saphostexec -status' and adapt change in HANA installation (read /etc/sysctl.d/sap_hdb_sysctl.conf) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server for SAP applications 16.0 zypper in -t patch SUSE-SLES-16.0-818=1 ## Package List: * SUSE Linux Enterprise Server for SAP applications 16.0 (noarch) * supportutils-plugin-ha-sap-0.0.9+git.1778500769.8c44b8b-160000.1.1 ## References: * https://jira.suse.com/browse/PED-16104 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 20:30:12 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 20:30:12 -0000 Subject: SUSE-RU-2026:21862-1: moderate: Recommended update for pcp Message-ID: <178034581222.1034.4903861570515457824@cf67f1158b88> # Recommended update for pcp Announcement ID: SUSE-RU-2026:21862-1 Release Date: 2026-05-28T17:08:48Z Rating: moderate References: Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP applications 16.0 An update that can now be installed. ## Description: This update for pcp fixes the following issues: Changes in pcp: * Stop supporting qt4 and use qt6 by default in Factory/SLE16 instead of qt5. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-821=1 * SUSE Linux Enterprise Server for SAP applications 16.0 zypper in -t patch SUSE-SLES-16.0-821=1 ## Package List: * SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le s390x x86_64) * libpcp_gui2-debuginfo-6.2.0-160000.3.1 * pcp-pmda-cifs-6.2.0-160000.3.1 * pcp-system-tools-6.2.0-160000.3.1 * pcp-pmda-systemd-6.2.0-160000.3.1 * pcp-pmda-smart-debuginfo-6.2.0-160000.3.1 * perl-PCP-LogImport-debuginfo-6.2.0-160000.3.1 * pcp-pmda-sendmail-debuginfo-6.2.0-160000.3.1 * pcp-pmda-logger-6.2.0-160000.3.1 * pcp-pmda-shping-6.2.0-160000.3.1 * pcp-pmda-shping-debuginfo-6.2.0-160000.3.1 * libpcp-devel-6.2.0-160000.3.1 * perl-PCP-MMV-6.2.0-160000.3.1 * pcp-pmda-mounts-6.2.0-160000.3.1 * pcp-pmda-mailq-debuginfo-6.2.0-160000.3.1 * pcp-pmda-apache-6.2.0-160000.3.1 * pcp-pmda-cisco-6.2.0-160000.3.1 * pcp-pmda-sockets-6.2.0-160000.3.1 * pcp-pmda-hacluster-debuginfo-6.2.0-160000.3.1 * pcp-pmda-roomtemp-debuginfo-6.2.0-160000.3.1 * python3-pcp-debuginfo-6.2.0-160000.3.1 * pcp-devel-6.2.0-160000.3.1 * pcp-pmda-cifs-debuginfo-6.2.0-160000.3.1 * pcp-pmda-mounts-debuginfo-6.2.0-160000.3.1 * pcp-pmda-trace-6.2.0-160000.3.1 * pcp-pmda-bash-debuginfo-6.2.0-160000.3.1 * pcp-pmda-lustrecomm-debuginfo-6.2.0-160000.3.1 * pcp-pmda-cisco-debuginfo-6.2.0-160000.3.1 * pcp-pmda-zimbra-6.2.0-160000.3.1 * pcp-pmda-sockets-debuginfo-6.2.0-160000.3.1 * pcp-pmda-smart-6.2.0-160000.3.1 * libpcp_trace2-debuginfo-6.2.0-160000.3.1 * pcp-pmda-roomtemp-6.2.0-160000.3.1 * pcp-pmda-logger-debuginfo-6.2.0-160000.3.1 * pcp-system-tools-debuginfo-6.2.0-160000.3.1 * libpcp_mmv1-6.2.0-160000.3.1 * perl-PCP-PMDA-debuginfo-6.2.0-160000.3.1 * pcp-selinux-6.2.0-160000.3.1 * pcp-pmda-hacluster-6.2.0-160000.3.1 * pcp-pmda-apache-debuginfo-6.2.0-160000.3.1 * libpcp3-6.2.0-160000.3.1 * libpcp_trace2-6.2.0-160000.3.1 * pcp-pmda-weblog-debuginfo-6.2.0-160000.3.1 * pcp-pmda-docker-debuginfo-6.2.0-160000.3.1 * pcp-debugsource-6.2.0-160000.3.1 * pcp-devel-debuginfo-6.2.0-160000.3.1 * pcp-pmda-nvidia-gpu-debuginfo-6.2.0-160000.3.1 * pcp-pmda-sendmail-6.2.0-160000.3.1 * perl-PCP-PMDA-6.2.0-160000.3.1 * python3-pcp-6.2.0-160000.3.1 * pcp-pmda-weblog-6.2.0-160000.3.1 * libpcp_web1-debuginfo-6.2.0-160000.3.1 * pcp-import-collectl2pcp-6.2.0-160000.3.1 * pcp-debuginfo-6.2.0-160000.3.1 * libpcp_mmv1-debuginfo-6.2.0-160000.3.1 * pcp-pmda-bash-6.2.0-160000.3.1 * pcp-pmda-nvidia-gpu-6.2.0-160000.3.1 * pcp-6.2.0-160000.3.1 * pcp-pmda-gfs2-debuginfo-6.2.0-160000.3.1 * pcp-pmda-mailq-6.2.0-160000.3.1 * pcp-pmda-summary-6.2.0-160000.3.1 * pcp-pmda-dm-debuginfo-6.2.0-160000.3.1 * pcp-pmda-zimbra-debuginfo-6.2.0-160000.3.1 * libpcp_import1-debuginfo-6.2.0-160000.3.1 * pcp-pmda-docker-6.2.0-160000.3.1 * pcp-import-collectl2pcp-debuginfo-6.2.0-160000.3.1 * libpcp_gui2-6.2.0-160000.3.1 * pcp-pmda-dm-6.2.0-160000.3.1 * perl-PCP-LogSummary-6.2.0-160000.3.1 * perl-PCP-MMV-debuginfo-6.2.0-160000.3.1 * perl-PCP-LogImport-6.2.0-160000.3.1 * libpcp_web1-6.2.0-160000.3.1 * pcp-pmda-systemd-debuginfo-6.2.0-160000.3.1 * pcp-pmda-summary-debuginfo-6.2.0-160000.3.1 * libpcp3-debuginfo-6.2.0-160000.3.1 * pcp-pmda-gfs2-6.2.0-160000.3.1 * pcp-pmda-lustrecomm-6.2.0-160000.3.1 * libpcp_import1-6.2.0-160000.3.1 * pcp-pmda-trace-debuginfo-6.2.0-160000.3.1 * SUSE Linux Enterprise Server 16.0 (noarch) * pcp-pmda-pdns-6.2.0-160000.3.1 * pcp-pmda-news-6.2.0-160000.3.1 * pcp-pmda-slurm-6.2.0-160000.3.1 * pcp-pmda-netfilter-6.2.0-160000.3.1 * pcp-import-mrtg2pcp-6.2.0-160000.3.1 * pcp-pmda-lustre-6.2.0-160000.3.1 * pcp-pmda-nginx-6.2.0-160000.3.1 * pcp-pmda-nutcracker-6.2.0-160000.3.1 * pcp-pmda-samba-6.2.0-160000.3.1 * pcp-export-pcp2json-6.2.0-160000.3.1 * pcp-pmda-rsyslog-6.2.0-160000.3.1 * pcp-pmda-openvswitch-6.2.0-160000.3.1 * pcp-pmda-memcache-6.2.0-160000.3.1 * pcp-pmda-gpfs-6.2.0-160000.3.1 * pcp-pmda-elasticsearch-6.2.0-160000.3.1 * pcp-pmda-dbping-6.2.0-160000.3.1 * pcp-export-pcp2elasticsearch-6.2.0-160000.3.1 * pcp-pmda-mysql-6.2.0-160000.3.1 * pcp-pmda-gpsd-6.2.0-160000.3.1 * pcp-import-sar2pcp-6.2.0-160000.3.1 * pcp-pmda-bonding-6.2.0-160000.3.1 * pcp-import-iostat2pcp-6.2.0-160000.3.1 * pcp-pmda-redis-6.2.0-160000.3.1 * pcp-pmda-lmsensors-6.2.0-160000.3.1 * pcp-pmda-rabbitmq-6.2.0-160000.3.1 * pcp-pmda-haproxy-6.2.0-160000.3.1 * pcp-pmda-netcheck-6.2.0-160000.3.1 * pcp-export-pcp2spark-6.2.0-160000.3.1 * pcp-pmda-mic-6.2.0-160000.3.1 * pcp-pmda-json-6.2.0-160000.3.1 * pcp-import-ganglia2pcp-6.2.0-160000.3.1 * pcp-export-pcp2graphite-6.2.0-160000.3.1 * pcp-pmda-activemq-6.2.0-160000.3.1 * pcp-pmda-unbound-6.2.0-160000.3.1 * pcp-pmda-postfix-6.2.0-160000.3.1 * pcp-pmda-snmp-6.2.0-160000.3.1 * pcp-conf-6.2.0-160000.3.1 * pcp-pmda-lio-6.2.0-160000.3.1 * pcp-pmda-zswap-6.2.0-160000.3.1 * pcp-pmda-openmetrics-6.2.0-160000.3.1 * pcp-zeroconf-6.2.0-160000.3.1 * pcp-doc-6.2.0-160000.3.1 * pcp-pmda-ds389log-6.2.0-160000.3.1 * pcp-pmda-oracle-6.2.0-160000.3.1 * pcp-export-pcp2zabbix-6.2.0-160000.3.1 * pcp-pmda-nfsclient-6.2.0-160000.3.1 * pcp-pmda-ds389-6.2.0-160000.3.1 * pcp-export-pcp2xml-6.2.0-160000.3.1 * pcp-pmda-named-6.2.0-160000.3.1 * pcp-export-pcp2influxdb-6.2.0-160000.3.1 * SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le x86_64) * pcp-pmda-infiniband-6.2.0-160000.3.1 * pcp-pmda-perfevent-6.2.0-160000.3.1 * pcp-pmda-perfevent-debuginfo-6.2.0-160000.3.1 * pcp-pmda-infiniband-debuginfo-6.2.0-160000.3.1 * SUSE Linux Enterprise Server 16.0 (x86_64) * pcp-pmda-resctrl-6.2.0-160000.3.1 * pcp-pmda-resctrl-debuginfo-6.2.0-160000.3.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (ppc64le x86_64) * libpcp_gui2-debuginfo-6.2.0-160000.3.1 * pcp-pmda-cifs-6.2.0-160000.3.1 * pcp-system-tools-6.2.0-160000.3.1 * pcp-pmda-systemd-6.2.0-160000.3.1 * pcp-pmda-smart-debuginfo-6.2.0-160000.3.1 * perl-PCP-LogImport-debuginfo-6.2.0-160000.3.1 * pcp-pmda-sendmail-debuginfo-6.2.0-160000.3.1 * pcp-pmda-logger-6.2.0-160000.3.1 * pcp-pmda-shping-6.2.0-160000.3.1 * pcp-pmda-shping-debuginfo-6.2.0-160000.3.1 * libpcp-devel-6.2.0-160000.3.1 * perl-PCP-MMV-6.2.0-160000.3.1 * pcp-pmda-mounts-6.2.0-160000.3.1 * pcp-pmda-mailq-debuginfo-6.2.0-160000.3.1 * pcp-pmda-apache-6.2.0-160000.3.1 * pcp-pmda-cisco-6.2.0-160000.3.1 * pcp-pmda-sockets-6.2.0-160000.3.1 * pcp-pmda-hacluster-debuginfo-6.2.0-160000.3.1 * pcp-pmda-roomtemp-debuginfo-6.2.0-160000.3.1 * python3-pcp-debuginfo-6.2.0-160000.3.1 * pcp-devel-6.2.0-160000.3.1 * pcp-pmda-cifs-debuginfo-6.2.0-160000.3.1 * pcp-pmda-perfevent-6.2.0-160000.3.1 * pcp-pmda-mounts-debuginfo-6.2.0-160000.3.1 * pcp-pmda-trace-6.2.0-160000.3.1 * pcp-pmda-bash-debuginfo-6.2.0-160000.3.1 * pcp-pmda-lustrecomm-debuginfo-6.2.0-160000.3.1 * pcp-pmda-cisco-debuginfo-6.2.0-160000.3.1 * pcp-pmda-infiniband-debuginfo-6.2.0-160000.3.1 * pcp-pmda-zimbra-6.2.0-160000.3.1 * pcp-pmda-sockets-debuginfo-6.2.0-160000.3.1 * pcp-pmda-smart-6.2.0-160000.3.1 * pcp-pmda-infiniband-6.2.0-160000.3.1 * libpcp_trace2-debuginfo-6.2.0-160000.3.1 * pcp-pmda-roomtemp-6.2.0-160000.3.1 * pcp-pmda-logger-debuginfo-6.2.0-160000.3.1 * pcp-system-tools-debuginfo-6.2.0-160000.3.1 * libpcp_mmv1-6.2.0-160000.3.1 * pcp-pmda-perfevent-debuginfo-6.2.0-160000.3.1 * perl-PCP-PMDA-debuginfo-6.2.0-160000.3.1 * pcp-selinux-6.2.0-160000.3.1 * pcp-pmda-hacluster-6.2.0-160000.3.1 * pcp-pmda-apache-debuginfo-6.2.0-160000.3.1 * libpcp3-6.2.0-160000.3.1 * libpcp_trace2-6.2.0-160000.3.1 * pcp-pmda-weblog-debuginfo-6.2.0-160000.3.1 * pcp-pmda-docker-debuginfo-6.2.0-160000.3.1 * pcp-debugsource-6.2.0-160000.3.1 * pcp-devel-debuginfo-6.2.0-160000.3.1 * pcp-pmda-nvidia-gpu-debuginfo-6.2.0-160000.3.1 * pcp-pmda-sendmail-6.2.0-160000.3.1 * perl-PCP-PMDA-6.2.0-160000.3.1 * python3-pcp-6.2.0-160000.3.1 * pcp-pmda-weblog-6.2.0-160000.3.1 * libpcp_web1-debuginfo-6.2.0-160000.3.1 * pcp-import-collectl2pcp-6.2.0-160000.3.1 * pcp-debuginfo-6.2.0-160000.3.1 * libpcp_mmv1-debuginfo-6.2.0-160000.3.1 * pcp-pmda-bash-6.2.0-160000.3.1 * pcp-pmda-nvidia-gpu-6.2.0-160000.3.1 * pcp-6.2.0-160000.3.1 * pcp-pmda-gfs2-debuginfo-6.2.0-160000.3.1 * pcp-pmda-mailq-6.2.0-160000.3.1 * pcp-pmda-summary-6.2.0-160000.3.1 * pcp-pmda-dm-debuginfo-6.2.0-160000.3.1 * pcp-pmda-zimbra-debuginfo-6.2.0-160000.3.1 * libpcp_import1-debuginfo-6.2.0-160000.3.1 * pcp-pmda-docker-6.2.0-160000.3.1 * pcp-import-collectl2pcp-debuginfo-6.2.0-160000.3.1 * libpcp_gui2-6.2.0-160000.3.1 * pcp-pmda-dm-6.2.0-160000.3.1 * perl-PCP-LogSummary-6.2.0-160000.3.1 * perl-PCP-MMV-debuginfo-6.2.0-160000.3.1 * perl-PCP-LogImport-6.2.0-160000.3.1 * libpcp_web1-6.2.0-160000.3.1 * pcp-pmda-systemd-debuginfo-6.2.0-160000.3.1 * pcp-pmda-summary-debuginfo-6.2.0-160000.3.1 * libpcp3-debuginfo-6.2.0-160000.3.1 * pcp-pmda-gfs2-6.2.0-160000.3.1 * pcp-pmda-lustrecomm-6.2.0-160000.3.1 * libpcp_import1-6.2.0-160000.3.1 * pcp-pmda-trace-debuginfo-6.2.0-160000.3.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (noarch) * pcp-pmda-pdns-6.2.0-160000.3.1 * pcp-pmda-news-6.2.0-160000.3.1 * pcp-pmda-slurm-6.2.0-160000.3.1 * pcp-pmda-netfilter-6.2.0-160000.3.1 * pcp-import-mrtg2pcp-6.2.0-160000.3.1 * pcp-pmda-lustre-6.2.0-160000.3.1 * pcp-pmda-nginx-6.2.0-160000.3.1 * pcp-pmda-nutcracker-6.2.0-160000.3.1 * pcp-pmda-samba-6.2.0-160000.3.1 * pcp-export-pcp2json-6.2.0-160000.3.1 * pcp-pmda-rsyslog-6.2.0-160000.3.1 * pcp-pmda-openvswitch-6.2.0-160000.3.1 * pcp-pmda-memcache-6.2.0-160000.3.1 * pcp-pmda-gpfs-6.2.0-160000.3.1 * pcp-pmda-elasticsearch-6.2.0-160000.3.1 * pcp-pmda-dbping-6.2.0-160000.3.1 * pcp-export-pcp2elasticsearch-6.2.0-160000.3.1 * pcp-pmda-mysql-6.2.0-160000.3.1 * pcp-pmda-gpsd-6.2.0-160000.3.1 * pcp-import-sar2pcp-6.2.0-160000.3.1 * pcp-pmda-bonding-6.2.0-160000.3.1 * pcp-import-iostat2pcp-6.2.0-160000.3.1 * pcp-pmda-redis-6.2.0-160000.3.1 * pcp-pmda-lmsensors-6.2.0-160000.3.1 * pcp-pmda-rabbitmq-6.2.0-160000.3.1 * pcp-pmda-haproxy-6.2.0-160000.3.1 * pcp-pmda-netcheck-6.2.0-160000.3.1 * pcp-export-pcp2spark-6.2.0-160000.3.1 * pcp-pmda-mic-6.2.0-160000.3.1 * pcp-pmda-json-6.2.0-160000.3.1 * pcp-import-ganglia2pcp-6.2.0-160000.3.1 * pcp-export-pcp2graphite-6.2.0-160000.3.1 * pcp-pmda-activemq-6.2.0-160000.3.1 * pcp-pmda-unbound-6.2.0-160000.3.1 * pcp-pmda-postfix-6.2.0-160000.3.1 * pcp-pmda-snmp-6.2.0-160000.3.1 * pcp-conf-6.2.0-160000.3.1 * pcp-pmda-lio-6.2.0-160000.3.1 * pcp-pmda-zswap-6.2.0-160000.3.1 * pcp-pmda-openmetrics-6.2.0-160000.3.1 * pcp-zeroconf-6.2.0-160000.3.1 * pcp-doc-6.2.0-160000.3.1 * pcp-pmda-ds389log-6.2.0-160000.3.1 * pcp-pmda-oracle-6.2.0-160000.3.1 * pcp-export-pcp2zabbix-6.2.0-160000.3.1 * pcp-pmda-nfsclient-6.2.0-160000.3.1 * pcp-pmda-ds389-6.2.0-160000.3.1 * pcp-export-pcp2xml-6.2.0-160000.3.1 * pcp-pmda-named-6.2.0-160000.3.1 * pcp-export-pcp2influxdb-6.2.0-160000.3.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (x86_64) * pcp-pmda-resctrl-6.2.0-160000.3.1 * pcp-pmda-resctrl-debuginfo-6.2.0-160000.3.1 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 20:30:10 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 20:30:10 -0000 Subject: SUSE-RU-2026:21863-1: important: Recommended update for the initial kernel livepatch Message-ID: <178034581074.1034.17052430567931802419@cf67f1158b88> # Recommended update for the initial kernel livepatch Announcement ID: SUSE-RU-2026:21863-1 Release Date: 2026-05-28T11:11:08Z Rating: important References: Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP applications 16.0 An update that can now be installed. ## Description: This update contains initial livepatches for the SUSE Linux Enterprise Server 16.0 and SUSE Linux Micro 6.2 kernel update. ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server for SAP applications 16.0 zypper in -t patch SUSE-SLES-16.0-815=1 * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-815=1 ## Package List: * SUSE Linux Enterprise Server for SAP applications 16.0 (ppc64le x86_64) * kernel-livepatch-6_12_0-160000_33-default-1-160000.1.1 * kernel-livepatch-6_12_0-160000_33-default-debuginfo-1-160000.1.1 * kernel-livepatch-SLE16_Update_12-debugsource-1-160000.1.1 * SUSE Linux Enterprise Server 16.0 (ppc64le s390x x86_64) * kernel-livepatch-6_12_0-160000_33-default-1-160000.1.1 * kernel-livepatch-6_12_0-160000_33-default-debuginfo-1-160000.1.1 * kernel-livepatch-SLE16_Update_12-debugsource-1-160000.1.1 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 20:30:21 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 20:30:21 -0000 Subject: SUSE-SU-2026:21861-1: important: Security update for python-Pillow Message-ID: <178034582178.1034.14227434003234665740@cf67f1158b88> # Security update for python-Pillow Announcement ID: SUSE-SU-2026:21861-1 Release Date: 2026-05-28T16:02:39Z Rating: important References: * bsc#1265153 * bsc#1265154 * bsc#1265359 Cross-References: * CVE-2026-42308 * CVE-2026-42309 * CVE-2026-42310 CVSS scores: * CVE-2026-42308 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-42308 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42308 ( NVD ): 5.1 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-42308 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42309 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-42309 ( SUSE ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-42309 ( NVD ): 5.1 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-42309 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42310 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42310 ( NVD ): 5.1 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-42310 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP applications 16.0 An update that solves three vulnerabilities can now be installed. ## Description: This update for python-Pillow fixes the following issues * CVE-2026-42308: integer overflow in font processing can lead to denial of service (bsc#1265359). * CVE-2026-42309: heap buffer overflow when processing nested list coordinates (bsc#1265153). * CVE-2026-42310: infinite loop and resource exhaustion when processing specially crafted PDFs (bsc#1265154). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-820=1 * SUSE Linux Enterprise Server for SAP applications 16.0 zypper in -t patch SUSE-SLES-16.0-820=1 ## Package List: * SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le s390x x86_64) * python-Pillow-debuginfo-11.3.0-160000.5.1 * python313-Pillow-tk-debuginfo-11.3.0-160000.5.1 * python313-Pillow-debuginfo-11.3.0-160000.5.1 * python313-Pillow-11.3.0-160000.5.1 * python-Pillow-debugsource-11.3.0-160000.5.1 * python313-Pillow-tk-11.3.0-160000.5.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (ppc64le x86_64) * python-Pillow-debuginfo-11.3.0-160000.5.1 * python313-Pillow-tk-debuginfo-11.3.0-160000.5.1 * python313-Pillow-debuginfo-11.3.0-160000.5.1 * python313-Pillow-11.3.0-160000.5.1 * python-Pillow-debugsource-11.3.0-160000.5.1 * python313-Pillow-tk-11.3.0-160000.5.1 ## References: * https://www.suse.com/security/cve/CVE-2026-42308.html * https://www.suse.com/security/cve/CVE-2026-42309.html * https://www.suse.com/security/cve/CVE-2026-42310.html * https://bugzilla.suse.com/show_bug.cgi?id=1265153 * https://bugzilla.suse.com/show_bug.cgi?id=1265154 * https://bugzilla.suse.com/show_bug.cgi?id=1265359 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 20:36:26 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 20:36:26 -0000 Subject: SUSE-SU-2026:21860-1: important: Security update for the Linux Kernel Message-ID: <178034618608.1034.11879934743771111593@cf67f1158b88> # Security update for the Linux Kernel Announcement ID: SUSE-SU-2026:21860-1 Release Date: 2026-05-28T12:58:58Z Rating: important References: * bsc#1215199 * bsc#1234634 * bsc#1241259 * bsc#1243603 * bsc#1248754 * bsc#1249104 * bsc#1250951 * bsc#1253471 * bsc#1254518 * bsc#1255160 * bsc#1255360 * bsc#1255459 * bsc#1255752 * bsc#1256288 * bsc#1256865 * bsc#1256867 * bsc#1258518 * bsc#1258718 * bsc#1258826 * bsc#1258849 * bsc#1258850 * bsc#1258854 * bsc#1258855 * bsc#1258856 * bsc#1258857 * bsc#1258933 * bsc#1258961 * bsc#1259186 * bsc#1259199 * bsc#1259222 * bsc#1259420 * bsc#1259461 * bsc#1259535 * bsc#1259672 * bsc#1259799 * bsc#1259806 * bsc#1259857 * bsc#1259865 * bsc#1259868 * bsc#1259869 * bsc#1259871 * bsc#1259873 * bsc#1259878 * bsc#1259889 * bsc#1259994 * bsc#1260010 * bsc#1260012 * bsc#1260018 * bsc#1260428 * bsc#1260468 * bsc#1260483 * bsc#1260484 * bsc#1260485 * bsc#1260489 * bsc#1260504 * bsc#1260505 * bsc#1260507 * bsc#1260514 * bsc#1260523 * bsc#1260526 * bsc#1260528 * bsc#1260529 * bsc#1260530 * bsc#1260531 * bsc#1260532 * bsc#1260533 * bsc#1260536 * bsc#1260537 * bsc#1260538 * bsc#1260541 * bsc#1260546 * bsc#1260549 * bsc#1260551 * bsc#1260552 * bsc#1260555 * bsc#1260561 * bsc#1260562 * bsc#1260566 * bsc#1260571 * bsc#1260572 * bsc#1260573 * bsc#1260576 * bsc#1260580 * bsc#1260581 * bsc#1260593 * bsc#1260613 * bsc#1260728 * bsc#1260729 * bsc#1260731 * bsc#1260798 * bsc#1260800 * bsc#1260801 * bsc#1260807 * bsc#1260811 * bsc#1260996 * bsc#1261020 * bsc#1261149 * bsc#1261287 * bsc#1261288 * bsc#1261295 * bsc#1261348 * bsc#1261410 * bsc#1261503 * bsc#1261504 * bsc#1261505 * bsc#1261550 * bsc#1261555 * bsc#1261581 * bsc#1261582 * bsc#1261584 * bsc#1261585 * bsc#1261592 * bsc#1261601 * bsc#1261602 * bsc#1261617 * bsc#1261618 * bsc#1261629 * bsc#1261632 * bsc#1261635 * bsc#1261636 * bsc#1261637 * bsc#1261638 * bsc#1261641 * bsc#1261644 * bsc#1261645 * bsc#1261648 * bsc#1261679 * bsc#1261685 * bsc#1261686 * bsc#1261687 * bsc#1261692 * bsc#1261694 * bsc#1261700 * bsc#1261702 * bsc#1261703 * bsc#1261707 * bsc#1261710 * bsc#1261713 * bsc#1261714 * bsc#1261719 * bsc#1261738 * bsc#1261750 * bsc#1261751 * bsc#1261752 * bsc#1261768 * bsc#1261778 * bsc#1261779 * bsc#1261780 * bsc#1261781 * bsc#1261786 * bsc#1261788 * bsc#1261789 * bsc#1261796 * bsc#1261797 * bsc#1261896 * bsc#1262019 * bsc#1262053 * bsc#1262054 * bsc#1262055 * bsc#1262061 * bsc#1262063 * bsc#1262074 * bsc#1262078 * bsc#1262086 * bsc#1262087 * bsc#1262099 * bsc#1262100 * bsc#1262101 * bsc#1262179 * bsc#1262181 * bsc#1262245 * bsc#1262250 * bsc#1262480 * bsc#1262601 * bsc#1262616 * bsc#1262617 * bsc#1262627 * bsc#1262662 * bsc#1262665 * bsc#1262671 * bsc#1262673 * bsc#1262709 * bsc#1262725 * bsc#1262731 * bsc#1262750 * bsc#1262752 * bsc#1262758 * bsc#1263001 * bsc#1263012 * bsc#1263018 * bsc#1263044 * bsc#1263048 * bsc#1263052 * bsc#1263064 * bsc#1263074 * bsc#1263077 * bsc#1263085 * bsc#1263093 * bsc#1263095 * bsc#1263104 * bsc#1263107 * bsc#1263131 * bsc#1263135 * bsc#1263138 * bsc#1263140 * bsc#1263141 * bsc#1263165 * bsc#1263176 * bsc#1263255 * bsc#1263556 * bsc#1263562 * bsc#1263582 * bsc#1263592 * bsc#1263593 * bsc#1263595 * bsc#1263596 * bsc#1263604 * bsc#1263668 * bsc#1263815 * bsc#1263882 * bsc#1263901 * bsc#1263931 * bsc#1263933 * bsc#1263942 * bsc#1263995 * bsc#1264014 * bsc#1264059 * bsc#1264082 * bsc#1264097 * bsc#1264183 * bsc#1264233 * bsc#1264427 * bsc#1264469 * bsc#1264586 * bsc#1264674 * bsc#1264837 * bsc#1264848 * bsc#1265085 * bsc#1265116 * bsc#1265119 * bsc#1265144 * bsc#1265308 * bsc#1265421 * bsc#1265449 * bsc#1265456 * bsc#1265626 * bsc#1265846 * bsc#1265960 * jsc#PED-13771 * jsc#PED-14156 * jsc#PED-14238 * jsc#PED-16113 * jsc#PED-7912 Cross-References: * CVE-2023-2058 * CVE-2024-14027 * CVE-2025-40181 * CVE-2025-40219 * CVE-2025-68265 * CVE-2025-68310 * CVE-2025-71238 * CVE-2025-71268 * CVE-2025-71269 * CVE-2025-71302 * CVE-2026-23168 * CVE-2026-23209 * CVE-2026-23236 * CVE-2026-23237 * CVE-2026-23245 * CVE-2026-23246 * CVE-2026-23253 * CVE-2026-23260 * CVE-2026-23261 * CVE-2026-23264 * CVE-2026-23266 * CVE-2026-23268 * CVE-2026-23269 * CVE-2026-23271 * CVE-2026-23273 * CVE-2026-23276 * CVE-2026-23279 * CVE-2026-23290 * CVE-2026-23291 * CVE-2026-23298 * CVE-2026-23300 * CVE-2026-23307 * CVE-2026-23312 * CVE-2026-23313 * CVE-2026-23315 * CVE-2026-23316 * CVE-2026-23317 * CVE-2026-23318 * CVE-2026-23321 * CVE-2026-23324 * CVE-2026-23325 * CVE-2026-23334 * CVE-2026-23336 * CVE-2026-23339 * CVE-2026-23340 * CVE-2026-23346 * CVE-2026-23347 * CVE-2026-23351 * CVE-2026-23354 * CVE-2026-23357 * CVE-2026-23360 * CVE-2026-23362 * CVE-2026-23363 * CVE-2026-23365 * CVE-2026-23367 * CVE-2026-23368 * CVE-2026-23369 * CVE-2026-23370 * CVE-2026-23372 * CVE-2026-23373 * CVE-2026-23374 * CVE-2026-23375 * CVE-2026-23378 * CVE-2026-23382 * CVE-2026-23387 * CVE-2026-23391 * CVE-2026-23392 * CVE-2026-23395 * CVE-2026-23396 * CVE-2026-23397 * CVE-2026-23399 * CVE-2026-23401 * CVE-2026-23403 * CVE-2026-23404 * CVE-2026-23405 * CVE-2026-23406 * CVE-2026-23407 * CVE-2026-23408 * CVE-2026-23409 * CVE-2026-23410 * CVE-2026-23411 * CVE-2026-23417 * CVE-2026-23418 * CVE-2026-23420 * CVE-2026-23426 * CVE-2026-23434 * CVE-2026-23436 * CVE-2026-23437 * CVE-2026-23440 * CVE-2026-23441 * CVE-2026-23442 * CVE-2026-23443 * CVE-2026-23445 * CVE-2026-23446 * CVE-2026-23447 * CVE-2026-23448 * CVE-2026-23449 * CVE-2026-23450 * CVE-2026-23452 * CVE-2026-23454 * CVE-2026-23455 * CVE-2026-23456 * CVE-2026-23457 * CVE-2026-23458 * CVE-2026-23460 * CVE-2026-23461 * CVE-2026-23462 * CVE-2026-23463 * CVE-2026-23464 * CVE-2026-23465 * CVE-2026-23466 * CVE-2026-23468 * CVE-2026-23470 * CVE-2026-23472 * CVE-2026-23473 * CVE-2026-23474 * CVE-2026-23475 * CVE-2026-31389 * CVE-2026-31392 * CVE-2026-31393 * CVE-2026-31394 * CVE-2026-31395 * CVE-2026-31400 * CVE-2026-31402 * CVE-2026-31403 * CVE-2026-31405 * CVE-2026-31406 * CVE-2026-31407 * CVE-2026-31408 * CVE-2026-31411 * CVE-2026-31412 * CVE-2026-31415 * CVE-2026-31416 * CVE-2026-31417 * CVE-2026-31420 * CVE-2026-31421 * CVE-2026-31422 * CVE-2026-31423 * CVE-2026-31424 * CVE-2026-31425 * CVE-2026-31426 * CVE-2026-31427 * CVE-2026-31428 * CVE-2026-31435 * CVE-2026-31449 * CVE-2026-31453 * CVE-2026-31456 * CVE-2026-31470 * CVE-2026-31494 * CVE-2026-31496 * CVE-2026-31503 * CVE-2026-31504 * CVE-2026-31505 * CVE-2026-31507 * CVE-2026-31515 * CVE-2026-31519 * CVE-2026-31525 * CVE-2026-31526 * CVE-2026-31528 * CVE-2026-31533 * CVE-2026-31547 * CVE-2026-31550 * CVE-2026-31554 * CVE-2026-31565 * CVE-2026-31579 * CVE-2026-31586 * CVE-2026-31588 * CVE-2026-31644 * CVE-2026-31649 * CVE-2026-31658 * CVE-2026-31662 * CVE-2026-31666 * CVE-2026-31668 * CVE-2026-31669 * CVE-2026-31675 * CVE-2026-31678 * CVE-2026-31679 * CVE-2026-31681 * CVE-2026-31682 * CVE-2026-31684 * CVE-2026-31685 * CVE-2026-31691 * CVE-2026-31694 * CVE-2026-31700 * CVE-2026-31738 * CVE-2026-31787 * CVE-2026-43009 * CVE-2026-43025 * CVE-2026-43027 * CVE-2026-43037 * CVE-2026-43038 * CVE-2026-43045 * CVE-2026-43050 * CVE-2026-43060 * CVE-2026-43082 * CVE-2026-43088 * CVE-2026-43153 * CVE-2026-43190 * CVE-2026-43265 * CVE-2026-43329 * CVE-2026-43365 * CVE-2026-43366 * CVE-2026-43441 * CVE-2026-43494 * CVE-2026-43503 * CVE-2026-46333 CVSS scores: * CVE-2023-2058 ( NVD ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N * CVE-2023-2058 ( NVD ): 2.4 CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N * CVE-2024-14027 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-14027 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-40181 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-40181 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-40219 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2025-40219 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2025-68265 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2025-68265 ( SUSE ): 5.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2025-68310 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2025-68310 ( SUSE ): 5.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2025-71238 ( SUSE ): 5.9 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-71238 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H * CVE-2025-71238 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-71268 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-71268 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-71268 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-71269 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-71269 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-71269 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-71302 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-71302 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-71302 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23168 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23168 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23168 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23209 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23209 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23236 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23236 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23236 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23236 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H * CVE-2026-23237 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23237 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23237 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23245 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23245 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23245 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23246 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23246 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23253 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23253 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23260 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-23260 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-23260 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23261 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-23261 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-23264 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23264 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23264 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23266 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23266 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23266 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23268 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23268 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23268 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23269 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23269 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23269 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23271 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23271 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23271 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23273 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23273 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23273 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23276 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23276 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23279 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23279 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23279 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23290 ( SUSE ): 5.1 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23290 ( SUSE ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23290 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23291 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23291 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23298 ( SUSE ): 5.1 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23298 ( SUSE ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23298 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23300 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23300 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23300 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23307 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23307 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23312 ( SUSE ): 5.1 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23312 ( SUSE ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23312 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23313 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23313 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23315 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23315 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23316 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23316 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23318 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23318 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23321 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-23321 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-23321 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23324 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23324 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23324 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23325 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23325 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23334 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23334 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23336 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23336 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23339 ( SUSE ): 2.3 CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-23339 ( SUSE ): 3.1 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-23339 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23340 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23340 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23340 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23346 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23346 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23346 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23347 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23347 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23351 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23351 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23354 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-23354 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2026-23354 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23357 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23357 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23357 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23360 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23360 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23360 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23362 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23362 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23363 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23363 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23365 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23365 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23365 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23367 ( SUSE ): 5.3 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-23367 ( SUSE ): 6.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2026-23367 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23368 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23368 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23368 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23369 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23369 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23369 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23370 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23370 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23372 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23372 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23373 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23373 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23374 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23374 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23374 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23375 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23375 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23378 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23378 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-23378 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23378 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23382 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23382 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23382 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23387 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23387 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-23387 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23391 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23391 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23392 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23392 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23392 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23395 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23395 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23395 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23395 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23396 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23396 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23396 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23397 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23397 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23397 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23399 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23399 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23399 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23401 ( SUSE ): 8.2 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H * CVE-2026-23401 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H * CVE-2026-23401 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23403 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23403 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2026-23403 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23404 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23404 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23404 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23405 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23405 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23405 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23406 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23406 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23406 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23407 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23407 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23407 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23408 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23408 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23408 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23408 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23409 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23409 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-23409 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23410 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23410 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23410 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23410 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23411 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23417 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23417 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23417 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23418 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23418 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23418 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23420 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23420 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23420 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23426 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23426 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23426 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23434 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23434 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23434 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-23434 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23436 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23436 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23436 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23437 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23437 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23437 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23437 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23440 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23440 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23440 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23440 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23441 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23441 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23442 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23442 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23442 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23443 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23443 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23443 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23445 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23445 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23445 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23445 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23446 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23446 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23446 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23447 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23447 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23447 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23448 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23448 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23448 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23449 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23449 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23449 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23450 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23450 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23450 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23452 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23452 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23452 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23454 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23454 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23454 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23455 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23455 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23455 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23456 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-23456 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-23456 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23457 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23457 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23457 ( NVD ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-23458 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23458 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23458 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23460 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23460 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23460 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23461 ( SUSE ): 7.7 CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23461 ( SUSE ): 7.5 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23461 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23462 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23462 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23462 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23463 ( SUSE ): 0.0 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-23463 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N * CVE-2026-23463 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23464 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23464 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23464 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23465 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:L/SC:N/SI:N/SA:N * CVE-2026-23465 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2026-23465 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23466 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23466 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23466 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23468 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23468 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23468 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23470 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23470 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23470 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23472 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23472 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23472 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23473 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23473 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23474 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23474 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23474 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23475 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23475 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23475 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31389 ( SUSE ): 5.6 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31389 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31389 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31392 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-31392 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L * CVE-2026-31392 ( NVD ): 8.1 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:L * CVE-2026-31393 ( SUSE ): 5.3 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31393 ( SUSE ): 4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-31393 ( NVD ): 8.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31394 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31394 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31394 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31395 ( SUSE ): 5.4 CVSS:4.0/AV:P/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31395 ( SUSE ): 6.4 CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31395 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31400 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31400 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31400 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31402 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31402 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-31402 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31403 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31403 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31403 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31405 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31405 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31405 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31406 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31406 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31406 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31407 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31407 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N * CVE-2026-31407 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31408 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31408 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31408 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31411 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31411 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31411 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31412 ( SUSE ): 7.0 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31412 ( SUSE ): 6.8 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31412 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31415 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31415 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31415 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31416 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-31416 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-31416 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31417 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31417 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31417 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31420 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31420 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31420 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31421 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31421 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31421 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31422 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31422 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31422 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31423 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31423 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31423 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31424 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31424 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31424 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31425 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31425 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31425 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31426 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31426 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2026-31426 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31427 ( SUSE ): 2.0 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-31427 ( SUSE ): 4.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2026-31427 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31428 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31428 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2026-31428 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31435 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31435 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31435 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-31449 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31449 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31449 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-31453 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31453 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31453 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31456 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31456 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31456 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31470 ( SUSE ): 6.0 CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:H/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31470 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H * CVE-2026-31470 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31494 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-31494 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N * CVE-2026-31494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31496 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31496 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-31496 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31503 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31503 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-31503 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31504 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31504 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31504 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31505 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31505 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31505 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31507 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31507 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31507 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31515 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31515 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31515 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31519 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31519 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31519 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31525 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31525 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31525 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31526 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31526 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31526 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31528 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31528 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31528 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31533 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31533 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31533 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31547 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31547 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31547 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31550 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31550 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31550 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31554 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31554 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31554 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31565 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31565 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31565 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31579 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31579 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31579 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31586 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31586 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31586 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31588 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31588 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31588 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-31644 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31644 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31644 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31649 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31649 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31649 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31658 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31658 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31658 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31662 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31662 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31662 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31666 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-31666 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2026-31666 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31668 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-31668 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2026-31668 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31669 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31669 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31669 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31675 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31675 ( SUSE ): 5.6 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H * CVE-2026-31675 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31678 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31678 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31678 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31679 ( SUSE ): 8.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31679 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31679 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31681 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31681 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N * CVE-2026-31681 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31682 ( SUSE ): 5.3 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31682 ( SUSE ): 4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-31682 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31684 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-31684 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L * CVE-2026-31684 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31685 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31685 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31685 ( NVD ): 9.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H * CVE-2026-31691 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31691 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31691 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31694 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31694 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31694 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31700 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31700 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31700 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31738 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31738 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31738 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31787 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31787 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31787 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43009 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43009 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43025 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43025 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H * CVE-2026-43027 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43027 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43037 ( SUSE ): 7.7 CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43037 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43037 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43038 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43038 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43045 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43045 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43050 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43050 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43050 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43060 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43060 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43082 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43082 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43088 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-43088 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-43153 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43153 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43153 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43190 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43190 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-43190 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-43265 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43265 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43265 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43329 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43329 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43329 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43365 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-43365 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-43365 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-43366 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43366 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43366 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43441 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43441 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43494 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43494 ( SUSE ): 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43503 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43503 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-43503 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP applications 16.0 An update that solves 206 vulnerabilities, contains five features and has 42 fixes can now be installed. ## Description: The SUSE Linux Enterprise 16.0 kernel was updated to fix various security issues The following security issues were fixed: * CVE-2023-2058: x86/CPU: Fix FPDSS on Zen1 (bsc#1243603). * CVE-2024-14027: xattr: switch to CLASS(fd) (bsc#1259420). * CVE-2025-40181: x86/kvm: Force legacy PCI hole to UC when overriding MTRRs for TDX/SNP (bsc#1253471). * CVE-2025-68265: nvme: fix admin request_queue lifetime (bsc#1255360). * CVE-2025-68310: s390/pci: Avoid deadlock between PCI error recovery and mlx5 crdump (bsc#1255160). * CVE-2025-71302: drm/panthor: fix for dma-fence safe access rules (bsc#1264837). * CVE-2026-23168: flex_proportions: make fprop_new_period() hardirq safe (bsc#1258826). * CVE-2026-23245: net/sched: act_gate: snapshot parameters with RCU on replace (bsc#1259799). * CVE-2026-23271: perf: Fix __perf_event_overflow() vs perf_remove_from_context() race (bsc#1260018). * CVE-2026-23276: net: add xmit recursion limit to tunnel xmit functions (bsc#1260012). * CVE-2026-23300: net: ipv6: fix panic when IPv4 route references loopback IPv6 nexthop (bsc#1260538). * CVE-2026-23313: i40e: Fix preempt count leak in napi poll tracepoint (bsc#1260555). * CVE-2026-23316: net: ipv4: fix ARM64 alignment fault in multipath hash seed (bsc#1260573). * CVE-2026-23321: mptcp: pm: in-kernel: always mark signal+subflow endp as used (bsc#1260505). * CVE-2026-23340: net: sched: avoid qdisc_reset_all_tx_gt() vs dequeue race for lockless qdiscs (bsc#1260523). * CVE-2026-23346: arm64: io: Rename ioremap_prot() to __ioremap_prot() (bsc#1260529). * CVE-2026-23351: netfilter: nft_set_pipapo: split gc into unlink and reclaim phase (bsc#1260526). * CVE-2026-23354: x86/fred: Correct speculative safety in fred_extint() (bsc#1260801). * CVE-2026-23368: net: phy: register phy led_triggers during probe to avoid AB-BA deadlock (bsc#1260530). * CVE-2026-23374: blktrace: fix __this_cpu_read/write in preemptible context (bsc#1260811). * CVE-2026-23375: mm: thp: deny THP for files on anonymous inodes (bsc#1260576). * CVE-2026-23378: net/sched: act_ife: Fix metalist update behavior (bsc#1260546). * CVE-2026-23391: netfilter: xt_CT: drop pending enqueued packets on template removal (bsc#1260566). * CVE-2026-23392: netfilter: nf_tables: release flowtable after rcu grace period on error (bsc#1260531). * CVE-2026-23397: nfnetlink_osf: validate individual option lengths in fingerprints (bsc#1260728). * CVE-2026-23399: nf_tables: nft_dynset: fix possible stateful expression memleak in error path (bsc#1261020). * CVE-2026-23417: bpf: Fix constant blinding for PROBE_MEM32 stores (bsc#1261410). * CVE-2026-23436: net: add helpers for lookup and walking netdevs under netdev_lock() (bsc#1261617). * CVE-2026-23437: net: shaper: protect late read accesses to the hierarchy (bsc#1261635). * CVE-2026-23440: net/mlx5e: Fix race condition during IPSec ESN update (bsc#1261641). * CVE-2026-23441: net/mlx5e: Prevent concurrent access to IPSec ASO context (bsc#1261768). * CVE-2026-23442: ipv6: add NULL checks for idev in SRv6 paths (bsc#1261581). * CVE-2026-23445: igc: fix page fault in XDP TX timestamps handling (bsc#1261702). * CVE-2026-23449: net/sched: teql: Fix double-free in teql_master_xmit (bsc#1261779). * CVE-2026-23450: net/smc: fix NULL dereference and UAF in smc_tcp_syn_recv_sock() (bsc#1261584). * CVE-2026-23455: netfilter: nf_conntrack_h323: check for zero length in DecodeQ931() (bsc#1261687). * CVE-2026-23456: netfilter: nf_conntrack_h323: fix OOB read in decode_int() CONS case (bsc#1261703). * CVE-2026-23457: netfilter: nf_conntrack_sip: fix Content-Length u32 truncation in sip_help_tcp() (bsc#1261686). * CVE-2026-23458: netfilter: ctnetlink: fix use-after-free in ctnetlink_dump_exp_ct() (bsc#1261781). * CVE-2026-23468: drm/amdgpu: Limit BO list entry count to prevent resource exhaustion (bsc#1261692). * CVE-2026-23472: serial: core: fix infinite loop in handle_tx() for PORT_UNKNOWN (bsc#1261636). * CVE-2026-23473: io_uring/poll: fix multishot recv missing EOF on wakeup race (bsc#1261694). * CVE-2026-31392: smb: client: fix krb5 mount with username option (bsc#1261788). * CVE-2026-31395: bnxt_en: fix OOB access in DBG_BUF_PRODUCER async event handler (bsc#1261786). * CVE-2026-31400: sunrpc: fix cache_request leak in cache_release (bsc#1261645). * CVE-2026-31402: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache (bsc#1261638). * CVE-2026-31403: NFSD: Hold net reference for the lifetime of /proc/fs/nfs/exports fd (bsc#1261796). * CVE-2026-31406: xfrm: Fix work re-schedule after cancel in xfrm_nat_keepalive_net_fini() (bsc#1261629). * CVE-2026-31407: netfilter: conntrack: add missing netlink policy validations (bsc#1261632). * CVE-2026-31411: net: atm: fix crash due to unvalidated vcc pointer in sigd_send() (bsc#1261752). * CVE-2026-31415: ipv6: avoid overflows in ip6_datagram_send_ctl() (bsc#1262099). * CVE-2026-31416: netfilter: nfnetlink_log: account for netlink header size (bsc#1262100). * CVE-2026-31420: bridge: mrp: reject zero test interval to avoid OOM panic (bsc#1262055). * CVE-2026-31421: net/sched: cls_fw: fix NULL pointer dereference on shared blocks (bsc#1262061). * CVE-2026-31422: net/sched: cls_flow: fix NULL pointer dereference on shared blocks (bsc#1262054). * CVE-2026-31423: net/sched: sch_hfsc: fix divide-by-zero in rtsc_min() (bsc#1262063). * CVE-2026-31424: netfilter: x_tables: restrict xt_check_match/xt_check_target extensions for NFPROTO_ARP (bsc#1262053). * CVE-2026-31425: rds: ib: reject FRMR registration before IB connection is established (bsc#1262074). * CVE-2026-31427: netfilter: nf_conntrack_sip: fix use of uninitialized rtp_addr in process_sdp (bsc#1262086). * CVE-2026-31428: netfilter: nfnetlink_log: fix uninitialized padding leak in NFULA_PAYLOAD (bsc#1262087). * CVE-2026-31435: netfs: Fix read abandonment during retry (bsc#1262601). * CVE-2026-31449: ext4: validate p_idx bounds in ext4_ext_correct_indexes (bsc#1262616). * CVE-2026-31453: xfs: avoid dereferencing log items after push callbacks (bsc#1262617). * CVE-2026-31456: mm/pagewalk: fix race between concurrent split and refault (bsc#1262627). * CVE-2026-31494: net: cadence: macb: Synchronize stats calculations (bsc#1262671). * CVE-2026-31496: netfilter: nf_conntrack_expect: skip expectations in other netns via proc (bsc#1262673). * CVE-2026-31503: udp: Fix wildcard bind conflict check when using hash2 (bsc#1263077). * CVE-2026-31504: net: fix fanout UAF in packet_release() via NETDEV_UP race (bsc#1263085). * CVE-2026-31505: iavf: fix out-of-bounds writes in iavf_get_ethtool_stats() (bsc#1263093). * CVE-2026-31507: net/smc: fix double-free of smc_spd_priv when tee() duplicates splice pipe buffer (bsc#1263095). * CVE-2026-31515: af_key: validate families in pfkey_send_migrate() (bsc#1262752). * CVE-2026-31519: btrfs: set BTRFS_ROOT_ORPHAN_CLEANUP during subvol create (bsc#1263012). * CVE-2026-31525: bpf: Fix undefined behavior in interpreter sdiv/smod for INT_MIN (bsc#1262725). * CVE-2026-31526: bpf: Fix exception exit lock checking for subprogs (bsc#1262662). * CVE-2026-31528: perf: Make sure to use pmu_ctx->pmu for groups (bsc#1263001). * CVE-2026-31533: net/tls: fix use-after-free in -EBUSY error path of tls_do_encryption (bsc#1262758). * CVE-2026-31547: drm/xe: Fix missing runtime PM reference in ccs_mode_store (bsc#1263018). * CVE-2026-31550: pmdomain: bcm: bcm2835-power: Increase ASB control timeout (bsc#1263104). * CVE-2026-31554: futex: Require sys_futex_requeue() to have identical flags (bsc#1263107). * CVE-2026-31565: RDMA/irdma: Fix deadlock during netdev reset with active connections (bsc#1263064). * CVE-2026-31579: wireguard: device: use exit_rtnl callback instead of manual rtnl_lock in pre_exit (bsc#1263074). * CVE-2026-31586: mm: blk-cgroup: fix use-after-free in cgwb_release_workfn() (bsc#1263176). * CVE-2026-31588: KVM: x86: Use scratch field in MMIO fragment to hold small write values (bsc#1263165). * CVE-2026-31644: net: lan966x: fix use-after-free and leak in lan966x_fdma_reload() (bsc#1263048). * CVE-2026-31649: net: stmmac: fix integer underflow in chain mode (bsc#1263582). * CVE-2026-31658: net: altera-tse: fix skb leak on DMA mapping error in tse_start_xmit() (bsc#1263052). * CVE-2026-31662: tipc: fix bc_ackers underflow on duplicate GRP_ACK_MSG (bsc#1263131). * CVE-2026-31666: btrfs: fix incorrect return value after changing leaf in lookup_extent_data_ref() (bsc#1263138). * CVE-2026-31668: seg6: separate dst_cache for input and output paths in seg6 lwtunnel (bsc#1263140). * CVE-2026-31669: mptcp: fix slab-use-after-free in __inet_lookup_established (bsc#1263141). * CVE-2026-31675: net/sched: sch_netem: fix out-of-bounds access in packet corruption (bsc#1263556). * CVE-2026-31678: openvswitch: defer tunnel netdev_put to RCU release (bsc#1263562). * CVE-2026-31679: openvswitch: validate MPLS set/set_masked payload length (bsc#1263592). * CVE-2026-31681: netfilter: xt_multiport: validate range encoding in checkentry (bsc#1263593). * CVE-2026-31682: bridge: br_nd_send: linearize skb before parsing ND options (bsc#1263595). * CVE-2026-31684: net: sched: act_csum: validate nested VLAN headers (bsc#1263596). * CVE-2026-31685: netfilter: ip6t_eui64: reject invalid MAC header for all packets (bsc#1263668). * CVE-2026-31691: igb: remove napi_synchronize() in igb_down() (bsc#1263604). * CVE-2026-31694: fuse: reject oversized dirents in page cache (bsc#1263901). * CVE-2026-31700: net/packet: fix TOCTOU race on mmap'd vnet_hdr in tpacket_snd() (bsc#1263882). * CVE-2026-31738: vxlan: validate ND option lengths in vxlan_na_create (bsc#1264059). * CVE-2026-31787: xen/privcmd: fix double free via VMA splitting (bsc#1262181). * CVE-2026-43009: bpf: Fix incorrect pruning due to atomic fetch precision tracking (bsc#1264014). * CVE-2026-43025: netfilter: ctnetlink: ignore explicit helper on new expectations (bsc#1263931). * CVE-2026-43027: netfilter: nf_conntrack_helper: pass helper to expect cleanup (bsc#1263933). * CVE-2026-43037: ip6_tunnel: clear skb2->cb in ip4ip6_err() (bsc#1263995). * CVE-2026-43038: ipv6: icmp: clear skb2->cb in ip6_err_gen_icmpv6_unreach() (bsc#1264097). * CVE-2026-43045: mshv: Refactor and rename memory region handling functions (bsc#1263942). * CVE-2026-43050: atm: lec: fix use-after-free in sock_def_readable() (bsc#1264082). * CVE-2026-43060: netfilter: nft_ct: drop pending enqueued packets on removal (bsc#1264183). * CVE-2026-43082: net: txgbe: leave space for null terminators on property_entry (bsc#1264233). * CVE-2026-43088: net: af_key: zero aligned sockaddr tail in PF_KEY exports (bsc#1264469). * CVE-2026-43153: xfs: remove xfs_attr_leaf_hasname (bsc#1264586). * CVE-2026-43190: netfilter: xt_tcpmss: check remaining length before reading optlen (bsc#1264848). * CVE-2026-43265: KVM: x86: Ignore -EBUSY when checking nested events from vcpu_block() (bsc#1264427). * CVE-2026-43329: netfilter: flowtable: strictly check for maximum number of actions (bsc#1265085). * CVE-2026-43365: xfs: fix undersized l_iclog_roundoff values (bsc#1265119). * CVE-2026-43366: io_uring/kbuf: check if target buffer list is still legacy on recycle (bsc#1265116). * CVE-2026-43441: net: bonding: Fix nd_tbl NULL dereference when IPv6 is disabled (bsc#1264674). * CVE-2026-43494: net/rds: reset op_nents when zerocopy page pin fails (bsc#1265626). * CVE-2026-43503: net: skbuff: propagate shared-frag marker through frag- transfer helpers (bsc#1265960). The following non security issues were fixed: * accel/qaic: Add overflow check to remap_pfn_range during mmap (git-fixes). * ACPI: AGDI: fix missing newline in error message (git-fixes). * ACPI: CPPC: Fix related_cpus inconsistency during CPU hotplug (git-fixes). * ACPI: scan: Use acpi_dev_put() in object add error paths (git-fixes). * ACPI: video: Add backlight=native quirk for Dell OptiPlex 7770 AIO (git- fixes). * ACPI: video: force native backlight on HP OMEN 16 (8A44) (stable-fixes). * ACPI: video: Move Lenovo Legion S7 15ACH6 quirk to the right section (git- fixes). * ALSA: 6fire: Fix input volume change detection (git-fixes). * ALSA: 6fire: fix use-after-free on disconnect (git-fixes). * ALSA: aoa: i2sbus: clear stale prepared state (git-fixes). * ALSA: aoa: i2sbus: fix OF node lifetime handling (git-fixes). * ALSA: aoa: Skip devices with no codecs in i2sbus_resume() (git-fixes). * ALSA: aoa: Use guard() for mutex locks (stable-fixes). * ALSA: asihpi: avoid write overflow check warning (stable-fixes). * ALSA: caiaq: Don't abort when no input device is available (git-fixes). * ALSA: caiaq: Fix control_put() result and cache rollback (git-fixes). * ALSA: caiaq: Fix potentially leftover ep1_in_urb at error path (git-fixes). * ALSA: caiaq: fix usb_dev refcount leak on probe failure (git-fixes). * ALSA: caiaq: Handle probe errors properly (git-fixes). * ALSA: caiaq: take a reference on the USB device in create_card() (git- fixes). * ALSA: control: Validate buf_len before strnlen() in snd_ctl_elem_init_enum_names() (git-fixes). * ALSA: core: Fix potential data race at fasync handling (git-fixes). * ALSA: core: Serialize deferred fasync state checks (git-fixes). * ALSA: core: Validate compress device numbers without dynamic minors (git- fixes). * ALSA: ctxfi: Add fallback to default RSR for S/PDIF (git-fixes). * ALSA: ctxfi: Fix missing SPDIFI1 index handling (stable-fixes). * ALSA: ctxfi: Limit PTP to a single page (git-fixes). * ALSA: firewire-tascam: Do not drop unread control events (git-fixes). * ALSA: fireworks: bound device-supplied status before string array lookup (git-fixes). * ALSA: hda/hdmi: Add quirk for TUXEDO IBS14G6 (stable-fixes). * ALSA: hda/realtek - fixed speaker no sound update (git-fixes). * ALSA: hda/realtek: Add HP ENVY Laptop 13-ba0xxx quirk (stable-fixes). * ALSA: hda/realtek: Add mute LED quirk for HP Pavilion 15-eg0xxx (stable- fixes). * ALSA: hda/realtek: Add quirk for ASUS ROG Flow Z13-KJP GZ302EAC (stable- fixes). * ALSA: hda/realtek: add quirk for Framework F111:000F (stable-fixes). * ALSA: hda/realtek: Add quirk for Lenovo Yoga Pro 7 14IAH10 (stable-fixes). * ALSA: hda/realtek: fix code style (ERROR: else should follow close brace '}') (git-fixes). * ALSA: hda: cs35l41: Put ACPI device on missing physical node (git-fixes). * ALSA: hda: cs35l56: Propagate ASP TX source control errors (git-fixes). * ALSA: hda: cs35l56: Put ACPI device after setting companion (git-fixes). * ALSA: hda: Fix NULL pointer dereference in snd_hda_ctl_add() (git-fixes). * ALSA: misc: Use guard() for spin locks (stable-fixes). * ALSA: pcm: oss: Fix data race at accessing runtime.oss.trigger (stable- fixes). * ALSA: pcmtest: fix reference leak on failed device registration (git-fixes). * ALSA: pcmtest: Fix resource leaks in module init error paths (git-fixes). * ALSA: pcmtest: Return -EFAULT on pattern read copy failure (git-fixes). * ALSA: sc6000: Keep the programmed board state in card-private data (git- fixes). * ALSA: scarlett2: Add missing error check when initialise Autogain Status (git-fixes). * ALSA: scarlett2: Add missing sentinel initializer field (git-fixes). * ALSA: seq: Notify client and port info changes (stable-fixes). * ALSA: seq_oss: return full count for successful SEQ_FULLSIZE writes (stable- fixes). * ALSA: usb-audio: apply quirk for MOONDROP JU Jiu (stable-fixes). * ALSA: usb-audio: Avoid false E-MU sample-rate notifications (git-fixes). * ALSA: usb-audio: Avoid potential endless loop in convert_chmap_v3() (git- fixes). * ALSA: usb-audio: Bound MIDI 2.0 endpoint descriptor scans (git-fixes). * ALSA: usb-audio: Bound MIDI endpoint descriptor scans (git-fixes). * ALSA: usb-audio: Evaluate packsize caps at the right place (git-fixes). * ALSA: usb-audio: Fix Audio Advantage Micro II SPDIF switch (git-fixes). * ALSA: usb-audio: Fix potential leak of pd at parsing UAC3 streams (git- fixes). * ALSA: usb-audio: Fix quirk flags for NeuralDSP Quad Cortex (stable-fixes). * ALSA: usb-audio: Fix UAC3 cluster descriptor size check (git-fixes). * ALSA: usb-audio: midi2: Restart output URBs on resume (git-fixes). * ALSA: usb-audio: stop parsing UAC2 rates at MAX_NR_RATES (git-fixes). * ALSA: virtio: drop an extaneous kernel-doc comment (git-fixes). * amdgpu/jpeg: fix deepsleep register for jpeg 5_0_0 and 5_0_2 (stable-fixes). * ASoC: amd: acp: Add DMI quirk for Valve Steam Deck OLED (git-fixes). * ASoC: amd: yc: Add DMI entry for HP Laptop 15-fc0xxx (stable-fixes). * ASoC: amd: yc: Add DMI quirk for ASUS EXPERTBOOK BM1403CDA (stable-fixes). * ASoC: amd: yc: Add DMI quirk for Thin A15 B7VF (stable-fixes). * ASoC: amd: yc: Add HP OMEN Gaming Laptop 16-ap0xxx product line in quirk table (stable-fixes). * ASoC: codecs: ab8500: Fix casting of private data (git-fixes). * ASoC: cs35l56: Destroy workqueue in probe error path (git-fixes). * ASoC: cs35l56: Don't use devres to unregister component (git-fixes). * ASoC: cs35l56: Fix hibernate write in runtime resume error path (git-fixes). * ASoC: fsl_easrc: Change the type for iec958 channel status controls (git- fixes). * ASoC: fsl_easrc: Check the variable range in fsl_easrc_iec958_put_bits() (git-fixes). * ASoC: fsl_easrc: fix comment typo (git-fixes). * ASoC: fsl_easrc: Fix value type in fsl_easrc_iec958_get_bits() (git-fixes). * ASoC: fsl_micfil: Add access property for "VAD Detected" (git-fixes). * ASoC: fsl_micfil: Fix event generation in hwvad_put_enable() (git-fixes). * ASoC: fsl_micfil: Fix event generation in hwvad_put_init_mode() (git-fixes). * ASoC: fsl_micfil: Fix event generation in micfil_put_dc_remover_state() (git-fixes). * ASoC: fsl_micfil: Fix event generation in micfil_quality_set() (git-fixes). * ASoC: fsl_xcvr: Fix event generation for cached controls (git-fixes). * ASoC: fsl_xcvr: Fix event generation in fsl_xcvr_arc_mode_put() (git-fixes). * ASoC: fsl_xcvr: Fix event generation in fsl_xcvr_mode_put() (git-fixes). * ASoC: Intel: bytcr_wm5102: Fix MCLK leak on platform_clock_control error (git-fixes). * ASoC: qcom: q6apm-dai: reset queue ptr on trigger stop (git-fixes). * ASoC: qcom: q6apm-lpass-dai: Fix multiple graph opens (git-fixes). * ASoC: qcom: q6apm: move component registration to unmanaged version (git- fixes). * ASoC: qcom: q6apm: remove child devices when apm is removed (git-fixes). * ASoC: qcom: qdsp6: topology: check widget type before accessing data (git- fixes). * ASoC: soc-core: call missing INIT_LIST_HEAD() for card_aux_list (stable- fixes). * ASoC: SOF: compress: return the configured codec from get_params (git- fixes). * ASoC: SOF: Don't allow pointer operations on unconfigured streams (git- fixes). * ASoC: SOF: Intel: hda: Place check before dereference (git-fixes). * ASoC: SOF: topology: reject invalid vendor array size in token parser (stable-fixes). * ASoC: sti: Return errors from regmap_field_alloc() (git-fixes). * ASoC: sti: use managed regmap_field allocations (git-fixes). * ASoC: stm32_sai: fix incorrect BCLK polarity for DSP_A/B, LEFT_J (stable- fixes). * ata: ahci: force 32-bit DMA for JMicron JMB582/JMB585 (stable-fixes). * backlight: sky81452-backlight: Check return value of devm_gpiod_get_optional() in sky81452_bl_parse_dt() (git-fixes). * batman-adv: bla: only purge non-released claims (git-fixes). * batman-adv: bla: prevent use-after-free when deleting claims (git-fixes). * batman-adv: bla: put backbone reference on failed claim hash insert (git- fixes). * batman-adv: fix integer overflow on buff_pos (git-fixes). * batman-adv: hold claim backbone gateways by reference (git-fixes). * batman-adv: reject new tp_meter sessions during teardown (git-fixes). * batman-adv: reject oversized global TT response buffers (git-fixes). * batman-adv: stop caching unowned originator pointers in BAT IV (git-fixes). * bitfield: Add FIELD_MODIFY() helper (jsc#PED-14238). * Bluetooth: bnep: fix incorrect length parsing in bnep_rx_frame() extension handling (git-fixes). * Bluetooth: btmtk: validate WMT event SKB length before struct access (git- fixes). * Bluetooth: btusb: Check for unexpected bytes when defragmenting HCI frames (bsc#1260996). * Bluetooth: fix locking in hci_conn_request_evt() with HCI_PROTO_DEFER (git- fixes). * Bluetooth: hci_event: fix memset typo (git-fixes). * Bluetooth: hci_event: Fix OOB read and infinite loop in hci_le_create_big_complete_evt (git-fixes). * Bluetooth: hci_event: fix potential UAF in SSP passkey handlers (git-fixes). * Bluetooth: hci_ldisc: Clear HCI_UART_PROTO_INIT on error (git-fixes). * Bluetooth: HIDP: serialise l2cap_unregister_user via hidp_session_sem (git- fixes). * Bluetooth: ISO: Fix data-race on dst in iso_sock_connect() (git-fixes). * Bluetooth: l2cap: Add missing chan lock in l2cap_ecred_reconf_rsp (git- fixes). * Bluetooth: l2cap: fix MPS check in l2cap_ecred_reconf_req (git-fixes). * Bluetooth: L2CAP: Fix null-ptr-deref in l2cap_sock_new_connection_cb() (git- fixes). * Bluetooth: L2CAP: Fix null-ptr-deref in l2cap_sock_state_change_cb() (git- fixes). * Bluetooth: L2CAP: Fix printing wrong information if SDU length exceeds MTU (git-fixes). * Bluetooth: RFCOMM: pull credit byte with skb_pull_data() (git-fixes). * Bluetooth: SCO: check for codecs->num_codecs == 1 before assigning to sco_pi(sk)->codec (git-fixes). * Bluetooth: SCO: fix sleeping under spinlock in sco_conn_ready (git-fixes). * Bluetooth: SCO: hold sk properly in sco_conn_ready (git-fixes). * Bluetooth: virtio_bt: clamp rx length before skb_put (git-fixes). * Bluetooth: virtio_bt: validate rx pkt_type header length (git-fixes). * bpf: Add third round of bounds deduction (git-fixes). * bpf: Fix u32/s32 bounds when ranges cross min/max boundary (git-fixes). * bpf: Improve bounds when s64 crosses sign boundary (git-fixes). * bpf: Switch CONFIG_CFI_CLANG to CONFIG_CFI (git-fixes). * btrfs: qgroup: update all parent qgroups when doing quick inherit (bsc#1258933). * btrfs: reject root items with drop_progress and zero drop_level (git-fixes). * btrfs: replace BUG() with error handling in __btrfs_balance() (git-fixes). * bus: mhi: host: pci_generic: Switch to async power up to avoid boot delays (git-fixes). * bus: rifsc: fix RIF configuration check for peripherals (git-fixes). * can: mcp251x: add error handling for power enable in open and resume (stable-fixes). * can: raw: fix ro->uniq use-after-free in raw_rcv() (git-fixes). * can: ucan: fix devres lifetime (git-fixes). * cdc-acm: new quirk for EPSON HMD (stable-fixes). * check-for-config-changes: Exclude CC_MS_EXTENSIONS. * check-for-config-changes: Exclude HAVE_CFI_ICALL_NORMALIZE_INTEGERS{,_RUSTC}. * comedi: dt2815: add hardware detection to prevent crash (stable-fixes). * cpufreq: intel_pstate: Drop Arrow Lake from "scaling factor" list (bsc#1249104). * crypto: af_alg - limit RX SG extraction by receive buffer budget (git- fixes). * crypto: algif_aead - Fix minimum RX size check for decryption (git-fixes). * crypto: atmel-aes - Fix 3-page memory leak in atmel_aes_buff_cleanup (git- fixes). * crypto: atmel-ecc - Release client on allocation failure (git-fixes). * crypto: atmel-sha204a - Fix error codes in OTP reads (git-fixes). * crypto: atmel-sha204a - Fix OTP sysfs read and error handling (git-fixes). * crypto: atmel-sha204a - Fix potential UAF and memory leak in remove path (git-fixes). * crypto: atmel-sha204a - Fix uninitialized data access on OTP read error (git-fixes). * crypto: atmel-tdes - fix DMA sync direction (git-fixes). * crypto: ccp - copy IV using skcipher ivsize (git-fixes). * crypto: ccp: Don't attempt to copy CSR to userspace if PSP command failed (git-fixes). * crypto: ccp: Don't attempt to copy ID to userspace if PSP command failed (git-fixes). * crypto: ccp: Don't attempt to copy PDH cert to userspace if PSP command failed (git-fixes). * crypto: ccree - fix a memory leak in cc_mac_digest() (git-fixes). * crypto: drivers - Switch back to struct platform_driver::remove() (jsc#PED-14238). * crypto: drivers - Use str_enable_disable-like helpers (jsc#PED-14238). * crypto: hisilicon - Fix dma_unmap_single() direction (git-fixes). * crypto: iaa - Adjust workqueue allocation type (jsc#PED-14238). * crypto: iaa - fix per-node CPU counter reset in rebalance_wq_table() (git- fixes). * crypto: iaa - Move compression CRC into request object (jsc#PED-14238). * crypto: iaa - Optimize rebalance_wq_table() (jsc#PED-14238). * crypto: iaa - Remove potential infinite loop in check_completion() (jsc#PED-14238). * crypto: iaa - Remove unreachable pr_debug from iaa_crypto_cleanup_module (jsc#PED-14238). * crypto: iaa - Remove unused disable_async argument from iaa_decompress (jsc#PED-14238). * crypto: iaa - Replace sprintf with sysfs_emit in sysfs show functions (jsc#PED-14238). * crypto: iaa - Simplify init_iaa_device() (jsc#PED-14238). * crypto: jitterentropy - replace long-held spinlock with mutex (git-fixes). * crypto: nx - Fix packed layout in struct nx842_crypto_header (git-fixes). * crypto: pcrypt - Fix handling of MAY_BACKLOG requests (git-fixes). * crypto: qat - #undef field_get() before local definition (jsc#PED-14238). * crypto: qat - add adf_rl_get_num_svc_aes() in rate limiting (jsc#PED-14238). * crypto: qat - add bank state save and restore for qat_420xx (jsc#PED-14238). * crypto: qat - add command queue telemetry counters for GEN6 (jsc#PED-14238). * crypto: qat - add compression slice count for rate limiting (jsc#PED-14238). * crypto: qat - add decompression service for rate limiting (jsc#PED-14238). * crypto: qat - add decompression service to telemetry (jsc#PED-14238). * crypto: qat - add firmware headers for GEN6 devices (jsc#PED-14238). * crypto: qat - add GEN6 firmware loader (jsc#PED-14238). * crypto: qat - add get_svc_slice_cnt() in device data structure (jsc#PED-14238). * crypto: qat - add live migration enablers for GEN6 devices (jsc#PED-14238). * crypto: qat - add macro to write 64-bit values to registers (jsc#PED-14238). * crypto: qat - add missing header inclusion (jsc#PED-14238). * crypto: qat - add qat_6xxx driver (jsc#PED-14238). * crypto: qat - add ring buffer idle telemetry counter for GEN6 (jsc#PED-14238). * crypto: qat - add support for decompression service to GEN6 devices (jsc#PED-14238). * crypto: qat - consolidate service enums (jsc#PED-14238). * crypto: qat - Constify struct pm_status_row (jsc#PED-14238). * crypto: qat - disable 4xxx AE cluster when lead engine is fused off (git- fixes). * crypto: qat - disable 420xx AE cluster when lead engine is fused off (git- fixes). * crypto: qat - do not export adf_cfg_services (jsc#PED-14238). * crypto: qat - enable power management debugfs for GEN6 devices (jsc#PED-14238). * crypto: qat - enable RAS support for GEN6 devices (jsc#PED-14238). * crypto: qat - enable rate limiting feature for GEN6 devices (jsc#PED-14238). * crypto: qat - enable reporting of error counters for GEN6 devices (jsc#PED-14238). * crypto: qat - enable telemetry for GEN6 devices (jsc#PED-14238). * crypto: qat - export adf_get_service_mask() (jsc#PED-14238). * crypto: qat - export adf_init_admin_pm() (jsc#PED-14238). * crypto: qat - expose configuration functions (jsc#PED-14238). * crypto: qat - fix compression instance leak (git-fixes). * crypto: qat - fix IRQ cleanup on 6xxx probe failure (git-fixes). * crypto: qat - fix object goals in Makefiles (jsc#PED-14238. * crypto: qat - fix type mismatch in RAS sysfs show functions (git-fixes). * crypto: qat - Fix typo "accelaration" (jsc#PED-14238). * crypto: qat - fix virtual channel configuration for GEN6 devices (jsc#PED-14238). * crypto: qat - include qat_common in top Makefile (jsc#PED-14238). * crypto: qat - introduce fuse array (jsc#PED-14238). * crypto: qat - make adf_dev_autoreset() static (jsc#PED-14238). * crypto: qat - optimize allocations for fw authentication (jsc#PED-14238). * crypto: qat - refactor compression template logic (jsc#PED-14238). * crypto: qat - refactor FW signing algorithm (jsc#PED-14238). * crypto: qat - refactor ring-related debug functions (jsc#PED-14238). * crypto: qat - refactor service parsing logic (jsc#PED-14238). * crypto: qat - relocate and rename bank state structure definition (jsc#PED-14238). * crypto: qat - relocate bank state helper functions (jsc#PED-14238). * crypto: qat - relocate power management debugfs helper APIs (jsc#PED-14238). * crypto: qat - relocate service related functions (jsc#PED-14238). * crypto: qat - remove BITS_IN_DWORD() (jsc#PED-14238). * crypto: qat - Remove dst_null support (jsc#PED-14238). * crypto: qat - remove duplicate masking for GEN6 devices (jsc#PED-14238). * crypto: qat - remove initialization in device class (jsc#PED-14238). * crypto: qat - remove redundant FW image size check (jsc#PED-14238). * crypto: qat - remove unused adf_devmgr_get_first (jsc#PED-14238). * crypto: qat - remove unused members in suof structure (jsc#PED-14238). * crypto: qat - rename and relocate timer logic (jsc#PED-14238). * crypto: qat - reorder objects in qat_common Makefile (jsc#PED-14238). * crypto: qat - replace CHECK_STAT macro with static inline function (jsc#PED-14238). * crypto: qat - Replace kzalloc() + copy_from_user() with memdup_user() (jsc#PED-14238). * crypto: qat - restore ASYM service support for GEN6 devices (jsc#PED-14238). * crypto: qat - Return pointer directly in adf_ctl_alloc_resources (jsc#PED-14238). * crypto: qat - set command ids as reserved (jsc#PED-14238). * crypto: qat - switch to standard pattern for PCI IDs (jsc#PED-14238). * crypto: qat - update firmware api (jsc#PED-14238). * crypto: qat - use pr_fmt() in adf_gen4_hw_data.c (jsc#PED-14238). * crypto: qat - use pr_fmt() in qat uclo.c (jsc#PED-14238). * crypto: qat - use simple_strtoull to improve qat_uclo_parse_num (jsc#PED-14238). * crypto: qat - use swab32 macro (git-fixes). * crypto: qat - validate service in rate limiting sysfs api (jsc#PED-14238). * crypto: qat/qat_6xxx - Fix NULL vs IS_ERR() check in adf_probe() (jsc#PED-14238). * crypto: sa2ul - Fix AEAD fallback algorithm names (git-fixes). * crypto: simd - reject compat registrations without __ prefixes (git-fixes). * crypto: talitos - fix SEC1 32k ahash request limitation (git-fixes). * crypto: tegra - Disable softirqs before finalizing request (git-fixes). * devres: fix missing node debug info in devm_krealloc() (git-fixes). * dmaengine: dw-axi-dmac: fix Alignment should match open parenthesis (git- fixes). * dmaengine: dw-axi-dmac: Remove unnecessary return statement from void function (git-fixes). * dmaengine: mxs-dma: Fix missing return value from of_dma_controller_register() (git-fixes). * dpll: zl3073x: Add support to adjust phase (bsc#1255752). * dpll: zl3073x: Fix output pin phase adjustment sign (bsc#1255752). * dpll: zl3073x: fix REF_PHASE_OFFSET_COMP register width for some chip IDs (bsc#1255752). * dpll: zl3073x: Specify phase adjustment granularity for pins (bsc#1255752). * drivers/base/memory: fix memory block reference leak in poison accounting (git-fixes). * drm/amd/display: Add NULL check for integrated_info in clk_mgr_construct (git-fixes). * drm/amd/display: Allow DCE link encoder without AUX registers (git-fixes). * drm/amd/display: Avoid NULL dereference in dc_dmub_srv error paths (git- fixes). * drm/amd/display: Change dither policy for 10 bpc output back to dithering (git-fixes). * drm/amd/display: Correct logic check error for fastboot (git-fixes). * drm/amd/display: Disable 10-bit truncation and dithering on DCE 6.x (git- fixes). * drm/amd/display: Disable fastboot on DCE 6 too (stable-fixes). * drm/amd/display: Read EDID from VBIOS embedded panel info (git-fixes). * drm/amd/pm/ci: Clear EnabledForActivity field for memory levels (git-fixes). * drm/amd/pm/ci: Disable MCLK DPM on problematic CI ASICs (git-fixes). * drm/amd/pm/ci: Fill DW8 fields from SMC (git-fixes). * drm/amd/pm/ci: Fix powertune defaults for Hawaii 0x67B0 (git-fixes). * drm/amd/pm/ci: Use highest MCLK on CI when MCLK DPM is disabled (git-fixes). * drm/amd/pm/smu7: Add SCLK cap for quirky Hawaii board (git-fixes). * drm/amd/pm/smu7: Fix SMU7 voltage dependency on display clock (git-fixes). * drm/amd/pm: fix incorrect FeatureCtrlMask setting on smu v14.0.x (git- fixes). * drm/amdgpu/gfx6: Support harvested SI chips with disabled TCCs (v2) (git- fixes). * drm/amdgpu/gfx9: drop unnecessary 64-bit fence flag check in KIQ (stable- fixes). * drm/amdgpu/gfx10: look at the right prop for gfx queue priority (git-fixes). * drm/amdgpu/gfx11: look at the right prop for gfx queue priority (git-fixes). * drm/amdgpu/gmc: Fix AMDGPU_GART_PLACEMENT_LOW to not overlap with VRAM (git- fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v2.0 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v2.5 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v3.0 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v4.0 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v4.0.3 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v4.0.5 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v5.0.0 ring (git-fixes). * drm/amdgpu/pm: add missing revision check for CI (git-fixes). * drm/amdgpu/pm: align Hawaii mclk workaround with radeon (git-fixes). * drm/amdgpu/pm: drop SMU driver if version not matched messages (stable- fixes). * drm/amdgpu/sdma4: replace BUG_ON with WARN_ON in fence emission (git-fixes). * drm/amdgpu/vce: Prevent partial address patches (stable-fixes). * drm/amdgpu/vcn3: Avoid overflow on msg bound check (git-fixes). * drm/amdgpu/vcn3: Prevent OOB reads when parsing dec msg (stable-fixes). * drm/amdgpu/vcn4: Avoid overflow on msg bound check (git-fixes). * drm/amdgpu/vcn4: Prevent OOB reads when parsing dec msg (stable-fixes). * drm/amdgpu/vcn4: Prevent OOB reads when parsing IB (stable-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v2.0 enc/dec rings (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v2.5 enc/dec rings (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v3.0 enc/dec rings (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v4.0 enc ring (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v4.0.3 enc ring (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v4.0.5 enc ring (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v5.0.0 enc ring (git-fixes). * drm/amdgpu: Add bounds checking to ib_{get,set}_value (stable-fixes). * drm/amdgpu: Add default case in DVI mode validation (git-fixes). * drm/amdgpu: fix AMDGPU_INFO_READ_MMR_REG (git-fixes). * drm/amdgpu: fix zero-size GDS range init on RDNA4 (stable-fixes). * drm/amdgpu: gate VM CPU HDP flush on reset lock (stable-fixes). * drm/amdgpu: replace PASID IDR with XArray (git-fixes). * drm/amdgpu: Use SMUIO 15.0.0 offsets for TSC upper and lower count (stable- fixes). * drm/amdgpu: zero-initialize GART table on allocation (stable-fixes). * drm/amdkfd: Add upper bound check for num_of_nodes (stable-fixes). * drm/amdkfd: Clear VRAM on allocation to prevent stale data exposure (stable- fixes). * drm/amdkfd: Make all TLB-flushes heavy-weight (stable-fixes). * drm/amdkfd: validate SVM ioctl nattr against buffer size (stable-fixes). * drm/arcpgu: fix device node leak (git-fixes). * drm/bridge: cadence: cdns-mhdp8546-core: Add mode_valid hook to drm_bridge_funcs (git-fixes). * drm/bridge: cadence: cdns-mhdp8546-core: Handle HDCP state in bridge atomic check (git-fixes). * drm/bridge: cadence: cdns-mhdp8546-core: Set the mhdp connector earlier in atomic_enable() (git-fixes). * drm/bridge: stm_lvds: Do not fail atomic_check on disabled connector (git- fixes). * drm/etnaviv: Fix armed job not being pushed to the DRM scheduler (git- fixes). * drm/exynos: remove bridge when component_add fails (git-fixes). * drm/fb-helper: Fix clipping when damage area spans a single scanline (git- fixes). * drm/gem: Fix inconsistent plane dimension calculation in drm_gem_fb_init_with_funcs() (git-fixes). * drm/gma500/oaktrail_hdmi: fix i2c adapter leak on setup (git-fixes). * drm/gma500/oaktrail_lvds: fix hang on init failure (git-fixes). * drm/gma500/oaktrail_lvds: fix i2c adapter leaks on init (git-fixes). * drm/i915/dp: Fix VSC dynamic range signaling for RGB formats (git-fixes). * drm/i915/gt: fix refcount underflow in intel_engine_park_heartbeat (git- fixes). * drm/i915/wm: Verify the correct plane DDB entry (git-fixes). * drm/i915: skip __i915_request_skip() for already signaled requests (git- fixes). * drm/imagination: Switch reset_reason fields from enum to u32 (git-fixes). * drm/komeda: fix integer overflow in AFBC framebuffer size check (git-fixes). * drm/loongson: Use managed KMS polling (git-fixes). * drm/msm/a6xx: Fix dumping A650+ debugbus blocks (git-fixes). * drm/msm/a6xx: Fix HLSQ register dumping (git-fixes). * drm/msm/a6xx: Use barriers while updating HFI Q headers (git-fixes). * drm/msm/dpu: fix mismatch between power and frequency (git-fixes). * drm/msm/dsi: add the missing parameter description (git-fixes). * drm/msm/dsi: fix bits_per_pclk (git-fixes). * drm/msm/dsi: fix hdisplay calculation for CMD mode panel (git-fixes). * drm/msm/dsi: rename MSM8998 DSI version from V2_2_0 to V2_0_0 (git-fixes). * drm/msm/gem: fix error handling in msm_ioctl_gem_info_get_metadata() (git- fixes). * drm/msm/shrinker: Fix can_block() logic (git-fixes). * drm/nouveau: fix nvkm_device leak on aperture removal failure (git-fixes). * drm/nouveau: fix u32 overflow in pushbuf reloc bounds check (git-fixes). * drm/panel: boe-tv101wum-nl6: restore MODE_LPM after sending disable cmds (git-fixes). * drm/panel: himax-hx83102: restore MODE_LPM after sending disable cmds (git- fixes). * drm/panel: sharp-ls043t1le01: make use of prepare_prev_first (git-fixes). * drm/panel: simple: Correct G190EAN01 prepare timing (git-fixes). * drm/panfrost: Fix wait_bo ioctl leaking positive return from dma_resv_wait_timeout() (git-fixes). * drm/panthor: Fix outdated function documentation (git-fixes). * drm/radeon: add missing revision check for CI (git-fixes). * drm/sun4i: backend: fix error pointer dereference (git-fixes). * drm/sun4i: Fix resource leaks (git-fixes). * drm/v3d: Handle error from drm_sched_entity_init() (git-fixes). * drm/vc4: Fix a memory leak in hang state error path (git-fixes). * drm/vc4: Fix memory leak of BO array in hang state (git-fixes). * drm/vc4: platform_get_irq_byname() returns an int (stable-fixes). * drm/vc4: Protect madv read in vc4_gem_object_mmap() with madv_lock (git- fixes). * drm/vc4: Release runtime PM reference after binding V3D (git-fixes). * drm/vram: remove DRM_VRAM_MM_FILE_OPERATIONS from docs (git-fixes). * drm/xe/bo: Fix bo leak on GGTT flag validation in xe_bo_init_locked() (git- fixes). * drm/xe/bo: Fix bo leak on unaligned size validation in xe_bo_init_locked() (git-fixes). * drm/xe/debugfs: Correct printing of register whitelist ranges (git-fixes). * drm/xe/dma-buf: handle empty bo and UAF races (git-fixes). * drm/xe/gsc: Fix BO leak on error in query_compatibility_version() (git- fixes). * drm/xe/uapi: update used tracking kernel-doc (git-fixes). * drm/xe: Fix dma-buf attachment leak in xe_gem_prime_import() (git-fixes). * drm/xe: Fix error cleanup in xe_exec_queue_create_ioctl() (git-fixes). * dt-bindings: net: Fix Tegra234 MGBE PTP clock (git-fixes). * efi/capsule-loader: fix incorrect sizeof in phys array reallocation (git- fixes). * efi: pstore: Drop efivar lock when efi_pstore_open() returns with an error (git-fixes). * erofs: add GFP_NOIO in the bio completion if needed (git-fixes). * ext4: fix fsync(2) for nojournal mode (git-fixes). * ext4: make recently_deleted() properly work with lazy itable initialization (git-fixes). * ext4: reject mount if bigalloc with s_first_data_block != 0 (git-fixes). * extcon: Fixed sysfs duplicate filename issue (git-fixes). * extcon: ptn5150: handle pending IRQ events during system resume (git-fixes). * fbdev: matroxfb: Mark variable with __maybe_unused to avoid W=1 build break (git-fixes). * fbdev: offb: fix PCI device reference leak on probe failure (git-fixes). * fbdev: tdfxfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO (stable-fixes). * fbdev: udlfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO (git-fixes). * firmware: arm_ffa: Use the correct buffer size during RXTX_MAP (git-fixes). * firmware: dmi: Correct an indexing error in dmi.h (git-fixes). * firmware: google: framebuffer: Do not mark framebuffer as busy (git-fixes). * firmware: google: framebuffer: Do not unregister platform device (git- fixes). * gpio: of: clear OF_POPULATED on hog nodes in remove path (git-fixes). * gpio: tegra: fix irq_release_resources calling enable instead of disable (git-fixes). * gtp: disable BH before calling udp_tunnel_xmit_skb() (git-fixes). * HID: alps: fix NULL pointer dereference in alps_raw_event() (git-fixes). * HID: amd_sfh: don't log error when device discovery fails with -EOPNOTSUPP (git-fixes). * HID: apple: ensure the keyboard backlight is off if suspending (git-fixes). * HID: asus: do not abort probe when not necessary (git-fixes). * HID: asus: make asus_resume adhere to linux kernel coding standards (git- fixes). * HID: core: clamp report_size in s32ton() to avoid undefined shift (stable- fixes). * HID: logitech-hidpp: Enable MX Master 4 over bluetooth (stable-fixes). * HID: logitech-hidpp: Prevent use-after-free on force feedback initialisation failure (stable-fixes). * HID: multitouch: Check to ensure report responses match the request (stable- fixes). * HID: quirks: add HID_QUIRK_ALWAYS_POLL for 8BitDo Pro 3 (stable-fixes). * HID: roccat: fix use-after-free in roccat_report_event (stable-fixes). * HID: usbhid: fix deadlock in hid_post_reset() (git-fixes). * HID: wacom: fix out-of-bounds read in wacom_intuos_bt_irq (stable-fixes). * hisi_acc_vfio_pci: add eq and aeq interruption restore (git-fixes). * hisi_acc_vfio_pci: bugfix cache write-back issue (git-fixes). * hisi_acc_vfio_pci: bugfix the problem of uninstalling driver (git-fixes). * hv_sock: fix ARM64 support (git-fixes). * hv_sock: update outdated comment for renamed vsock_stream_recvmsg() (git- fixes). * hwmon: (ads7871) Fix endianness bug in 16-bit register reads (git-fixes). * hwmon: (corsair-psu) Close HID device on probe errors (git-fixes). * hwmon: (lm63) Add locking to avoid TOCTOU (git-fixes). * hwmon: (ltc2992) Clamp threshold writes to hardware range (git-fixes). * hwmon: (ltc2992) Fix u32 overflow in power read path (git-fixes). * hwmon: (ltc4286) Add missing MODULE_IMPORT_NS("PMBUS") (git-fixes). * hwmon: (powerz) Fix missing usb_kill_urb() on signal interrupt (git-fixes). * hwmon: (powerz) Fix use-after-free on USB disconnect (git-fixes). * hwmon: (pt5161l) Fix bugs in pt5161l_read_block_data() (git-fixes). * i2c: s3c24xx: check the size of the SMBUS message before using it (stable- fixes). * i2c: smbus: reject oversized block transfers in the common path (git-fixes). * i2c: stm32f7: reinit_completion() per transfer not per msg (git-fixes). * i2c: stub: Reject I2C block transfers with invalid length (git-fixes). * i2c: tegra: Add HS mode support (bsc#1261550). * i2c: tegra: Add Tegra256 support (bsc#1261550). * i2c: tegra: Do not configure DMA if not supported (bsc#1261550). * i2c: tegra: Don't mark devices with pins as IRQ safe (stable-fixes). * i2c: tegra: Update Tegra256 timing parameters (bsc#1261550). * i2c: tegra: Use separate variables for fast and fastplus (bsc#1261550). * i3c: dw: Fix memory leak in dw_i3c_master_i3c_xfers() (git-fixes). * i3c: master: Fix error codes at send_ccc_cmd (git-fixes). * i3c: mipi-i3c-hci: fix IBI payload length calculation for final status (git- fixes). * ibmveth: Disable GSO for packets with small MSS (bsc#1265144). * iio: adc: ad7192: Revert "properly check spi_get_device_match_data()" (stable-fixes). * iio: adc: ad7768-1: fix one-shot mode data acquisition (git-fixes). * iio: adc: ti-ads7950: use iio_push_to_buffers_with_ts_unaligned() (git- fixes). * iio: frequency: admv1013: add dev variable (stable-fixes). * iio: frequency: admv1013: fix NULL pointer dereference on str (git-fixes). * Input: bcm5974 - recover from failed mode switch (stable-fixes). * Input: i8042 - add TUXEDO InfinityBook Max 16 Gen10 AMD to i8042 quirk table (stable-fixes). * Input: uinput - fix circular locking dependency with ff-core (git-fixes). * Input: uinput - take event lock when submitting FF request "event" (stable- fixes). * Input: xpad - add support for BETOP BTP-KP50B/C controller's wireless mode (stable-fixes). * Input: xpad - add support for Razer Wolverine V3 Pro (stable-fixes). * interconnect: debugfs: fix devm_kstrdup and kfree mismatch (git-fixes). * io_uring/timeout: check unused sqe fields (git-fixes). * iommu/amd: move wait_on_sem() out of spinlock (git-fixes bsc#1260593). * iommu/amd: serialize sequence allocation under concurrent TLB invalidations (git-fixes bsc#1260593). * iommu/vt-d: Remove LPIG from page group response descriptor (jsc#PED-16113). * ipmi: Add limits to event and receive message requests (git-fixes). * ipmi: Check event message buffer response for bad data (git-fixes). * ipmi: ssif_bmc: change log level to dbg in irq callback (git-fixes). * ipmi: ssif_bmc: fix message desynchronization after truncated response (git- fixes). * ipmi: ssif_bmc: fix missing check for copy_to_user() partial failure (git- fixes). * ipv6: rpl: reserve mac_len headroom when recompressed SRH grows (git-fixes). * KVM: arm64: Allow cacheable stage 2 mapping using VMA flags (git-fixes). * KVM: arm64: Assume non-PFNMAP/MIXEDMAP VMAs can be mapped cacheable (git- fixes). * KVM: arm64: Block cacheable PFNMAP mapping (git-fixes). * KVM: arm64: Consolidate idreg callbacks (git-fixes). * KVM: arm64: Discard PC update state on vcpu reset (git-fixes). * KVM: arm64: Finalize ID registers only once per VM (git-fixes). * KVM: arm64: Fix MTE flag initialization for protected VMs (git-fixes). * KVM: arm64: Fix page leak in user_mem_abort() (git-fixes). * KVM: arm64: Fix Trace Buffer trap polarity for protected VMs (git-fixes). * KVM: arm64: Fix Trace Buffer trapping for protected VMs (git-fixes). * KVM: arm64: Fix vma_shift staleness on nested hwpoison path (git-fixes). * KVM: arm64: Hide S1POE from guests when not supported by the host (git- fixes). * KVM: arm64: Limit clearing of ID_{AA64PFR0,PFR1}_EL1.GIC to userspace irqchip (git-fixes). * KVM: arm64: Make all 32bit ID registers fully writable (git-fixes). * KVM: arm64: nv: Add trap config for DBGWCR<15>_EL1 (git-fixes). * KVM: arm64: nv: Return correct RES0 bits for FGT registers (git-fixes). * KVM: arm64: pkvm: Fallback to level-3 mapping on host stage-2 fault (git- fixes). * KVM: arm64: Read PMUVer as unsigned (git-fixes). * KVM: arm64: Rename the device variable to s2_force_noncacheable (git-fixes). * KVM: arm64: Return early from trace helpers when KVM isn't available (git- fixes). * KVM: arm64: Set ID_{AA64PFR0,PFR1}_EL1.GIC when GICv3 is configured (git- fixes). * KVM: arm64: vgic-v3: Release reserved slot outside of lpi_xa's lock (git- fixes). * KVM: arm64: vgic: Fix IIDR revision field extracted from wrong value (git- fixes). * KVM: nSVM: Use vcpu->arch.cr2 when updating vmcb12 on nested #VMEXIT (git- fixes). * KVM: nVMX: Add consistency check for TSC_MULTIPLIER=0 (git-fixes). * KVM: Reject wrapped offset in kvm_reset_dirty_gfn() (git-fixes). * KVM: SEV: Disallow LAUNCH_FINISH if vCPUs are actively being created (git- fixes). * KVM: SEV: Drop WARN on large size for KVM_MEMORY_ENCRYPT_REG_REGION (git- fixes). * KVM: SEV: Lock all vCPUs when synchronzing VMSAs for SNP launch finish (git- fixes). * KVM: SEV: Protect _all_ of sev_mem_enc_register_region() with kvm->lock (git-fixes). * KVM: SEV: Reject attempts to sync VMSA of an already-launched/encrypted vCPU (git-fixes). * KVM: SVM: Disallow EFER.LMSLE when not supported by hardware (git-fixes). * KVM: SVM: Fix a missing kunmap_local() in sev_gmem_post_populate() (git- fixes). * KVM: SVM: Initialize AVIC VMCB fields if AVIC is enabled with in-kernel APIC (git-fixes). * KVM: SVM: Mark VMCB_NPT as dirty on nested VMRUN (git-fixes). * KVM: SVM: Mark VMCB_PERM_MAP as dirty on nested VMRUN (git-fixes). * KVM: SVM: Properly check RAX in the emulator for SVM instructions (git- fixes). * KVM: SVM: Set/clear CR8 write interception when AVIC is (de)activated (git- fixes). * KVM: TDX: Explicitly set user-return MSRs that _may_ be clobbered by the TDX-Module (git-fixes). * KVM: x86/mmu: Fix UBSAN warning when reading nx_huge_pages parameter (git- fixes). * KVM: x86/xen: Fix cleanup logic in emulation of Xen schedop poll hypercalls (git-fixes). * KVM: x86: Add SRCU protection for reading PDPTRs in __get_sregs2() (git- fixes). * KVM: x86: Advertise EferLmsleUnsupported to userspace (git-fixes). * KVM: x86: check for nEPT/nNPT in slow flush hypercalls (git-fixes). * KVM: X86: Fix array_index_nospec protection in __pv_send_ipi (git-fixes). * KVM: x86: Fix shadow paging use-after-free due to unexpected GFN (git- fixes). * KVM: x86: hyper-v: Validate all GVAs during PV TLB flush (git-fixes). * KVM: x86: Ignore cpuid faulting in SMM (git-fixes). * leds: lgm-sso: Remove duplicate assignments for priv->mmap (git-fixes). * leds: qcom-lpg: Check for array overflow when selecting the high resolution (stable-fixes). * lib/hexdump: print_hex_dump_bytes() calls print_hex_dump_debug() (git- fixes). * md/raid1: fix the comparing region of interval tree (bsc#1261555). * md/raid1: serialize overlap io for writemostly disk (bsc#1261555). * media: amphion: Fix race between m2m job_abort and device_run (git-fixes). * media: as102: fix to not free memory after the device is registered in as102_usb_probe() (git-fixes). * media: chips-media: wave5: add missing spinlock protection for handle_dynamic_resolution_change() (git-fixes). * media: chips-media: wave5: add missing spinlock protection for send_eos_event() (git-fixes). * media: chips-media: wave5: fix a potential memory leak in wave5_vdi_init() (git-fixes). * media: dib8000: avoid division by 0 in dib8000_set_dds() (git-fixes). * media: em28xx: fix use-after-free in em28xx_v4l2_open() (git-fixes). * media: hackrf: fix to not free memory after the device is registered in hackrf_probe() (git-fixes). * media: i2c: imx219: Check return value of devm_gpiod_get_optional() in imx219_probe() (git-fixes). * media: i2c: imx283: Enter full standby when stopping streaming (git-fixes). * media: i2c: imx283: Fix hang when going from large to small resolution (git- fixes). * media: i2c: imx412: Assert reset GPIO during probe (git-fixes). * media: i2c: ov08d10: fix image vertical start setting (git-fixes). * media: i2c: ov8856: free control handler on error in ov8856_init_controls() (git-fixes). * media: intel/ipu6: fix error pointer dereference (git-fixes). * media: mtk-jpeg: fix use-after-free in release path due to uncancelled work (git-fixes). * media: nxp: imx8-isi: Reduce minimum queued buffers from 2 to 0 (git-fixes). * media: omap3isp: drop the use count of v4l2 pipeline (git-fixes). * media: pci: zoran: fix potential memory leak in zoran_probe() (git-fixes). * media: rc: streamzap: Error handling in probe (git-fixes). * media: rc: xbox_remote: heed DMA restrictions (git-fixes). * media: saa7164: add ioremap return checks and cleanups (git-fixes). * media: staging: imx: configure src_mux in csi_start (git-fixes). * media: staging: imx: request mbus_config in csi_start (git-fixes). * media: uvcvideo: Enable VB2_DMABUF for metadata stream (git-fixes). * media: videobuf2: Set vma_flags in vb2_dma_sg_mmap (git-fixes). * media: vidtv: fix nfeeds state corruption on start_streaming failure (git- fixes). * media: vidtv: fix NULL pointer dereference in vidtv_channel_pmt_match_sections (git-fixes). * media: vidtv: fix pass-by-value structs causing MSAN warnings (git-fixes). * memory: tegra30-emc: Fix dll_change check (git-fixes). * memory: tegra124-emc: Fix dll_change check (git-fixes). * mfd: core: Preserve OF node when ACPI handle is present (git-fixes). * mfd: mc13xxx-core: Fix memory leak in mc13xxx_add_subdevice_pdata() (git- fixes). * mfd: stpmic1: Attempt system shutdown twice in case PMIC is confused (git- fixes). * mkspec: Add signature to source list only when it exists. * mmc: sdhci-of-dwcmshc: Disable clock before DLL configuration (git-fixes). * mmc: vub300: fix NULL-deref on disconnect (git-fixes). * modpost: Amend ppc64 save/restfpr symnames for -Os build (bsc#1215199). * mtd: docg3: fix use-after-free in docg3_release() (git-fixes). * mtd: parsers: ofpart: call of_node_get() for dedicated subpartitions (git- fixes). * mtd: parsers: ofpart: call of_node_put() only in ofpart_fail path (git- fixes). * mtd: physmap_of_gemini: Fix disabled pinctrl state check (git-fixes). * mtd: rawnand: sunxi: fix sunxi_nfc_hw_ecc_read_extra_oob (git-fixes). * mtd: spi-nor: core: correct the op.dummy.nbytes when check read operations (git-fixes). * mtd: spi-nor: debugfs: fix out-of-bounds read in spi_nor_params_show() (git- fixes). * mtd: spi-nor: sst: Fix write enable before AAI sequence (git-fixes). * mtd: spi-nor: swp: check SR_TB flag when getting tb_mask (git-fixes). * net-shapers: don't free reply skb after genlmsg_reply() (git-fixes). * net/mlx5: Fix HCA caps leak on notifier init failure (git-fixes). * net/rds: reset op_nents when zerocopy page pin fails (bsc#1265626). * net/sched: cls_fw: fix NULL dereference of "old" filters before change() (git-fixes). * net/sched: fix pedit partial COW leading to page cache corruption (bsc#1265421). * net: gro: don't merge zcopy skbs (git-fixes). * net: hamradio: 6pack: fix uninit-value in sixpack_receive_buf (git-fixes). * net: mana: Add MAC address to vPort logs and clarify error messages (git- fixes). * net: mana: check xdp_rxq registration before unreg in mana_destroy_rxq() (git-fixes). * net: mana: Don't overwrite port probe error with add_adev result (git- fixes). * net: mana: Fix crash from unvalidated SHM offset read from BAR0 during FLR (bsc#1265846). * net: mana: Fix EQ leak in mana_remove on NULL port (git-fixes). * net: mana: Fix RX skb truesize accounting (bsc#1248754). * net: mana: Guard mana_remove against double invocation (git-fixes). * net: mana: hardening: Validate adapter_mtu from MANA_QUERY_DEV_CONFIG (git- fixes). * net: mana: hardening: Validate doorbell ID from GDMA_REGISTER_DEVICE response (git-fixes). * net: mana: Init gf_stats_work before potential error paths in probe (git- fixes). * net: mana: Init link_change_work before potential error paths in probe (git- fixes). * net: mana: Move current_speed debugfs file to mana_init_port() (git-fixes). * net: mana: remove double CQ cleanup in mana_create_rxq error path (git- fixes). * net: mana: Set default number of queues to 16 (bsc#1261648). * net: mana: Skip WQ object destruction for uninitialized RXQ (git-fixes). * net: mana: Use at least SZ_4K in doorbell ID range check (git-fixes). * net: mana: Use pci_name() for debugfs directory naming (git-fixes). * net: phy: broadcom: Save PHY counters during suspend (git-fixes). * net: phy: DP83TC811: add reading of abilities (git-fixes). * net: phy: dp83869: fix setting CLK_O_SEL field (git-fixes). * net: phy: fix a return path in get_phy_c45_ids() (git-fixes). * net: phy: qcom: at803x: Use the correct bit to disable extended next page (git-fixes). * net: stmmac: Fix PTP ref clock for Tegra234 (git-fixes). * net: usb: asix: ax88772: re-add usbnet_link_change() in phylink callbacks (git-fixes). * net: usb: cdc-phonet: fix skb frags[] overflow in rx_complete() (git-fixes). * net: usb: rtl8150: fix use-after-free in rtl8150_start_xmit() (git-fixes). * net: usb: rtl8150: free skb on usb_submit_urb() failure in xmit (git-fixes). * net: wan: fsl_ucc_hdlc: fix ucc_hdlc_remove (git-fixes). * net: wan: fsl_ucc_hdlc: fix uhdlc_memclean (git-fixes). * net: wan: fsl_ucc_hdlc: free tx_skbuff in uhdlc_memclean (git-fixes). * net: wwan: t7xx: validate port_count against message length in t7xx_port_enum_msg_handler (git-fixes). * NFC: digital: Bounds check NFC-A cascade depth in SDD response handler (git- fixes). * nfc: llcp: add missing return after LLCP_CLOSED checks (git-fixes). * nfc: pn533: allocate rx skb before consuming bytes (git-fixes). * nfc: s3fwrn5: allocate rx skb before consuming bytes (git-fixes). * NFC: trf7970a: Ignore antenna noise when checking for RF field (git-fixes). * nvme-apple: drop invalid put of admin queue reference count (git-fixes). * nvme-auth: Include SC_C in RVAL controller hash (bsc#1260428). * nvme-loop: do not cancel I/O and admin tagset during ctrl reset/shutdown (bsc#1262709). * nvme-pci: add NVME_QUIRK_DISABLE_WRITE_ZEROES for Kingston OM3SGP4 (git- fixes). * nvme: Allow reauth from sysfs (bsc#1259672). * nvme: Expose the tls_configured sysfs for secure concat connections (bsc#1259672). * nvme: expose TLS mode (bsc#1259672). * nvme: fix admin queue leak on controller reset (git-fixes). * nvme: fix PCIe subsystem reset controller state transition (bsc#1261738). * nvmet-tcp: propagate nvmet_tcp_build_pdu_iovec() errors to its callers (git- fixes). * ocfs2: fix possible deadlock between unlink and dio_end_io_write (bsc#1258718). * ocfs2: split transactions in dio completion to avoid credit exhaustion (bsc#1258718). * openvswitch: vport: fix self-deadlock on release of tunnel ports (git- fixes). * panic/printk: replace other_cpu_in_panic() with panic_on_other_cpu() (bsc#1261149). * panic/printk: replace this_cpu_in_panic() with panic_on_this_cpu() (bsc#1261149). * panic: introduce helper functions for panic state (bsc#1261149). * panic: use angle-bracket include for panic.h (bsc#1261149). * PCI/AER: Clear only error bits in PCIe Device Status (git-fixes). * PCI/AER: Stop ruling out unbound devices as error source (git-fixes). * PCI/ASPM: Fix pci_clear_and_set_config_dword() usage (git-fixes). * PCI/NPEM: Set LED_HW_PLUGGABLE for hotplug-capable ports (git-fixes). * PCI/TPH: Allow TPH enable for RCiEPs (git-fixes). * PCI: dwc: Apply ECRC workaround to DesignWare 5.00a as well (git-fixes). * PCI: dwc: rcar-gen4: Change EPC BAR alignment to 4K as per the documentation (git-fixes). * PCI: Enable AtomicOps only if Root Port supports them (git-fixes). * PCI: endpoint: pci-epf-ntb: Remove duplicate resource teardown (git-fixes). * PCI: endpoint: pci-epf-vntb: Stop cmd_handler work in epf_ntb_epc_cleanup (git-fixes). * PCI: epf-mhi: Return 0, not remaining timeout, when eDMA ops complete (git- fixes). * PCI: hv: Set default NUMA node to 0 for devices without affinity info (bsc#1261648). * PCI: mediatek-gen3: Prevent leaking IRQ domains when IRQ not found (git- fixes). * PCI: qcom: Advertise Hotplug Slot Capability with no Command Completion support (git-fixes). * PCI: tegra194: Allow system suspend when the Endpoint link is not up (git- fixes). * PCI: tegra194: Disable direct speed change for Endpoint mode (git-fixes). * PCI: tegra194: Disable LTSSM after transition to Detect on surprise link down (git-fixes). * PCI: tegra194: Disable PERST# IRQ only in Endpoint mode (git-fixes). * PCI: tegra194: Fix CBB timeout caused by DBI access before core power-on (git-fixes). * PCI: tegra194: Fix polling delay for L2 state (git-fixes). * PCI: tegra194: Free up Endpoint resources during remove() (git-fixes). * PCI: tegra194: Increase LTSSM poll time on surprise link down (git-fixes). * PCI: tegra194: Set LTR message request before PCIe link up in Endpoint mode (git-fixes). * PCI: tegra194: Use devm_gpiod_get_optional() to parse "nvidia,refclk-select" (git-fixes). * PCI: tegra194: Use DWC IP core version (git-fixes). * pinctrl: abx500: Fix type of 'argument' variable (git-fixes). * pinctrl: Fix spelling problem (git-fixes). * pinctrl: intel: Fix the revision for new features (1kOhm PD, HW debouncer) (stable-fixes). * pinctrl: pic32: change all cases of bare 'unsigned' to 'unsigned int' (git- fixes). * pinctrl: pic32: use consistent spacing around '+' (git-fixes). * pinctrl: pinctrl-pic32: Fix resource leak (git-fixes). * pinctrl: realtek: Fix function signature for config argument (git-fixes). * pinctrl: renesas: rzg2l: Fix save/restore of {IOLH,IEN,PUPD,SMT} registers (git-fixes). * platform/chrome: chromeos_tbmc: Drop wakeup source on remove (git-fixes). * platform/surface: surfacepro3_button: Drop wakeup source on remove (git- fixes). * platform/x86/amd: pmc: Add Thinkpad L14 Gen3 to quirk_s2idle_bug (stable- fixes). * platform/x86/intel-uncore-freq: Handle autonomous UFS status bit (git- fixes). * platform/x86: asus-wmi: adjust screenpad power/brightness handling (git- fixes). * platform/x86: asus-wmi: fix screenpad brightness range (git-fixes). * platform/x86: dell-wmi-sysman: bound enumeration string aggregation (git- fixes). * platform/x86: dell_rbu: avoid uninit value usage in packet_size_write() (git-fixes). * platform/x86: hp-wmi: Ignore backlight and FnLock events (stable-fixes). * platform/x86: panasonic-laptop: Fix OPTD notifier registration and cleanup (git-fixes). * power: supply: axp288_charger: Do not cancel work before initializing it (git-fixes). * power: supply: max17042: avoid overflow when determining health (git-fixes). * powerpc/crash: fix backup region offset update to elfcorehdr (bsc#1259535). * powerpc/crash: Update backup region offset in elfcorehdr on memory hotplug (bsc#1259535). * printk/nbcon/panic: Allow printk kthread to sleep when the system is in panic (bsc#1261149). * printk/nbcon: Block printk kthreads when any CPU is in an emergency context (bsc#1261149). * printk/nbcon: Release nbcon consoles ownership in atomic flush after each emitted record (bsc#1261149). * printk/nbcon: Restore IRQ in atomic flush after each emitted record (bsc#1261149). * printk/nbcon: use panic_on_this_cpu() helper (bsc#1261149). * printk: Allow printk_trigger_flush() to flush all types (bsc#1262750). * printk: Allow to use the printk kthread immediately even for 1st nbcon (jsc#PED-7912). * printk: Avoid irq_work for printk_deferred() on suspend (bsc#1262750). * printk: Avoid scheduling irq_work on suspend (bsc#1262750). * printk: console_flush_one_record() code cleanup (bsc#1261149). * printk: Introduce console_flush_one_record (bsc#1261149). * printk: Use console_flush_one_record for legacy printer kthread (bsc#1261149). * pwm: imx-tpm: Count the number of enabled channels in probe (git-fixes). * qat: don't mess with ->d_name (jsc#PED-14238). * r8152: fix incorrect register write to USB_UPHY_XTAL (git-fixes). * RDMA/irdma: Fix double free related to rereg_user_mr (git-fixes). * RDMA/mana: Fix error unwind in mana_ib_create_qp_rss() (git-fixes). * RDMA/mana: Fix mana_destroy_wq_obj() cleanup in mana_ib_create_qp_rss() (git-fixes). * RDMA/mana: Remove user triggerable WARN_ON() in mana_ib_create_qp_rss() (git-fixes). * RDMA/mana: Validate rx_hash_key_len (git-fixes). * RDMA/mana_ib: cleanup the usage of mana_gd_send_request() (git-fixes). * RDMA/mana_ib: Disable RX steering on RSS QP destroy (git-fixes). * RDMA/mana_ib: Support memory windows (git-fixes). * regulator: act8945a: fix OF node reference imbalance (git-fixes). * regulator: bd9571mwv: fix OF node reference imbalance (git-fixes). * regulator: max77650: fix OF node reference imbalance (git-fixes). * regulator: mt6357: fix OF node reference imbalance (git-fixes). * regulator: rk808: fix OF node reference imbalance (git-fixes). * remoteproc: xlnx: Fix sram property parsing (git-fixes). * remoteproc: xlnx: Only access buffer information if IPI is buffered (git- fixes). * Revert "ALSA: usb: Increase volume range that triggers a warning" (git- fixes). * Revert "serial: 8250: Revert "drop lockdep annotation from serial8250_clear_IER()"" (bsc#1262480). * Revert "serial: 8250: Switch to nbcon console" (bsc#1262480). * rtc: abx80x: Disable alarm feature if no interrupt attached (git-fixes). * rtc: ntxec: fix OF node reference imbalance (git-fixes). * s390/dasd: Copy detected format information to secondary device (bsc#1259994). * s390/dasd: Fix gendisk parent after copy pair swap (bsc#1259994). * s390/dasd: Move quiesce state with pprc swap (bsc#1259994). * sched/fair: Change likelyhood of nohz.nr_cpus (bsc#1234634 bsc#1258961). * sched/fair: Move checking for nohz cpus after time check (bsc#1234634 bsc#1258961). * sched/fair: Remove nohz.nr_cpus and use weight of cpumask instead (bsc#1234634 bsc#1258961). * scsi: lpfc: Add clean up of aborted NVMe commands during PCI fcn reset (bsc#1262019). * scsi: lpfc: Add log messages to fabric login error labels (bsc#1262019). * scsi: lpfc: Add PCI ID support for LPe42100 series adapters (bsc#1262019). * scsi: lpfc: Add REG_VFI mailbox cmd error handling (bsc#1262019). * scsi: lpfc: Break out of IRQ affinity assignment when mask reaches nr_cpu_ids (bsc#1262019). * scsi: lpfc: Check ASIC_ID register to aid diagnostics during failed fw updates (bsc#1262019). * scsi: lpfc: Cleanup error exit paths in lpfc_fdmi_cmd() and associated messages (bsc#1262019). * scsi: lpfc: ELIMINATE kernel-doc warnings in lpfc.h (bsc#1262019). * scsi: lpfc: Fix incorrect txcmplq_cnt during cleanup in lpfc_sli_abort_ring() (bsc#1262019). * scsi: lpfc: Introduce 128G link speed selection and support (bsc#1262019). * scsi: lpfc: Log discarded and insufficient RQE buffer events (bsc#1262019). * scsi: lpfc: Log MCQE contents for mbox commands with no context (bsc#1262019). * scsi: lpfc: Properly set WC for DPP mapping (bsc#1262019). * scsi: lpfc: Reduce pointer chasing when accessing vmid_flag (bsc#1262019). * scsi: lpfc: Remove deprecated PBDE feature (bsc#1262019). * scsi: lpfc: Remove unnecessary ndlp kref get in lpfc_check_nlp_post_devloss (bsc#1262019). * scsi: lpfc: Restrict first burst to non-FCoE and SLI4 adapters only (bsc#1262019). * scsi: lpfc: Select mailbox rq_create cmd version based on SLI4 if_type (bsc#1262019). * scsi: lpfc: Update class of service bit field to 3 bits for WQE submissions (bsc#1262019). * scsi: lpfc: Update construction of SGL when XPSGL is enabled (bsc#1262019). * scsi: lpfc: Update copyright year string for 2026 (bsc#1262019). * scsi: lpfc: Update log message when ndlp kref get is unsuccessful (bsc#1262019). * scsi: lpfc: Update lpfc version to 14.4.0.14 (bsc#1262019). * scsi: lpfc: Update lpfc version to 15.0.0.0 (bsc#1262019). * scsi: lpfc: Update outdated comment for renamed lpfc_freenode() (bsc#1262019). * scsi: lpfc: Use min_t() instead of min() in lpfc_sli4_driver_resource_setup (bsc#1262019). * scsi: lpfc: Use the crc32c() function (bsc#1262019). * scsi: mpi3mr: Add NULL checks when resetting request and reply queues (git- fixes). * scsi: ses: Fix devices attaching to different hosts (git-fixes). * scsi: storvsc: Handle PERSISTENT_RESERVE_IN truncation for Hyper-V vFC (git- fixes). * scsi: target: iscsi: validate CHAP_R length before base64 decode (bsc#1265449). * scsi: ufs: ufs-pci: Add support for Intel Wildcat Lake (jsc#PED-13771). * selftests/bpf: Test cross-sign 64bits range refinement (git-fixes). * selftests/bpf: Test invariants on JSLT crossing sign (git-fixes). * selftests/bpf: test refining u32/s32 bounds when ranges cross min/max boundary (git-fixes). * selftests: net: build net/lib dependency in all target (bsc#1262245). * selinux: don't reserve xattr slot when we won't fill it (stable-fixes). * selinux: prune /sys/fs/selinux/disable (stable-fixes). * selinux: shrink critical section in sel_write_load() (stable-fixes). * serial: 8250: Add serial8250_handle_irq_locked() (bsc#1262480). * serial: 8250: Protect LCR write in shutdown (bsc#1262480). * serial: 8250_dw: Avoid unnecessary LCR writes (bsc#1262480). * serial: 8250_dw: Ensure BUSY is deasserted (bsc#1262480). * serial: 8250_dw: Rework dw8250_handle_irq() locking and IIR handling (bsc#1262480). * serial: 8250_dw: Rework IIR_NO_INT handling to stop interrupt storm (bsc#1262480). * Set CONFIG_INTEL_TSX_MODE to follow upstream AUTO default (bsc#1263044). * soc/tegra: cbb: Set ERD on resume for err interrupt (git-fixes). * soc: qcom: aoss: compare against normalized cooling state (git-fixes). * soc: qcom: llcc: fix v1 SB syndrome register offset (git-fixes). * soc: qcom: ocmem: make the core clock optional (git-fixes). * soc: qcom: ocmem: register reasons for probe deferrals (git-fixes). * soc: qcom: ocmem: return -EPROBE_DEFER is ocmem is not available (git- fixes). * sound: ua101: fix division by zero at probe (git-fixes). * soundwire: bus: demote UNATTACHED state warnings to dev_dbg() (git-fixes). * soundwire: cadence: Clear message complete before signaling waiting thread (git-fixes). * soundwire: debugfs: initialize firmware_file to empty string (git-fixes). * spi: aspeed-smc: fix controller deregistration (git-fixes). * spi: at91-usart: fix controller deregistration (git-fixes). * spi: atmel: fix controller deregistration (git-fixes). * spi: bcm63xx: fix controller deregistration (git-fixes). * spi: bcmbca-hsspi: fix controller deregistration (git-fixes). * spi: cadence: fix controller deregistration (git-fixes). * spi: cadence: fix unclocked access on unbind (git-fixes). * spi: ch341: fix memory leaks on probe failures (git-fixes). * spi: coldfire-qspi: fix controller deregistration (git-fixes). * spi: dln2: fix controller deregistration (git-fixes). * spi: fix controller cleanup() documentation (git-fixes). * spi: fix misleading controller deregistration kernel-doc (git-fixes). * spi: fix misleading controller registration kernel-doc (git-fixes). * spi: fsl-espi: fix controller deregistration (git-fixes). * spi: fsl-qspi: Use reinit_completion() for repeated operations (git-fixes). * spi: fsl: fix controller deregistration (git-fixes). * spi: hisi-kunpeng: prevent infinite while() loop in hisi_spi_flush_fifo (git-fixes). * spi: img-spfi: fix controller deregistration (git-fixes). * spi: imx: fix runtime pm leak on probe deferral (git-fixes). * spi: imx: fix use-after-free on unbind (git-fixes). * spi: lantiq-ssc: fix controller deregistration (git-fixes). * spi: meson-spicc: fix controller deregistration (git-fixes). * spi: microchip-core-qspi: fix controller deregistration (git-fixes). * spi: mpc52xx: fix controller deregistration (git-fixes). * spi: mpc52xx: fix use-after-free on registration failure (git-fixes). * spi: mpc52xx: fix use-after-free on unbind (git-fixes). * spi: mtk-nor: fix controller deregistration (git-fixes). * spi: mtk-snfi: fix memory leak in probe (git-fixes). * spi: mtk-snfi: unregister ECC engine on probe failure and remove() callback (git-fixes). * spi: mxic: fix controller deregistration (git-fixes). * spi: mxs: fix controller deregistration (git-fixes). * spi: npcm-pspi: fix controller deregistration (git-fixes). * spi: omap2-mcspi: fix controller deregistration (git-fixes). * spi: orion: fix clock imbalance on registration failure (git-fixes). * spi: orion: fix controller deregistration (git-fixes). * spi: orion: fix runtime pm leak on unbind (git-fixes). * spi: pic32-sqi: fix controller deregistration (git-fixes). * spi: pic32: fix controller deregistration (git-fixes). * spi: pl022: fix controller deregistration (git-fixes). * spi: qup: fix controller deregistration (git-fixes). * spi: rockchip: fix controller deregistration (git-fixes). * spi: rockchip: Read ISR, not IMR, to detect cs-inactive IRQ (git-fixes). * spi: rspi: fix controller deregistration (git-fixes). * spi: s3c64xx: fix controller deregistration (git-fixes). * spi: s3c64xx: fix NULL-deref on driver unbind (git-fixes). * spi: sh-hspi: fix controller deregistration (git-fixes). * spi: sprd: fix controller deregistration (git-fixes). * spi: st-ssc4: fix controller deregistration (git-fixes). * spi: sun4i: fix controller deregistration (git-fixes). * spi: sun6i: fix controller deregistration (git-fixes). * spi: syncuacer: fix controller deregistration (git-fixes). * spi: ti-qspi: fix controller deregistration (git-fixes). * spi: topcliff-pch: fix controller deregistration (git-fixes). * spi: topcliff-pch: fix use-after-free on unbind (git-fixes). * spi: uniphier: fix controller deregistration (git-fixes). * spi: uniphier: Simplify clock handling with devm_clk_get_enabled() (stable- fixes). * spi: zynq-qspi: fix controller deregistration (git-fixes). * spi: zynq-qspi: Simplify clock handling with devm_clk_get_enabled() (stable- fixes). * spi: zynqmp-gqspi: fix controller deregistration (git-fixes). * staging: media: atomisp: Disallow all private IOCTLs (git-fixes). * staging: rtl8723bs: initialize le_tmp64 in rtw_BIP_verify() (git-fixes). * staging: sm750fb: fix division by zero in ps_to_hz() (git-fixes). * staging: vme_user: fix root device leak on init failure (git-fixes). * tg3: replace placeholder MAC address with device property (git-fixes). * thermal/drivers/spear: Fix error condition for reading st,thermal-flags (git-fixes). * thermal/drivers/sprd: Fix raw temperature clamping in sprd_thm_rawdata_to_temp (git-fixes). * thermal/drivers/sprd: Fix temperature clamping in sprd_thm_temp_to_rawdata (git-fixes). * tools/power/turbostat: Fix microcode patch level output for AMD/Hygon (git- fixes). * tools: hv: Fix cross-compilation (git-fixes). * tpm2-sessions: Fix missing tpm_buf_destroy() in tpm2_read_public() (git- fixes). * tpm: avoid -Wunused-but-set-variable (git-fixes). * tpm: Fix auth session leak in tpm2_get_random() error path (git-fixes). * tpm: tpm_tis: add error logging for data transfer (git-fixes). * tpm: tpm_tis: stop transmit if retries are exhausted (git-fixes). * tpm: Use kfree_sensitive() to free auth session in tpm_dev_release() (git- fixes). * tty: serial: ip22zilog: Fix section mispatch warning (git-fixes). * udp: Force compute_score to always inline (bsc#1241259). * unshare: fix unshare_fs() handling (git-fixes). * USB: cdc-acm: Add quirks for Yoga Book 9 14IAH10 INGENIC touchscreen (git- fixes). * usb: chipidea: core: allow ci_irq_handler() handle both ID and VBUS change (git-fixes). * usb: chipidea: otg: not wait vbus drop if use role_switch (git-fixes). * USB: core: add NO_LPM quirk for Razer Kiyo Pro webcam (stable-fixes). * usb: gadget: dummy_hcd: fix premature URB completion when ZLP follows partial transfer (stable-fixes). * usb: gadget: f_hid: Add missing error code (git-fixes). * usb: gadget: f_hid: don't call cdev_init while cdev in use (git-fixes). * usb: gadget: f_hid: move list and spinlock inits from bind to alloc (stable- fixes). * usb: gadget: f_ncm: validate minimum block_len in ncm_unwrap_ntb() (git- fixes). * usb: gadget: f_phonet: fix skb frags[] overflow in pn_rx_complete() (git- fixes). * usb: gadget: f_uac1_legacy: validate control request size (stable-fixes). * usb: gadget: renesas_usb3: validate endpoint index in standard request handlers (git-fixes). * usb: gadget: u_ether: Fix NULL pointer deref in eth_get_drvinfo (git-fixes). * USB: omap_udc: DMA: Don't enable burst 4 mode (git-fixes). * usb: port: add delay after usb_hub_set_port_power() (git-fixes). * usb: quirks: add DELAY_INIT quirk for another Silicon Motion flash drive (stable-fixes). * USB: serial: io_edgeport: add support for Blackbox IC135A (stable-fixes). * USB: serial: option: add MeiG Smart SRM825WN (stable-fixes). * USB: serial: option: add support for Rolling Wireless RW135R-GL (stable- fixes). * USB: serial: option: add Telit Cinterion FN990A MBIM composition (git- fixes). * USB: serial: option: add Telit Cinterion LE910Cx compositions (stable- fixes). * usb: storage: Expand range of matched versions for VL817 quirks entry (git- fixes). * usb: typec: tcpm: reset internal port states on soft reset AMS (git-fixes). * usb: ulpi: fix memory leak on ulpi_register() error paths (git-fixes). * usb: usblp: fix heap leak in IEEE 1284 device ID via short response (stable- fixes). * usb: usblp: fix uninitialized heap leak via LPGETSTATUS ioctl (stable- fixes). * usb: xhci: Make usb_host_endpoint.hcpriv survive endpoint_disable() (git- fixes). * usbip: validate number_of_packets in usbip_pack_ret_submit() (git-fixes). * vfio/pci: Lock upstream bridge for vfio_pci_core_disable() (git-fixes). * vfio/pds: Fix memory leak in pds_vfio_dirty_enable() (git-fixes). * vfio/pds: Fix missing detach_ioas op (git-fixes). * vfio/pds: replace bitmap_free with vfree (git-fixes). * vfio/type1: Fix error unwind in migration dirty bitmap allocation (git- fixes). * vfio: Fix unbalanced vfio_df_close call in no-iommu mode (git-fixes). * vfio: Prevent open_count decrement to negative (git-fixes). * virt: arm-cca-guest: fix error check for RSI_INCOMPLETE (git-fixes). * virt: sev-guest: Do not use host-controlled page order in cleanup path (git- fixes). * virt: tdx-guest: Fix handling of host controlled 'quote' buffer length (git- fixes). * virt: tdx-guest: Return error for GetQuote failures (git-fixes). * wifi: ath5k: do not access array OOB (git-fixes). * wifi: ath9k: Fix typo (git-fixes). * wifi: ath10k: fix station lookup failure during disconnect (git-fixes). * wifi: ath11k: fix memory leaks in beacon template setup (git-fixes). * wifi: ath12k: fix leak in some ath12k_wmi_xxx() functions (git-fixes). * wifi: ath12k: use lockdep_assert_in_rcu_read_lock() for RCU assertions (git- fixes). * wifi: b43: enforce bounds check on firmware key index in b43_rx() (git- fixes). * wifi: b43legacy: enforce bounds check on firmware key index in RX path (git- fixes). * wifi: brcmfmac: Fix error pointer dereference (git-fixes). * wifi: brcmfmac: Fix potential use-after-free issue when stopping watchdog task (git-fixes). * wifi: brcmfmac: validate bsscfg indices in IF events (stable-fixes). * wifi: brcmsmac: Fix dma_free_coherent() size (git-fixes). * wifi: cw1200: Revert "Fix locking in error paths" (git-fixes). * wifi: libertas: notify firmware load wait on disconnect (git-fixes). * wifi: mac80211: check ieee80211_rx_data_set_link return in pubsta MLO path (git-fixes). * wifi: mac80211: check tdls flag in ieee80211_tdls_oper (stable-fixes). * wifi: mac80211: drop stray 'static' from fast-RX rx_result (git-fixes). * wifi: mac80211: handle VHT EXT NSS in ieee80211_determine_our_sta_mode() (git-fixes). * wifi: mac80211: remove station if connection prep fails (git-fixes). * wifi: mac80211: use safe list iteration in radar detect work (git-fixes). * wifi: mt76: Fix memory leak after mt76_connac_mcu_alloc_sta_req() (git- fixes). * wifi: mt76: mt792x: describe USB WFSYS reset with a descriptor (stable- fixes). * wifi: mt76: mt792x: fix mt7925u USB WFSYS reset handling (git-fixes). * wifi: mt76: mt7615: fix use_cts_prot support (git-fixes). * wifi: mt76: mt7915: fix use-after-free bugs in mt7915_mac_dump_work() (git- fixes). * wifi: mt76: mt7915: fix use_cts_prot support (git-fixes). * wifi: mt76: mt7921: fix 6GHz regulatory update on connection (git-fixes). * wifi: mt76: mt7921: fix a potential clc buffer length underflow (git-fixes). * wifi: mt76: mt7921: fix ROC abort flow interruption in mt7921_roc_work (git- fixes). * wifi: mt76: mt7921: Place upper limit on station AID (git-fixes). * wifi: mt76: mt7921: Reset ampdu_state state in case of failure in mt76_connac2_tx_check_aggr() (git-fixes). * wifi: mt76: mt7925: fix AMPDU state handling in mt7925_tx_check_aggr (git- fixes). * wifi: mt76: mt7925: fix incorrect length field in txpower command (git- fixes). * wifi: mt76: mt7925: Fix incorrect MLO mode in firmware control (git-fixes). * wifi: mt76: mt7925: fix incorrect TLV length in CLC command (git-fixes). * wifi: mt76: mt7925: prevent NULL pointer dereference in mt7925_tx_check_aggr() (git-fixes). * wifi: mt76: mt7925: prevent NULL vif dereference in mt7925_mac_write_txwi (git-fixes). * wifi: mt76: mt7996: fix FCS error flag check in RX descriptor (git-fixes). * wifi: mt76: mt7996: fix struct mt7996_mcu_uni_event (git-fixes). * wifi: mt76: mt7996: fix use-after-free bugs in mt7996_mac_dump_work() (git- fixes). * wifi: mwifiex: Fix memory leak in mwifiex_11n_aggregate_pkt() (git-fixes). * wifi: nl80211: fix NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST usage (git- fixes). * wifi: nl80211: require admin perm on SET_PMK / DEL_PMK (git-fixes). * wifi: rsi: fix kthread lifetime race between self-exit and external-stop (git-fixes). * wifi: rt2x00usb: fix devres lifetime (git-fixes). * wifi: rtl8xxxu: fix potential use of uninitialized value (git-fixes). * wifi: rtlwifi: pci: fix possible use-after-free caused by unfinished irq_prepare_bcn_tasklet (git-fixes). * wifi: rtw88: Add additional USB IDs for RTL8812BU (bsc#1263135). * wifi: rtw88: Add BUFFALO WI-U3-866DHP to the USB ID list (bsc#1263135). * wifi: rtw88: Add support for Mercusys MA30N and D-Link DWA-T185 rev. A1 (bsc#1263135). * wifi: rtw88: check for PCI upstream bridge existence (git-fixes). * wifi: rtw88: fix device leak on probe failure (git-fixes). * wifi: rtw88: rtw8822bu VID/PID for BUFFALO WI-U2-866DM (bsc#1263135). * wifi: rtw89: phy: fix uninitialized variable access in rtw89_phy_cfo_set_crystal_cap() (git-fixes). * wifi: wl1251: validate packet IDs before indexing tx_frames (stable-fixes). * x86/acpi/boot: Correct acpi_is_processor_usable() check again (git-fixes). * x86/boot/sev: Avoid shared GHCB page for early memory acceptance (git- fixes). * x86/boot/sev: Support memory acceptance in the EFI stub under SVSM (git- fixes). * x86/boot: Fix page table access in 5-level to 4-level paging transition (git-fixes). * x86/CPU/AMD: Add X86_FEATURE_ZEN6 (bsc#1263255). * x86/cpufeatures: Free up unused feature bits (bsc#1263255). * x86/fred: Fix early boot failures on SEV-ES/SNP guests (git-fixes). * x86/mtrr: Check if fixed-range MTRRs exist in mtrr_save_fixed_ranges() (git- fixes). * x86/sev: Add missing RIP_REL_REF() invocations during sme_enable() (git- fixes). * x86/sev: Do not touch VMSA pages during SNP guest memory kdump (git-fixes). * x86/sev: Ensure SVSM reserved fields in a page validation entry are initialized to zero (git-fixes). * x86/sev: Fix operator precedence in GHCB_MSR_VMPL_REQ_LEVEL macro (git- fixes). * x86/sev: Improve handling of writes to intercepted TSC MSRs (git-fixes). * x86/sev: Make sure pages are not skipped during kdump (git-fixes). * x86/tsx: Get the tsx= command line parameter with early_param() (bsc#1250951 bsc#1263044). * x86/tsx: Make tsx_ctrl_state static (bsc#1250951 bsc#1263044). * x86/vmware: Parse MP tables for SEV-SNP enabled guests under VMware hypervisors (git-fixes). * X.509: Fix out-of-bounds access when parsing extensions (git-fixes). * Xarray: do not return sibling entries from xas_find_marked() (bsc#1263815). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-814=1 * SUSE Linux Enterprise Server for SAP applications 16.0 zypper in -t patch SUSE-SLES-16.0-814=1 ## Package List: * SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le x86_64) * kernel-kvmsmall-debuginfo-6.12.0-160000.33.1 * kernel-default-base-6.12.0-160000.33.1.160000.2.14 * kernel-kvmsmall-debugsource-6.12.0-160000.33.1 * kernel-kvmsmall-devel-6.12.0-160000.33.1 * SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le s390x x86_64) * kernel-default-devel-6.12.0-160000.33.1 * kernel-default-extra-6.12.0-160000.33.1 * kernel-obs-qa-6.12.0-160000.33.1 * kernel-default-debuginfo-6.12.0-160000.33.1 * kernel-default-debugsource-6.12.0-160000.33.1 * kernel-default-extra-debuginfo-6.12.0-160000.33.1 * kernel-syms-6.12.0-160000.33.1 * SUSE Linux Enterprise Server 16.0 (noarch) * kernel-docs-html-6.12.0-160000.33.1 * kernel-macros-6.12.0-160000.33.1 * kernel-source-vanilla-6.12.0-160000.33.1 * kernel-source-6.12.0-160000.33.1 * kernel-devel-6.12.0-160000.33.1 * SUSE Linux Enterprise Server 16.0 (aarch64 nosrc x86_64) * kernel-azure-6.12.0-160000.33.1 * SUSE Linux Enterprise Server 16.0 (aarch64 x86_64) * kernel-azure-devel-6.12.0-160000.33.1 * kernel-azure-extra-6.12.0-160000.33.1 * kernel-azure-debuginfo-6.12.0-160000.33.1 * kernel-azure-debugsource-6.12.0-160000.33.1 * kernel-azure-extra-debuginfo-6.12.0-160000.33.1 * SUSE Linux Enterprise Server 16.0 (aarch64 nosrc) * kernel-64kb-6.12.0-160000.33.1 * SUSE Linux Enterprise Server 16.0 (aarch64) * kernel-64kb-debugsource-6.12.0-160000.33.1 * kernel-64kb-devel-6.12.0-160000.33.1 * kernel-64kb-extra-debuginfo-6.12.0-160000.33.1 * kernel-64kb-debuginfo-6.12.0-160000.33.1 * kernel-64kb-extra-6.12.0-160000.33.1 * SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le s390x x86_64 nosrc) * kernel-default-6.12.0-160000.33.1 * SUSE Linux Enterprise Server 16.0 (noarch nosrc) * kernel-docs-6.12.0-160000.33.1 * SUSE Linux Enterprise Server 16.0 (aarch64 nosrc ppc64le x86_64) * kernel-kvmsmall-6.12.0-160000.33.1 * SUSE Linux Enterprise Server 16.0 (ppc64le s390x x86_64) * kernel-default-livepatch-6.12.0-160000.33.1 * SUSE Linux Enterprise Server 16.0 (nosrc s390x) * kernel-zfcpdump-6.12.0-160000.33.1 * SUSE Linux Enterprise Server 16.0 (s390x) * kernel-zfcpdump-debuginfo-6.12.0-160000.33.1 * kernel-zfcpdump-debugsource-6.12.0-160000.33.1 * SUSE Linux Enterprise Server 16.0 (x86_64) * kernel-kvmsmall-vdso-debuginfo-6.12.0-160000.33.1 * kernel-kvmsmall-devel-debuginfo-6.12.0-160000.33.1 * kernel-azure-vdso-6.12.0-160000.33.1 * kernel-kvmsmall-vdso-6.12.0-160000.33.1 * kernel-default-devel-debuginfo-6.12.0-160000.33.1 * kernel-default-vdso-6.12.0-160000.33.1 * kernel-azure-devel-debuginfo-6.12.0-160000.33.1 * kernel-azure-vdso-debuginfo-6.12.0-160000.33.1 * kernel-default-vdso-debuginfo-6.12.0-160000.33.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (ppc64le x86_64) * cluster-md-kmp-default-debuginfo-6.12.0-160000.33.1 * cluster-md-kmp-default-6.12.0-160000.33.1 * kernel-kvmsmall-devel-6.12.0-160000.33.1 * kernel-kvmsmall-debuginfo-6.12.0-160000.33.1 * kernel-default-extra-6.12.0-160000.33.1 * kernel-kvmsmall-debugsource-6.12.0-160000.33.1 * kernel-obs-qa-6.12.0-160000.33.1 * kernel-syms-6.12.0-160000.33.1 * gfs2-kmp-default-6.12.0-160000.33.1 * gfs2-kmp-default-debuginfo-6.12.0-160000.33.1 * kernel-default-debuginfo-6.12.0-160000.33.1 * kernel-default-livepatch-6.12.0-160000.33.1 * kernel-default-debugsource-6.12.0-160000.33.1 * kernel-default-extra-debuginfo-6.12.0-160000.33.1 * kernel-default-devel-6.12.0-160000.33.1 * kernel-default-base-6.12.0-160000.33.1.160000.2.14 * dlm-kmp-default-debuginfo-6.12.0-160000.33.1 * dlm-kmp-default-6.12.0-160000.33.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (noarch) * kernel-docs-html-6.12.0-160000.33.1 * kernel-macros-6.12.0-160000.33.1 * kernel-source-vanilla-6.12.0-160000.33.1 * kernel-source-6.12.0-160000.33.1 * kernel-devel-6.12.0-160000.33.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (nosrc ppc64le x86_64) * kernel-default-6.12.0-160000.33.1 * kernel-kvmsmall-6.12.0-160000.33.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (noarch nosrc) * kernel-docs-6.12.0-160000.33.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (nosrc x86_64) * kernel-azure-6.12.0-160000.33.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (x86_64) * kernel-azure-devel-6.12.0-160000.33.1 * kernel-kvmsmall-vdso-debuginfo-6.12.0-160000.33.1 * kernel-kvmsmall-devel-debuginfo-6.12.0-160000.33.1 * kernel-azure-extra-6.12.0-160000.33.1 * kernel-azure-vdso-6.12.0-160000.33.1 * kernel-kvmsmall-vdso-6.12.0-160000.33.1 * kernel-default-devel-debuginfo-6.12.0-160000.33.1 * kernel-azure-debuginfo-6.12.0-160000.33.1 * kernel-default-vdso-6.12.0-160000.33.1 * kernel-azure-devel-debuginfo-6.12.0-160000.33.1 * kernel-azure-debugsource-6.12.0-160000.33.1 * kernel-azure-vdso-debuginfo-6.12.0-160000.33.1 * kernel-azure-extra-debuginfo-6.12.0-160000.33.1 * kernel-default-vdso-debuginfo-6.12.0-160000.33.1 ## References: * https://www.suse.com/security/cve/CVE-2023-2058.html * https://www.suse.com/security/cve/CVE-2024-14027.html * https://www.suse.com/security/cve/CVE-2025-40181.html * https://www.suse.com/security/cve/CVE-2025-40219.html * https://www.suse.com/security/cve/CVE-2025-68265.html * https://www.suse.com/security/cve/CVE-2025-68310.html * https://www.suse.com/security/cve/CVE-2025-71238.html * https://www.suse.com/security/cve/CVE-2025-71268.html * https://www.suse.com/security/cve/CVE-2025-71269.html * https://www.suse.com/security/cve/CVE-2025-71302.html * https://www.suse.com/security/cve/CVE-2026-23168.html * https://www.suse.com/security/cve/CVE-2026-23209.html * https://www.suse.com/security/cve/CVE-2026-23236.html * https://www.suse.com/security/cve/CVE-2026-23237.html * https://www.suse.com/security/cve/CVE-2026-23245.html * https://www.suse.com/security/cve/CVE-2026-23246.html * https://www.suse.com/security/cve/CVE-2026-23253.html * https://www.suse.com/security/cve/CVE-2026-23260.html * https://www.suse.com/security/cve/CVE-2026-23261.html * https://www.suse.com/security/cve/CVE-2026-23264.html * https://www.suse.com/security/cve/CVE-2026-23266.html * https://www.suse.com/security/cve/CVE-2026-23268.html * https://www.suse.com/security/cve/CVE-2026-23269.html * https://www.suse.com/security/cve/CVE-2026-23271.html * https://www.suse.com/security/cve/CVE-2026-23273.html * https://www.suse.com/security/cve/CVE-2026-23276.html * https://www.suse.com/security/cve/CVE-2026-23279.html * https://www.suse.com/security/cve/CVE-2026-23290.html * https://www.suse.com/security/cve/CVE-2026-23291.html * https://www.suse.com/security/cve/CVE-2026-23298.html * https://www.suse.com/security/cve/CVE-2026-23300.html * https://www.suse.com/security/cve/CVE-2026-23307.html * https://www.suse.com/security/cve/CVE-2026-23312.html * https://www.suse.com/security/cve/CVE-2026-23313.html * https://www.suse.com/security/cve/CVE-2026-23315.html * https://www.suse.com/security/cve/CVE-2026-23316.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-23318.html * https://www.suse.com/security/cve/CVE-2026-23321.html * https://www.suse.com/security/cve/CVE-2026-23324.html * https://www.suse.com/security/cve/CVE-2026-23325.html * https://www.suse.com/security/cve/CVE-2026-23334.html * https://www.suse.com/security/cve/CVE-2026-23336.html * https://www.suse.com/security/cve/CVE-2026-23339.html * https://www.suse.com/security/cve/CVE-2026-23340.html * https://www.suse.com/security/cve/CVE-2026-23346.html * https://www.suse.com/security/cve/CVE-2026-23347.html * https://www.suse.com/security/cve/CVE-2026-23351.html * https://www.suse.com/security/cve/CVE-2026-23354.html * https://www.suse.com/security/cve/CVE-2026-23357.html * https://www.suse.com/security/cve/CVE-2026-23360.html * https://www.suse.com/security/cve/CVE-2026-23362.html * https://www.suse.com/security/cve/CVE-2026-23363.html * https://www.suse.com/security/cve/CVE-2026-23365.html * https://www.suse.com/security/cve/CVE-2026-23367.html * https://www.suse.com/security/cve/CVE-2026-23368.html * https://www.suse.com/security/cve/CVE-2026-23369.html * https://www.suse.com/security/cve/CVE-2026-23370.html * https://www.suse.com/security/cve/CVE-2026-23372.html * https://www.suse.com/security/cve/CVE-2026-23373.html * https://www.suse.com/security/cve/CVE-2026-23374.html * https://www.suse.com/security/cve/CVE-2026-23375.html * https://www.suse.com/security/cve/CVE-2026-23378.html * https://www.suse.com/security/cve/CVE-2026-23382.html * https://www.suse.com/security/cve/CVE-2026-23387.html * https://www.suse.com/security/cve/CVE-2026-23391.html * https://www.suse.com/security/cve/CVE-2026-23392.html * https://www.suse.com/security/cve/CVE-2026-23395.html * https://www.suse.com/security/cve/CVE-2026-23396.html * https://www.suse.com/security/cve/CVE-2026-23397.html * https://www.suse.com/security/cve/CVE-2026-23399.html * https://www.suse.com/security/cve/CVE-2026-23401.html * https://www.suse.com/security/cve/CVE-2026-23403.html * https://www.suse.com/security/cve/CVE-2026-23404.html * https://www.suse.com/security/cve/CVE-2026-23405.html * https://www.suse.com/security/cve/CVE-2026-23406.html * https://www.suse.com/security/cve/CVE-2026-23407.html * https://www.suse.com/security/cve/CVE-2026-23408.html * https://www.suse.com/security/cve/CVE-2026-23409.html * https://www.suse.com/security/cve/CVE-2026-23410.html * https://www.suse.com/security/cve/CVE-2026-23411.html * https://www.suse.com/security/cve/CVE-2026-23417.html * https://www.suse.com/security/cve/CVE-2026-23418.html * https://www.suse.com/security/cve/CVE-2026-23420.html * https://www.suse.com/security/cve/CVE-2026-23426.html * https://www.suse.com/security/cve/CVE-2026-23434.html * https://www.suse.com/security/cve/CVE-2026-23436.html * https://www.suse.com/security/cve/CVE-2026-23437.html * https://www.suse.com/security/cve/CVE-2026-23440.html * https://www.suse.com/security/cve/CVE-2026-23441.html * https://www.suse.com/security/cve/CVE-2026-23442.html * https://www.suse.com/security/cve/CVE-2026-23443.html * https://www.suse.com/security/cve/CVE-2026-23445.html * https://www.suse.com/security/cve/CVE-2026-23446.html * https://www.suse.com/security/cve/CVE-2026-23447.html * https://www.suse.com/security/cve/CVE-2026-23448.html * https://www.suse.com/security/cve/CVE-2026-23449.html * https://www.suse.com/security/cve/CVE-2026-23450.html * https://www.suse.com/security/cve/CVE-2026-23452.html * https://www.suse.com/security/cve/CVE-2026-23454.html * https://www.suse.com/security/cve/CVE-2026-23455.html * https://www.suse.com/security/cve/CVE-2026-23456.html * https://www.suse.com/security/cve/CVE-2026-23457.html * https://www.suse.com/security/cve/CVE-2026-23458.html * https://www.suse.com/security/cve/CVE-2026-23460.html * https://www.suse.com/security/cve/CVE-2026-23461.html * https://www.suse.com/security/cve/CVE-2026-23462.html * https://www.suse.com/security/cve/CVE-2026-23463.html * https://www.suse.com/security/cve/CVE-2026-23464.html * https://www.suse.com/security/cve/CVE-2026-23465.html * https://www.suse.com/security/cve/CVE-2026-23466.html * https://www.suse.com/security/cve/CVE-2026-23468.html * https://www.suse.com/security/cve/CVE-2026-23470.html * https://www.suse.com/security/cve/CVE-2026-23472.html * https://www.suse.com/security/cve/CVE-2026-23473.html * https://www.suse.com/security/cve/CVE-2026-23474.html * https://www.suse.com/security/cve/CVE-2026-23475.html * https://www.suse.com/security/cve/CVE-2026-31389.html * https://www.suse.com/security/cve/CVE-2026-31392.html * https://www.suse.com/security/cve/CVE-2026-31393.html * https://www.suse.com/security/cve/CVE-2026-31394.html * https://www.suse.com/security/cve/CVE-2026-31395.html * https://www.suse.com/security/cve/CVE-2026-31400.html * https://www.suse.com/security/cve/CVE-2026-31402.html * https://www.suse.com/security/cve/CVE-2026-31403.html * https://www.suse.com/security/cve/CVE-2026-31405.html * https://www.suse.com/security/cve/CVE-2026-31406.html * https://www.suse.com/security/cve/CVE-2026-31407.html * https://www.suse.com/security/cve/CVE-2026-31408.html * https://www.suse.com/security/cve/CVE-2026-31411.html * https://www.suse.com/security/cve/CVE-2026-31412.html * https://www.suse.com/security/cve/CVE-2026-31415.html * https://www.suse.com/security/cve/CVE-2026-31416.html * https://www.suse.com/security/cve/CVE-2026-31417.html * https://www.suse.com/security/cve/CVE-2026-31420.html * https://www.suse.com/security/cve/CVE-2026-31421.html * https://www.suse.com/security/cve/CVE-2026-31422.html * https://www.suse.com/security/cve/CVE-2026-31423.html * https://www.suse.com/security/cve/CVE-2026-31424.html * https://www.suse.com/security/cve/CVE-2026-31425.html * https://www.suse.com/security/cve/CVE-2026-31426.html * https://www.suse.com/security/cve/CVE-2026-31427.html * https://www.suse.com/security/cve/CVE-2026-31428.html * https://www.suse.com/security/cve/CVE-2026-31435.html * https://www.suse.com/security/cve/CVE-2026-31449.html * https://www.suse.com/security/cve/CVE-2026-31453.html * https://www.suse.com/security/cve/CVE-2026-31456.html * https://www.suse.com/security/cve/CVE-2026-31470.html * https://www.suse.com/security/cve/CVE-2026-31494.html * https://www.suse.com/security/cve/CVE-2026-31496.html * https://www.suse.com/security/cve/CVE-2026-31503.html * https://www.suse.com/security/cve/CVE-2026-31504.html * https://www.suse.com/security/cve/CVE-2026-31505.html * https://www.suse.com/security/cve/CVE-2026-31507.html * https://www.suse.com/security/cve/CVE-2026-31515.html * https://www.suse.com/security/cve/CVE-2026-31519.html * https://www.suse.com/security/cve/CVE-2026-31525.html * https://www.suse.com/security/cve/CVE-2026-31526.html * https://www.suse.com/security/cve/CVE-2026-31528.html * https://www.suse.com/security/cve/CVE-2026-31533.html * https://www.suse.com/security/cve/CVE-2026-31547.html * https://www.suse.com/security/cve/CVE-2026-31550.html * https://www.suse.com/security/cve/CVE-2026-31554.html * https://www.suse.com/security/cve/CVE-2026-31565.html * https://www.suse.com/security/cve/CVE-2026-31579.html * https://www.suse.com/security/cve/CVE-2026-31586.html * https://www.suse.com/security/cve/CVE-2026-31588.html * https://www.suse.com/security/cve/CVE-2026-31644.html * https://www.suse.com/security/cve/CVE-2026-31649.html * https://www.suse.com/security/cve/CVE-2026-31658.html * https://www.suse.com/security/cve/CVE-2026-31662.html * https://www.suse.com/security/cve/CVE-2026-31666.html * https://www.suse.com/security/cve/CVE-2026-31668.html * https://www.suse.com/security/cve/CVE-2026-31669.html * https://www.suse.com/security/cve/CVE-2026-31675.html * https://www.suse.com/security/cve/CVE-2026-31678.html * https://www.suse.com/security/cve/CVE-2026-31679.html * https://www.suse.com/security/cve/CVE-2026-31681.html * https://www.suse.com/security/cve/CVE-2026-31682.html * https://www.suse.com/security/cve/CVE-2026-31684.html * https://www.suse.com/security/cve/CVE-2026-31685.html * https://www.suse.com/security/cve/CVE-2026-31691.html * https://www.suse.com/security/cve/CVE-2026-31694.html * https://www.suse.com/security/cve/CVE-2026-31700.html * https://www.suse.com/security/cve/CVE-2026-31738.html * https://www.suse.com/security/cve/CVE-2026-31787.html * https://www.suse.com/security/cve/CVE-2026-43009.html * https://www.suse.com/security/cve/CVE-2026-43025.html * https://www.suse.com/security/cve/CVE-2026-43027.html * https://www.suse.com/security/cve/CVE-2026-43037.html * https://www.suse.com/security/cve/CVE-2026-43038.html * https://www.suse.com/security/cve/CVE-2026-43045.html * https://www.suse.com/security/cve/CVE-2026-43050.html * https://www.suse.com/security/cve/CVE-2026-43060.html * https://www.suse.com/security/cve/CVE-2026-43082.html * https://www.suse.com/security/cve/CVE-2026-43088.html * https://www.suse.com/security/cve/CVE-2026-43153.html * https://www.suse.com/security/cve/CVE-2026-43190.html * https://www.suse.com/security/cve/CVE-2026-43265.html * https://www.suse.com/security/cve/CVE-2026-43329.html * https://www.suse.com/security/cve/CVE-2026-43365.html * https://www.suse.com/security/cve/CVE-2026-43366.html * https://www.suse.com/security/cve/CVE-2026-43441.html * https://www.suse.com/security/cve/CVE-2026-43494.html * https://www.suse.com/security/cve/CVE-2026-43503.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1215199 * https://bugzilla.suse.com/show_bug.cgi?id=1234634 * https://bugzilla.suse.com/show_bug.cgi?id=1241259 * https://bugzilla.suse.com/show_bug.cgi?id=1243603 * https://bugzilla.suse.com/show_bug.cgi?id=1248754 * https://bugzilla.suse.com/show_bug.cgi?id=1249104 * https://bugzilla.suse.com/show_bug.cgi?id=1250951 * https://bugzilla.suse.com/show_bug.cgi?id=1253471 * https://bugzilla.suse.com/show_bug.cgi?id=1254518 * https://bugzilla.suse.com/show_bug.cgi?id=1255160 * https://bugzilla.suse.com/show_bug.cgi?id=1255360 * https://bugzilla.suse.com/show_bug.cgi?id=1255459 * https://bugzilla.suse.com/show_bug.cgi?id=1255752 * https://bugzilla.suse.com/show_bug.cgi?id=1256288 * https://bugzilla.suse.com/show_bug.cgi?id=1256865 * https://bugzilla.suse.com/show_bug.cgi?id=1256867 * https://bugzilla.suse.com/show_bug.cgi?id=1258518 * https://bugzilla.suse.com/show_bug.cgi?id=1258718 * https://bugzilla.suse.com/show_bug.cgi?id=1258826 * https://bugzilla.suse.com/show_bug.cgi?id=1258849 * https://bugzilla.suse.com/show_bug.cgi?id=1258850 * https://bugzilla.suse.com/show_bug.cgi?id=1258854 * https://bugzilla.suse.com/show_bug.cgi?id=1258855 * https://bugzilla.suse.com/show_bug.cgi?id=1258856 * https://bugzilla.suse.com/show_bug.cgi?id=1258857 * https://bugzilla.suse.com/show_bug.cgi?id=1258933 * https://bugzilla.suse.com/show_bug.cgi?id=1258961 * https://bugzilla.suse.com/show_bug.cgi?id=1259186 * https://bugzilla.suse.com/show_bug.cgi?id=1259199 * https://bugzilla.suse.com/show_bug.cgi?id=1259222 * https://bugzilla.suse.com/show_bug.cgi?id=1259420 * https://bugzilla.suse.com/show_bug.cgi?id=1259461 * https://bugzilla.suse.com/show_bug.cgi?id=1259535 * https://bugzilla.suse.com/show_bug.cgi?id=1259672 * https://bugzilla.suse.com/show_bug.cgi?id=1259799 * https://bugzilla.suse.com/show_bug.cgi?id=1259806 * https://bugzilla.suse.com/show_bug.cgi?id=1259857 * https://bugzilla.suse.com/show_bug.cgi?id=1259865 * https://bugzilla.suse.com/show_bug.cgi?id=1259868 * https://bugzilla.suse.com/show_bug.cgi?id=1259869 * https://bugzilla.suse.com/show_bug.cgi?id=1259871 * https://bugzilla.suse.com/show_bug.cgi?id=1259873 * https://bugzilla.suse.com/show_bug.cgi?id=1259878 * https://bugzilla.suse.com/show_bug.cgi?id=1259889 * https://bugzilla.suse.com/show_bug.cgi?id=1259994 * https://bugzilla.suse.com/show_bug.cgi?id=1260010 * https://bugzilla.suse.com/show_bug.cgi?id=1260012 * https://bugzilla.suse.com/show_bug.cgi?id=1260018 * https://bugzilla.suse.com/show_bug.cgi?id=1260428 * https://bugzilla.suse.com/show_bug.cgi?id=1260468 * https://bugzilla.suse.com/show_bug.cgi?id=1260483 * https://bugzilla.suse.com/show_bug.cgi?id=1260484 * https://bugzilla.suse.com/show_bug.cgi?id=1260485 * https://bugzilla.suse.com/show_bug.cgi?id=1260489 * https://bugzilla.suse.com/show_bug.cgi?id=1260504 * https://bugzilla.suse.com/show_bug.cgi?id=1260505 * https://bugzilla.suse.com/show_bug.cgi?id=1260507 * https://bugzilla.suse.com/show_bug.cgi?id=1260514 * https://bugzilla.suse.com/show_bug.cgi?id=1260523 * https://bugzilla.suse.com/show_bug.cgi?id=1260526 * https://bugzilla.suse.com/show_bug.cgi?id=1260528 * https://bugzilla.suse.com/show_bug.cgi?id=1260529 * https://bugzilla.suse.com/show_bug.cgi?id=1260530 * https://bugzilla.suse.com/show_bug.cgi?id=1260531 * https://bugzilla.suse.com/show_bug.cgi?id=1260532 * https://bugzilla.suse.com/show_bug.cgi?id=1260533 * https://bugzilla.suse.com/show_bug.cgi?id=1260536 * https://bugzilla.suse.com/show_bug.cgi?id=1260537 * https://bugzilla.suse.com/show_bug.cgi?id=1260538 * https://bugzilla.suse.com/show_bug.cgi?id=1260541 * https://bugzilla.suse.com/show_bug.cgi?id=1260546 * https://bugzilla.suse.com/show_bug.cgi?id=1260549 * https://bugzilla.suse.com/show_bug.cgi?id=1260551 * https://bugzilla.suse.com/show_bug.cgi?id=1260552 * https://bugzilla.suse.com/show_bug.cgi?id=1260555 * https://bugzilla.suse.com/show_bug.cgi?id=1260561 * https://bugzilla.suse.com/show_bug.cgi?id=1260562 * https://bugzilla.suse.com/show_bug.cgi?id=1260566 * https://bugzilla.suse.com/show_bug.cgi?id=1260571 * https://bugzilla.suse.com/show_bug.cgi?id=1260572 * https://bugzilla.suse.com/show_bug.cgi?id=1260573 * https://bugzilla.suse.com/show_bug.cgi?id=1260576 * https://bugzilla.suse.com/show_bug.cgi?id=1260580 * https://bugzilla.suse.com/show_bug.cgi?id=1260581 * https://bugzilla.suse.com/show_bug.cgi?id=1260593 * https://bugzilla.suse.com/show_bug.cgi?id=1260613 * https://bugzilla.suse.com/show_bug.cgi?id=1260728 * https://bugzilla.suse.com/show_bug.cgi?id=1260729 * https://bugzilla.suse.com/show_bug.cgi?id=1260731 * https://bugzilla.suse.com/show_bug.cgi?id=1260798 * https://bugzilla.suse.com/show_bug.cgi?id=1260800 * https://bugzilla.suse.com/show_bug.cgi?id=1260801 * https://bugzilla.suse.com/show_bug.cgi?id=1260807 * https://bugzilla.suse.com/show_bug.cgi?id=1260811 * https://bugzilla.suse.com/show_bug.cgi?id=1260996 * https://bugzilla.suse.com/show_bug.cgi?id=1261020 * https://bugzilla.suse.com/show_bug.cgi?id=1261149 * https://bugzilla.suse.com/show_bug.cgi?id=1261287 * https://bugzilla.suse.com/show_bug.cgi?id=1261288 * https://bugzilla.suse.com/show_bug.cgi?id=1261295 * https://bugzilla.suse.com/show_bug.cgi?id=1261348 * https://bugzilla.suse.com/show_bug.cgi?id=1261410 * https://bugzilla.suse.com/show_bug.cgi?id=1261503 * https://bugzilla.suse.com/show_bug.cgi?id=1261504 * https://bugzilla.suse.com/show_bug.cgi?id=1261505 * https://bugzilla.suse.com/show_bug.cgi?id=1261550 * https://bugzilla.suse.com/show_bug.cgi?id=1261555 * https://bugzilla.suse.com/show_bug.cgi?id=1261581 * https://bugzilla.suse.com/show_bug.cgi?id=1261582 * https://bugzilla.suse.com/show_bug.cgi?id=1261584 * https://bugzilla.suse.com/show_bug.cgi?id=1261585 * https://bugzilla.suse.com/show_bug.cgi?id=1261592 * https://bugzilla.suse.com/show_bug.cgi?id=1261601 * https://bugzilla.suse.com/show_bug.cgi?id=1261602 * https://bugzilla.suse.com/show_bug.cgi?id=1261617 * https://bugzilla.suse.com/show_bug.cgi?id=1261618 * https://bugzilla.suse.com/show_bug.cgi?id=1261629 * https://bugzilla.suse.com/show_bug.cgi?id=1261632 * https://bugzilla.suse.com/show_bug.cgi?id=1261635 * https://bugzilla.suse.com/show_bug.cgi?id=1261636 * https://bugzilla.suse.com/show_bug.cgi?id=1261637 * https://bugzilla.suse.com/show_bug.cgi?id=1261638 * https://bugzilla.suse.com/show_bug.cgi?id=1261641 * https://bugzilla.suse.com/show_bug.cgi?id=1261644 * https://bugzilla.suse.com/show_bug.cgi?id=1261645 * https://bugzilla.suse.com/show_bug.cgi?id=1261648 * https://bugzilla.suse.com/show_bug.cgi?id=1261679 * https://bugzilla.suse.com/show_bug.cgi?id=1261685 * https://bugzilla.suse.com/show_bug.cgi?id=1261686 * https://bugzilla.suse.com/show_bug.cgi?id=1261687 * https://bugzilla.suse.com/show_bug.cgi?id=1261692 * https://bugzilla.suse.com/show_bug.cgi?id=1261694 * https://bugzilla.suse.com/show_bug.cgi?id=1261700 * https://bugzilla.suse.com/show_bug.cgi?id=1261702 * https://bugzilla.suse.com/show_bug.cgi?id=1261703 * https://bugzilla.suse.com/show_bug.cgi?id=1261707 * https://bugzilla.suse.com/show_bug.cgi?id=1261710 * https://bugzilla.suse.com/show_bug.cgi?id=1261713 * https://bugzilla.suse.com/show_bug.cgi?id=1261714 * https://bugzilla.suse.com/show_bug.cgi?id=1261719 * https://bugzilla.suse.com/show_bug.cgi?id=1261738 * https://bugzilla.suse.com/show_bug.cgi?id=1261750 * https://bugzilla.suse.com/show_bug.cgi?id=1261751 * https://bugzilla.suse.com/show_bug.cgi?id=1261752 * https://bugzilla.suse.com/show_bug.cgi?id=1261768 * https://bugzilla.suse.com/show_bug.cgi?id=1261778 * https://bugzilla.suse.com/show_bug.cgi?id=1261779 * https://bugzilla.suse.com/show_bug.cgi?id=1261780 * https://bugzilla.suse.com/show_bug.cgi?id=1261781 * https://bugzilla.suse.com/show_bug.cgi?id=1261786 * https://bugzilla.suse.com/show_bug.cgi?id=1261788 * https://bugzilla.suse.com/show_bug.cgi?id=1261789 * https://bugzilla.suse.com/show_bug.cgi?id=1261796 * https://bugzilla.suse.com/show_bug.cgi?id=1261797 * https://bugzilla.suse.com/show_bug.cgi?id=1261896 * https://bugzilla.suse.com/show_bug.cgi?id=1262019 * https://bugzilla.suse.com/show_bug.cgi?id=1262053 * https://bugzilla.suse.com/show_bug.cgi?id=1262054 * https://bugzilla.suse.com/show_bug.cgi?id=1262055 * https://bugzilla.suse.com/show_bug.cgi?id=1262061 * https://bugzilla.suse.com/show_bug.cgi?id=1262063 * https://bugzilla.suse.com/show_bug.cgi?id=1262074 * https://bugzilla.suse.com/show_bug.cgi?id=1262078 * https://bugzilla.suse.com/show_bug.cgi?id=1262086 * https://bugzilla.suse.com/show_bug.cgi?id=1262087 * https://bugzilla.suse.com/show_bug.cgi?id=1262099 * https://bugzilla.suse.com/show_bug.cgi?id=1262100 * https://bugzilla.suse.com/show_bug.cgi?id=1262101 * https://bugzilla.suse.com/show_bug.cgi?id=1262179 * https://bugzilla.suse.com/show_bug.cgi?id=1262181 * https://bugzilla.suse.com/show_bug.cgi?id=1262245 * https://bugzilla.suse.com/show_bug.cgi?id=1262250 * https://bugzilla.suse.com/show_bug.cgi?id=1262480 * https://bugzilla.suse.com/show_bug.cgi?id=1262601 * https://bugzilla.suse.com/show_bug.cgi?id=1262616 * https://bugzilla.suse.com/show_bug.cgi?id=1262617 * https://bugzilla.suse.com/show_bug.cgi?id=1262627 * https://bugzilla.suse.com/show_bug.cgi?id=1262662 * https://bugzilla.suse.com/show_bug.cgi?id=1262665 * https://bugzilla.suse.com/show_bug.cgi?id=1262671 * https://bugzilla.suse.com/show_bug.cgi?id=1262673 * https://bugzilla.suse.com/show_bug.cgi?id=1262709 * https://bugzilla.suse.com/show_bug.cgi?id=1262725 * https://bugzilla.suse.com/show_bug.cgi?id=1262731 * https://bugzilla.suse.com/show_bug.cgi?id=1262750 * https://bugzilla.suse.com/show_bug.cgi?id=1262752 * https://bugzilla.suse.com/show_bug.cgi?id=1262758 * https://bugzilla.suse.com/show_bug.cgi?id=1263001 * https://bugzilla.suse.com/show_bug.cgi?id=1263012 * https://bugzilla.suse.com/show_bug.cgi?id=1263018 * https://bugzilla.suse.com/show_bug.cgi?id=1263044 * https://bugzilla.suse.com/show_bug.cgi?id=1263048 * https://bugzilla.suse.com/show_bug.cgi?id=1263052 * https://bugzilla.suse.com/show_bug.cgi?id=1263064 * https://bugzilla.suse.com/show_bug.cgi?id=1263074 * https://bugzilla.suse.com/show_bug.cgi?id=1263077 * https://bugzilla.suse.com/show_bug.cgi?id=1263085 * https://bugzilla.suse.com/show_bug.cgi?id=1263093 * https://bugzilla.suse.com/show_bug.cgi?id=1263095 * https://bugzilla.suse.com/show_bug.cgi?id=1263104 * https://bugzilla.suse.com/show_bug.cgi?id=1263107 * https://bugzilla.suse.com/show_bug.cgi?id=1263131 * https://bugzilla.suse.com/show_bug.cgi?id=1263135 * https://bugzilla.suse.com/show_bug.cgi?id=1263138 * https://bugzilla.suse.com/show_bug.cgi?id=1263140 * https://bugzilla.suse.com/show_bug.cgi?id=1263141 * https://bugzilla.suse.com/show_bug.cgi?id=1263165 * https://bugzilla.suse.com/show_bug.cgi?id=1263176 * https://bugzilla.suse.com/show_bug.cgi?id=1263255 * https://bugzilla.suse.com/show_bug.cgi?id=1263556 * https://bugzilla.suse.com/show_bug.cgi?id=1263562 * https://bugzilla.suse.com/show_bug.cgi?id=1263582 * https://bugzilla.suse.com/show_bug.cgi?id=1263592 * https://bugzilla.suse.com/show_bug.cgi?id=1263593 * https://bugzilla.suse.com/show_bug.cgi?id=1263595 * https://bugzilla.suse.com/show_bug.cgi?id=1263596 * https://bugzilla.suse.com/show_bug.cgi?id=1263604 * https://bugzilla.suse.com/show_bug.cgi?id=1263668 * https://bugzilla.suse.com/show_bug.cgi?id=1263815 * https://bugzilla.suse.com/show_bug.cgi?id=1263882 * https://bugzilla.suse.com/show_bug.cgi?id=1263901 * https://bugzilla.suse.com/show_bug.cgi?id=1263931 * https://bugzilla.suse.com/show_bug.cgi?id=1263933 * https://bugzilla.suse.com/show_bug.cgi?id=1263942 * https://bugzilla.suse.com/show_bug.cgi?id=1263995 * https://bugzilla.suse.com/show_bug.cgi?id=1264014 * https://bugzilla.suse.com/show_bug.cgi?id=1264059 * https://bugzilla.suse.com/show_bug.cgi?id=1264082 * https://bugzilla.suse.com/show_bug.cgi?id=1264097 * https://bugzilla.suse.com/show_bug.cgi?id=1264183 * https://bugzilla.suse.com/show_bug.cgi?id=1264233 * https://bugzilla.suse.com/show_bug.cgi?id=1264427 * https://bugzilla.suse.com/show_bug.cgi?id=1264469 * https://bugzilla.suse.com/show_bug.cgi?id=1264586 * https://bugzilla.suse.com/show_bug.cgi?id=1264674 * https://bugzilla.suse.com/show_bug.cgi?id=1264837 * https://bugzilla.suse.com/show_bug.cgi?id=1264848 * https://bugzilla.suse.com/show_bug.cgi?id=1265085 * https://bugzilla.suse.com/show_bug.cgi?id=1265116 * https://bugzilla.suse.com/show_bug.cgi?id=1265119 * https://bugzilla.suse.com/show_bug.cgi?id=1265144 * https://bugzilla.suse.com/show_bug.cgi?id=1265308 * https://bugzilla.suse.com/show_bug.cgi?id=1265421 * https://bugzilla.suse.com/show_bug.cgi?id=1265449 * https://bugzilla.suse.com/show_bug.cgi?id=1265456 * https://bugzilla.suse.com/show_bug.cgi?id=1265626 * https://bugzilla.suse.com/show_bug.cgi?id=1265846 * https://bugzilla.suse.com/show_bug.cgi?id=1265960 * https://jira.suse.com/browse/PED-13771 * https://jira.suse.com/browse/PED-14156 * https://jira.suse.com/browse/PED-14238 * https://jira.suse.com/browse/PED-16113 * https://jira.suse.com/browse/PED-7912 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 20:36:38 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 20:36:38 -0000 Subject: SUSE-SU-2026:21859-1: important: Security update for vim Message-ID: <178034619875.1034.17987622893651339286@cf67f1158b88> # Security update for vim Announcement ID: SUSE-SU-2026:21859-1 Release Date: 2026-05-28T12:13:40Z Rating: important References: * bsc#1261833 * bsc#1262395 * bsc#1264706 * bsc#1264707 * bsc#1264708 * bsc#1265349 * bsc#1265360 Cross-References: * CVE-2026-39881 * CVE-2026-42307 * CVE-2026-43961 * CVE-2026-44656 * CVE-2026-45130 * CVE-2026-46483 CVSS scores: * CVE-2026-39881 ( SUSE ): 5.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-39881 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:N * CVE-2026-39881 ( NVD ): 5.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:H/A:N * CVE-2026-39881 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-42307 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N * CVE-2026-43961 ( SUSE ): 5.4 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43961 ( SUSE ): 4.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L * CVE-2026-44656 ( SUSE ): 4.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-44656 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N * CVE-2026-44656 ( NVD ): 4.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-44656 ( NVD ): 5.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L * CVE-2026-45130 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H * CVE-2026-45130 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-45130 ( NVD ): 6.6 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H * CVE-2026-46483 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46483 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-46483 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-46483 ( NVD ): 3.6 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP applications 16.0 An update that solves six vulnerabilities and has one fix can now be installed. ## Description: This update for vim fixes the following issues * CVE-2026-39881: command injection in NetBeans interface can lead to arbitrary file reads and writes (bsc#1261833). * CVE-2026-42307: Prior to version 9.2.0383, an OS command injection vulnerability exists in the netrw standard plugin bundled with Vim (bsc#1264706). * CVE-2026-43961: Vimscript Code Injection in netrw NetrwMarkFile() via crafted filename (bsc#1265349). * CVE-2026-44656: Prior to version 9.2.0435, an OS command injection vulnerability exists in Vim's: find command-line completion (bsc#1264707). * CVE-2026-45130: Prior to version 9.2.0450, a heap buffer overflow exists in read_compound() in src/spellfile.c when loading a crafted spell file (.spl) with UTF-8 encoding active (bsc#1264708). * CVE-2026-46483: command injection via `tar#Vimuntar()` in `runtime/autoload/tar.vim` when decompressing `.tgz` archives on Unix-like systems (bsc#1265360). Changes for vim: * Update to v9.2.0530. * Fix for incorrectly detecting scientific parameter files as bitbake recipies. (bsc#1262395) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-817=1 * SUSE Linux Enterprise Server for SAP applications 16.0 zypper in -t patch SUSE-SLES-16.0-817=1 ## Package List: * SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le s390x x86_64) * vim-debuginfo-9.2.0530-160000.1.1 * xxd-debuginfo-9.2.0530-160000.1.1 * vim-small-debuginfo-9.2.0530-160000.1.1 * gvim-debuginfo-9.2.0530-160000.1.1 * vim-debugsource-9.2.0530-160000.1.1 * vim-small-9.2.0530-160000.1.1 * gvim-9.2.0530-160000.1.1 * vim-9.2.0530-160000.1.1 * xxd-9.2.0530-160000.1.1 * SUSE Linux Enterprise Server 16.0 (noarch) * vim-data-common-9.2.0530-160000.1.1 * vim-data-9.2.0530-160000.1.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (ppc64le x86_64) * vim-debuginfo-9.2.0530-160000.1.1 * xxd-debuginfo-9.2.0530-160000.1.1 * vim-small-debuginfo-9.2.0530-160000.1.1 * gvim-debuginfo-9.2.0530-160000.1.1 * vim-debugsource-9.2.0530-160000.1.1 * vim-small-9.2.0530-160000.1.1 * gvim-9.2.0530-160000.1.1 * vim-9.2.0530-160000.1.1 * xxd-9.2.0530-160000.1.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (noarch) * vim-data-common-9.2.0530-160000.1.1 * vim-data-9.2.0530-160000.1.1 ## References: * https://www.suse.com/security/cve/CVE-2026-39881.html * https://www.suse.com/security/cve/CVE-2026-42307.html * https://www.suse.com/security/cve/CVE-2026-43961.html * https://www.suse.com/security/cve/CVE-2026-44656.html * https://www.suse.com/security/cve/CVE-2026-45130.html * https://www.suse.com/security/cve/CVE-2026-46483.html * https://bugzilla.suse.com/show_bug.cgi?id=1261833 * https://bugzilla.suse.com/show_bug.cgi?id=1262395 * https://bugzilla.suse.com/show_bug.cgi?id=1264706 * https://bugzilla.suse.com/show_bug.cgi?id=1264707 * https://bugzilla.suse.com/show_bug.cgi?id=1264708 * https://bugzilla.suse.com/show_bug.cgi?id=1265349 * https://bugzilla.suse.com/show_bug.cgi?id=1265360 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 20:36:49 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 20:36:49 -0000 Subject: SUSE-SU-2026:21858-1: important: Security update for python-mistune Message-ID: <178034620962.1034.791573032136732194@cf67f1158b88> # Security update for python-mistune Announcement ID: SUSE-SU-2026:21858-1 Release Date: 2026-05-28T12:08:36Z Rating: important References: * bsc#1264347 * bsc#1264750 * bsc#1264751 * bsc#1264752 * bsc#1264754 * bsc#1265052 * bsc#1265053 Cross-References: * CVE-2026-33079 * CVE-2026-33441 * CVE-2026-44708 * CVE-2026-44896 * CVE-2026-44897 * CVE-2026-44898 * CVE-2026-44899 CVSS scores: * CVE-2026-33079 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-33079 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-33079 ( NVD ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-33441 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-33441 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-44708 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N * CVE-2026-44708 ( SUSE ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N * CVE-2026-44708 ( NVD ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N * CVE-2026-44896 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N * CVE-2026-44896 ( SUSE ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N * CVE-2026-44896 ( NVD ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-44896 ( NVD ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N * CVE-2026-44897 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N * CVE-2026-44897 ( SUSE ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N * CVE-2026-44897 ( NVD ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N * CVE-2026-44898 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N * CVE-2026-44898 ( SUSE ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N * CVE-2026-44898 ( NVD ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N * CVE-2026-44899 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N * CVE-2026-44899 ( SUSE ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N * CVE-2026-44899 ( NVD ): 4.7 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N * CVE-2026-44899 ( NVD ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP applications 16.0 An update that solves seven vulnerabilities can now be installed. ## Description: This update for python-mistune fixes the following issues * CVE-2026-33079: ReDoS in `LINK_TITLE_RE` can lead to denial of service via a crafted Markdown (bsc#1264347). * CVE-2026-33441: processing of malformed reference links can lead to excessive resource consumption and denial of service (bsc#1264752). * CVE-2026-44708: improper HTML escaping in the math plugin can lead to XSS (bsc#1264751). * CVE-2026-44896: improper escaping in `render_figure` can lead to attribute injection and XSS (bsc#1264754). * CVE-2026-44897: improper sanitization of user-controlled input in `HTMLRenderer.heading` can lead to XSS (bsc#1264750). * CVE-2026-44898: improper sanitization of user-supplied HTML input in `render_toc_ul` can lead to XSS (bsc#1265052). * CVE-2026-44899: improper input verification in Image directive plugin and improper escaping in `render_block_image` can lead to CSS injection (bsc#1265053). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-816=1 * SUSE Linux Enterprise Server for SAP applications 16.0 zypper in -t patch SUSE-SLES-16.0-816=1 ## Package List: * SUSE Linux Enterprise Server 16.0 (noarch) * python313-mistune-3.1.3-160000.3.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (noarch) * python313-mistune-3.1.3-160000.3.1 ## References: * https://www.suse.com/security/cve/CVE-2026-33079.html * https://www.suse.com/security/cve/CVE-2026-33441.html * https://www.suse.com/security/cve/CVE-2026-44708.html * https://www.suse.com/security/cve/CVE-2026-44896.html * https://www.suse.com/security/cve/CVE-2026-44897.html * https://www.suse.com/security/cve/CVE-2026-44898.html * https://www.suse.com/security/cve/CVE-2026-44899.html * https://bugzilla.suse.com/show_bug.cgi?id=1264347 * https://bugzilla.suse.com/show_bug.cgi?id=1264750 * https://bugzilla.suse.com/show_bug.cgi?id=1264751 * https://bugzilla.suse.com/show_bug.cgi?id=1264752 * https://bugzilla.suse.com/show_bug.cgi?id=1264754 * https://bugzilla.suse.com/show_bug.cgi?id=1265052 * https://bugzilla.suse.com/show_bug.cgi?id=1265053 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 20:36:51 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 20:36:51 -0000 Subject: SUSE-RU-2026:21857-1: moderate: Recommended update for rust1.95 Message-ID: <178034621116.1034.3336407408120396833@cf67f1158b88> # Recommended update for rust1.95 Announcement ID: SUSE-RU-2026:21857-1 Release Date: 2026-05-28T10:04:35Z Rating: moderate References: * jsc#PED-11412 Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP applications 16.0 An update that contains one feature can now be installed. ## Description: This update for rust1.95 fixes the following issues: This update adds rust1.95. Release notes can be found externally: https://github.com/rust- lang/rust/releases/tag/1.95.0 ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-812=1 * SUSE Linux Enterprise Server for SAP applications 16.0 zypper in -t patch SUSE-SLES-16.0-812=1 ## Package List: * SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le s390x x86_64) * cargo1.95-1.95.0-160000.1.1 * rust1.95-debuginfo-1.95.0-160000.1.1 * rust-1.95.0-160000.1.1 * cargo1.95-debuginfo-1.95.0-160000.1.1 * cargo-1.95.0-160000.1.1 * SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le s390x x86_64 nosrc) * rust1.95-1.95.0-160000.1.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (ppc64le x86_64) * cargo1.95-1.95.0-160000.1.1 * rust1.95-debuginfo-1.95.0-160000.1.1 * rust-1.95.0-160000.1.1 * cargo1.95-debuginfo-1.95.0-160000.1.1 * cargo-1.95.0-160000.1.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (nosrc ppc64le x86_64) * rust1.95-1.95.0-160000.1.1 ## References: * https://jira.suse.com/browse/PED-11412 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 20:36:55 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 20:36:55 -0000 Subject: SUSE-RU-2026:21856-1: important: Recommended update for sssd Message-ID: <178034621528.1034.384812492968144003@cf67f1158b88> # Recommended update for sssd Announcement ID: SUSE-RU-2026:21856-1 Release Date: 2026-05-28T09:06:21Z Rating: important References: * bsc#1246196 * bsc#1264185 Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP applications 16.0 An update that has two fixes can now be installed. ## Description: This update for sssd fixes the following issues: * Reduce the message severity logged when the LDAP server hosts multiple naming contexts without defining a default one in the rootdse (bsc#1264185); * Do not ignore tests result at build time (bsc#1246196); * Skip tests depending on soft-hsm; ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server for SAP applications 16.0 zypper in -t patch SUSE-SLES-16.0-813=1 * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-813=1 ## Package List: * SUSE Linux Enterprise Server for SAP applications 16.0 (ppc64le x86_64) * python3-ipa_hbac-debuginfo-2.10.2-160000.2.1 * sssd-winbind-idmap-debuginfo-2.10.2-160000.2.1 * sssd-tools-debuginfo-2.10.2-160000.2.1 * python3-sssd-config-debuginfo-2.10.2-160000.2.1 * sssd-proxy-2.10.2-160000.2.1 * sssd-kcm-2.10.2-160000.2.1 * sssd-winbind-idmap-2.10.2-160000.2.1 * sssd-ldap-2.10.2-160000.2.1 * python3-sss-murmur-2.10.2-160000.2.1 * libipa_hbac0-debuginfo-2.10.2-160000.2.1 * libnfsidmap-sss-debuginfo-2.10.2-160000.2.1 * sssd-krb5-2.10.2-160000.2.1 * sssd-ad-debuginfo-2.10.2-160000.2.1 * sssd-debuginfo-2.10.2-160000.2.1 * sssd-tools-2.10.2-160000.2.1 * libsss_nss_idmap0-debuginfo-2.10.2-160000.2.1 * libsss_certmap0-2.10.2-160000.2.1 * libsss_nss_idmap-devel-2.10.2-160000.2.1 * libsss_idmap0-debuginfo-2.10.2-160000.2.1 * libsss_idmap-devel-2.10.2-160000.2.1 * sssd-dbus-debuginfo-2.10.2-160000.2.1 * sssd-kcm-debuginfo-2.10.2-160000.2.1 * sssd-dbus-2.10.2-160000.2.1 * libnfsidmap-sss-2.10.2-160000.2.1 * sssd-krb5-common-debuginfo-2.10.2-160000.2.1 * sssd-proxy-debuginfo-2.10.2-160000.2.1 * sssd-ipa-debuginfo-2.10.2-160000.2.1 * libipa_hbac0-2.10.2-160000.2.1 * libsss_nss_idmap0-2.10.2-160000.2.1 * sssd-krb5-debuginfo-2.10.2-160000.2.1 * libsss_certmap-devel-2.10.2-160000.2.1 * python3-sss_nss_idmap-2.10.2-160000.2.1 * libipa_hbac-devel-2.10.2-160000.2.1 * python3-sss-murmur-debuginfo-2.10.2-160000.2.1 * sssd-2.10.2-160000.2.1 * sssd-krb5-common-2.10.2-160000.2.1 * python3-sss_nss_idmap-debuginfo-2.10.2-160000.2.1 * sssd-ad-2.10.2-160000.2.1 * sssd-debugsource-2.10.2-160000.2.1 * libsss_idmap0-2.10.2-160000.2.1 * python3-ipa_hbac-2.10.2-160000.2.1 * python3-sssd-config-2.10.2-160000.2.1 * sssd-ipa-2.10.2-160000.2.1 * libsss_certmap0-debuginfo-2.10.2-160000.2.1 * sssd-ldap-debuginfo-2.10.2-160000.2.1 * SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le s390x x86_64) * python3-ipa_hbac-debuginfo-2.10.2-160000.2.1 * sssd-winbind-idmap-debuginfo-2.10.2-160000.2.1 * sssd-tools-debuginfo-2.10.2-160000.2.1 * python3-sssd-config-debuginfo-2.10.2-160000.2.1 * sssd-proxy-2.10.2-160000.2.1 * sssd-kcm-2.10.2-160000.2.1 * sssd-winbind-idmap-2.10.2-160000.2.1 * sssd-ldap-2.10.2-160000.2.1 * python3-sss-murmur-2.10.2-160000.2.1 * libipa_hbac0-debuginfo-2.10.2-160000.2.1 * libnfsidmap-sss-debuginfo-2.10.2-160000.2.1 * sssd-krb5-2.10.2-160000.2.1 * sssd-ad-debuginfo-2.10.2-160000.2.1 * sssd-debuginfo-2.10.2-160000.2.1 * sssd-tools-2.10.2-160000.2.1 * libsss_nss_idmap0-debuginfo-2.10.2-160000.2.1 * libsss_certmap0-2.10.2-160000.2.1 * libsss_nss_idmap-devel-2.10.2-160000.2.1 * libsss_idmap0-debuginfo-2.10.2-160000.2.1 * libsss_idmap-devel-2.10.2-160000.2.1 * sssd-dbus-debuginfo-2.10.2-160000.2.1 * sssd-kcm-debuginfo-2.10.2-160000.2.1 * sssd-dbus-2.10.2-160000.2.1 * libnfsidmap-sss-2.10.2-160000.2.1 * sssd-krb5-common-debuginfo-2.10.2-160000.2.1 * sssd-proxy-debuginfo-2.10.2-160000.2.1 * sssd-ipa-debuginfo-2.10.2-160000.2.1 * libipa_hbac0-2.10.2-160000.2.1 * libsss_nss_idmap0-2.10.2-160000.2.1 * sssd-krb5-debuginfo-2.10.2-160000.2.1 * libsss_certmap-devel-2.10.2-160000.2.1 * python3-sss_nss_idmap-2.10.2-160000.2.1 * libipa_hbac-devel-2.10.2-160000.2.1 * python3-sss-murmur-debuginfo-2.10.2-160000.2.1 * sssd-2.10.2-160000.2.1 * sssd-krb5-common-2.10.2-160000.2.1 * python3-sss_nss_idmap-debuginfo-2.10.2-160000.2.1 * sssd-ad-2.10.2-160000.2.1 * sssd-debugsource-2.10.2-160000.2.1 * libsss_idmap0-2.10.2-160000.2.1 * python3-ipa_hbac-2.10.2-160000.2.1 * python3-sssd-config-2.10.2-160000.2.1 * sssd-ipa-2.10.2-160000.2.1 * libsss_certmap0-debuginfo-2.10.2-160000.2.1 * sssd-ldap-debuginfo-2.10.2-160000.2.1 ## References: * https://bugzilla.suse.com/show_bug.cgi?id=1246196 * https://bugzilla.suse.com/show_bug.cgi?id=1264185 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 20:36:58 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 20:36:58 -0000 Subject: SUSE-RU-2026:21855-1: low: Recommended update for nvme-cli Message-ID: <178034621815.1034.2955286116300852851@cf67f1158b88> # Recommended update for nvme-cli Announcement ID: SUSE-RU-2026:21855-1 Release Date: 2026-05-27T16:46:38Z Rating: low References: * bsc#1250332 Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP applications 16.0 An update that has one fix can now be installed. ## Description: This update for nvme-cli fixes the following issues: Changes in nvme-cli: * Update to version 2.11+33.gf4fa5f36c (bsc#1250332) * nvme: add output-format-version option ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-811=1 * SUSE Linux Enterprise Server for SAP applications 16.0 zypper in -t patch SUSE-SLES-16.0-811=1 ## Package List: * SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le s390x x86_64) * nvme-cli-debugsource-2.11+33.gf4fa5f36c-160000.1.1 * nvme-cli-2.11+33.gf4fa5f36c-160000.1.1 * nvme-cli-debuginfo-2.11+33.gf4fa5f36c-160000.1.1 * SUSE Linux Enterprise Server 16.0 (noarch) * nvme-cli-zsh-completion-2.11+33.gf4fa5f36c-160000.1.1 * nvme-cli-bash-completion-2.11+33.gf4fa5f36c-160000.1.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (ppc64le x86_64) * nvme-cli-debugsource-2.11+33.gf4fa5f36c-160000.1.1 * nvme-cli-2.11+33.gf4fa5f36c-160000.1.1 * nvme-cli-debuginfo-2.11+33.gf4fa5f36c-160000.1.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (noarch) * nvme-cli-zsh-completion-2.11+33.gf4fa5f36c-160000.1.1 * nvme-cli-bash-completion-2.11+33.gf4fa5f36c-160000.1.1 ## References: * https://bugzilla.suse.com/show_bug.cgi?id=1250332 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 20:37:04 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 20:37:04 -0000 Subject: SUSE-SU-2026:21854-1: moderate: Security update for localsearch Message-ID: <178034622483.1034.878344055809023730@cf67f1158b88> # Security update for localsearch Announcement ID: SUSE-SU-2026:21854-1 Release Date: 2026-05-27T16:46:37Z Rating: moderate References: * bsc#1257606 * bsc#1257607 * bsc#1257608 * bsc#1257609 Cross-References: * CVE-2026-1764 * CVE-2026-1765 * CVE-2026-1766 * CVE-2026-1767 CVSS scores: * CVE-2026-1764 ( SUSE ): 5.2 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:A/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-1764 ( SUSE ): 5.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:H * CVE-2026-1765 ( SUSE ): 5.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:H * CVE-2026-1766 ( SUSE ): 5.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:H * CVE-2026-1767 ( SUSE ): 5.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:H Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP applications 16.0 An update that solves four vulnerabilities can now be installed. ## Description: This update for localsearch fixes the following issues: * CVE-2026-1764: Fixed a heap buffer overflow leads to denial of service or information disclosure when parsing MP3 files. (bsc#1257606) * CVE-2026-1765: Fixed a Denial of Service and potential information disclosure via crafted MP3 files. (bsc#1257607) * CVE-2026-1766: Fixed a Denial of Service and information disclosure via malformed MP3 files. (bsc#1257608) * CVE-2026-1767: Fixed a heap buffer overflow leading to denial of service or information disclosure via malformed MP3 ID3 tags. (bsc#1257609) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-809=1 * SUSE Linux Enterprise Server for SAP applications 16.0 zypper in -t patch SUSE-SLES-16.0-809=1 ## Package List: * SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le s390x x86_64) * localsearch-debuginfo-3.8.2-160000.3.1 * localsearch-3.8.2-160000.3.1 * localsearch-debugsource-3.8.2-160000.3.1 * SUSE Linux Enterprise Server 16.0 (noarch) * localsearch-lang-3.8.2-160000.3.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (ppc64le x86_64) * localsearch-debuginfo-3.8.2-160000.3.1 * localsearch-3.8.2-160000.3.1 * localsearch-debugsource-3.8.2-160000.3.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (noarch) * localsearch-lang-3.8.2-160000.3.1 ## References: * https://www.suse.com/security/cve/CVE-2026-1764.html * https://www.suse.com/security/cve/CVE-2026-1765.html * https://www.suse.com/security/cve/CVE-2026-1766.html * https://www.suse.com/security/cve/CVE-2026-1767.html * https://bugzilla.suse.com/show_bug.cgi?id=1257606 * https://bugzilla.suse.com/show_bug.cgi?id=1257607 * https://bugzilla.suse.com/show_bug.cgi?id=1257608 * https://bugzilla.suse.com/show_bug.cgi?id=1257609 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 20:37:07 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 20:37:07 -0000 Subject: SUSE-RU-2026:21853-1: moderate: Recommended update for dbus-broker Message-ID: <178034622791.1034.9910472653104247970@cf67f1158b88> # Recommended update for dbus-broker Announcement ID: SUSE-RU-2026:21853-1 Release Date: 2026-05-27T16:43:58Z Rating: moderate References: * bsc#1255678 Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP applications 16.0 An update that has one fix can now be installed. ## Description: This update for dbus-broker fixes the following issues: * Fix timeout on ssh due to not handling ESRCH (bsc#1255678) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-808=1 * SUSE Linux Enterprise Server for SAP applications 16.0 zypper in -t patch SUSE-SLES-16.0-808=1 ## Package List: * SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le s390x x86_64) * dbus-broker-36-160000.3.1 * dbus-broker-debuginfo-36-160000.3.1 * dbus-broker-debugsource-36-160000.3.1 * SUSE Linux Enterprise Server 16.0 (noarch) * dbus-broker-block-restart-36-160000.3.1 * dbus-broker-allow-restart-36-160000.3.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (ppc64le x86_64) * dbus-broker-36-160000.3.1 * dbus-broker-debuginfo-36-160000.3.1 * dbus-broker-debugsource-36-160000.3.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (noarch) * dbus-broker-block-restart-36-160000.3.1 * dbus-broker-allow-restart-36-160000.3.1 ## References: * https://bugzilla.suse.com/show_bug.cgi?id=1255678 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 20:37:12 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 20:37:12 -0000 Subject: SUSE-SU-2026:21852-1: important: Security update for alloy Message-ID: <178034623236.1034.1321051690382451989@cf67f1158b88> # Security update for alloy Announcement ID: SUSE-SU-2026:21852-1 Release Date: 2026-05-27T09:08:57Z Rating: important References: * bsc#1262955 * bsc#1263530 Cross-References: * CVE-2026-34986 * CVE-2026-41602 CVSS scores: * CVE-2026-34986 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-34986 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-34986 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-41602 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-41602 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-41602 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP applications 16.0 An update that solves two vulnerabilities can now be installed. ## Description: This update for alloy fixes the following issues * CVE-2026-34986: github.com/go-jose/go-jose/v4: crafted JWE input with a missing encrypted key can lead to a denial of service (bsc#1262955). * CVE-2026-41602: github.com/apache/thrift: TFramedTransport frame size headers can lead to a uint32 integer overflow (bsc#1263530). Changes for alloy: * Update to version 1.16.1 * Bug Fixes logging: Fix startup deadlock when components log before logging config is evaluated Update to Beyla 3.9.8 Migrate from Docker to Moby ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server for SAP applications 16.0 zypper in -t patch SUSE-SLES-16.0-807=1 * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-807=1 ## Package List: * SUSE Linux Enterprise Server for SAP applications 16.0 (ppc64le x86_64) * alloy-1.16.1-160000.1.1 * alloy-debuginfo-1.16.1-160000.1.1 * SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le s390x x86_64) * alloy-1.16.1-160000.1.1 * alloy-debuginfo-1.16.1-160000.1.1 ## References: * https://www.suse.com/security/cve/CVE-2026-34986.html * https://www.suse.com/security/cve/CVE-2026-41602.html * https://bugzilla.suse.com/show_bug.cgi?id=1262955 * https://bugzilla.suse.com/show_bug.cgi?id=1263530 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 20:37:17 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 20:37:17 -0000 Subject: SUSE-SU-2026:21851-1: important: Security update for docker-stable Message-ID: <178034623701.1034.11542551450531264344@cf67f1158b88> # Security update for docker-stable Announcement ID: SUSE-SU-2026:21851-1 Release Date: 2026-05-26T12:21:52Z Rating: important References: * bsc#1260967 * bsc#1261078 Cross-References: * CVE-2026-33747 * CVE-2026-33748 CVSS scores: * CVE-2026-33747 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-33747 ( SUSE ): 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-33747 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-33747 ( NVD ): 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-33748 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-33748 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2026-33748 ( NVD ): 8.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-33748 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP applications 16.0 An update that solves two vulnerabilities can now be installed. ## Description: This update for docker-stable fixes the following issues * CVE-2026-33747: github.com/moby/buildkit: malicious frontends can craft API messages that cause files to be written outside of the BuildKit state directory (bsc#1260967). * CVE-2026-33748: github.com/moby/buildkit: insufficient validation of Git URL fragment subdir components may allow access to files outside the checked-out Git repository (bsc#1261078). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-804=1 * SUSE Linux Enterprise Server for SAP applications 16.0 zypper in -t patch SUSE-SLES-16.0-804=1 ## Package List: * SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le s390x x86_64) * docker-stable-buildx-debuginfo-0.25.0-160000.5.1 * docker-stable-buildx-0.25.0-160000.5.1 * docker-stable-24.0.9_ce-160000.5.1 * docker-stable-debuginfo-24.0.9_ce-160000.5.1 * SUSE Linux Enterprise Server 16.0 (noarch) * docker-stable-bash-completion-24.0.9_ce-160000.5.1 * docker-stable-rootless-extras-24.0.9_ce-160000.5.1 * docker-stable-zsh-completion-24.0.9_ce-160000.5.1 * docker-stable-fish-completion-24.0.9_ce-160000.5.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (ppc64le x86_64) * docker-stable-buildx-debuginfo-0.25.0-160000.5.1 * docker-stable-buildx-0.25.0-160000.5.1 * docker-stable-24.0.9_ce-160000.5.1 * docker-stable-debuginfo-24.0.9_ce-160000.5.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (noarch) * docker-stable-bash-completion-24.0.9_ce-160000.5.1 * docker-stable-rootless-extras-24.0.9_ce-160000.5.1 * docker-stable-zsh-completion-24.0.9_ce-160000.5.1 * docker-stable-fish-completion-24.0.9_ce-160000.5.1 ## References: * https://www.suse.com/security/cve/CVE-2026-33747.html * https://www.suse.com/security/cve/CVE-2026-33748.html * https://bugzilla.suse.com/show_bug.cgi?id=1260967 * https://bugzilla.suse.com/show_bug.cgi?id=1261078 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 20:37:29 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 20:37:29 -0000 Subject: SUSE-SU-2026:21850-1: important: Security update for cups Message-ID: <178034624958.1034.3448858497392736366@cf67f1158b88> # Security update for cups Announcement ID: SUSE-SU-2026:21850-1 Release Date: 2026-05-26T12:19:57Z Rating: important References: * bsc#1261568 * bsc#1261569 * bsc#1261570 * bsc#1261571 * bsc#1261572 * bsc#1261742 * bsc#1261743 * bsc#1263116 Cross-References: * CVE-2026-27447 * CVE-2026-34978 * CVE-2026-34979 * CVE-2026-34980 * CVE-2026-34990 * CVE-2026-39314 * CVE-2026-39316 * CVE-2026-41079 CVSS scores: * CVE-2026-27447 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:L/A:N * CVE-2026-27447 ( NVD ): 6.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:N * CVE-2026-27447 ( NVD ): 4.8 CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:L/A:N * CVE-2026-34978 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L * CVE-2026-34978 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L * CVE-2026-34979 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-34979 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-34980 ( SUSE ): 6.4 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:L * CVE-2026-34980 ( NVD ): 6.1 CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:H/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-34980 ( NVD ): 7.5 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-34990 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-34990 ( NVD ): 5.0 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:L/VA:N/SC:H/SI:H/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-34990 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-39314 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-39314 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-39314 ( NVD ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-39314 ( NVD ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-39316 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-39316 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-39316 ( NVD ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-39316 ( NVD ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-41079 ( SUSE ): 5.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-41079 ( SUSE ): 3.5 CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-41079 ( NVD ): 4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-41079 ( NVD ): 5.4 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP applications 16.0 An update that solves eight vulnerabilities can now be installed. ## Description: This update for cups fixes the following issues * CVE-2026-27447: Authorization bypass via case-insensitive group-member lookup (bsc#1261572). * CVE-2026-34978: Path traversal in RSS notify-recipient-uri enables file write outside CacheDir/rss (bsc#1261571). * CVE-2026-34979: Heap overflow in `get_options()` (bsc#1261570). * CVE-2026-34980: Shared PostScript queue lets anonymous Print-Job requests reach `lp` code execution over the network (bsc#1261569). * CVE-2026-34990: Local print admin token disclosure using temporary printers (bsc#1261568). * CVE-2026-39314: negative `job-password-supported` attribute can lead to a denial of service (bsc#1261743). * CVE-2026-39316: dangling subscription pointer can lead to a denial of service (bsc#1261742). * CVE-2026-41079: crafted SNMP response can lead to stack-based out-of-bounds read and sensitive memory disclosure (bsc#1263116). Changes for cups: * Version upgrade to 2.4.19. * Version upgrade to 2.4.18. * Version upgrade to 2.4.17: * The scheduler followed symbolic links when cleaning out its temporary directory (Issue #1448) * Updated `cupsFileGetConf` and `cupsFilePutConf` to escape more characters. * Updated man page `cancel` (Issue #984) * Updated `cupsRasterReadHeader` to validate more of the page header values (Issue #1501) * Fixed an issue with the class/printer CGI name checking. * Fixed infinite loop in `http_write()` on busy print servers (Issue #827) * Fixed potential TLS blocking issues (Issue #1128) * Fixed a job history bug in the scheduler (Issue #1440) * Fixed notifier logging bug that would result in nul bytes getting into the log (Issue #1450) * Fixed possible use-after-free in `cupsdReadClient()` (Issue #1454) * Fixed a document format bug in the IPP backend (Issue #1457) * Fixed DRAIN_OUTPUT race condition (Issue #1461) * Fixed a bug when then `ippFindXxx` and `ippSetXxx` functions were mixed. * Fixed the mapping of supply type keywords to SNMP names. * Fixed a bug in the IPP backend when SNMP was disabled. * Fixed a crash bug in the rastertoepson filter. * Fixed a bug in cgiCheckVariables. * Fixed handling read/write errors with OpenSSL (Issue #1506) * Fixed handling rehandshake error in `_httpTLSRead` (Issue #1508) * Fixed a debug printf bug on Windows (Issue #1529) * Fixed a recursion issue with encoding of nested collections (Issue #1539) * Fixed parsing of the `LimitRequestBody`, `MaxLogSize`, and `MaxRequestSize` directives in "cupsd.conf" (Issue #1540) * Fixed a parsing bug in `ipptool` (Issue #1542) * Fixed blank line detection in the `rastertolabel` filter (Issue #1545) * Fixed `httpPeek` edge case on compressed streams ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-802=1 * SUSE Linux Enterprise Server for SAP applications 16.0 zypper in -t patch SUSE-SLES-16.0-802=1 ## Package List: * SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le s390x x86_64) * libcups2-debuginfo-2.4.19-160000.1.1 * cups-client-debuginfo-2.4.19-160000.1.1 * libcupsimage2-2.4.19-160000.1.1 * libcups2-2.4.19-160000.1.1 * cups-ddk-2.4.19-160000.1.1 * libcupsimage2-debuginfo-2.4.19-160000.1.1 * cups-2.4.19-160000.1.1 * cups-debuginfo-2.4.19-160000.1.1 * cups-devel-2.4.19-160000.1.1 * cups-client-2.4.19-160000.1.1 * cups-config-2.4.19-160000.1.1 * cups-debugsource-2.4.19-160000.1.1 * cups-ddk-debuginfo-2.4.19-160000.1.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (ppc64le x86_64) * libcups2-debuginfo-2.4.19-160000.1.1 * cups-client-debuginfo-2.4.19-160000.1.1 * libcupsimage2-2.4.19-160000.1.1 * libcups2-2.4.19-160000.1.1 * cups-ddk-2.4.19-160000.1.1 * libcupsimage2-debuginfo-2.4.19-160000.1.1 * cups-2.4.19-160000.1.1 * cups-debuginfo-2.4.19-160000.1.1 * cups-devel-2.4.19-160000.1.1 * cups-client-2.4.19-160000.1.1 * cups-config-2.4.19-160000.1.1 * cups-debugsource-2.4.19-160000.1.1 * cups-ddk-debuginfo-2.4.19-160000.1.1 ## References: * https://www.suse.com/security/cve/CVE-2026-27447.html * https://www.suse.com/security/cve/CVE-2026-34978.html * https://www.suse.com/security/cve/CVE-2026-34979.html * https://www.suse.com/security/cve/CVE-2026-34980.html * https://www.suse.com/security/cve/CVE-2026-34990.html * https://www.suse.com/security/cve/CVE-2026-39314.html * https://www.suse.com/security/cve/CVE-2026-39316.html * https://www.suse.com/security/cve/CVE-2026-41079.html * https://bugzilla.suse.com/show_bug.cgi?id=1261568 * https://bugzilla.suse.com/show_bug.cgi?id=1261569 * https://bugzilla.suse.com/show_bug.cgi?id=1261570 * https://bugzilla.suse.com/show_bug.cgi?id=1261571 * https://bugzilla.suse.com/show_bug.cgi?id=1261572 * https://bugzilla.suse.com/show_bug.cgi?id=1261742 * https://bugzilla.suse.com/show_bug.cgi?id=1261743 * https://bugzilla.suse.com/show_bug.cgi?id=1263116 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 20:37:34 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 20:37:34 -0000 Subject: SUSE-SU-2026:21849-1: important: Security update for google-osconfig-agent Message-ID: <178034625441.1034.3655475588569923155@cf67f1158b88> # Security update for google-osconfig-agent Announcement ID: SUSE-SU-2026:21849-1 Release Date: 2026-05-26T12:17:10Z Rating: important References: * bsc#1236533 * bsc#1260264 Cross-References: * CVE-2023-45288 * CVE-2026-33186 CVSS scores: * CVE-2023-45288 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2023-45288 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2023-45288 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-33186 ( SUSE ): 8.6 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-33186 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-33186 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP applications 16.0 An update that solves two vulnerabilities can now be installed. ## Description: This update for google-osconfig-agent fixes the following issues * CVE-2023-45288: golang.org/x/net/http2: close connections when receiving too many headers (bsc#1236533). * CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2: path pseudo- header (bsc#1260264). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-805=1 * SUSE Linux Enterprise Server for SAP applications 16.0 zypper in -t patch SUSE-SLES-16.0-805=1 ## Package List: * SUSE Linux Enterprise Server 16.0 (aarch64 x86_64) * google-osconfig-agent-20250416.02-160000.3.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (x86_64) * google-osconfig-agent-20250416.02-160000.3.1 ## References: * https://www.suse.com/security/cve/CVE-2023-45288.html * https://www.suse.com/security/cve/CVE-2026-33186.html * https://bugzilla.suse.com/show_bug.cgi?id=1236533 * https://bugzilla.suse.com/show_bug.cgi?id=1260264 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 20:37:38 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 20:37:38 -0000 Subject: SUSE-SU-2026:21848-1: important: Security update for xz Message-ID: <178034625818.1034.13459947772773113249@cf67f1158b88> # Security update for xz Announcement ID: SUSE-SU-2026:21848-1 Release Date: 2026-05-26T12:14:16Z Rating: important References: * bsc#1261280 Cross-References: * CVE-2026-34743 CVSS scores: * CVE-2026-34743 ( SUSE ): 7.5 CVSS:4.0/AV:L/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-34743 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-34743 ( NVD ): 1.7 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-34743 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP applications 16.0 An update that solves one vulnerability can now be installed. ## Description: This update for xz fixes the following issue * CVE-2026-34743: buffer overflow in lzma_index_append() (bsc#1261280). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server for SAP applications 16.0 zypper in -t patch SUSE-SLES-16.0-803=1 * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-803=1 ## Package List: * SUSE Linux Enterprise Server for SAP applications 16.0 (ppc64le x86_64) * xz-5.8.1-160000.3.1 * liblzma5-debuginfo-5.8.1-160000.3.1 * xz-devel-5.8.1-160000.3.1 * xz-debugsource-5.8.1-160000.3.1 * xz-debuginfo-5.8.1-160000.3.1 * liblzma5-5.8.1-160000.3.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (x86_64) * liblzma5-x86-64-v3-debuginfo-5.8.1-160000.3.1 * liblzma5-x86-64-v3-5.8.1-160000.3.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (noarch) * xz-lang-5.8.1-160000.3.1 * SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le s390x x86_64) * xz-5.8.1-160000.3.1 * liblzma5-debuginfo-5.8.1-160000.3.1 * xz-devel-5.8.1-160000.3.1 * xz-debugsource-5.8.1-160000.3.1 * xz-debuginfo-5.8.1-160000.3.1 * liblzma5-5.8.1-160000.3.1 * SUSE Linux Enterprise Server 16.0 (noarch) * xz-lang-5.8.1-160000.3.1 * SUSE Linux Enterprise Server 16.0 (x86_64) * liblzma5-x86-64-v3-debuginfo-5.8.1-160000.3.1 * liblzma5-x86-64-v3-5.8.1-160000.3.1 ## References: * https://www.suse.com/security/cve/CVE-2026-34743.html * https://bugzilla.suse.com/show_bug.cgi?id=1261280 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 20:37:41 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 20:37:41 -0000 Subject: SUSE-SU-2026:21847-1: important: Security update for bubblewrap Message-ID: <178034626133.1034.8005249852944100814@cf67f1158b88> # Security update for bubblewrap Announcement ID: SUSE-SU-2026:21847-1 Release Date: 2026-05-26T09:51:49Z Rating: important References: * bsc#1263113 Cross-References: * CVE-2026-41163 CVSS scores: * CVE-2026-41163 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-41163 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-41163 ( NVD ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP applications 16.0 An update that solves one vulnerability can now be installed. ## Description: This update for bubblewrap fixes the following issue * CVE-2026-41163: improper process attachment via ptrace can lead to arbitrary privileged operations and local root escalation (bsc#1263113). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-801=1 * SUSE Linux Enterprise Server for SAP applications 16.0 zypper in -t patch SUSE-SLES-16.0-801=1 ## Package List: * SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le s390x x86_64) * bubblewrap-0.11.0-160000.3.1 * bubblewrap-debuginfo-0.11.0-160000.3.1 * bubblewrap-debugsource-0.11.0-160000.3.1 * bubblewrap-zsh-completion-0.11.0-160000.3.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (ppc64le x86_64) * bubblewrap-0.11.0-160000.3.1 * bubblewrap-debuginfo-0.11.0-160000.3.1 * bubblewrap-debugsource-0.11.0-160000.3.1 * bubblewrap-zsh-completion-0.11.0-160000.3.1 ## References: * https://www.suse.com/security/cve/CVE-2026-41163.html * https://bugzilla.suse.com/show_bug.cgi?id=1263113 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 20:37:42 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 20:37:42 -0000 Subject: SUSE-SU-2026:21846-1: important: Security update for apache2 Message-ID: <178034626288.1034.18257622735025603705@cf67f1158b88> # Security update for apache2 Announcement ID: SUSE-SU-2026:21846-1 Release Date: 2026-05-26T09:51:49Z Rating: important References: * jsc#PED-16181 Cross-References: * CVE-2024-42516 * CVE-2024-43204 * CVE-2024-47252 * CVE-2025-23048 * CVE-2025-49630 * CVE-2025-49812 * CVE-2025-53020 * CVE-2025-55753 * CVE-2025-58098 * CVE-2025-59775 * CVE-2025-65082 * CVE-2025-66200 CVSS scores: * CVE-2024-42516 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2024-42516 ( SUSE ): 4.0 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N * CVE-2024-42516 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2024-43204 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2024-43204 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2024-43204 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2024-47252 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2024-47252 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2024-47252 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2025-23048 ( SUSE ): 7.7 CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-23048 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-23048 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2025-49630 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-49630 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-49630 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-49812 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:H/VA:L/SC:N/SI:N/SA:N * CVE-2025-49812 ( SUSE ): 7.0 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:L * CVE-2025-49812 ( NVD ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2025-53020 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-53020 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-53020 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-55753 ( SUSE ): 6.0 CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-55753 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-55753 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2025-58098 ( SUSE ): 6.0 CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2025-58098 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2025-58098 ( NVD ): 8.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L * CVE-2025-59775 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2025-65082 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2025-65082 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2025-65082 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2025-66200 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2025-66200 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2025-66200 ( NVD ): 5.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP applications 16.0 An update that solves 12 vulnerabilities and contains one feature can now be installed. ## Description: This update for apache2 fixes the following issues: Changes in apache2: Version update to 2.4.66 (jsc#PED-16181) _) SECURITY: CVE-2025-66200: Apache HTTP Server: mod_userdir+suexec bypass via AllowOverride FileInfo. mod_userdir+suexec bypass via AllowOverride FileInfo vulnerability in Apache HTTP Server. Users with access to use the RequestHeader directive in htaccess can cause some CGI scripts to run under an unexpected userid. This issue affects Apache HTTP Server: from 2.4.7 through 2.4.65._) SECURITY: CVE-2025-65082: Apache HTTP Server: CGI environment variable override. Improper Neutralization of Escape, Meta, or Control Sequences vulnerability in Apache HTTP Server through environment variables set via the Apache configuration unexpectedly superseding variables calculated by the server for CGI programs. This issue affects Apache HTTP Server from 2.4.0 through 2.4.65. _) SECURITY: CVE-2025-59775: Apache HTTP Server: NTLM Leakage on Windows through UNC SSRF. Server-Side Request Forgery (SSRF) vulnerability in Apache HTTP Server on Windows with AllowEncodedSlashes On and MergeSlashes Off allows to potentially leak NTLM hashes to a malicious server via SSRF and malicious requests or content_) SECURITY: CVE-2025-58098: Apache HTTP Server: Server Side Includes adds query string to #exec cmd=... Apache HTTP Server 2.4.65 and earlier with Server Side Includes (SSI) enabled and mod_cgid (but not mod_cgi) passes the shell-escaped query string to #exec cmd="..." directives. This issue affects Apache HTTP Server before 2.4.66. _) SECURITY: CVE-2025-55753: Apache HTTP Server: mod_md (ACME), unintended retry intervals An integer overflow in the case of failed ACME certificate renewal leads, after a number of failures (~30 days in default configurations), to the backoff timer becoming 0. Attempts to renew the certificate then are repeated without delays until it succeeds. This issue affects Apache HTTP Server: from 2.4.30 before 2.4.66._) mod_http2: Fix handling of 304 responses from mod_cache. _) mod_http2/mod_proxy_http2: fix a bug in calculating the log2 value of integers, used in push diaries and proxy window size calculations._) mod_md: update to version 2.6.5 \- New directive `MDInitialDelay`, controlling how longer to wait after a server restart before checking certificates for renewal. [Michael Kaufmann] \- Hardening: when build with OpenSSL older than 1.0.2 or old libressl versions, the parsing of ASN.1 time strings did not do a length check. \- Hardening: when reading back OCSP responses stored in the local JSON store, missing 'valid' key led to uninitialized values, resulting in wrong refresh behaviour. _) mod_md: update to version 2.6.6 \- Fix a small memory leak when using OpenSSL 's BIGNUMs. \- Fix reuse of curl easy handles by resetting them. _) mod_http2: update to version 2.0.35 New directive `H2MaxStreamErrors` to control how much bad behaviour by clients is tolerated before the connection is closed. _) mod_proxy_http2: add support for ProxyErrorOverride directive._) mpm_common: Add new ListenTCPDeferAccept directive that allows to specify the value set for the TCP_DEFER_ACCEPT socket option on listen sockets. _) mod_ssl: Add SSLVHostSNIPolicy directive to control the virtual host compatibility policy._) mod_md: update to version 2.6.2 \- Fix error retry delay calculation to not already doubling the wait on the first error. *) mod_md: update to version 2.6.1 \- Increasing default `MDRetryDelay` to 30 seconds to generate less bursty traffic on errored renewals for the ACME CA. This leads to error retries of 30s, 1 minute, 2, 4, etc. up to daily attempts. \- Checking that configuring `MDRetryDelay` will result in a positive duration. A delay of 0 is not accepted. \- Fix a bug in checking Content-Type of responses from the ACME server. \- Added ACME ARI support (rfc9773) to the module. Enabled by default. New directive "MDRenewViaARI on|off" for controlling this. \- Removing tailscale support. It has not been working for a long time as the company decided to change their APIs. Away with the dead code, documentation and tests. \- Fixed a compilation issue with pre-industrial versions of libcurl. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-800=1 * SUSE Linux Enterprise Server for SAP applications 16.0 zypper in -t patch SUSE-SLES-16.0-800=1 ## Package List: * SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le s390x x86_64) * apache2-utils-2.4.66-160000.1.1 * apache2-debugsource-2.4.66-160000.1.1 * apache2-debuginfo-2.4.66-160000.1.1 * apache2-utils-debugsource-2.4.66-160000.1.1 * apache2-worker-debuginfo-2.4.66-160000.1.1 * apache2-2.4.66-160000.1.1 * apache2-event-2.4.66-160000.1.1 * apache2-prefork-2.4.66-160000.1.1 * apache2-event-debuginfo-2.4.66-160000.1.1 * apache2-worker-debugsource-2.4.66-160000.1.1 * apache2-devel-2.4.66-160000.1.1 * apache2-prefork-debugsource-2.4.66-160000.1.1 * apache2-prefork-debuginfo-2.4.66-160000.1.1 * apache2-utils-debuginfo-2.4.66-160000.1.1 * apache2-event-debugsource-2.4.66-160000.1.1 * apache2-worker-2.4.66-160000.1.1 * SUSE Linux Enterprise Server 16.0 (noarch) * apache2-manual-2.4.66-160000.1.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (ppc64le x86_64) * apache2-utils-2.4.66-160000.1.1 * apache2-debugsource-2.4.66-160000.1.1 * apache2-debuginfo-2.4.66-160000.1.1 * apache2-utils-debugsource-2.4.66-160000.1.1 * apache2-worker-debuginfo-2.4.66-160000.1.1 * apache2-2.4.66-160000.1.1 * apache2-event-2.4.66-160000.1.1 * apache2-prefork-2.4.66-160000.1.1 * apache2-event-debuginfo-2.4.66-160000.1.1 * apache2-worker-debugsource-2.4.66-160000.1.1 * apache2-devel-2.4.66-160000.1.1 * apache2-prefork-debugsource-2.4.66-160000.1.1 * apache2-prefork-debuginfo-2.4.66-160000.1.1 * apache2-utils-debuginfo-2.4.66-160000.1.1 * apache2-event-debugsource-2.4.66-160000.1.1 * apache2-worker-2.4.66-160000.1.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (noarch) * apache2-manual-2.4.66-160000.1.1 ## References: * https://www.suse.com/security/cve/CVE-2024-42516.html * https://www.suse.com/security/cve/CVE-2024-43204.html * https://www.suse.com/security/cve/CVE-2024-47252.html * https://www.suse.com/security/cve/CVE-2025-23048.html * https://www.suse.com/security/cve/CVE-2025-49630.html * https://www.suse.com/security/cve/CVE-2025-49812.html * https://www.suse.com/security/cve/CVE-2025-53020.html * https://www.suse.com/security/cve/CVE-2025-55753.html * https://www.suse.com/security/cve/CVE-2025-58098.html * https://www.suse.com/security/cve/CVE-2025-59775.html * https://www.suse.com/security/cve/CVE-2025-65082.html * https://www.suse.com/security/cve/CVE-2025-66200.html * https://jira.suse.com/browse/PED-16181 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 20:43:35 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 20:43:35 -0000 Subject: SUSE-SU-2026:21845-1: important: Security update for the Linux Kernel Message-ID: <178034661517.1034.12657764537521880726@cf67f1158b88> # Security update for the Linux Kernel Announcement ID: SUSE-SU-2026:21845-1 Release Date: 2026-05-28T11:49:10Z Rating: important References: * bsc#1215199 * bsc#1234634 * bsc#1241259 * bsc#1243603 * bsc#1248754 * bsc#1249104 * bsc#1250951 * bsc#1253471 * bsc#1254518 * bsc#1255160 * bsc#1255360 * bsc#1255459 * bsc#1255752 * bsc#1256288 * bsc#1256865 * bsc#1256867 * bsc#1258518 * bsc#1258718 * bsc#1258826 * bsc#1258849 * bsc#1258850 * bsc#1258854 * bsc#1258855 * bsc#1258856 * bsc#1258857 * bsc#1258933 * bsc#1258961 * bsc#1259186 * bsc#1259199 * bsc#1259222 * bsc#1259420 * bsc#1259461 * bsc#1259535 * bsc#1259672 * bsc#1259799 * bsc#1259806 * bsc#1259857 * bsc#1259865 * bsc#1259868 * bsc#1259869 * bsc#1259871 * bsc#1259873 * bsc#1259878 * bsc#1259889 * bsc#1259994 * bsc#1260010 * bsc#1260012 * bsc#1260018 * bsc#1260428 * bsc#1260468 * bsc#1260483 * bsc#1260484 * bsc#1260485 * bsc#1260489 * bsc#1260504 * bsc#1260505 * bsc#1260507 * bsc#1260514 * bsc#1260523 * bsc#1260526 * bsc#1260528 * bsc#1260529 * bsc#1260530 * bsc#1260531 * bsc#1260532 * bsc#1260533 * bsc#1260536 * bsc#1260537 * bsc#1260538 * bsc#1260541 * bsc#1260546 * bsc#1260549 * bsc#1260551 * bsc#1260552 * bsc#1260555 * bsc#1260561 * bsc#1260562 * bsc#1260566 * bsc#1260571 * bsc#1260572 * bsc#1260573 * bsc#1260576 * bsc#1260580 * bsc#1260581 * bsc#1260593 * bsc#1260613 * bsc#1260728 * bsc#1260729 * bsc#1260731 * bsc#1260798 * bsc#1260800 * bsc#1260801 * bsc#1260807 * bsc#1260811 * bsc#1260996 * bsc#1261020 * bsc#1261149 * bsc#1261287 * bsc#1261288 * bsc#1261295 * bsc#1261348 * bsc#1261410 * bsc#1261503 * bsc#1261504 * bsc#1261505 * bsc#1261550 * bsc#1261555 * bsc#1261581 * bsc#1261582 * bsc#1261584 * bsc#1261585 * bsc#1261592 * bsc#1261601 * bsc#1261602 * bsc#1261617 * bsc#1261618 * bsc#1261629 * bsc#1261632 * bsc#1261635 * bsc#1261636 * bsc#1261637 * bsc#1261638 * bsc#1261641 * bsc#1261644 * bsc#1261645 * bsc#1261648 * bsc#1261679 * bsc#1261685 * bsc#1261686 * bsc#1261687 * bsc#1261692 * bsc#1261694 * bsc#1261700 * bsc#1261702 * bsc#1261703 * bsc#1261707 * bsc#1261710 * bsc#1261713 * bsc#1261714 * bsc#1261719 * bsc#1261738 * bsc#1261750 * bsc#1261751 * bsc#1261752 * bsc#1261768 * bsc#1261778 * bsc#1261779 * bsc#1261780 * bsc#1261781 * bsc#1261786 * bsc#1261788 * bsc#1261789 * bsc#1261796 * bsc#1261797 * bsc#1261896 * bsc#1262019 * bsc#1262053 * bsc#1262054 * bsc#1262055 * bsc#1262061 * bsc#1262063 * bsc#1262074 * bsc#1262078 * bsc#1262086 * bsc#1262087 * bsc#1262099 * bsc#1262100 * bsc#1262101 * bsc#1262179 * bsc#1262181 * bsc#1262245 * bsc#1262250 * bsc#1262480 * bsc#1262601 * bsc#1262616 * bsc#1262617 * bsc#1262627 * bsc#1262662 * bsc#1262665 * bsc#1262671 * bsc#1262673 * bsc#1262709 * bsc#1262725 * bsc#1262731 * bsc#1262750 * bsc#1262752 * bsc#1262758 * bsc#1263001 * bsc#1263012 * bsc#1263018 * bsc#1263044 * bsc#1263048 * bsc#1263052 * bsc#1263064 * bsc#1263074 * bsc#1263077 * bsc#1263085 * bsc#1263093 * bsc#1263095 * bsc#1263104 * bsc#1263107 * bsc#1263131 * bsc#1263135 * bsc#1263138 * bsc#1263140 * bsc#1263141 * bsc#1263165 * bsc#1263176 * bsc#1263255 * bsc#1263556 * bsc#1263562 * bsc#1263582 * bsc#1263592 * bsc#1263593 * bsc#1263595 * bsc#1263596 * bsc#1263604 * bsc#1263668 * bsc#1263815 * bsc#1263882 * bsc#1263901 * bsc#1263931 * bsc#1263933 * bsc#1263942 * bsc#1263995 * bsc#1264014 * bsc#1264059 * bsc#1264082 * bsc#1264097 * bsc#1264183 * bsc#1264233 * bsc#1264427 * bsc#1264469 * bsc#1264586 * bsc#1264674 * bsc#1264837 * bsc#1264848 * bsc#1265085 * bsc#1265116 * bsc#1265119 * bsc#1265144 * bsc#1265308 * bsc#1265421 * bsc#1265449 * bsc#1265456 * bsc#1265626 * bsc#1265846 * bsc#1265960 * jsc#PED-13771 * jsc#PED-14156 * jsc#PED-14238 * jsc#PED-16113 * jsc#PED-7912 Cross-References: * CVE-2023-2058 * CVE-2024-14027 * CVE-2025-40181 * CVE-2025-40219 * CVE-2025-68265 * CVE-2025-68310 * CVE-2025-71238 * CVE-2025-71268 * CVE-2025-71269 * CVE-2025-71302 * CVE-2026-23168 * CVE-2026-23209 * CVE-2026-23236 * CVE-2026-23237 * CVE-2026-23245 * CVE-2026-23246 * CVE-2026-23253 * CVE-2026-23260 * CVE-2026-23261 * CVE-2026-23264 * CVE-2026-23266 * CVE-2026-23268 * CVE-2026-23269 * CVE-2026-23271 * CVE-2026-23273 * CVE-2026-23276 * CVE-2026-23279 * CVE-2026-23290 * CVE-2026-23291 * CVE-2026-23298 * CVE-2026-23300 * CVE-2026-23307 * CVE-2026-23312 * CVE-2026-23313 * CVE-2026-23315 * CVE-2026-23316 * CVE-2026-23317 * CVE-2026-23318 * CVE-2026-23321 * CVE-2026-23324 * CVE-2026-23325 * CVE-2026-23334 * CVE-2026-23336 * CVE-2026-23339 * CVE-2026-23340 * CVE-2026-23346 * CVE-2026-23347 * CVE-2026-23351 * CVE-2026-23354 * CVE-2026-23357 * CVE-2026-23360 * CVE-2026-23362 * CVE-2026-23363 * CVE-2026-23365 * CVE-2026-23367 * CVE-2026-23368 * CVE-2026-23369 * CVE-2026-23370 * CVE-2026-23372 * CVE-2026-23373 * CVE-2026-23374 * CVE-2026-23375 * CVE-2026-23378 * CVE-2026-23382 * CVE-2026-23387 * CVE-2026-23391 * CVE-2026-23392 * CVE-2026-23395 * CVE-2026-23396 * CVE-2026-23397 * CVE-2026-23399 * CVE-2026-23401 * CVE-2026-23403 * CVE-2026-23404 * CVE-2026-23405 * CVE-2026-23406 * CVE-2026-23407 * CVE-2026-23408 * CVE-2026-23409 * CVE-2026-23410 * CVE-2026-23411 * CVE-2026-23417 * CVE-2026-23418 * CVE-2026-23420 * CVE-2026-23426 * CVE-2026-23434 * CVE-2026-23436 * CVE-2026-23437 * CVE-2026-23440 * CVE-2026-23441 * CVE-2026-23442 * CVE-2026-23443 * CVE-2026-23445 * CVE-2026-23446 * CVE-2026-23447 * CVE-2026-23448 * CVE-2026-23449 * CVE-2026-23450 * CVE-2026-23452 * CVE-2026-23454 * CVE-2026-23455 * CVE-2026-23456 * CVE-2026-23457 * CVE-2026-23458 * CVE-2026-23460 * CVE-2026-23461 * CVE-2026-23462 * CVE-2026-23463 * CVE-2026-23464 * CVE-2026-23465 * CVE-2026-23466 * CVE-2026-23468 * CVE-2026-23470 * CVE-2026-23472 * CVE-2026-23473 * CVE-2026-23474 * CVE-2026-23475 * CVE-2026-31389 * CVE-2026-31392 * CVE-2026-31393 * CVE-2026-31394 * CVE-2026-31395 * CVE-2026-31400 * CVE-2026-31402 * CVE-2026-31403 * CVE-2026-31405 * CVE-2026-31406 * CVE-2026-31407 * CVE-2026-31408 * CVE-2026-31411 * CVE-2026-31412 * CVE-2026-31415 * CVE-2026-31416 * CVE-2026-31417 * CVE-2026-31420 * CVE-2026-31421 * CVE-2026-31422 * CVE-2026-31423 * CVE-2026-31424 * CVE-2026-31425 * CVE-2026-31426 * CVE-2026-31427 * CVE-2026-31428 * CVE-2026-31435 * CVE-2026-31449 * CVE-2026-31453 * CVE-2026-31456 * CVE-2026-31470 * CVE-2026-31494 * CVE-2026-31496 * CVE-2026-31503 * CVE-2026-31504 * CVE-2026-31505 * CVE-2026-31507 * CVE-2026-31515 * CVE-2026-31519 * CVE-2026-31525 * CVE-2026-31526 * CVE-2026-31528 * CVE-2026-31533 * CVE-2026-31547 * CVE-2026-31550 * CVE-2026-31554 * CVE-2026-31565 * CVE-2026-31579 * CVE-2026-31586 * CVE-2026-31588 * CVE-2026-31644 * CVE-2026-31649 * CVE-2026-31658 * CVE-2026-31662 * CVE-2026-31666 * CVE-2026-31668 * CVE-2026-31669 * CVE-2026-31675 * CVE-2026-31678 * CVE-2026-31679 * CVE-2026-31681 * CVE-2026-31682 * CVE-2026-31684 * CVE-2026-31685 * CVE-2026-31691 * CVE-2026-31694 * CVE-2026-31700 * CVE-2026-31738 * CVE-2026-31787 * CVE-2026-43009 * CVE-2026-43025 * CVE-2026-43027 * CVE-2026-43037 * CVE-2026-43038 * CVE-2026-43045 * CVE-2026-43050 * CVE-2026-43060 * CVE-2026-43082 * CVE-2026-43088 * CVE-2026-43153 * CVE-2026-43190 * CVE-2026-43265 * CVE-2026-43329 * CVE-2026-43365 * CVE-2026-43366 * CVE-2026-43441 * CVE-2026-43494 * CVE-2026-43503 * CVE-2026-46333 CVSS scores: * CVE-2023-2058 ( NVD ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N * CVE-2023-2058 ( NVD ): 2.4 CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N * CVE-2024-14027 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-14027 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-40181 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-40181 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-40219 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2025-40219 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2025-68265 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2025-68265 ( SUSE ): 5.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2025-68310 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2025-68310 ( SUSE ): 5.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2025-71238 ( SUSE ): 5.9 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-71238 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H * CVE-2025-71238 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-71268 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-71268 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-71268 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-71269 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-71269 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-71269 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-71302 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-71302 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-71302 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23168 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23168 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23168 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23209 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23209 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23236 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23236 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23236 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23236 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H * CVE-2026-23237 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23237 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23237 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23245 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23245 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23245 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23246 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23246 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23253 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23253 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23260 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-23260 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-23260 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23261 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-23261 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-23264 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23264 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23264 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23266 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23266 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23266 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23268 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23268 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23268 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23269 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23269 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23269 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23271 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23271 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23271 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23273 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23273 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23273 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23276 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23276 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23279 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23279 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23279 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23290 ( SUSE ): 5.1 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23290 ( SUSE ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23290 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23291 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23291 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23298 ( SUSE ): 5.1 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23298 ( SUSE ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23298 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23300 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23300 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23300 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23307 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23307 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23312 ( SUSE ): 5.1 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23312 ( SUSE ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23312 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23313 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23313 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23315 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23315 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23316 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23316 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23318 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23318 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23321 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-23321 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-23321 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23324 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23324 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23324 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23325 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23325 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23334 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23334 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23336 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23336 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23339 ( SUSE ): 2.3 CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-23339 ( SUSE ): 3.1 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-23339 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23340 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23340 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23340 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23346 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23346 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23346 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23347 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23347 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23351 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23351 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23354 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-23354 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2026-23354 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23357 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23357 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23357 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23360 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23360 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23360 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23362 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23362 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23363 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23363 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23365 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23365 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23365 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23367 ( SUSE ): 5.3 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-23367 ( SUSE ): 6.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2026-23367 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23368 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23368 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23368 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23369 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23369 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23369 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23370 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23370 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23372 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23372 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23373 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23373 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23374 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23374 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23374 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23375 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23375 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23378 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23378 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-23378 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23378 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23382 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23382 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23382 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23387 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23387 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-23387 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23391 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23391 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23392 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23392 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23392 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23395 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23395 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23395 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23395 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23396 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23396 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23396 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23397 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23397 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23397 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23399 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23399 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23399 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23401 ( SUSE ): 8.2 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H * CVE-2026-23401 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H * CVE-2026-23401 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23403 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23403 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2026-23403 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23404 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23404 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23404 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23405 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23405 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23405 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23406 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23406 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23406 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23407 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23407 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23407 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23408 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23408 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23408 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23408 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23409 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23409 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-23409 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23410 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23410 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23410 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23410 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23411 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23417 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23417 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23417 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23418 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23418 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23418 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23420 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23420 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23420 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23426 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23426 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23426 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23434 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23434 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23434 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-23434 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23436 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23436 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23436 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23437 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23437 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23437 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23437 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23440 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23440 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23440 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23440 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23441 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23441 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23442 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23442 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23442 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23443 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23443 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23443 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23445 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23445 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23445 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23445 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23446 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23446 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23446 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23447 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23447 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23447 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23448 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23448 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23448 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23449 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23449 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23449 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23450 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23450 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23450 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23452 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23452 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23452 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23454 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23454 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23454 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23455 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23455 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23455 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23456 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-23456 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-23456 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23457 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23457 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23457 ( NVD ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-23458 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23458 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23458 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23460 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23460 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23460 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23461 ( SUSE ): 7.7 CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23461 ( SUSE ): 7.5 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23461 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23462 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23462 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23462 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23463 ( SUSE ): 0.0 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-23463 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N * CVE-2026-23463 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23464 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23464 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23464 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23465 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:L/SC:N/SI:N/SA:N * CVE-2026-23465 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2026-23465 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23466 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23466 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23466 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23468 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23468 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23468 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23470 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23470 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23470 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23472 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23472 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23472 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23473 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23473 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23474 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23474 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23474 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23475 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23475 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23475 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31389 ( SUSE ): 5.6 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31389 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31389 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31392 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-31392 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L * CVE-2026-31392 ( NVD ): 8.1 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:L * CVE-2026-31393 ( SUSE ): 5.3 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31393 ( SUSE ): 4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-31393 ( NVD ): 8.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31394 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31394 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31394 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31395 ( SUSE ): 5.4 CVSS:4.0/AV:P/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31395 ( SUSE ): 6.4 CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31395 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31400 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31400 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31400 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31402 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31402 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-31402 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31403 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31403 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31403 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31405 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31405 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31405 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31406 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31406 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31406 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31407 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31407 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N * CVE-2026-31407 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31408 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31408 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31408 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31411 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31411 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31411 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31412 ( SUSE ): 7.0 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31412 ( SUSE ): 6.8 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31412 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31415 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31415 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31415 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31416 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-31416 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-31416 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31417 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31417 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31417 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31420 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31420 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31420 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31421 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31421 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31421 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31422 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31422 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31422 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31423 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31423 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31423 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31424 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31424 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31424 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31425 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31425 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31425 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31426 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31426 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2026-31426 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31427 ( SUSE ): 2.0 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-31427 ( SUSE ): 4.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2026-31427 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31428 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31428 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2026-31428 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31435 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31435 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31435 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-31449 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31449 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31449 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-31453 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31453 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31453 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31456 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31456 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31456 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31470 ( SUSE ): 6.0 CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:H/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31470 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H * CVE-2026-31470 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31494 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-31494 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N * CVE-2026-31494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31496 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31496 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-31496 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31503 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31503 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-31503 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31504 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31504 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31504 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31505 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31505 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31505 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31507 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31507 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31507 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31515 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31515 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31515 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31519 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31519 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31519 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31525 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31525 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31525 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31526 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31526 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31526 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31528 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31528 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31528 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31533 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31533 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31533 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31547 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31547 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31547 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31550 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31550 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31550 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31554 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31554 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31554 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31565 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31565 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31565 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31579 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31579 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31579 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31586 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31586 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31586 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31588 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31588 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31588 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-31644 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31644 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31644 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31649 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31649 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31649 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31658 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31658 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31658 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31662 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31662 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31662 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31666 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-31666 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N * CVE-2026-31666 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31668 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-31668 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2026-31668 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31669 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31669 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31669 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31675 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31675 ( SUSE ): 5.6 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H * CVE-2026-31675 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31678 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31678 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31678 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31679 ( SUSE ): 8.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31679 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31679 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31681 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31681 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N * CVE-2026-31681 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31682 ( SUSE ): 5.3 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31682 ( SUSE ): 4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-31682 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31684 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-31684 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L * CVE-2026-31684 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31685 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31685 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31685 ( NVD ): 9.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H * CVE-2026-31691 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31691 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31691 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31694 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31694 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31694 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31700 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31700 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31700 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31738 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31738 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31738 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31787 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31787 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31787 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43009 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43009 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43025 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43025 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H * CVE-2026-43027 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43027 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43037 ( SUSE ): 7.7 CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43037 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43037 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43038 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43038 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43045 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43045 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43050 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43050 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43050 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43060 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43060 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43082 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43082 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43088 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-43088 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-43153 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43153 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43153 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43190 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43190 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-43190 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-43265 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43265 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43265 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43329 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43329 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43329 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43365 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-43365 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-43365 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-43366 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43366 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43366 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43441 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43441 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43494 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43494 ( SUSE ): 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43503 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43503 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-43503 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Enterprise Server High Availability Extension 16.0 An update that solves 206 vulnerabilities, contains five features and has 42 fixes can now be installed. ## Description: The SUSE Linux Enterprise 16.0 kernel was updated to fix various security issues The following security issues were fixed: * CVE-2023-2058: x86/CPU: Fix FPDSS on Zen1 (bsc#1243603). * CVE-2024-14027: xattr: switch to CLASS(fd) (bsc#1259420). * CVE-2025-40181: x86/kvm: Force legacy PCI hole to UC when overriding MTRRs for TDX/SNP (bsc#1253471). * CVE-2025-68265: nvme: fix admin request_queue lifetime (bsc#1255360). * CVE-2025-68310: s390/pci: Avoid deadlock between PCI error recovery and mlx5 crdump (bsc#1255160). * CVE-2025-71302: drm/panthor: fix for dma-fence safe access rules (bsc#1264837). * CVE-2026-23168: flex_proportions: make fprop_new_period() hardirq safe (bsc#1258826). * CVE-2026-23245: net/sched: act_gate: snapshot parameters with RCU on replace (bsc#1259799). * CVE-2026-23271: perf: Fix __perf_event_overflow() vs perf_remove_from_context() race (bsc#1260018). * CVE-2026-23276: net: add xmit recursion limit to tunnel xmit functions (bsc#1260012). * CVE-2026-23300: net: ipv6: fix panic when IPv4 route references loopback IPv6 nexthop (bsc#1260538). * CVE-2026-23313: i40e: Fix preempt count leak in napi poll tracepoint (bsc#1260555). * CVE-2026-23316: net: ipv4: fix ARM64 alignment fault in multipath hash seed (bsc#1260573). * CVE-2026-23321: mptcp: pm: in-kernel: always mark signal+subflow endp as used (bsc#1260505). * CVE-2026-23340: net: sched: avoid qdisc_reset_all_tx_gt() vs dequeue race for lockless qdiscs (bsc#1260523). * CVE-2026-23346: arm64: io: Rename ioremap_prot() to __ioremap_prot() (bsc#1260529). * CVE-2026-23351: netfilter: nft_set_pipapo: split gc into unlink and reclaim phase (bsc#1260526). * CVE-2026-23354: x86/fred: Correct speculative safety in fred_extint() (bsc#1260801). * CVE-2026-23368: net: phy: register phy led_triggers during probe to avoid AB-BA deadlock (bsc#1260530). * CVE-2026-23374: blktrace: fix __this_cpu_read/write in preemptible context (bsc#1260811). * CVE-2026-23375: mm: thp: deny THP for files on anonymous inodes (bsc#1260576). * CVE-2026-23378: net/sched: act_ife: Fix metalist update behavior (bsc#1260546). * CVE-2026-23391: netfilter: xt_CT: drop pending enqueued packets on template removal (bsc#1260566). * CVE-2026-23392: netfilter: nf_tables: release flowtable after rcu grace period on error (bsc#1260531). * CVE-2026-23397: nfnetlink_osf: validate individual option lengths in fingerprints (bsc#1260728). * CVE-2026-23399: nf_tables: nft_dynset: fix possible stateful expression memleak in error path (bsc#1261020). * CVE-2026-23417: bpf: Fix constant blinding for PROBE_MEM32 stores (bsc#1261410). * CVE-2026-23436: net: add helpers for lookup and walking netdevs under netdev_lock() (bsc#1261617). * CVE-2026-23437: net: shaper: protect late read accesses to the hierarchy (bsc#1261635). * CVE-2026-23440: net/mlx5e: Fix race condition during IPSec ESN update (bsc#1261641). * CVE-2026-23441: net/mlx5e: Prevent concurrent access to IPSec ASO context (bsc#1261768). * CVE-2026-23442: ipv6: add NULL checks for idev in SRv6 paths (bsc#1261581). * CVE-2026-23445: igc: fix page fault in XDP TX timestamps handling (bsc#1261702). * CVE-2026-23449: net/sched: teql: Fix double-free in teql_master_xmit (bsc#1261779). * CVE-2026-23450: net/smc: fix NULL dereference and UAF in smc_tcp_syn_recv_sock() (bsc#1261584). * CVE-2026-23455: netfilter: nf_conntrack_h323: check for zero length in DecodeQ931() (bsc#1261687). * CVE-2026-23456: netfilter: nf_conntrack_h323: fix OOB read in decode_int() CONS case (bsc#1261703). * CVE-2026-23457: netfilter: nf_conntrack_sip: fix Content-Length u32 truncation in sip_help_tcp() (bsc#1261686). * CVE-2026-23458: netfilter: ctnetlink: fix use-after-free in ctnetlink_dump_exp_ct() (bsc#1261781). * CVE-2026-23468: drm/amdgpu: Limit BO list entry count to prevent resource exhaustion (bsc#1261692). * CVE-2026-23472: serial: core: fix infinite loop in handle_tx() for PORT_UNKNOWN (bsc#1261636). * CVE-2026-23473: io_uring/poll: fix multishot recv missing EOF on wakeup race (bsc#1261694). * CVE-2026-31392: smb: client: fix krb5 mount with username option (bsc#1261788). * CVE-2026-31395: bnxt_en: fix OOB access in DBG_BUF_PRODUCER async event handler (bsc#1261786). * CVE-2026-31400: sunrpc: fix cache_request leak in cache_release (bsc#1261645). * CVE-2026-31402: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache (bsc#1261638). * CVE-2026-31403: NFSD: Hold net reference for the lifetime of /proc/fs/nfs/exports fd (bsc#1261796). * CVE-2026-31406: xfrm: Fix work re-schedule after cancel in xfrm_nat_keepalive_net_fini() (bsc#1261629). * CVE-2026-31407: netfilter: conntrack: add missing netlink policy validations (bsc#1261632). * CVE-2026-31411: net: atm: fix crash due to unvalidated vcc pointer in sigd_send() (bsc#1261752). * CVE-2026-31415: ipv6: avoid overflows in ip6_datagram_send_ctl() (bsc#1262099). * CVE-2026-31416: netfilter: nfnetlink_log: account for netlink header size (bsc#1262100). * CVE-2026-31420: bridge: mrp: reject zero test interval to avoid OOM panic (bsc#1262055). * CVE-2026-31421: net/sched: cls_fw: fix NULL pointer dereference on shared blocks (bsc#1262061). * CVE-2026-31422: net/sched: cls_flow: fix NULL pointer dereference on shared blocks (bsc#1262054). * CVE-2026-31423: net/sched: sch_hfsc: fix divide-by-zero in rtsc_min() (bsc#1262063). * CVE-2026-31424: netfilter: x_tables: restrict xt_check_match/xt_check_target extensions for NFPROTO_ARP (bsc#1262053). * CVE-2026-31425: rds: ib: reject FRMR registration before IB connection is established (bsc#1262074). * CVE-2026-31427: netfilter: nf_conntrack_sip: fix use of uninitialized rtp_addr in process_sdp (bsc#1262086). * CVE-2026-31428: netfilter: nfnetlink_log: fix uninitialized padding leak in NFULA_PAYLOAD (bsc#1262087). * CVE-2026-31435: netfs: Fix read abandonment during retry (bsc#1262601). * CVE-2026-31449: ext4: validate p_idx bounds in ext4_ext_correct_indexes (bsc#1262616). * CVE-2026-31453: xfs: avoid dereferencing log items after push callbacks (bsc#1262617). * CVE-2026-31456: mm/pagewalk: fix race between concurrent split and refault (bsc#1262627). * CVE-2026-31494: net: cadence: macb: Synchronize stats calculations (bsc#1262671). * CVE-2026-31496: netfilter: nf_conntrack_expect: skip expectations in other netns via proc (bsc#1262673). * CVE-2026-31503: udp: Fix wildcard bind conflict check when using hash2 (bsc#1263077). * CVE-2026-31504: net: fix fanout UAF in packet_release() via NETDEV_UP race (bsc#1263085). * CVE-2026-31505: iavf: fix out-of-bounds writes in iavf_get_ethtool_stats() (bsc#1263093). * CVE-2026-31507: net/smc: fix double-free of smc_spd_priv when tee() duplicates splice pipe buffer (bsc#1263095). * CVE-2026-31515: af_key: validate families in pfkey_send_migrate() (bsc#1262752). * CVE-2026-31519: btrfs: set BTRFS_ROOT_ORPHAN_CLEANUP during subvol create (bsc#1263012). * CVE-2026-31525: bpf: Fix undefined behavior in interpreter sdiv/smod for INT_MIN (bsc#1262725). * CVE-2026-31526: bpf: Fix exception exit lock checking for subprogs (bsc#1262662). * CVE-2026-31528: perf: Make sure to use pmu_ctx->pmu for groups (bsc#1263001). * CVE-2026-31533: net/tls: fix use-after-free in -EBUSY error path of tls_do_encryption (bsc#1262758). * CVE-2026-31547: drm/xe: Fix missing runtime PM reference in ccs_mode_store (bsc#1263018). * CVE-2026-31550: pmdomain: bcm: bcm2835-power: Increase ASB control timeout (bsc#1263104). * CVE-2026-31554: futex: Require sys_futex_requeue() to have identical flags (bsc#1263107). * CVE-2026-31565: RDMA/irdma: Fix deadlock during netdev reset with active connections (bsc#1263064). * CVE-2026-31579: wireguard: device: use exit_rtnl callback instead of manual rtnl_lock in pre_exit (bsc#1263074). * CVE-2026-31586: mm: blk-cgroup: fix use-after-free in cgwb_release_workfn() (bsc#1263176). * CVE-2026-31588: KVM: x86: Use scratch field in MMIO fragment to hold small write values (bsc#1263165). * CVE-2026-31644: net: lan966x: fix use-after-free and leak in lan966x_fdma_reload() (bsc#1263048). * CVE-2026-31649: net: stmmac: fix integer underflow in chain mode (bsc#1263582). * CVE-2026-31658: net: altera-tse: fix skb leak on DMA mapping error in tse_start_xmit() (bsc#1263052). * CVE-2026-31662: tipc: fix bc_ackers underflow on duplicate GRP_ACK_MSG (bsc#1263131). * CVE-2026-31666: btrfs: fix incorrect return value after changing leaf in lookup_extent_data_ref() (bsc#1263138). * CVE-2026-31668: seg6: separate dst_cache for input and output paths in seg6 lwtunnel (bsc#1263140). * CVE-2026-31669: mptcp: fix slab-use-after-free in __inet_lookup_established (bsc#1263141). * CVE-2026-31675: net/sched: sch_netem: fix out-of-bounds access in packet corruption (bsc#1263556). * CVE-2026-31678: openvswitch: defer tunnel netdev_put to RCU release (bsc#1263562). * CVE-2026-31679: openvswitch: validate MPLS set/set_masked payload length (bsc#1263592). * CVE-2026-31681: netfilter: xt_multiport: validate range encoding in checkentry (bsc#1263593). * CVE-2026-31682: bridge: br_nd_send: linearize skb before parsing ND options (bsc#1263595). * CVE-2026-31684: net: sched: act_csum: validate nested VLAN headers (bsc#1263596). * CVE-2026-31685: netfilter: ip6t_eui64: reject invalid MAC header for all packets (bsc#1263668). * CVE-2026-31691: igb: remove napi_synchronize() in igb_down() (bsc#1263604). * CVE-2026-31694: fuse: reject oversized dirents in page cache (bsc#1263901). * CVE-2026-31700: net/packet: fix TOCTOU race on mmap'd vnet_hdr in tpacket_snd() (bsc#1263882). * CVE-2026-31738: vxlan: validate ND option lengths in vxlan_na_create (bsc#1264059). * CVE-2026-31787: xen/privcmd: fix double free via VMA splitting (bsc#1262181). * CVE-2026-43009: bpf: Fix incorrect pruning due to atomic fetch precision tracking (bsc#1264014). * CVE-2026-43025: netfilter: ctnetlink: ignore explicit helper on new expectations (bsc#1263931). * CVE-2026-43027: netfilter: nf_conntrack_helper: pass helper to expect cleanup (bsc#1263933). * CVE-2026-43037: ip6_tunnel: clear skb2->cb in ip4ip6_err() (bsc#1263995). * CVE-2026-43038: ipv6: icmp: clear skb2->cb in ip6_err_gen_icmpv6_unreach() (bsc#1264097). * CVE-2026-43045: mshv: Refactor and rename memory region handling functions (bsc#1263942). * CVE-2026-43050: atm: lec: fix use-after-free in sock_def_readable() (bsc#1264082). * CVE-2026-43060: netfilter: nft_ct: drop pending enqueued packets on removal (bsc#1264183). * CVE-2026-43082: net: txgbe: leave space for null terminators on property_entry (bsc#1264233). * CVE-2026-43088: net: af_key: zero aligned sockaddr tail in PF_KEY exports (bsc#1264469). * CVE-2026-43153: xfs: remove xfs_attr_leaf_hasname (bsc#1264586). * CVE-2026-43190: netfilter: xt_tcpmss: check remaining length before reading optlen (bsc#1264848). * CVE-2026-43265: KVM: x86: Ignore -EBUSY when checking nested events from vcpu_block() (bsc#1264427). * CVE-2026-43329: netfilter: flowtable: strictly check for maximum number of actions (bsc#1265085). * CVE-2026-43365: xfs: fix undersized l_iclog_roundoff values (bsc#1265119). * CVE-2026-43366: io_uring/kbuf: check if target buffer list is still legacy on recycle (bsc#1265116). * CVE-2026-43441: net: bonding: Fix nd_tbl NULL dereference when IPv6 is disabled (bsc#1264674). * CVE-2026-43494: net/rds: reset op_nents when zerocopy page pin fails (bsc#1265626). * CVE-2026-43503: net: skbuff: propagate shared-frag marker through frag- transfer helpers (bsc#1265960). The following non security issues were fixed: * accel/qaic: Add overflow check to remap_pfn_range during mmap (git-fixes). * ACPI: AGDI: fix missing newline in error message (git-fixes). * ACPI: CPPC: Fix related_cpus inconsistency during CPU hotplug (git-fixes). * ACPI: scan: Use acpi_dev_put() in object add error paths (git-fixes). * ACPI: video: Add backlight=native quirk for Dell OptiPlex 7770 AIO (git- fixes). * ACPI: video: force native backlight on HP OMEN 16 (8A44) (stable-fixes). * ACPI: video: Move Lenovo Legion S7 15ACH6 quirk to the right section (git- fixes). * ALSA: 6fire: Fix input volume change detection (git-fixes). * ALSA: 6fire: fix use-after-free on disconnect (git-fixes). * ALSA: aoa: i2sbus: clear stale prepared state (git-fixes). * ALSA: aoa: i2sbus: fix OF node lifetime handling (git-fixes). * ALSA: aoa: Skip devices with no codecs in i2sbus_resume() (git-fixes). * ALSA: aoa: Use guard() for mutex locks (stable-fixes). * ALSA: asihpi: avoid write overflow check warning (stable-fixes). * ALSA: caiaq: Don't abort when no input device is available (git-fixes). * ALSA: caiaq: Fix control_put() result and cache rollback (git-fixes). * ALSA: caiaq: Fix potentially leftover ep1_in_urb at error path (git-fixes). * ALSA: caiaq: fix usb_dev refcount leak on probe failure (git-fixes). * ALSA: caiaq: Handle probe errors properly (git-fixes). * ALSA: caiaq: take a reference on the USB device in create_card() (git- fixes). * ALSA: control: Validate buf_len before strnlen() in snd_ctl_elem_init_enum_names() (git-fixes). * ALSA: core: Fix potential data race at fasync handling (git-fixes). * ALSA: core: Serialize deferred fasync state checks (git-fixes). * ALSA: core: Validate compress device numbers without dynamic minors (git- fixes). * ALSA: ctxfi: Add fallback to default RSR for S/PDIF (git-fixes). * ALSA: ctxfi: Fix missing SPDIFI1 index handling (stable-fixes). * ALSA: ctxfi: Limit PTP to a single page (git-fixes). * ALSA: firewire-tascam: Do not drop unread control events (git-fixes). * ALSA: fireworks: bound device-supplied status before string array lookup (git-fixes). * ALSA: hda/hdmi: Add quirk for TUXEDO IBS14G6 (stable-fixes). * ALSA: hda/realtek - fixed speaker no sound update (git-fixes). * ALSA: hda/realtek: Add HP ENVY Laptop 13-ba0xxx quirk (stable-fixes). * ALSA: hda/realtek: Add mute LED quirk for HP Pavilion 15-eg0xxx (stable- fixes). * ALSA: hda/realtek: Add quirk for ASUS ROG Flow Z13-KJP GZ302EAC (stable- fixes). * ALSA: hda/realtek: add quirk for Framework F111:000F (stable-fixes). * ALSA: hda/realtek: Add quirk for Lenovo Yoga Pro 7 14IAH10 (stable-fixes). * ALSA: hda/realtek: fix code style (ERROR: else should follow close brace '}') (git-fixes). * ALSA: hda: cs35l41: Put ACPI device on missing physical node (git-fixes). * ALSA: hda: cs35l56: Propagate ASP TX source control errors (git-fixes). * ALSA: hda: cs35l56: Put ACPI device after setting companion (git-fixes). * ALSA: hda: Fix NULL pointer dereference in snd_hda_ctl_add() (git-fixes). * ALSA: misc: Use guard() for spin locks (stable-fixes). * ALSA: pcm: oss: Fix data race at accessing runtime.oss.trigger (stable- fixes). * ALSA: pcmtest: fix reference leak on failed device registration (git-fixes). * ALSA: pcmtest: Fix resource leaks in module init error paths (git-fixes). * ALSA: pcmtest: Return -EFAULT on pattern read copy failure (git-fixes). * ALSA: sc6000: Keep the programmed board state in card-private data (git- fixes). * ALSA: scarlett2: Add missing error check when initialise Autogain Status (git-fixes). * ALSA: scarlett2: Add missing sentinel initializer field (git-fixes). * ALSA: seq: Notify client and port info changes (stable-fixes). * ALSA: seq_oss: return full count for successful SEQ_FULLSIZE writes (stable- fixes). * ALSA: usb-audio: apply quirk for MOONDROP JU Jiu (stable-fixes). * ALSA: usb-audio: Avoid false E-MU sample-rate notifications (git-fixes). * ALSA: usb-audio: Avoid potential endless loop in convert_chmap_v3() (git- fixes). * ALSA: usb-audio: Bound MIDI 2.0 endpoint descriptor scans (git-fixes). * ALSA: usb-audio: Bound MIDI endpoint descriptor scans (git-fixes). * ALSA: usb-audio: Evaluate packsize caps at the right place (git-fixes). * ALSA: usb-audio: Fix Audio Advantage Micro II SPDIF switch (git-fixes). * ALSA: usb-audio: Fix potential leak of pd at parsing UAC3 streams (git- fixes). * ALSA: usb-audio: Fix quirk flags for NeuralDSP Quad Cortex (stable-fixes). * ALSA: usb-audio: Fix UAC3 cluster descriptor size check (git-fixes). * ALSA: usb-audio: midi2: Restart output URBs on resume (git-fixes). * ALSA: usb-audio: stop parsing UAC2 rates at MAX_NR_RATES (git-fixes). * ALSA: virtio: drop an extaneous kernel-doc comment (git-fixes). * amdgpu/jpeg: fix deepsleep register for jpeg 5_0_0 and 5_0_2 (stable-fixes). * ASoC: amd: acp: Add DMI quirk for Valve Steam Deck OLED (git-fixes). * ASoC: amd: yc: Add DMI entry for HP Laptop 15-fc0xxx (stable-fixes). * ASoC: amd: yc: Add DMI quirk for ASUS EXPERTBOOK BM1403CDA (stable-fixes). * ASoC: amd: yc: Add DMI quirk for Thin A15 B7VF (stable-fixes). * ASoC: amd: yc: Add HP OMEN Gaming Laptop 16-ap0xxx product line in quirk table (stable-fixes). * ASoC: codecs: ab8500: Fix casting of private data (git-fixes). * ASoC: cs35l56: Destroy workqueue in probe error path (git-fixes). * ASoC: cs35l56: Don't use devres to unregister component (git-fixes). * ASoC: cs35l56: Fix hibernate write in runtime resume error path (git-fixes). * ASoC: fsl_easrc: Change the type for iec958 channel status controls (git- fixes). * ASoC: fsl_easrc: Check the variable range in fsl_easrc_iec958_put_bits() (git-fixes). * ASoC: fsl_easrc: fix comment typo (git-fixes). * ASoC: fsl_easrc: Fix value type in fsl_easrc_iec958_get_bits() (git-fixes). * ASoC: fsl_micfil: Add access property for "VAD Detected" (git-fixes). * ASoC: fsl_micfil: Fix event generation in hwvad_put_enable() (git-fixes). * ASoC: fsl_micfil: Fix event generation in hwvad_put_init_mode() (git-fixes). * ASoC: fsl_micfil: Fix event generation in micfil_put_dc_remover_state() (git-fixes). * ASoC: fsl_micfil: Fix event generation in micfil_quality_set() (git-fixes). * ASoC: fsl_xcvr: Fix event generation for cached controls (git-fixes). * ASoC: fsl_xcvr: Fix event generation in fsl_xcvr_arc_mode_put() (git-fixes). * ASoC: fsl_xcvr: Fix event generation in fsl_xcvr_mode_put() (git-fixes). * ASoC: Intel: bytcr_wm5102: Fix MCLK leak on platform_clock_control error (git-fixes). * ASoC: qcom: q6apm-dai: reset queue ptr on trigger stop (git-fixes). * ASoC: qcom: q6apm-lpass-dai: Fix multiple graph opens (git-fixes). * ASoC: qcom: q6apm: move component registration to unmanaged version (git- fixes). * ASoC: qcom: q6apm: remove child devices when apm is removed (git-fixes). * ASoC: qcom: qdsp6: topology: check widget type before accessing data (git- fixes). * ASoC: soc-core: call missing INIT_LIST_HEAD() for card_aux_list (stable- fixes). * ASoC: SOF: compress: return the configured codec from get_params (git- fixes). * ASoC: SOF: Don't allow pointer operations on unconfigured streams (git- fixes). * ASoC: SOF: Intel: hda: Place check before dereference (git-fixes). * ASoC: SOF: topology: reject invalid vendor array size in token parser (stable-fixes). * ASoC: sti: Return errors from regmap_field_alloc() (git-fixes). * ASoC: sti: use managed regmap_field allocations (git-fixes). * ASoC: stm32_sai: fix incorrect BCLK polarity for DSP_A/B, LEFT_J (stable- fixes). * ata: ahci: force 32-bit DMA for JMicron JMB582/JMB585 (stable-fixes). * backlight: sky81452-backlight: Check return value of devm_gpiod_get_optional() in sky81452_bl_parse_dt() (git-fixes). * batman-adv: bla: only purge non-released claims (git-fixes). * batman-adv: bla: prevent use-after-free when deleting claims (git-fixes). * batman-adv: bla: put backbone reference on failed claim hash insert (git- fixes). * batman-adv: fix integer overflow on buff_pos (git-fixes). * batman-adv: hold claim backbone gateways by reference (git-fixes). * batman-adv: reject new tp_meter sessions during teardown (git-fixes). * batman-adv: reject oversized global TT response buffers (git-fixes). * batman-adv: stop caching unowned originator pointers in BAT IV (git-fixes). * bitfield: Add FIELD_MODIFY() helper (jsc#PED-14238). * Bluetooth: bnep: fix incorrect length parsing in bnep_rx_frame() extension handling (git-fixes). * Bluetooth: btmtk: validate WMT event SKB length before struct access (git- fixes). * Bluetooth: btusb: Check for unexpected bytes when defragmenting HCI frames (bsc#1260996). * Bluetooth: fix locking in hci_conn_request_evt() with HCI_PROTO_DEFER (git- fixes). * Bluetooth: hci_event: fix memset typo (git-fixes). * Bluetooth: hci_event: Fix OOB read and infinite loop in hci_le_create_big_complete_evt (git-fixes). * Bluetooth: hci_event: fix potential UAF in SSP passkey handlers (git-fixes). * Bluetooth: hci_ldisc: Clear HCI_UART_PROTO_INIT on error (git-fixes). * Bluetooth: HIDP: serialise l2cap_unregister_user via hidp_session_sem (git- fixes). * Bluetooth: ISO: Fix data-race on dst in iso_sock_connect() (git-fixes). * Bluetooth: l2cap: Add missing chan lock in l2cap_ecred_reconf_rsp (git- fixes). * Bluetooth: l2cap: fix MPS check in l2cap_ecred_reconf_req (git-fixes). * Bluetooth: L2CAP: Fix null-ptr-deref in l2cap_sock_new_connection_cb() (git- fixes). * Bluetooth: L2CAP: Fix null-ptr-deref in l2cap_sock_state_change_cb() (git- fixes). * Bluetooth: L2CAP: Fix printing wrong information if SDU length exceeds MTU (git-fixes). * Bluetooth: RFCOMM: pull credit byte with skb_pull_data() (git-fixes). * Bluetooth: SCO: check for codecs->num_codecs == 1 before assigning to sco_pi(sk)->codec (git-fixes). * Bluetooth: SCO: fix sleeping under spinlock in sco_conn_ready (git-fixes). * Bluetooth: SCO: hold sk properly in sco_conn_ready (git-fixes). * Bluetooth: virtio_bt: clamp rx length before skb_put (git-fixes). * Bluetooth: virtio_bt: validate rx pkt_type header length (git-fixes). * bpf: Add third round of bounds deduction (git-fixes). * bpf: Fix u32/s32 bounds when ranges cross min/max boundary (git-fixes). * bpf: Improve bounds when s64 crosses sign boundary (git-fixes). * bpf: Switch CONFIG_CFI_CLANG to CONFIG_CFI (git-fixes). * btrfs: qgroup: update all parent qgroups when doing quick inherit (bsc#1258933). * btrfs: reject root items with drop_progress and zero drop_level (git-fixes). * btrfs: replace BUG() with error handling in __btrfs_balance() (git-fixes). * bus: mhi: host: pci_generic: Switch to async power up to avoid boot delays (git-fixes). * bus: rifsc: fix RIF configuration check for peripherals (git-fixes). * can: mcp251x: add error handling for power enable in open and resume (stable-fixes). * can: raw: fix ro->uniq use-after-free in raw_rcv() (git-fixes). * can: ucan: fix devres lifetime (git-fixes). * cdc-acm: new quirk for EPSON HMD (stable-fixes). * check-for-config-changes: Exclude CC_MS_EXTENSIONS. * check-for-config-changes: Exclude HAVE_CFI_ICALL_NORMALIZE_INTEGERS{,_RUSTC}. * comedi: dt2815: add hardware detection to prevent crash (stable-fixes). * cpufreq: intel_pstate: Drop Arrow Lake from "scaling factor" list (bsc#1249104). * crypto: af_alg - limit RX SG extraction by receive buffer budget (git- fixes). * crypto: algif_aead - Fix minimum RX size check for decryption (git-fixes). * crypto: atmel-aes - Fix 3-page memory leak in atmel_aes_buff_cleanup (git- fixes). * crypto: atmel-ecc - Release client on allocation failure (git-fixes). * crypto: atmel-sha204a - Fix error codes in OTP reads (git-fixes). * crypto: atmel-sha204a - Fix OTP sysfs read and error handling (git-fixes). * crypto: atmel-sha204a - Fix potential UAF and memory leak in remove path (git-fixes). * crypto: atmel-sha204a - Fix uninitialized data access on OTP read error (git-fixes). * crypto: atmel-tdes - fix DMA sync direction (git-fixes). * crypto: ccp - copy IV using skcipher ivsize (git-fixes). * crypto: ccp: Don't attempt to copy CSR to userspace if PSP command failed (git-fixes). * crypto: ccp: Don't attempt to copy ID to userspace if PSP command failed (git-fixes). * crypto: ccp: Don't attempt to copy PDH cert to userspace if PSP command failed (git-fixes). * crypto: ccree - fix a memory leak in cc_mac_digest() (git-fixes). * crypto: drivers - Switch back to struct platform_driver::remove() (jsc#PED-14238). * crypto: drivers - Use str_enable_disable-like helpers (jsc#PED-14238). * crypto: hisilicon - Fix dma_unmap_single() direction (git-fixes). * crypto: iaa - Adjust workqueue allocation type (jsc#PED-14238). * crypto: iaa - fix per-node CPU counter reset in rebalance_wq_table() (git- fixes). * crypto: iaa - Move compression CRC into request object (jsc#PED-14238). * crypto: iaa - Optimize rebalance_wq_table() (jsc#PED-14238). * crypto: iaa - Remove potential infinite loop in check_completion() (jsc#PED-14238). * crypto: iaa - Remove unreachable pr_debug from iaa_crypto_cleanup_module (jsc#PED-14238). * crypto: iaa - Remove unused disable_async argument from iaa_decompress (jsc#PED-14238). * crypto: iaa - Replace sprintf with sysfs_emit in sysfs show functions (jsc#PED-14238). * crypto: iaa - Simplify init_iaa_device() (jsc#PED-14238). * crypto: jitterentropy - replace long-held spinlock with mutex (git-fixes). * crypto: nx - Fix packed layout in struct nx842_crypto_header (git-fixes). * crypto: pcrypt - Fix handling of MAY_BACKLOG requests (git-fixes). * crypto: qat - #undef field_get() before local definition (jsc#PED-14238). * crypto: qat - add adf_rl_get_num_svc_aes() in rate limiting (jsc#PED-14238). * crypto: qat - add bank state save and restore for qat_420xx (jsc#PED-14238). * crypto: qat - add command queue telemetry counters for GEN6 (jsc#PED-14238). * crypto: qat - add compression slice count for rate limiting (jsc#PED-14238). * crypto: qat - add decompression service for rate limiting (jsc#PED-14238). * crypto: qat - add decompression service to telemetry (jsc#PED-14238). * crypto: qat - add firmware headers for GEN6 devices (jsc#PED-14238). * crypto: qat - add GEN6 firmware loader (jsc#PED-14238). * crypto: qat - add get_svc_slice_cnt() in device data structure (jsc#PED-14238). * crypto: qat - add live migration enablers for GEN6 devices (jsc#PED-14238). * crypto: qat - add macro to write 64-bit values to registers (jsc#PED-14238). * crypto: qat - add missing header inclusion (jsc#PED-14238). * crypto: qat - add qat_6xxx driver (jsc#PED-14238). * crypto: qat - add ring buffer idle telemetry counter for GEN6 (jsc#PED-14238). * crypto: qat - add support for decompression service to GEN6 devices (jsc#PED-14238). * crypto: qat - consolidate service enums (jsc#PED-14238). * crypto: qat - Constify struct pm_status_row (jsc#PED-14238). * crypto: qat - disable 4xxx AE cluster when lead engine is fused off (git- fixes). * crypto: qat - disable 420xx AE cluster when lead engine is fused off (git- fixes). * crypto: qat - do not export adf_cfg_services (jsc#PED-14238). * crypto: qat - enable power management debugfs for GEN6 devices (jsc#PED-14238). * crypto: qat - enable RAS support for GEN6 devices (jsc#PED-14238). * crypto: qat - enable rate limiting feature for GEN6 devices (jsc#PED-14238). * crypto: qat - enable reporting of error counters for GEN6 devices (jsc#PED-14238). * crypto: qat - enable telemetry for GEN6 devices (jsc#PED-14238). * crypto: qat - export adf_get_service_mask() (jsc#PED-14238). * crypto: qat - export adf_init_admin_pm() (jsc#PED-14238). * crypto: qat - expose configuration functions (jsc#PED-14238). * crypto: qat - fix compression instance leak (git-fixes). * crypto: qat - fix IRQ cleanup on 6xxx probe failure (git-fixes). * crypto: qat - fix object goals in Makefiles (jsc#PED-14238. * crypto: qat - fix type mismatch in RAS sysfs show functions (git-fixes). * crypto: qat - Fix typo "accelaration" (jsc#PED-14238). * crypto: qat - fix virtual channel configuration for GEN6 devices (jsc#PED-14238). * crypto: qat - include qat_common in top Makefile (jsc#PED-14238). * crypto: qat - introduce fuse array (jsc#PED-14238). * crypto: qat - make adf_dev_autoreset() static (jsc#PED-14238). * crypto: qat - optimize allocations for fw authentication (jsc#PED-14238). * crypto: qat - refactor compression template logic (jsc#PED-14238). * crypto: qat - refactor FW signing algorithm (jsc#PED-14238). * crypto: qat - refactor ring-related debug functions (jsc#PED-14238). * crypto: qat - refactor service parsing logic (jsc#PED-14238). * crypto: qat - relocate and rename bank state structure definition (jsc#PED-14238). * crypto: qat - relocate bank state helper functions (jsc#PED-14238). * crypto: qat - relocate power management debugfs helper APIs (jsc#PED-14238). * crypto: qat - relocate service related functions (jsc#PED-14238). * crypto: qat - remove BITS_IN_DWORD() (jsc#PED-14238). * crypto: qat - Remove dst_null support (jsc#PED-14238). * crypto: qat - remove duplicate masking for GEN6 devices (jsc#PED-14238). * crypto: qat - remove initialization in device class (jsc#PED-14238). * crypto: qat - remove redundant FW image size check (jsc#PED-14238). * crypto: qat - remove unused adf_devmgr_get_first (jsc#PED-14238). * crypto: qat - remove unused members in suof structure (jsc#PED-14238). * crypto: qat - rename and relocate timer logic (jsc#PED-14238). * crypto: qat - reorder objects in qat_common Makefile (jsc#PED-14238). * crypto: qat - replace CHECK_STAT macro with static inline function (jsc#PED-14238). * crypto: qat - Replace kzalloc() + copy_from_user() with memdup_user() (jsc#PED-14238). * crypto: qat - restore ASYM service support for GEN6 devices (jsc#PED-14238). * crypto: qat - Return pointer directly in adf_ctl_alloc_resources (jsc#PED-14238). * crypto: qat - set command ids as reserved (jsc#PED-14238). * crypto: qat - switch to standard pattern for PCI IDs (jsc#PED-14238). * crypto: qat - update firmware api (jsc#PED-14238). * crypto: qat - use pr_fmt() in adf_gen4_hw_data.c (jsc#PED-14238). * crypto: qat - use pr_fmt() in qat uclo.c (jsc#PED-14238). * crypto: qat - use simple_strtoull to improve qat_uclo_parse_num (jsc#PED-14238). * crypto: qat - use swab32 macro (git-fixes). * crypto: qat - validate service in rate limiting sysfs api (jsc#PED-14238). * crypto: qat/qat_6xxx - Fix NULL vs IS_ERR() check in adf_probe() (jsc#PED-14238). * crypto: sa2ul - Fix AEAD fallback algorithm names (git-fixes). * crypto: simd - reject compat registrations without __ prefixes (git-fixes). * crypto: talitos - fix SEC1 32k ahash request limitation (git-fixes). * crypto: tegra - Disable softirqs before finalizing request (git-fixes). * devres: fix missing node debug info in devm_krealloc() (git-fixes). * dmaengine: dw-axi-dmac: fix Alignment should match open parenthesis (git- fixes). * dmaengine: dw-axi-dmac: Remove unnecessary return statement from void function (git-fixes). * dmaengine: mxs-dma: Fix missing return value from of_dma_controller_register() (git-fixes). * dpll: zl3073x: Add support to adjust phase (bsc#1255752). * dpll: zl3073x: Fix output pin phase adjustment sign (bsc#1255752). * dpll: zl3073x: fix REF_PHASE_OFFSET_COMP register width for some chip IDs (bsc#1255752). * dpll: zl3073x: Specify phase adjustment granularity for pins (bsc#1255752). * drivers/base/memory: fix memory block reference leak in poison accounting (git-fixes). * drm/amd/display: Add NULL check for integrated_info in clk_mgr_construct (git-fixes). * drm/amd/display: Allow DCE link encoder without AUX registers (git-fixes). * drm/amd/display: Avoid NULL dereference in dc_dmub_srv error paths (git- fixes). * drm/amd/display: Change dither policy for 10 bpc output back to dithering (git-fixes). * drm/amd/display: Correct logic check error for fastboot (git-fixes). * drm/amd/display: Disable 10-bit truncation and dithering on DCE 6.x (git- fixes). * drm/amd/display: Disable fastboot on DCE 6 too (stable-fixes). * drm/amd/display: Read EDID from VBIOS embedded panel info (git-fixes). * drm/amd/pm/ci: Clear EnabledForActivity field for memory levels (git-fixes). * drm/amd/pm/ci: Disable MCLK DPM on problematic CI ASICs (git-fixes). * drm/amd/pm/ci: Fill DW8 fields from SMC (git-fixes). * drm/amd/pm/ci: Fix powertune defaults for Hawaii 0x67B0 (git-fixes). * drm/amd/pm/ci: Use highest MCLK on CI when MCLK DPM is disabled (git-fixes). * drm/amd/pm/smu7: Add SCLK cap for quirky Hawaii board (git-fixes). * drm/amd/pm/smu7: Fix SMU7 voltage dependency on display clock (git-fixes). * drm/amd/pm: fix incorrect FeatureCtrlMask setting on smu v14.0.x (git- fixes). * drm/amdgpu/gfx6: Support harvested SI chips with disabled TCCs (v2) (git- fixes). * drm/amdgpu/gfx9: drop unnecessary 64-bit fence flag check in KIQ (stable- fixes). * drm/amdgpu/gfx10: look at the right prop for gfx queue priority (git-fixes). * drm/amdgpu/gfx11: look at the right prop for gfx queue priority (git-fixes). * drm/amdgpu/gmc: Fix AMDGPU_GART_PLACEMENT_LOW to not overlap with VRAM (git- fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v2.0 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v2.5 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v3.0 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v4.0 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v4.0.3 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v4.0.5 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v5.0.0 ring (git-fixes). * drm/amdgpu/pm: add missing revision check for CI (git-fixes). * drm/amdgpu/pm: align Hawaii mclk workaround with radeon (git-fixes). * drm/amdgpu/pm: drop SMU driver if version not matched messages (stable- fixes). * drm/amdgpu/sdma4: replace BUG_ON with WARN_ON in fence emission (git-fixes). * drm/amdgpu/vce: Prevent partial address patches (stable-fixes). * drm/amdgpu/vcn3: Avoid overflow on msg bound check (git-fixes). * drm/amdgpu/vcn3: Prevent OOB reads when parsing dec msg (stable-fixes). * drm/amdgpu/vcn4: Avoid overflow on msg bound check (git-fixes). * drm/amdgpu/vcn4: Prevent OOB reads when parsing dec msg (stable-fixes). * drm/amdgpu/vcn4: Prevent OOB reads when parsing IB (stable-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v2.0 enc/dec rings (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v2.5 enc/dec rings (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v3.0 enc/dec rings (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v4.0 enc ring (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v4.0.3 enc ring (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v4.0.5 enc ring (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v5.0.0 enc ring (git-fixes). * drm/amdgpu: Add bounds checking to ib_{get,set}_value (stable-fixes). * drm/amdgpu: Add default case in DVI mode validation (git-fixes). * drm/amdgpu: fix AMDGPU_INFO_READ_MMR_REG (git-fixes). * drm/amdgpu: fix zero-size GDS range init on RDNA4 (stable-fixes). * drm/amdgpu: gate VM CPU HDP flush on reset lock (stable-fixes). * drm/amdgpu: replace PASID IDR with XArray (git-fixes). * drm/amdgpu: Use SMUIO 15.0.0 offsets for TSC upper and lower count (stable- fixes). * drm/amdgpu: zero-initialize GART table on allocation (stable-fixes). * drm/amdkfd: Add upper bound check for num_of_nodes (stable-fixes). * drm/amdkfd: Clear VRAM on allocation to prevent stale data exposure (stable- fixes). * drm/amdkfd: Make all TLB-flushes heavy-weight (stable-fixes). * drm/amdkfd: validate SVM ioctl nattr against buffer size (stable-fixes). * drm/arcpgu: fix device node leak (git-fixes). * drm/bridge: cadence: cdns-mhdp8546-core: Add mode_valid hook to drm_bridge_funcs (git-fixes). * drm/bridge: cadence: cdns-mhdp8546-core: Handle HDCP state in bridge atomic check (git-fixes). * drm/bridge: cadence: cdns-mhdp8546-core: Set the mhdp connector earlier in atomic_enable() (git-fixes). * drm/bridge: stm_lvds: Do not fail atomic_check on disabled connector (git- fixes). * drm/etnaviv: Fix armed job not being pushed to the DRM scheduler (git- fixes). * drm/exynos: remove bridge when component_add fails (git-fixes). * drm/fb-helper: Fix clipping when damage area spans a single scanline (git- fixes). * drm/gem: Fix inconsistent plane dimension calculation in drm_gem_fb_init_with_funcs() (git-fixes). * drm/gma500/oaktrail_hdmi: fix i2c adapter leak on setup (git-fixes). * drm/gma500/oaktrail_lvds: fix hang on init failure (git-fixes). * drm/gma500/oaktrail_lvds: fix i2c adapter leaks on init (git-fixes). * drm/i915/dp: Fix VSC dynamic range signaling for RGB formats (git-fixes). * drm/i915/gt: fix refcount underflow in intel_engine_park_heartbeat (git- fixes). * drm/i915/wm: Verify the correct plane DDB entry (git-fixes). * drm/i915: skip __i915_request_skip() for already signaled requests (git- fixes). * drm/imagination: Switch reset_reason fields from enum to u32 (git-fixes). * drm/komeda: fix integer overflow in AFBC framebuffer size check (git-fixes). * drm/loongson: Use managed KMS polling (git-fixes). * drm/msm/a6xx: Fix dumping A650+ debugbus blocks (git-fixes). * drm/msm/a6xx: Fix HLSQ register dumping (git-fixes). * drm/msm/a6xx: Use barriers while updating HFI Q headers (git-fixes). * drm/msm/dpu: fix mismatch between power and frequency (git-fixes). * drm/msm/dsi: add the missing parameter description (git-fixes). * drm/msm/dsi: fix bits_per_pclk (git-fixes). * drm/msm/dsi: fix hdisplay calculation for CMD mode panel (git-fixes). * drm/msm/dsi: rename MSM8998 DSI version from V2_2_0 to V2_0_0 (git-fixes). * drm/msm/gem: fix error handling in msm_ioctl_gem_info_get_metadata() (git- fixes). * drm/msm/shrinker: Fix can_block() logic (git-fixes). * drm/nouveau: fix nvkm_device leak on aperture removal failure (git-fixes). * drm/nouveau: fix u32 overflow in pushbuf reloc bounds check (git-fixes). * drm/panel: boe-tv101wum-nl6: restore MODE_LPM after sending disable cmds (git-fixes). * drm/panel: himax-hx83102: restore MODE_LPM after sending disable cmds (git- fixes). * drm/panel: sharp-ls043t1le01: make use of prepare_prev_first (git-fixes). * drm/panel: simple: Correct G190EAN01 prepare timing (git-fixes). * drm/panfrost: Fix wait_bo ioctl leaking positive return from dma_resv_wait_timeout() (git-fixes). * drm/panthor: Fix outdated function documentation (git-fixes). * drm/radeon: add missing revision check for CI (git-fixes). * drm/sun4i: backend: fix error pointer dereference (git-fixes). * drm/sun4i: Fix resource leaks (git-fixes). * drm/v3d: Handle error from drm_sched_entity_init() (git-fixes). * drm/vc4: Fix a memory leak in hang state error path (git-fixes). * drm/vc4: Fix memory leak of BO array in hang state (git-fixes). * drm/vc4: platform_get_irq_byname() returns an int (stable-fixes). * drm/vc4: Protect madv read in vc4_gem_object_mmap() with madv_lock (git- fixes). * drm/vc4: Release runtime PM reference after binding V3D (git-fixes). * drm/vram: remove DRM_VRAM_MM_FILE_OPERATIONS from docs (git-fixes). * drm/xe/bo: Fix bo leak on GGTT flag validation in xe_bo_init_locked() (git- fixes). * drm/xe/bo: Fix bo leak on unaligned size validation in xe_bo_init_locked() (git-fixes). * drm/xe/debugfs: Correct printing of register whitelist ranges (git-fixes). * drm/xe/dma-buf: handle empty bo and UAF races (git-fixes). * drm/xe/gsc: Fix BO leak on error in query_compatibility_version() (git- fixes). * drm/xe/uapi: update used tracking kernel-doc (git-fixes). * drm/xe: Fix dma-buf attachment leak in xe_gem_prime_import() (git-fixes). * drm/xe: Fix error cleanup in xe_exec_queue_create_ioctl() (git-fixes). * dt-bindings: net: Fix Tegra234 MGBE PTP clock (git-fixes). * efi/capsule-loader: fix incorrect sizeof in phys array reallocation (git- fixes). * efi: pstore: Drop efivar lock when efi_pstore_open() returns with an error (git-fixes). * erofs: add GFP_NOIO in the bio completion if needed (git-fixes). * ext4: fix fsync(2) for nojournal mode (git-fixes). * ext4: make recently_deleted() properly work with lazy itable initialization (git-fixes). * ext4: reject mount if bigalloc with s_first_data_block != 0 (git-fixes). * extcon: Fixed sysfs duplicate filename issue (git-fixes). * extcon: ptn5150: handle pending IRQ events during system resume (git-fixes). * fbdev: matroxfb: Mark variable with __maybe_unused to avoid W=1 build break (git-fixes). * fbdev: offb: fix PCI device reference leak on probe failure (git-fixes). * fbdev: tdfxfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO (stable-fixes). * fbdev: udlfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO (git-fixes). * firmware: arm_ffa: Use the correct buffer size during RXTX_MAP (git-fixes). * firmware: dmi: Correct an indexing error in dmi.h (git-fixes). * firmware: google: framebuffer: Do not mark framebuffer as busy (git-fixes). * firmware: google: framebuffer: Do not unregister platform device (git- fixes). * gpio: of: clear OF_POPULATED on hog nodes in remove path (git-fixes). * gpio: tegra: fix irq_release_resources calling enable instead of disable (git-fixes). * gtp: disable BH before calling udp_tunnel_xmit_skb() (git-fixes). * HID: alps: fix NULL pointer dereference in alps_raw_event() (git-fixes). * HID: amd_sfh: don't log error when device discovery fails with -EOPNOTSUPP (git-fixes). * HID: apple: ensure the keyboard backlight is off if suspending (git-fixes). * HID: asus: do not abort probe when not necessary (git-fixes). * HID: asus: make asus_resume adhere to linux kernel coding standards (git- fixes). * HID: core: clamp report_size in s32ton() to avoid undefined shift (stable- fixes). * HID: logitech-hidpp: Enable MX Master 4 over bluetooth (stable-fixes). * HID: logitech-hidpp: Prevent use-after-free on force feedback initialisation failure (stable-fixes). * HID: multitouch: Check to ensure report responses match the request (stable- fixes). * HID: quirks: add HID_QUIRK_ALWAYS_POLL for 8BitDo Pro 3 (stable-fixes). * HID: roccat: fix use-after-free in roccat_report_event (stable-fixes). * HID: usbhid: fix deadlock in hid_post_reset() (git-fixes). * HID: wacom: fix out-of-bounds read in wacom_intuos_bt_irq (stable-fixes). * hisi_acc_vfio_pci: add eq and aeq interruption restore (git-fixes). * hisi_acc_vfio_pci: bugfix cache write-back issue (git-fixes). * hisi_acc_vfio_pci: bugfix the problem of uninstalling driver (git-fixes). * hv_sock: fix ARM64 support (git-fixes). * hv_sock: update outdated comment for renamed vsock_stream_recvmsg() (git- fixes). * hwmon: (ads7871) Fix endianness bug in 16-bit register reads (git-fixes). * hwmon: (corsair-psu) Close HID device on probe errors (git-fixes). * hwmon: (lm63) Add locking to avoid TOCTOU (git-fixes). * hwmon: (ltc2992) Clamp threshold writes to hardware range (git-fixes). * hwmon: (ltc2992) Fix u32 overflow in power read path (git-fixes). * hwmon: (ltc4286) Add missing MODULE_IMPORT_NS("PMBUS") (git-fixes). * hwmon: (powerz) Fix missing usb_kill_urb() on signal interrupt (git-fixes). * hwmon: (powerz) Fix use-after-free on USB disconnect (git-fixes). * hwmon: (pt5161l) Fix bugs in pt5161l_read_block_data() (git-fixes). * i2c: s3c24xx: check the size of the SMBUS message before using it (stable- fixes). * i2c: smbus: reject oversized block transfers in the common path (git-fixes). * i2c: stm32f7: reinit_completion() per transfer not per msg (git-fixes). * i2c: stub: Reject I2C block transfers with invalid length (git-fixes). * i2c: tegra: Add HS mode support (bsc#1261550). * i2c: tegra: Add Tegra256 support (bsc#1261550). * i2c: tegra: Do not configure DMA if not supported (bsc#1261550). * i2c: tegra: Don't mark devices with pins as IRQ safe (stable-fixes). * i2c: tegra: Update Tegra256 timing parameters (bsc#1261550). * i2c: tegra: Use separate variables for fast and fastplus (bsc#1261550). * i3c: dw: Fix memory leak in dw_i3c_master_i3c_xfers() (git-fixes). * i3c: master: Fix error codes at send_ccc_cmd (git-fixes). * i3c: mipi-i3c-hci: fix IBI payload length calculation for final status (git- fixes). * ibmveth: Disable GSO for packets with small MSS (bsc#1265144). * iio: adc: ad7192: Revert "properly check spi_get_device_match_data()" (stable-fixes). * iio: adc: ad7768-1: fix one-shot mode data acquisition (git-fixes). * iio: adc: ti-ads7950: use iio_push_to_buffers_with_ts_unaligned() (git- fixes). * iio: frequency: admv1013: add dev variable (stable-fixes). * iio: frequency: admv1013: fix NULL pointer dereference on str (git-fixes). * Input: bcm5974 - recover from failed mode switch (stable-fixes). * Input: i8042 - add TUXEDO InfinityBook Max 16 Gen10 AMD to i8042 quirk table (stable-fixes). * Input: uinput - fix circular locking dependency with ff-core (git-fixes). * Input: uinput - take event lock when submitting FF request "event" (stable- fixes). * Input: xpad - add support for BETOP BTP-KP50B/C controller's wireless mode (stable-fixes). * Input: xpad - add support for Razer Wolverine V3 Pro (stable-fixes). * interconnect: debugfs: fix devm_kstrdup and kfree mismatch (git-fixes). * io_uring/timeout: check unused sqe fields (git-fixes). * iommu/amd: move wait_on_sem() out of spinlock (git-fixes bsc#1260593). * iommu/amd: serialize sequence allocation under concurrent TLB invalidations (git-fixes bsc#1260593). * iommu/vt-d: Remove LPIG from page group response descriptor (jsc#PED-16113). * ipmi: Add limits to event and receive message requests (git-fixes). * ipmi: Check event message buffer response for bad data (git-fixes). * ipmi: ssif_bmc: change log level to dbg in irq callback (git-fixes). * ipmi: ssif_bmc: fix message desynchronization after truncated response (git- fixes). * ipmi: ssif_bmc: fix missing check for copy_to_user() partial failure (git- fixes). * ipv6: rpl: reserve mac_len headroom when recompressed SRH grows (git-fixes). * KVM: arm64: Allow cacheable stage 2 mapping using VMA flags (git-fixes). * KVM: arm64: Assume non-PFNMAP/MIXEDMAP VMAs can be mapped cacheable (git- fixes). * KVM: arm64: Block cacheable PFNMAP mapping (git-fixes). * KVM: arm64: Consolidate idreg callbacks (git-fixes). * KVM: arm64: Discard PC update state on vcpu reset (git-fixes). * KVM: arm64: Finalize ID registers only once per VM (git-fixes). * KVM: arm64: Fix MTE flag initialization for protected VMs (git-fixes). * KVM: arm64: Fix page leak in user_mem_abort() (git-fixes). * KVM: arm64: Fix Trace Buffer trap polarity for protected VMs (git-fixes). * KVM: arm64: Fix Trace Buffer trapping for protected VMs (git-fixes). * KVM: arm64: Fix vma_shift staleness on nested hwpoison path (git-fixes). * KVM: arm64: Hide S1POE from guests when not supported by the host (git- fixes). * KVM: arm64: Limit clearing of ID_{AA64PFR0,PFR1}_EL1.GIC to userspace irqchip (git-fixes). * KVM: arm64: Make all 32bit ID registers fully writable (git-fixes). * KVM: arm64: nv: Add trap config for DBGWCR<15>_EL1 (git-fixes). * KVM: arm64: nv: Return correct RES0 bits for FGT registers (git-fixes). * KVM: arm64: pkvm: Fallback to level-3 mapping on host stage-2 fault (git- fixes). * KVM: arm64: Read PMUVer as unsigned (git-fixes). * KVM: arm64: Rename the device variable to s2_force_noncacheable (git-fixes). * KVM: arm64: Return early from trace helpers when KVM isn't available (git- fixes). * KVM: arm64: Set ID_{AA64PFR0,PFR1}_EL1.GIC when GICv3 is configured (git- fixes). * KVM: arm64: vgic-v3: Release reserved slot outside of lpi_xa's lock (git- fixes). * KVM: arm64: vgic: Fix IIDR revision field extracted from wrong value (git- fixes). * KVM: nSVM: Use vcpu->arch.cr2 when updating vmcb12 on nested #VMEXIT (git- fixes). * KVM: nVMX: Add consistency check for TSC_MULTIPLIER=0 (git-fixes). * KVM: Reject wrapped offset in kvm_reset_dirty_gfn() (git-fixes). * KVM: SEV: Disallow LAUNCH_FINISH if vCPUs are actively being created (git- fixes). * KVM: SEV: Drop WARN on large size for KVM_MEMORY_ENCRYPT_REG_REGION (git- fixes). * KVM: SEV: Lock all vCPUs when synchronzing VMSAs for SNP launch finish (git- fixes). * KVM: SEV: Protect _all_ of sev_mem_enc_register_region() with kvm->lock (git-fixes). * KVM: SEV: Reject attempts to sync VMSA of an already-launched/encrypted vCPU (git-fixes). * KVM: SVM: Disallow EFER.LMSLE when not supported by hardware (git-fixes). * KVM: SVM: Fix a missing kunmap_local() in sev_gmem_post_populate() (git- fixes). * KVM: SVM: Initialize AVIC VMCB fields if AVIC is enabled with in-kernel APIC (git-fixes). * KVM: SVM: Mark VMCB_NPT as dirty on nested VMRUN (git-fixes). * KVM: SVM: Mark VMCB_PERM_MAP as dirty on nested VMRUN (git-fixes). * KVM: SVM: Properly check RAX in the emulator for SVM instructions (git- fixes). * KVM: SVM: Set/clear CR8 write interception when AVIC is (de)activated (git- fixes). * KVM: TDX: Explicitly set user-return MSRs that _may_ be clobbered by the TDX-Module (git-fixes). * KVM: x86/mmu: Fix UBSAN warning when reading nx_huge_pages parameter (git- fixes). * KVM: x86/xen: Fix cleanup logic in emulation of Xen schedop poll hypercalls (git-fixes). * KVM: x86: Add SRCU protection for reading PDPTRs in __get_sregs2() (git- fixes). * KVM: x86: Advertise EferLmsleUnsupported to userspace (git-fixes). * KVM: x86: check for nEPT/nNPT in slow flush hypercalls (git-fixes). * KVM: X86: Fix array_index_nospec protection in __pv_send_ipi (git-fixes). * KVM: x86: Fix shadow paging use-after-free due to unexpected GFN (git- fixes). * KVM: x86: hyper-v: Validate all GVAs during PV TLB flush (git-fixes). * KVM: x86: Ignore cpuid faulting in SMM (git-fixes). * leds: lgm-sso: Remove duplicate assignments for priv->mmap (git-fixes). * leds: qcom-lpg: Check for array overflow when selecting the high resolution (stable-fixes). * lib/hexdump: print_hex_dump_bytes() calls print_hex_dump_debug() (git- fixes). * md/raid1: fix the comparing region of interval tree (bsc#1261555). * md/raid1: serialize overlap io for writemostly disk (bsc#1261555). * media: amphion: Fix race between m2m job_abort and device_run (git-fixes). * media: as102: fix to not free memory after the device is registered in as102_usb_probe() (git-fixes). * media: chips-media: wave5: add missing spinlock protection for handle_dynamic_resolution_change() (git-fixes). * media: chips-media: wave5: add missing spinlock protection for send_eos_event() (git-fixes). * media: chips-media: wave5: fix a potential memory leak in wave5_vdi_init() (git-fixes). * media: dib8000: avoid division by 0 in dib8000_set_dds() (git-fixes). * media: em28xx: fix use-after-free in em28xx_v4l2_open() (git-fixes). * media: hackrf: fix to not free memory after the device is registered in hackrf_probe() (git-fixes). * media: i2c: imx219: Check return value of devm_gpiod_get_optional() in imx219_probe() (git-fixes). * media: i2c: imx283: Enter full standby when stopping streaming (git-fixes). * media: i2c: imx283: Fix hang when going from large to small resolution (git- fixes). * media: i2c: imx412: Assert reset GPIO during probe (git-fixes). * media: i2c: ov08d10: fix image vertical start setting (git-fixes). * media: i2c: ov8856: free control handler on error in ov8856_init_controls() (git-fixes). * media: intel/ipu6: fix error pointer dereference (git-fixes). * media: mtk-jpeg: fix use-after-free in release path due to uncancelled work (git-fixes). * media: nxp: imx8-isi: Reduce minimum queued buffers from 2 to 0 (git-fixes). * media: omap3isp: drop the use count of v4l2 pipeline (git-fixes). * media: pci: zoran: fix potential memory leak in zoran_probe() (git-fixes). * media: rc: streamzap: Error handling in probe (git-fixes). * media: rc: xbox_remote: heed DMA restrictions (git-fixes). * media: saa7164: add ioremap return checks and cleanups (git-fixes). * media: staging: imx: configure src_mux in csi_start (git-fixes). * media: staging: imx: request mbus_config in csi_start (git-fixes). * media: uvcvideo: Enable VB2_DMABUF for metadata stream (git-fixes). * media: videobuf2: Set vma_flags in vb2_dma_sg_mmap (git-fixes). * media: vidtv: fix nfeeds state corruption on start_streaming failure (git- fixes). * media: vidtv: fix NULL pointer dereference in vidtv_channel_pmt_match_sections (git-fixes). * media: vidtv: fix pass-by-value structs causing MSAN warnings (git-fixes). * memory: tegra30-emc: Fix dll_change check (git-fixes). * memory: tegra124-emc: Fix dll_change check (git-fixes). * mfd: core: Preserve OF node when ACPI handle is present (git-fixes). * mfd: mc13xxx-core: Fix memory leak in mc13xxx_add_subdevice_pdata() (git- fixes). * mfd: stpmic1: Attempt system shutdown twice in case PMIC is confused (git- fixes). * mkspec: Add signature to source list only when it exists. * mmc: sdhci-of-dwcmshc: Disable clock before DLL configuration (git-fixes). * mmc: vub300: fix NULL-deref on disconnect (git-fixes). * modpost: Amend ppc64 save/restfpr symnames for -Os build (bsc#1215199). * mtd: docg3: fix use-after-free in docg3_release() (git-fixes). * mtd: parsers: ofpart: call of_node_get() for dedicated subpartitions (git- fixes). * mtd: parsers: ofpart: call of_node_put() only in ofpart_fail path (git- fixes). * mtd: physmap_of_gemini: Fix disabled pinctrl state check (git-fixes). * mtd: rawnand: sunxi: fix sunxi_nfc_hw_ecc_read_extra_oob (git-fixes). * mtd: spi-nor: core: correct the op.dummy.nbytes when check read operations (git-fixes). * mtd: spi-nor: debugfs: fix out-of-bounds read in spi_nor_params_show() (git- fixes). * mtd: spi-nor: sst: Fix write enable before AAI sequence (git-fixes). * mtd: spi-nor: swp: check SR_TB flag when getting tb_mask (git-fixes). * net-shapers: don't free reply skb after genlmsg_reply() (git-fixes). * net/mlx5: Fix HCA caps leak on notifier init failure (git-fixes). * net/rds: reset op_nents when zerocopy page pin fails (bsc#1265626). * net/sched: cls_fw: fix NULL dereference of "old" filters before change() (git-fixes). * net/sched: fix pedit partial COW leading to page cache corruption (bsc#1265421). * net: gro: don't merge zcopy skbs (git-fixes). * net: hamradio: 6pack: fix uninit-value in sixpack_receive_buf (git-fixes). * net: mana: Add MAC address to vPort logs and clarify error messages (git- fixes). * net: mana: check xdp_rxq registration before unreg in mana_destroy_rxq() (git-fixes). * net: mana: Don't overwrite port probe error with add_adev result (git- fixes). * net: mana: Fix crash from unvalidated SHM offset read from BAR0 during FLR (bsc#1265846). * net: mana: Fix EQ leak in mana_remove on NULL port (git-fixes). * net: mana: Fix RX skb truesize accounting (bsc#1248754). * net: mana: Guard mana_remove against double invocation (git-fixes). * net: mana: hardening: Validate adapter_mtu from MANA_QUERY_DEV_CONFIG (git- fixes). * net: mana: hardening: Validate doorbell ID from GDMA_REGISTER_DEVICE response (git-fixes). * net: mana: Init gf_stats_work before potential error paths in probe (git- fixes). * net: mana: Init link_change_work before potential error paths in probe (git- fixes). * net: mana: Move current_speed debugfs file to mana_init_port() (git-fixes). * net: mana: remove double CQ cleanup in mana_create_rxq error path (git- fixes). * net: mana: Set default number of queues to 16 (bsc#1261648). * net: mana: Skip WQ object destruction for uninitialized RXQ (git-fixes). * net: mana: Use at least SZ_4K in doorbell ID range check (git-fixes). * net: mana: Use pci_name() for debugfs directory naming (git-fixes). * net: phy: broadcom: Save PHY counters during suspend (git-fixes). * net: phy: DP83TC811: add reading of abilities (git-fixes). * net: phy: dp83869: fix setting CLK_O_SEL field (git-fixes). * net: phy: fix a return path in get_phy_c45_ids() (git-fixes). * net: phy: qcom: at803x: Use the correct bit to disable extended next page (git-fixes). * net: stmmac: Fix PTP ref clock for Tegra234 (git-fixes). * net: usb: asix: ax88772: re-add usbnet_link_change() in phylink callbacks (git-fixes). * net: usb: cdc-phonet: fix skb frags[] overflow in rx_complete() (git-fixes). * net: usb: rtl8150: fix use-after-free in rtl8150_start_xmit() (git-fixes). * net: usb: rtl8150: free skb on usb_submit_urb() failure in xmit (git-fixes). * net: wan: fsl_ucc_hdlc: fix ucc_hdlc_remove (git-fixes). * net: wan: fsl_ucc_hdlc: fix uhdlc_memclean (git-fixes). * net: wan: fsl_ucc_hdlc: free tx_skbuff in uhdlc_memclean (git-fixes). * net: wwan: t7xx: validate port_count against message length in t7xx_port_enum_msg_handler (git-fixes). * NFC: digital: Bounds check NFC-A cascade depth in SDD response handler (git- fixes). * nfc: llcp: add missing return after LLCP_CLOSED checks (git-fixes). * nfc: pn533: allocate rx skb before consuming bytes (git-fixes). * nfc: s3fwrn5: allocate rx skb before consuming bytes (git-fixes). * NFC: trf7970a: Ignore antenna noise when checking for RF field (git-fixes). * nvme-apple: drop invalid put of admin queue reference count (git-fixes). * nvme-auth: Include SC_C in RVAL controller hash (bsc#1260428). * nvme-loop: do not cancel I/O and admin tagset during ctrl reset/shutdown (bsc#1262709). * nvme-pci: add NVME_QUIRK_DISABLE_WRITE_ZEROES for Kingston OM3SGP4 (git- fixes). * nvme: Allow reauth from sysfs (bsc#1259672). * nvme: Expose the tls_configured sysfs for secure concat connections (bsc#1259672). * nvme: expose TLS mode (bsc#1259672). * nvme: fix admin queue leak on controller reset (git-fixes). * nvme: fix PCIe subsystem reset controller state transition (bsc#1261738). * nvmet-tcp: propagate nvmet_tcp_build_pdu_iovec() errors to its callers (git- fixes). * ocfs2: fix possible deadlock between unlink and dio_end_io_write (bsc#1258718). * ocfs2: split transactions in dio completion to avoid credit exhaustion (bsc#1258718). * openvswitch: vport: fix self-deadlock on release of tunnel ports (git- fixes). * panic/printk: replace other_cpu_in_panic() with panic_on_other_cpu() (bsc#1261149). * panic/printk: replace this_cpu_in_panic() with panic_on_this_cpu() (bsc#1261149). * panic: introduce helper functions for panic state (bsc#1261149). * panic: use angle-bracket include for panic.h (bsc#1261149). * PCI/AER: Clear only error bits in PCIe Device Status (git-fixes). * PCI/AER: Stop ruling out unbound devices as error source (git-fixes). * PCI/ASPM: Fix pci_clear_and_set_config_dword() usage (git-fixes). * PCI/NPEM: Set LED_HW_PLUGGABLE for hotplug-capable ports (git-fixes). * PCI/TPH: Allow TPH enable for RCiEPs (git-fixes). * PCI: dwc: Apply ECRC workaround to DesignWare 5.00a as well (git-fixes). * PCI: dwc: rcar-gen4: Change EPC BAR alignment to 4K as per the documentation (git-fixes). * PCI: Enable AtomicOps only if Root Port supports them (git-fixes). * PCI: endpoint: pci-epf-ntb: Remove duplicate resource teardown (git-fixes). * PCI: endpoint: pci-epf-vntb: Stop cmd_handler work in epf_ntb_epc_cleanup (git-fixes). * PCI: epf-mhi: Return 0, not remaining timeout, when eDMA ops complete (git- fixes). * PCI: hv: Set default NUMA node to 0 for devices without affinity info (bsc#1261648). * PCI: mediatek-gen3: Prevent leaking IRQ domains when IRQ not found (git- fixes). * PCI: qcom: Advertise Hotplug Slot Capability with no Command Completion support (git-fixes). * PCI: tegra194: Allow system suspend when the Endpoint link is not up (git- fixes). * PCI: tegra194: Disable direct speed change for Endpoint mode (git-fixes). * PCI: tegra194: Disable LTSSM after transition to Detect on surprise link down (git-fixes). * PCI: tegra194: Disable PERST# IRQ only in Endpoint mode (git-fixes). * PCI: tegra194: Fix CBB timeout caused by DBI access before core power-on (git-fixes). * PCI: tegra194: Fix polling delay for L2 state (git-fixes). * PCI: tegra194: Free up Endpoint resources during remove() (git-fixes). * PCI: tegra194: Increase LTSSM poll time on surprise link down (git-fixes). * PCI: tegra194: Set LTR message request before PCIe link up in Endpoint mode (git-fixes). * PCI: tegra194: Use devm_gpiod_get_optional() to parse "nvidia,refclk-select" (git-fixes). * PCI: tegra194: Use DWC IP core version (git-fixes). * pinctrl: abx500: Fix type of 'argument' variable (git-fixes). * pinctrl: Fix spelling problem (git-fixes). * pinctrl: intel: Fix the revision for new features (1kOhm PD, HW debouncer) (stable-fixes). * pinctrl: pic32: change all cases of bare 'unsigned' to 'unsigned int' (git- fixes). * pinctrl: pic32: use consistent spacing around '+' (git-fixes). * pinctrl: pinctrl-pic32: Fix resource leak (git-fixes). * pinctrl: realtek: Fix function signature for config argument (git-fixes). * pinctrl: renesas: rzg2l: Fix save/restore of {IOLH,IEN,PUPD,SMT} registers (git-fixes). * platform/chrome: chromeos_tbmc: Drop wakeup source on remove (git-fixes). * platform/surface: surfacepro3_button: Drop wakeup source on remove (git- fixes). * platform/x86/amd: pmc: Add Thinkpad L14 Gen3 to quirk_s2idle_bug (stable- fixes). * platform/x86/intel-uncore-freq: Handle autonomous UFS status bit (git- fixes). * platform/x86: asus-wmi: adjust screenpad power/brightness handling (git- fixes). * platform/x86: asus-wmi: fix screenpad brightness range (git-fixes). * platform/x86: dell-wmi-sysman: bound enumeration string aggregation (git- fixes). * platform/x86: dell_rbu: avoid uninit value usage in packet_size_write() (git-fixes). * platform/x86: hp-wmi: Ignore backlight and FnLock events (stable-fixes). * platform/x86: panasonic-laptop: Fix OPTD notifier registration and cleanup (git-fixes). * power: supply: axp288_charger: Do not cancel work before initializing it (git-fixes). * power: supply: max17042: avoid overflow when determining health (git-fixes). * powerpc/crash: fix backup region offset update to elfcorehdr (bsc#1259535). * powerpc/crash: Update backup region offset in elfcorehdr on memory hotplug (bsc#1259535). * printk/nbcon/panic: Allow printk kthread to sleep when the system is in panic (bsc#1261149). * printk/nbcon: Block printk kthreads when any CPU is in an emergency context (bsc#1261149). * printk/nbcon: Release nbcon consoles ownership in atomic flush after each emitted record (bsc#1261149). * printk/nbcon: Restore IRQ in atomic flush after each emitted record (bsc#1261149). * printk/nbcon: use panic_on_this_cpu() helper (bsc#1261149). * printk: Allow printk_trigger_flush() to flush all types (bsc#1262750). * printk: Allow to use the printk kthread immediately even for 1st nbcon (jsc#PED-7912). * printk: Avoid irq_work for printk_deferred() on suspend (bsc#1262750). * printk: Avoid scheduling irq_work on suspend (bsc#1262750). * printk: console_flush_one_record() code cleanup (bsc#1261149). * printk: Introduce console_flush_one_record (bsc#1261149). * printk: Use console_flush_one_record for legacy printer kthread (bsc#1261149). * pwm: imx-tpm: Count the number of enabled channels in probe (git-fixes). * qat: don't mess with ->d_name (jsc#PED-14238). * r8152: fix incorrect register write to USB_UPHY_XTAL (git-fixes). * RDMA/irdma: Fix double free related to rereg_user_mr (git-fixes). * RDMA/mana: Fix error unwind in mana_ib_create_qp_rss() (git-fixes). * RDMA/mana: Fix mana_destroy_wq_obj() cleanup in mana_ib_create_qp_rss() (git-fixes). * RDMA/mana: Remove user triggerable WARN_ON() in mana_ib_create_qp_rss() (git-fixes). * RDMA/mana: Validate rx_hash_key_len (git-fixes). * RDMA/mana_ib: cleanup the usage of mana_gd_send_request() (git-fixes). * RDMA/mana_ib: Disable RX steering on RSS QP destroy (git-fixes). * RDMA/mana_ib: Support memory windows (git-fixes). * regulator: act8945a: fix OF node reference imbalance (git-fixes). * regulator: bd9571mwv: fix OF node reference imbalance (git-fixes). * regulator: max77650: fix OF node reference imbalance (git-fixes). * regulator: mt6357: fix OF node reference imbalance (git-fixes). * regulator: rk808: fix OF node reference imbalance (git-fixes). * remoteproc: xlnx: Fix sram property parsing (git-fixes). * remoteproc: xlnx: Only access buffer information if IPI is buffered (git- fixes). * Revert "ALSA: usb: Increase volume range that triggers a warning" (git- fixes). * Revert "serial: 8250: Revert "drop lockdep annotation from serial8250_clear_IER()"" (bsc#1262480). * Revert "serial: 8250: Switch to nbcon console" (bsc#1262480). * rtc: abx80x: Disable alarm feature if no interrupt attached (git-fixes). * rtc: ntxec: fix OF node reference imbalance (git-fixes). * s390/dasd: Copy detected format information to secondary device (bsc#1259994). * s390/dasd: Fix gendisk parent after copy pair swap (bsc#1259994). * s390/dasd: Move quiesce state with pprc swap (bsc#1259994). * sched/fair: Change likelyhood of nohz.nr_cpus (bsc#1234634 bsc#1258961). * sched/fair: Move checking for nohz cpus after time check (bsc#1234634 bsc#1258961). * sched/fair: Remove nohz.nr_cpus and use weight of cpumask instead (bsc#1234634 bsc#1258961). * scsi: lpfc: Add clean up of aborted NVMe commands during PCI fcn reset (bsc#1262019). * scsi: lpfc: Add log messages to fabric login error labels (bsc#1262019). * scsi: lpfc: Add PCI ID support for LPe42100 series adapters (bsc#1262019). * scsi: lpfc: Add REG_VFI mailbox cmd error handling (bsc#1262019). * scsi: lpfc: Break out of IRQ affinity assignment when mask reaches nr_cpu_ids (bsc#1262019). * scsi: lpfc: Check ASIC_ID register to aid diagnostics during failed fw updates (bsc#1262019). * scsi: lpfc: Cleanup error exit paths in lpfc_fdmi_cmd() and associated messages (bsc#1262019). * scsi: lpfc: ELIMINATE kernel-doc warnings in lpfc.h (bsc#1262019). * scsi: lpfc: Fix incorrect txcmplq_cnt during cleanup in lpfc_sli_abort_ring() (bsc#1262019). * scsi: lpfc: Introduce 128G link speed selection and support (bsc#1262019). * scsi: lpfc: Log discarded and insufficient RQE buffer events (bsc#1262019). * scsi: lpfc: Log MCQE contents for mbox commands with no context (bsc#1262019). * scsi: lpfc: Properly set WC for DPP mapping (bsc#1262019). * scsi: lpfc: Reduce pointer chasing when accessing vmid_flag (bsc#1262019). * scsi: lpfc: Remove deprecated PBDE feature (bsc#1262019). * scsi: lpfc: Remove unnecessary ndlp kref get in lpfc_check_nlp_post_devloss (bsc#1262019). * scsi: lpfc: Restrict first burst to non-FCoE and SLI4 adapters only (bsc#1262019). * scsi: lpfc: Select mailbox rq_create cmd version based on SLI4 if_type (bsc#1262019). * scsi: lpfc: Update class of service bit field to 3 bits for WQE submissions (bsc#1262019). * scsi: lpfc: Update construction of SGL when XPSGL is enabled (bsc#1262019). * scsi: lpfc: Update copyright year string for 2026 (bsc#1262019). * scsi: lpfc: Update log message when ndlp kref get is unsuccessful (bsc#1262019). * scsi: lpfc: Update lpfc version to 14.4.0.14 (bsc#1262019). * scsi: lpfc: Update lpfc version to 15.0.0.0 (bsc#1262019). * scsi: lpfc: Update outdated comment for renamed lpfc_freenode() (bsc#1262019). * scsi: lpfc: Use min_t() instead of min() in lpfc_sli4_driver_resource_setup (bsc#1262019). * scsi: lpfc: Use the crc32c() function (bsc#1262019). * scsi: mpi3mr: Add NULL checks when resetting request and reply queues (git- fixes). * scsi: ses: Fix devices attaching to different hosts (git-fixes). * scsi: storvsc: Handle PERSISTENT_RESERVE_IN truncation for Hyper-V vFC (git- fixes). * scsi: target: iscsi: validate CHAP_R length before base64 decode (bsc#1265449). * scsi: ufs: ufs-pci: Add support for Intel Wildcat Lake (jsc#PED-13771). * selftests/bpf: Test cross-sign 64bits range refinement (git-fixes). * selftests/bpf: Test invariants on JSLT crossing sign (git-fixes). * selftests/bpf: test refining u32/s32 bounds when ranges cross min/max boundary (git-fixes). * selftests: net: build net/lib dependency in all target (bsc#1262245). * selinux: don't reserve xattr slot when we won't fill it (stable-fixes). * selinux: prune /sys/fs/selinux/disable (stable-fixes). * selinux: shrink critical section in sel_write_load() (stable-fixes). * serial: 8250: Add serial8250_handle_irq_locked() (bsc#1262480). * serial: 8250: Protect LCR write in shutdown (bsc#1262480). * serial: 8250_dw: Avoid unnecessary LCR writes (bsc#1262480). * serial: 8250_dw: Ensure BUSY is deasserted (bsc#1262480). * serial: 8250_dw: Rework dw8250_handle_irq() locking and IIR handling (bsc#1262480). * serial: 8250_dw: Rework IIR_NO_INT handling to stop interrupt storm (bsc#1262480). * Set CONFIG_INTEL_TSX_MODE to follow upstream AUTO default (bsc#1263044). * soc/tegra: cbb: Set ERD on resume for err interrupt (git-fixes). * soc: qcom: aoss: compare against normalized cooling state (git-fixes). * soc: qcom: llcc: fix v1 SB syndrome register offset (git-fixes). * soc: qcom: ocmem: make the core clock optional (git-fixes). * soc: qcom: ocmem: register reasons for probe deferrals (git-fixes). * soc: qcom: ocmem: return -EPROBE_DEFER is ocmem is not available (git- fixes). * sound: ua101: fix division by zero at probe (git-fixes). * soundwire: bus: demote UNATTACHED state warnings to dev_dbg() (git-fixes). * soundwire: cadence: Clear message complete before signaling waiting thread (git-fixes). * soundwire: debugfs: initialize firmware_file to empty string (git-fixes). * spi: aspeed-smc: fix controller deregistration (git-fixes). * spi: at91-usart: fix controller deregistration (git-fixes). * spi: atmel: fix controller deregistration (git-fixes). * spi: bcm63xx: fix controller deregistration (git-fixes). * spi: bcmbca-hsspi: fix controller deregistration (git-fixes). * spi: cadence: fix controller deregistration (git-fixes). * spi: cadence: fix unclocked access on unbind (git-fixes). * spi: ch341: fix memory leaks on probe failures (git-fixes). * spi: coldfire-qspi: fix controller deregistration (git-fixes). * spi: dln2: fix controller deregistration (git-fixes). * spi: fix controller cleanup() documentation (git-fixes). * spi: fix misleading controller deregistration kernel-doc (git-fixes). * spi: fix misleading controller registration kernel-doc (git-fixes). * spi: fsl-espi: fix controller deregistration (git-fixes). * spi: fsl-qspi: Use reinit_completion() for repeated operations (git-fixes). * spi: fsl: fix controller deregistration (git-fixes). * spi: hisi-kunpeng: prevent infinite while() loop in hisi_spi_flush_fifo (git-fixes). * spi: img-spfi: fix controller deregistration (git-fixes). * spi: imx: fix runtime pm leak on probe deferral (git-fixes). * spi: imx: fix use-after-free on unbind (git-fixes). * spi: lantiq-ssc: fix controller deregistration (git-fixes). * spi: meson-spicc: fix controller deregistration (git-fixes). * spi: microchip-core-qspi: fix controller deregistration (git-fixes). * spi: mpc52xx: fix controller deregistration (git-fixes). * spi: mpc52xx: fix use-after-free on registration failure (git-fixes). * spi: mpc52xx: fix use-after-free on unbind (git-fixes). * spi: mtk-nor: fix controller deregistration (git-fixes). * spi: mtk-snfi: fix memory leak in probe (git-fixes). * spi: mtk-snfi: unregister ECC engine on probe failure and remove() callback (git-fixes). * spi: mxic: fix controller deregistration (git-fixes). * spi: mxs: fix controller deregistration (git-fixes). * spi: npcm-pspi: fix controller deregistration (git-fixes). * spi: omap2-mcspi: fix controller deregistration (git-fixes). * spi: orion: fix clock imbalance on registration failure (git-fixes). * spi: orion: fix controller deregistration (git-fixes). * spi: orion: fix runtime pm leak on unbind (git-fixes). * spi: pic32-sqi: fix controller deregistration (git-fixes). * spi: pic32: fix controller deregistration (git-fixes). * spi: pl022: fix controller deregistration (git-fixes). * spi: qup: fix controller deregistration (git-fixes). * spi: rockchip: fix controller deregistration (git-fixes). * spi: rockchip: Read ISR, not IMR, to detect cs-inactive IRQ (git-fixes). * spi: rspi: fix controller deregistration (git-fixes). * spi: s3c64xx: fix controller deregistration (git-fixes). * spi: s3c64xx: fix NULL-deref on driver unbind (git-fixes). * spi: sh-hspi: fix controller deregistration (git-fixes). * spi: sprd: fix controller deregistration (git-fixes). * spi: st-ssc4: fix controller deregistration (git-fixes). * spi: sun4i: fix controller deregistration (git-fixes). * spi: sun6i: fix controller deregistration (git-fixes). * spi: syncuacer: fix controller deregistration (git-fixes). * spi: ti-qspi: fix controller deregistration (git-fixes). * spi: topcliff-pch: fix controller deregistration (git-fixes). * spi: topcliff-pch: fix use-after-free on unbind (git-fixes). * spi: uniphier: fix controller deregistration (git-fixes). * spi: uniphier: Simplify clock handling with devm_clk_get_enabled() (stable- fixes). * spi: zynq-qspi: fix controller deregistration (git-fixes). * spi: zynq-qspi: Simplify clock handling with devm_clk_get_enabled() (stable- fixes). * spi: zynqmp-gqspi: fix controller deregistration (git-fixes). * staging: media: atomisp: Disallow all private IOCTLs (git-fixes). * staging: rtl8723bs: initialize le_tmp64 in rtw_BIP_verify() (git-fixes). * staging: sm750fb: fix division by zero in ps_to_hz() (git-fixes). * staging: vme_user: fix root device leak on init failure (git-fixes). * tg3: replace placeholder MAC address with device property (git-fixes). * thermal/drivers/spear: Fix error condition for reading st,thermal-flags (git-fixes). * thermal/drivers/sprd: Fix raw temperature clamping in sprd_thm_rawdata_to_temp (git-fixes). * thermal/drivers/sprd: Fix temperature clamping in sprd_thm_temp_to_rawdata (git-fixes). * tools/power/turbostat: Fix microcode patch level output for AMD/Hygon (git- fixes). * tools: hv: Fix cross-compilation (git-fixes). * tpm2-sessions: Fix missing tpm_buf_destroy() in tpm2_read_public() (git- fixes). * tpm: avoid -Wunused-but-set-variable (git-fixes). * tpm: Fix auth session leak in tpm2_get_random() error path (git-fixes). * tpm: tpm_tis: add error logging for data transfer (git-fixes). * tpm: tpm_tis: stop transmit if retries are exhausted (git-fixes). * tpm: Use kfree_sensitive() to free auth session in tpm_dev_release() (git- fixes). * tty: serial: ip22zilog: Fix section mispatch warning (git-fixes). * udp: Force compute_score to always inline (bsc#1241259). * unshare: fix unshare_fs() handling (git-fixes). * USB: cdc-acm: Add quirks for Yoga Book 9 14IAH10 INGENIC touchscreen (git- fixes). * usb: chipidea: core: allow ci_irq_handler() handle both ID and VBUS change (git-fixes). * usb: chipidea: otg: not wait vbus drop if use role_switch (git-fixes). * USB: core: add NO_LPM quirk for Razer Kiyo Pro webcam (stable-fixes). * usb: gadget: dummy_hcd: fix premature URB completion when ZLP follows partial transfer (stable-fixes). * usb: gadget: f_hid: Add missing error code (git-fixes). * usb: gadget: f_hid: don't call cdev_init while cdev in use (git-fixes). * usb: gadget: f_hid: move list and spinlock inits from bind to alloc (stable- fixes). * usb: gadget: f_ncm: validate minimum block_len in ncm_unwrap_ntb() (git- fixes). * usb: gadget: f_phonet: fix skb frags[] overflow in pn_rx_complete() (git- fixes). * usb: gadget: f_uac1_legacy: validate control request size (stable-fixes). * usb: gadget: renesas_usb3: validate endpoint index in standard request handlers (git-fixes). * usb: gadget: u_ether: Fix NULL pointer deref in eth_get_drvinfo (git-fixes). * USB: omap_udc: DMA: Don't enable burst 4 mode (git-fixes). * usb: port: add delay after usb_hub_set_port_power() (git-fixes). * usb: quirks: add DELAY_INIT quirk for another Silicon Motion flash drive (stable-fixes). * USB: serial: io_edgeport: add support for Blackbox IC135A (stable-fixes). * USB: serial: option: add MeiG Smart SRM825WN (stable-fixes). * USB: serial: option: add support for Rolling Wireless RW135R-GL (stable- fixes). * USB: serial: option: add Telit Cinterion FN990A MBIM composition (git- fixes). * USB: serial: option: add Telit Cinterion LE910Cx compositions (stable- fixes). * usb: storage: Expand range of matched versions for VL817 quirks entry (git- fixes). * usb: typec: tcpm: reset internal port states on soft reset AMS (git-fixes). * usb: ulpi: fix memory leak on ulpi_register() error paths (git-fixes). * usb: usblp: fix heap leak in IEEE 1284 device ID via short response (stable- fixes). * usb: usblp: fix uninitialized heap leak via LPGETSTATUS ioctl (stable- fixes). * usb: xhci: Make usb_host_endpoint.hcpriv survive endpoint_disable() (git- fixes). * usbip: validate number_of_packets in usbip_pack_ret_submit() (git-fixes). * vfio/pci: Lock upstream bridge for vfio_pci_core_disable() (git-fixes). * vfio/pds: Fix memory leak in pds_vfio_dirty_enable() (git-fixes). * vfio/pds: Fix missing detach_ioas op (git-fixes). * vfio/pds: replace bitmap_free with vfree (git-fixes). * vfio/type1: Fix error unwind in migration dirty bitmap allocation (git- fixes). * vfio: Fix unbalanced vfio_df_close call in no-iommu mode (git-fixes). * vfio: Prevent open_count decrement to negative (git-fixes). * virt: arm-cca-guest: fix error check for RSI_INCOMPLETE (git-fixes). * virt: sev-guest: Do not use host-controlled page order in cleanup path (git- fixes). * virt: tdx-guest: Fix handling of host controlled 'quote' buffer length (git- fixes). * virt: tdx-guest: Return error for GetQuote failures (git-fixes). * wifi: ath5k: do not access array OOB (git-fixes). * wifi: ath9k: Fix typo (git-fixes). * wifi: ath10k: fix station lookup failure during disconnect (git-fixes). * wifi: ath11k: fix memory leaks in beacon template setup (git-fixes). * wifi: ath12k: fix leak in some ath12k_wmi_xxx() functions (git-fixes). * wifi: ath12k: use lockdep_assert_in_rcu_read_lock() for RCU assertions (git- fixes). * wifi: b43: enforce bounds check on firmware key index in b43_rx() (git- fixes). * wifi: b43legacy: enforce bounds check on firmware key index in RX path (git- fixes). * wifi: brcmfmac: Fix error pointer dereference (git-fixes). * wifi: brcmfmac: Fix potential use-after-free issue when stopping watchdog task (git-fixes). * wifi: brcmfmac: validate bsscfg indices in IF events (stable-fixes). * wifi: brcmsmac: Fix dma_free_coherent() size (git-fixes). * wifi: cw1200: Revert "Fix locking in error paths" (git-fixes). * wifi: libertas: notify firmware load wait on disconnect (git-fixes). * wifi: mac80211: check ieee80211_rx_data_set_link return in pubsta MLO path (git-fixes). * wifi: mac80211: check tdls flag in ieee80211_tdls_oper (stable-fixes). * wifi: mac80211: drop stray 'static' from fast-RX rx_result (git-fixes). * wifi: mac80211: handle VHT EXT NSS in ieee80211_determine_our_sta_mode() (git-fixes). * wifi: mac80211: remove station if connection prep fails (git-fixes). * wifi: mac80211: use safe list iteration in radar detect work (git-fixes). * wifi: mt76: Fix memory leak after mt76_connac_mcu_alloc_sta_req() (git- fixes). * wifi: mt76: mt792x: describe USB WFSYS reset with a descriptor (stable- fixes). * wifi: mt76: mt792x: fix mt7925u USB WFSYS reset handling (git-fixes). * wifi: mt76: mt7615: fix use_cts_prot support (git-fixes). * wifi: mt76: mt7915: fix use-after-free bugs in mt7915_mac_dump_work() (git- fixes). * wifi: mt76: mt7915: fix use_cts_prot support (git-fixes). * wifi: mt76: mt7921: fix 6GHz regulatory update on connection (git-fixes). * wifi: mt76: mt7921: fix a potential clc buffer length underflow (git-fixes). * wifi: mt76: mt7921: fix ROC abort flow interruption in mt7921_roc_work (git- fixes). * wifi: mt76: mt7921: Place upper limit on station AID (git-fixes). * wifi: mt76: mt7921: Reset ampdu_state state in case of failure in mt76_connac2_tx_check_aggr() (git-fixes). * wifi: mt76: mt7925: fix AMPDU state handling in mt7925_tx_check_aggr (git- fixes). * wifi: mt76: mt7925: fix incorrect length field in txpower command (git- fixes). * wifi: mt76: mt7925: Fix incorrect MLO mode in firmware control (git-fixes). * wifi: mt76: mt7925: fix incorrect TLV length in CLC command (git-fixes). * wifi: mt76: mt7925: prevent NULL pointer dereference in mt7925_tx_check_aggr() (git-fixes). * wifi: mt76: mt7925: prevent NULL vif dereference in mt7925_mac_write_txwi (git-fixes). * wifi: mt76: mt7996: fix FCS error flag check in RX descriptor (git-fixes). * wifi: mt76: mt7996: fix struct mt7996_mcu_uni_event (git-fixes). * wifi: mt76: mt7996: fix use-after-free bugs in mt7996_mac_dump_work() (git- fixes). * wifi: mwifiex: Fix memory leak in mwifiex_11n_aggregate_pkt() (git-fixes). * wifi: nl80211: fix NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST usage (git- fixes). * wifi: nl80211: require admin perm on SET_PMK / DEL_PMK (git-fixes). * wifi: rsi: fix kthread lifetime race between self-exit and external-stop (git-fixes). * wifi: rt2x00usb: fix devres lifetime (git-fixes). * wifi: rtl8xxxu: fix potential use of uninitialized value (git-fixes). * wifi: rtlwifi: pci: fix possible use-after-free caused by unfinished irq_prepare_bcn_tasklet (git-fixes). * wifi: rtw88: Add additional USB IDs for RTL8812BU (bsc#1263135). * wifi: rtw88: Add BUFFALO WI-U3-866DHP to the USB ID list (bsc#1263135). * wifi: rtw88: Add support for Mercusys MA30N and D-Link DWA-T185 rev. A1 (bsc#1263135). * wifi: rtw88: check for PCI upstream bridge existence (git-fixes). * wifi: rtw88: fix device leak on probe failure (git-fixes). * wifi: rtw88: rtw8822bu VID/PID for BUFFALO WI-U2-866DM (bsc#1263135). * wifi: rtw89: phy: fix uninitialized variable access in rtw89_phy_cfo_set_crystal_cap() (git-fixes). * wifi: wl1251: validate packet IDs before indexing tx_frames (stable-fixes). * x86/acpi/boot: Correct acpi_is_processor_usable() check again (git-fixes). * x86/boot/sev: Avoid shared GHCB page for early memory acceptance (git- fixes). * x86/boot/sev: Support memory acceptance in the EFI stub under SVSM (git- fixes). * x86/boot: Fix page table access in 5-level to 4-level paging transition (git-fixes). * x86/CPU/AMD: Add X86_FEATURE_ZEN6 (bsc#1263255). * x86/cpufeatures: Free up unused feature bits (bsc#1263255). * x86/fred: Fix early boot failures on SEV-ES/SNP guests (git-fixes). * x86/mtrr: Check if fixed-range MTRRs exist in mtrr_save_fixed_ranges() (git- fixes). * x86/sev: Add missing RIP_REL_REF() invocations during sme_enable() (git- fixes). * x86/sev: Do not touch VMSA pages during SNP guest memory kdump (git-fixes). * x86/sev: Ensure SVSM reserved fields in a page validation entry are initialized to zero (git-fixes). * x86/sev: Fix operator precedence in GHCB_MSR_VMPL_REQ_LEVEL macro (git- fixes). * x86/sev: Improve handling of writes to intercepted TSC MSRs (git-fixes). * x86/sev: Make sure pages are not skipped during kdump (git-fixes). * x86/tsx: Get the tsx= command line parameter with early_param() (bsc#1250951 bsc#1263044). * x86/tsx: Make tsx_ctrl_state static (bsc#1250951 bsc#1263044). * x86/vmware: Parse MP tables for SEV-SNP enabled guests under VMware hypervisors (git-fixes). * X.509: Fix out-of-bounds access when parsing extensions (git-fixes). * Xarray: do not return sibling entries from xas_find_marked() (bsc#1263815). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server High Availability Extension 16.0 zypper in -t patch SUSE-SLES-HA-16.0-814=1 ## Package List: * SUSE Linux Enterprise Server High Availability Extension 16.0 (ppc64le s390x x86_64) * cluster-md-kmp-default-debuginfo-6.12.0-160000.33.1 * gfs2-kmp-default-6.12.0-160000.33.1 * gfs2-kmp-default-debuginfo-6.12.0-160000.33.1 * kernel-default-debuginfo-6.12.0-160000.33.1 * kernel-default-debugsource-6.12.0-160000.33.1 * cluster-md-kmp-default-6.12.0-160000.33.1 * dlm-kmp-default-debuginfo-6.12.0-160000.33.1 * dlm-kmp-default-6.12.0-160000.33.1 * SUSE Linux Enterprise Server High Availability Extension 16.0 (nosrc) * kernel-default-6.12.0-160000.33.1 ## References: * https://www.suse.com/security/cve/CVE-2023-2058.html * https://www.suse.com/security/cve/CVE-2024-14027.html * https://www.suse.com/security/cve/CVE-2025-40181.html * https://www.suse.com/security/cve/CVE-2025-40219.html * https://www.suse.com/security/cve/CVE-2025-68265.html * https://www.suse.com/security/cve/CVE-2025-68310.html * https://www.suse.com/security/cve/CVE-2025-71238.html * https://www.suse.com/security/cve/CVE-2025-71268.html * https://www.suse.com/security/cve/CVE-2025-71269.html * https://www.suse.com/security/cve/CVE-2025-71302.html * https://www.suse.com/security/cve/CVE-2026-23168.html * https://www.suse.com/security/cve/CVE-2026-23209.html * https://www.suse.com/security/cve/CVE-2026-23236.html * https://www.suse.com/security/cve/CVE-2026-23237.html * https://www.suse.com/security/cve/CVE-2026-23245.html * https://www.suse.com/security/cve/CVE-2026-23246.html * https://www.suse.com/security/cve/CVE-2026-23253.html * https://www.suse.com/security/cve/CVE-2026-23260.html * https://www.suse.com/security/cve/CVE-2026-23261.html * https://www.suse.com/security/cve/CVE-2026-23264.html * https://www.suse.com/security/cve/CVE-2026-23266.html * https://www.suse.com/security/cve/CVE-2026-23268.html * https://www.suse.com/security/cve/CVE-2026-23269.html * https://www.suse.com/security/cve/CVE-2026-23271.html * https://www.suse.com/security/cve/CVE-2026-23273.html * https://www.suse.com/security/cve/CVE-2026-23276.html * https://www.suse.com/security/cve/CVE-2026-23279.html * https://www.suse.com/security/cve/CVE-2026-23290.html * https://www.suse.com/security/cve/CVE-2026-23291.html * https://www.suse.com/security/cve/CVE-2026-23298.html * https://www.suse.com/security/cve/CVE-2026-23300.html * https://www.suse.com/security/cve/CVE-2026-23307.html * https://www.suse.com/security/cve/CVE-2026-23312.html * https://www.suse.com/security/cve/CVE-2026-23313.html * https://www.suse.com/security/cve/CVE-2026-23315.html * https://www.suse.com/security/cve/CVE-2026-23316.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-23318.html * https://www.suse.com/security/cve/CVE-2026-23321.html * https://www.suse.com/security/cve/CVE-2026-23324.html * https://www.suse.com/security/cve/CVE-2026-23325.html * https://www.suse.com/security/cve/CVE-2026-23334.html * https://www.suse.com/security/cve/CVE-2026-23336.html * https://www.suse.com/security/cve/CVE-2026-23339.html * https://www.suse.com/security/cve/CVE-2026-23340.html * https://www.suse.com/security/cve/CVE-2026-23346.html * https://www.suse.com/security/cve/CVE-2026-23347.html * https://www.suse.com/security/cve/CVE-2026-23351.html * https://www.suse.com/security/cve/CVE-2026-23354.html * https://www.suse.com/security/cve/CVE-2026-23357.html * https://www.suse.com/security/cve/CVE-2026-23360.html * https://www.suse.com/security/cve/CVE-2026-23362.html * https://www.suse.com/security/cve/CVE-2026-23363.html * https://www.suse.com/security/cve/CVE-2026-23365.html * https://www.suse.com/security/cve/CVE-2026-23367.html * https://www.suse.com/security/cve/CVE-2026-23368.html * https://www.suse.com/security/cve/CVE-2026-23369.html * https://www.suse.com/security/cve/CVE-2026-23370.html * https://www.suse.com/security/cve/CVE-2026-23372.html * https://www.suse.com/security/cve/CVE-2026-23373.html * https://www.suse.com/security/cve/CVE-2026-23374.html * https://www.suse.com/security/cve/CVE-2026-23375.html * https://www.suse.com/security/cve/CVE-2026-23378.html * https://www.suse.com/security/cve/CVE-2026-23382.html * https://www.suse.com/security/cve/CVE-2026-23387.html * https://www.suse.com/security/cve/CVE-2026-23391.html * https://www.suse.com/security/cve/CVE-2026-23392.html * https://www.suse.com/security/cve/CVE-2026-23395.html * https://www.suse.com/security/cve/CVE-2026-23396.html * https://www.suse.com/security/cve/CVE-2026-23397.html * https://www.suse.com/security/cve/CVE-2026-23399.html * https://www.suse.com/security/cve/CVE-2026-23401.html * https://www.suse.com/security/cve/CVE-2026-23403.html * https://www.suse.com/security/cve/CVE-2026-23404.html * https://www.suse.com/security/cve/CVE-2026-23405.html * https://www.suse.com/security/cve/CVE-2026-23406.html * https://www.suse.com/security/cve/CVE-2026-23407.html * https://www.suse.com/security/cve/CVE-2026-23408.html * https://www.suse.com/security/cve/CVE-2026-23409.html * https://www.suse.com/security/cve/CVE-2026-23410.html * https://www.suse.com/security/cve/CVE-2026-23411.html * https://www.suse.com/security/cve/CVE-2026-23417.html * https://www.suse.com/security/cve/CVE-2026-23418.html * https://www.suse.com/security/cve/CVE-2026-23420.html * https://www.suse.com/security/cve/CVE-2026-23426.html * https://www.suse.com/security/cve/CVE-2026-23434.html * https://www.suse.com/security/cve/CVE-2026-23436.html * https://www.suse.com/security/cve/CVE-2026-23437.html * https://www.suse.com/security/cve/CVE-2026-23440.html * https://www.suse.com/security/cve/CVE-2026-23441.html * https://www.suse.com/security/cve/CVE-2026-23442.html * https://www.suse.com/security/cve/CVE-2026-23443.html * https://www.suse.com/security/cve/CVE-2026-23445.html * https://www.suse.com/security/cve/CVE-2026-23446.html * https://www.suse.com/security/cve/CVE-2026-23447.html * https://www.suse.com/security/cve/CVE-2026-23448.html * https://www.suse.com/security/cve/CVE-2026-23449.html * https://www.suse.com/security/cve/CVE-2026-23450.html * https://www.suse.com/security/cve/CVE-2026-23452.html * https://www.suse.com/security/cve/CVE-2026-23454.html * https://www.suse.com/security/cve/CVE-2026-23455.html * https://www.suse.com/security/cve/CVE-2026-23456.html * https://www.suse.com/security/cve/CVE-2026-23457.html * https://www.suse.com/security/cve/CVE-2026-23458.html * https://www.suse.com/security/cve/CVE-2026-23460.html * https://www.suse.com/security/cve/CVE-2026-23461.html * https://www.suse.com/security/cve/CVE-2026-23462.html * https://www.suse.com/security/cve/CVE-2026-23463.html * https://www.suse.com/security/cve/CVE-2026-23464.html * https://www.suse.com/security/cve/CVE-2026-23465.html * https://www.suse.com/security/cve/CVE-2026-23466.html * https://www.suse.com/security/cve/CVE-2026-23468.html * https://www.suse.com/security/cve/CVE-2026-23470.html * https://www.suse.com/security/cve/CVE-2026-23472.html * https://www.suse.com/security/cve/CVE-2026-23473.html * https://www.suse.com/security/cve/CVE-2026-23474.html * https://www.suse.com/security/cve/CVE-2026-23475.html * https://www.suse.com/security/cve/CVE-2026-31389.html * https://www.suse.com/security/cve/CVE-2026-31392.html * https://www.suse.com/security/cve/CVE-2026-31393.html * https://www.suse.com/security/cve/CVE-2026-31394.html * https://www.suse.com/security/cve/CVE-2026-31395.html * https://www.suse.com/security/cve/CVE-2026-31400.html * https://www.suse.com/security/cve/CVE-2026-31402.html * https://www.suse.com/security/cve/CVE-2026-31403.html * https://www.suse.com/security/cve/CVE-2026-31405.html * https://www.suse.com/security/cve/CVE-2026-31406.html * https://www.suse.com/security/cve/CVE-2026-31407.html * https://www.suse.com/security/cve/CVE-2026-31408.html * https://www.suse.com/security/cve/CVE-2026-31411.html * https://www.suse.com/security/cve/CVE-2026-31412.html * https://www.suse.com/security/cve/CVE-2026-31415.html * https://www.suse.com/security/cve/CVE-2026-31416.html * https://www.suse.com/security/cve/CVE-2026-31417.html * https://www.suse.com/security/cve/CVE-2026-31420.html * https://www.suse.com/security/cve/CVE-2026-31421.html * https://www.suse.com/security/cve/CVE-2026-31422.html * https://www.suse.com/security/cve/CVE-2026-31423.html * https://www.suse.com/security/cve/CVE-2026-31424.html * https://www.suse.com/security/cve/CVE-2026-31425.html * https://www.suse.com/security/cve/CVE-2026-31426.html * https://www.suse.com/security/cve/CVE-2026-31427.html * https://www.suse.com/security/cve/CVE-2026-31428.html * https://www.suse.com/security/cve/CVE-2026-31435.html * https://www.suse.com/security/cve/CVE-2026-31449.html * https://www.suse.com/security/cve/CVE-2026-31453.html * https://www.suse.com/security/cve/CVE-2026-31456.html * https://www.suse.com/security/cve/CVE-2026-31470.html * https://www.suse.com/security/cve/CVE-2026-31494.html * https://www.suse.com/security/cve/CVE-2026-31496.html * https://www.suse.com/security/cve/CVE-2026-31503.html * https://www.suse.com/security/cve/CVE-2026-31504.html * https://www.suse.com/security/cve/CVE-2026-31505.html * https://www.suse.com/security/cve/CVE-2026-31507.html * https://www.suse.com/security/cve/CVE-2026-31515.html * https://www.suse.com/security/cve/CVE-2026-31519.html * https://www.suse.com/security/cve/CVE-2026-31525.html * https://www.suse.com/security/cve/CVE-2026-31526.html * https://www.suse.com/security/cve/CVE-2026-31528.html * https://www.suse.com/security/cve/CVE-2026-31533.html * https://www.suse.com/security/cve/CVE-2026-31547.html * https://www.suse.com/security/cve/CVE-2026-31550.html * https://www.suse.com/security/cve/CVE-2026-31554.html * https://www.suse.com/security/cve/CVE-2026-31565.html * https://www.suse.com/security/cve/CVE-2026-31579.html * https://www.suse.com/security/cve/CVE-2026-31586.html * https://www.suse.com/security/cve/CVE-2026-31588.html * https://www.suse.com/security/cve/CVE-2026-31644.html * https://www.suse.com/security/cve/CVE-2026-31649.html * https://www.suse.com/security/cve/CVE-2026-31658.html * https://www.suse.com/security/cve/CVE-2026-31662.html * https://www.suse.com/security/cve/CVE-2026-31666.html * https://www.suse.com/security/cve/CVE-2026-31668.html * https://www.suse.com/security/cve/CVE-2026-31669.html * https://www.suse.com/security/cve/CVE-2026-31675.html * https://www.suse.com/security/cve/CVE-2026-31678.html * https://www.suse.com/security/cve/CVE-2026-31679.html * https://www.suse.com/security/cve/CVE-2026-31681.html * https://www.suse.com/security/cve/CVE-2026-31682.html * https://www.suse.com/security/cve/CVE-2026-31684.html * https://www.suse.com/security/cve/CVE-2026-31685.html * https://www.suse.com/security/cve/CVE-2026-31691.html * https://www.suse.com/security/cve/CVE-2026-31694.html * https://www.suse.com/security/cve/CVE-2026-31700.html * https://www.suse.com/security/cve/CVE-2026-31738.html * https://www.suse.com/security/cve/CVE-2026-31787.html * https://www.suse.com/security/cve/CVE-2026-43009.html * https://www.suse.com/security/cve/CVE-2026-43025.html * https://www.suse.com/security/cve/CVE-2026-43027.html * https://www.suse.com/security/cve/CVE-2026-43037.html * https://www.suse.com/security/cve/CVE-2026-43038.html * https://www.suse.com/security/cve/CVE-2026-43045.html * https://www.suse.com/security/cve/CVE-2026-43050.html * https://www.suse.com/security/cve/CVE-2026-43060.html * https://www.suse.com/security/cve/CVE-2026-43082.html * https://www.suse.com/security/cve/CVE-2026-43088.html * https://www.suse.com/security/cve/CVE-2026-43153.html * https://www.suse.com/security/cve/CVE-2026-43190.html * https://www.suse.com/security/cve/CVE-2026-43265.html * https://www.suse.com/security/cve/CVE-2026-43329.html * https://www.suse.com/security/cve/CVE-2026-43365.html * https://www.suse.com/security/cve/CVE-2026-43366.html * https://www.suse.com/security/cve/CVE-2026-43441.html * https://www.suse.com/security/cve/CVE-2026-43494.html * https://www.suse.com/security/cve/CVE-2026-43503.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1215199 * https://bugzilla.suse.com/show_bug.cgi?id=1234634 * https://bugzilla.suse.com/show_bug.cgi?id=1241259 * https://bugzilla.suse.com/show_bug.cgi?id=1243603 * https://bugzilla.suse.com/show_bug.cgi?id=1248754 * https://bugzilla.suse.com/show_bug.cgi?id=1249104 * https://bugzilla.suse.com/show_bug.cgi?id=1250951 * https://bugzilla.suse.com/show_bug.cgi?id=1253471 * https://bugzilla.suse.com/show_bug.cgi?id=1254518 * https://bugzilla.suse.com/show_bug.cgi?id=1255160 * https://bugzilla.suse.com/show_bug.cgi?id=1255360 * https://bugzilla.suse.com/show_bug.cgi?id=1255459 * https://bugzilla.suse.com/show_bug.cgi?id=1255752 * https://bugzilla.suse.com/show_bug.cgi?id=1256288 * https://bugzilla.suse.com/show_bug.cgi?id=1256865 * https://bugzilla.suse.com/show_bug.cgi?id=1256867 * https://bugzilla.suse.com/show_bug.cgi?id=1258518 * https://bugzilla.suse.com/show_bug.cgi?id=1258718 * https://bugzilla.suse.com/show_bug.cgi?id=1258826 * https://bugzilla.suse.com/show_bug.cgi?id=1258849 * https://bugzilla.suse.com/show_bug.cgi?id=1258850 * https://bugzilla.suse.com/show_bug.cgi?id=1258854 * https://bugzilla.suse.com/show_bug.cgi?id=1258855 * https://bugzilla.suse.com/show_bug.cgi?id=1258856 * https://bugzilla.suse.com/show_bug.cgi?id=1258857 * https://bugzilla.suse.com/show_bug.cgi?id=1258933 * https://bugzilla.suse.com/show_bug.cgi?id=1258961 * https://bugzilla.suse.com/show_bug.cgi?id=1259186 * https://bugzilla.suse.com/show_bug.cgi?id=1259199 * https://bugzilla.suse.com/show_bug.cgi?id=1259222 * https://bugzilla.suse.com/show_bug.cgi?id=1259420 * https://bugzilla.suse.com/show_bug.cgi?id=1259461 * https://bugzilla.suse.com/show_bug.cgi?id=1259535 * https://bugzilla.suse.com/show_bug.cgi?id=1259672 * https://bugzilla.suse.com/show_bug.cgi?id=1259799 * https://bugzilla.suse.com/show_bug.cgi?id=1259806 * https://bugzilla.suse.com/show_bug.cgi?id=1259857 * https://bugzilla.suse.com/show_bug.cgi?id=1259865 * https://bugzilla.suse.com/show_bug.cgi?id=1259868 * https://bugzilla.suse.com/show_bug.cgi?id=1259869 * https://bugzilla.suse.com/show_bug.cgi?id=1259871 * https://bugzilla.suse.com/show_bug.cgi?id=1259873 * https://bugzilla.suse.com/show_bug.cgi?id=1259878 * https://bugzilla.suse.com/show_bug.cgi?id=1259889 * https://bugzilla.suse.com/show_bug.cgi?id=1259994 * https://bugzilla.suse.com/show_bug.cgi?id=1260010 * https://bugzilla.suse.com/show_bug.cgi?id=1260012 * https://bugzilla.suse.com/show_bug.cgi?id=1260018 * https://bugzilla.suse.com/show_bug.cgi?id=1260428 * https://bugzilla.suse.com/show_bug.cgi?id=1260468 * https://bugzilla.suse.com/show_bug.cgi?id=1260483 * https://bugzilla.suse.com/show_bug.cgi?id=1260484 * https://bugzilla.suse.com/show_bug.cgi?id=1260485 * https://bugzilla.suse.com/show_bug.cgi?id=1260489 * https://bugzilla.suse.com/show_bug.cgi?id=1260504 * https://bugzilla.suse.com/show_bug.cgi?id=1260505 * https://bugzilla.suse.com/show_bug.cgi?id=1260507 * https://bugzilla.suse.com/show_bug.cgi?id=1260514 * https://bugzilla.suse.com/show_bug.cgi?id=1260523 * https://bugzilla.suse.com/show_bug.cgi?id=1260526 * https://bugzilla.suse.com/show_bug.cgi?id=1260528 * https://bugzilla.suse.com/show_bug.cgi?id=1260529 * https://bugzilla.suse.com/show_bug.cgi?id=1260530 * https://bugzilla.suse.com/show_bug.cgi?id=1260531 * https://bugzilla.suse.com/show_bug.cgi?id=1260532 * https://bugzilla.suse.com/show_bug.cgi?id=1260533 * https://bugzilla.suse.com/show_bug.cgi?id=1260536 * https://bugzilla.suse.com/show_bug.cgi?id=1260537 * https://bugzilla.suse.com/show_bug.cgi?id=1260538 * https://bugzilla.suse.com/show_bug.cgi?id=1260541 * https://bugzilla.suse.com/show_bug.cgi?id=1260546 * https://bugzilla.suse.com/show_bug.cgi?id=1260549 * https://bugzilla.suse.com/show_bug.cgi?id=1260551 * https://bugzilla.suse.com/show_bug.cgi?id=1260552 * https://bugzilla.suse.com/show_bug.cgi?id=1260555 * https://bugzilla.suse.com/show_bug.cgi?id=1260561 * https://bugzilla.suse.com/show_bug.cgi?id=1260562 * https://bugzilla.suse.com/show_bug.cgi?id=1260566 * https://bugzilla.suse.com/show_bug.cgi?id=1260571 * https://bugzilla.suse.com/show_bug.cgi?id=1260572 * https://bugzilla.suse.com/show_bug.cgi?id=1260573 * https://bugzilla.suse.com/show_bug.cgi?id=1260576 * https://bugzilla.suse.com/show_bug.cgi?id=1260580 * https://bugzilla.suse.com/show_bug.cgi?id=1260581 * https://bugzilla.suse.com/show_bug.cgi?id=1260593 * https://bugzilla.suse.com/show_bug.cgi?id=1260613 * https://bugzilla.suse.com/show_bug.cgi?id=1260728 * https://bugzilla.suse.com/show_bug.cgi?id=1260729 * https://bugzilla.suse.com/show_bug.cgi?id=1260731 * https://bugzilla.suse.com/show_bug.cgi?id=1260798 * https://bugzilla.suse.com/show_bug.cgi?id=1260800 * https://bugzilla.suse.com/show_bug.cgi?id=1260801 * https://bugzilla.suse.com/show_bug.cgi?id=1260807 * https://bugzilla.suse.com/show_bug.cgi?id=1260811 * https://bugzilla.suse.com/show_bug.cgi?id=1260996 * https://bugzilla.suse.com/show_bug.cgi?id=1261020 * https://bugzilla.suse.com/show_bug.cgi?id=1261149 * https://bugzilla.suse.com/show_bug.cgi?id=1261287 * https://bugzilla.suse.com/show_bug.cgi?id=1261288 * https://bugzilla.suse.com/show_bug.cgi?id=1261295 * https://bugzilla.suse.com/show_bug.cgi?id=1261348 * https://bugzilla.suse.com/show_bug.cgi?id=1261410 * https://bugzilla.suse.com/show_bug.cgi?id=1261503 * https://bugzilla.suse.com/show_bug.cgi?id=1261504 * https://bugzilla.suse.com/show_bug.cgi?id=1261505 * https://bugzilla.suse.com/show_bug.cgi?id=1261550 * https://bugzilla.suse.com/show_bug.cgi?id=1261555 * https://bugzilla.suse.com/show_bug.cgi?id=1261581 * https://bugzilla.suse.com/show_bug.cgi?id=1261582 * https://bugzilla.suse.com/show_bug.cgi?id=1261584 * https://bugzilla.suse.com/show_bug.cgi?id=1261585 * https://bugzilla.suse.com/show_bug.cgi?id=1261592 * https://bugzilla.suse.com/show_bug.cgi?id=1261601 * https://bugzilla.suse.com/show_bug.cgi?id=1261602 * https://bugzilla.suse.com/show_bug.cgi?id=1261617 * https://bugzilla.suse.com/show_bug.cgi?id=1261618 * https://bugzilla.suse.com/show_bug.cgi?id=1261629 * https://bugzilla.suse.com/show_bug.cgi?id=1261632 * https://bugzilla.suse.com/show_bug.cgi?id=1261635 * https://bugzilla.suse.com/show_bug.cgi?id=1261636 * https://bugzilla.suse.com/show_bug.cgi?id=1261637 * https://bugzilla.suse.com/show_bug.cgi?id=1261638 * https://bugzilla.suse.com/show_bug.cgi?id=1261641 * https://bugzilla.suse.com/show_bug.cgi?id=1261644 * https://bugzilla.suse.com/show_bug.cgi?id=1261645 * https://bugzilla.suse.com/show_bug.cgi?id=1261648 * https://bugzilla.suse.com/show_bug.cgi?id=1261679 * https://bugzilla.suse.com/show_bug.cgi?id=1261685 * https://bugzilla.suse.com/show_bug.cgi?id=1261686 * https://bugzilla.suse.com/show_bug.cgi?id=1261687 * https://bugzilla.suse.com/show_bug.cgi?id=1261692 * https://bugzilla.suse.com/show_bug.cgi?id=1261694 * https://bugzilla.suse.com/show_bug.cgi?id=1261700 * https://bugzilla.suse.com/show_bug.cgi?id=1261702 * https://bugzilla.suse.com/show_bug.cgi?id=1261703 * https://bugzilla.suse.com/show_bug.cgi?id=1261707 * https://bugzilla.suse.com/show_bug.cgi?id=1261710 * https://bugzilla.suse.com/show_bug.cgi?id=1261713 * https://bugzilla.suse.com/show_bug.cgi?id=1261714 * https://bugzilla.suse.com/show_bug.cgi?id=1261719 * https://bugzilla.suse.com/show_bug.cgi?id=1261738 * https://bugzilla.suse.com/show_bug.cgi?id=1261750 * https://bugzilla.suse.com/show_bug.cgi?id=1261751 * https://bugzilla.suse.com/show_bug.cgi?id=1261752 * https://bugzilla.suse.com/show_bug.cgi?id=1261768 * https://bugzilla.suse.com/show_bug.cgi?id=1261778 * https://bugzilla.suse.com/show_bug.cgi?id=1261779 * https://bugzilla.suse.com/show_bug.cgi?id=1261780 * https://bugzilla.suse.com/show_bug.cgi?id=1261781 * https://bugzilla.suse.com/show_bug.cgi?id=1261786 * https://bugzilla.suse.com/show_bug.cgi?id=1261788 * https://bugzilla.suse.com/show_bug.cgi?id=1261789 * https://bugzilla.suse.com/show_bug.cgi?id=1261796 * https://bugzilla.suse.com/show_bug.cgi?id=1261797 * https://bugzilla.suse.com/show_bug.cgi?id=1261896 * https://bugzilla.suse.com/show_bug.cgi?id=1262019 * https://bugzilla.suse.com/show_bug.cgi?id=1262053 * https://bugzilla.suse.com/show_bug.cgi?id=1262054 * https://bugzilla.suse.com/show_bug.cgi?id=1262055 * https://bugzilla.suse.com/show_bug.cgi?id=1262061 * https://bugzilla.suse.com/show_bug.cgi?id=1262063 * https://bugzilla.suse.com/show_bug.cgi?id=1262074 * https://bugzilla.suse.com/show_bug.cgi?id=1262078 * https://bugzilla.suse.com/show_bug.cgi?id=1262086 * https://bugzilla.suse.com/show_bug.cgi?id=1262087 * https://bugzilla.suse.com/show_bug.cgi?id=1262099 * https://bugzilla.suse.com/show_bug.cgi?id=1262100 * https://bugzilla.suse.com/show_bug.cgi?id=1262101 * https://bugzilla.suse.com/show_bug.cgi?id=1262179 * https://bugzilla.suse.com/show_bug.cgi?id=1262181 * https://bugzilla.suse.com/show_bug.cgi?id=1262245 * https://bugzilla.suse.com/show_bug.cgi?id=1262250 * https://bugzilla.suse.com/show_bug.cgi?id=1262480 * https://bugzilla.suse.com/show_bug.cgi?id=1262601 * https://bugzilla.suse.com/show_bug.cgi?id=1262616 * https://bugzilla.suse.com/show_bug.cgi?id=1262617 * https://bugzilla.suse.com/show_bug.cgi?id=1262627 * https://bugzilla.suse.com/show_bug.cgi?id=1262662 * https://bugzilla.suse.com/show_bug.cgi?id=1262665 * https://bugzilla.suse.com/show_bug.cgi?id=1262671 * https://bugzilla.suse.com/show_bug.cgi?id=1262673 * https://bugzilla.suse.com/show_bug.cgi?id=1262709 * https://bugzilla.suse.com/show_bug.cgi?id=1262725 * https://bugzilla.suse.com/show_bug.cgi?id=1262731 * https://bugzilla.suse.com/show_bug.cgi?id=1262750 * https://bugzilla.suse.com/show_bug.cgi?id=1262752 * https://bugzilla.suse.com/show_bug.cgi?id=1262758 * https://bugzilla.suse.com/show_bug.cgi?id=1263001 * https://bugzilla.suse.com/show_bug.cgi?id=1263012 * https://bugzilla.suse.com/show_bug.cgi?id=1263018 * https://bugzilla.suse.com/show_bug.cgi?id=1263044 * https://bugzilla.suse.com/show_bug.cgi?id=1263048 * https://bugzilla.suse.com/show_bug.cgi?id=1263052 * https://bugzilla.suse.com/show_bug.cgi?id=1263064 * https://bugzilla.suse.com/show_bug.cgi?id=1263074 * https://bugzilla.suse.com/show_bug.cgi?id=1263077 * https://bugzilla.suse.com/show_bug.cgi?id=1263085 * https://bugzilla.suse.com/show_bug.cgi?id=1263093 * https://bugzilla.suse.com/show_bug.cgi?id=1263095 * https://bugzilla.suse.com/show_bug.cgi?id=1263104 * https://bugzilla.suse.com/show_bug.cgi?id=1263107 * https://bugzilla.suse.com/show_bug.cgi?id=1263131 * https://bugzilla.suse.com/show_bug.cgi?id=1263135 * https://bugzilla.suse.com/show_bug.cgi?id=1263138 * https://bugzilla.suse.com/show_bug.cgi?id=1263140 * https://bugzilla.suse.com/show_bug.cgi?id=1263141 * https://bugzilla.suse.com/show_bug.cgi?id=1263165 * https://bugzilla.suse.com/show_bug.cgi?id=1263176 * https://bugzilla.suse.com/show_bug.cgi?id=1263255 * https://bugzilla.suse.com/show_bug.cgi?id=1263556 * https://bugzilla.suse.com/show_bug.cgi?id=1263562 * https://bugzilla.suse.com/show_bug.cgi?id=1263582 * https://bugzilla.suse.com/show_bug.cgi?id=1263592 * https://bugzilla.suse.com/show_bug.cgi?id=1263593 * https://bugzilla.suse.com/show_bug.cgi?id=1263595 * https://bugzilla.suse.com/show_bug.cgi?id=1263596 * https://bugzilla.suse.com/show_bug.cgi?id=1263604 * https://bugzilla.suse.com/show_bug.cgi?id=1263668 * https://bugzilla.suse.com/show_bug.cgi?id=1263815 * https://bugzilla.suse.com/show_bug.cgi?id=1263882 * https://bugzilla.suse.com/show_bug.cgi?id=1263901 * https://bugzilla.suse.com/show_bug.cgi?id=1263931 * https://bugzilla.suse.com/show_bug.cgi?id=1263933 * https://bugzilla.suse.com/show_bug.cgi?id=1263942 * https://bugzilla.suse.com/show_bug.cgi?id=1263995 * https://bugzilla.suse.com/show_bug.cgi?id=1264014 * https://bugzilla.suse.com/show_bug.cgi?id=1264059 * https://bugzilla.suse.com/show_bug.cgi?id=1264082 * https://bugzilla.suse.com/show_bug.cgi?id=1264097 * https://bugzilla.suse.com/show_bug.cgi?id=1264183 * https://bugzilla.suse.com/show_bug.cgi?id=1264233 * https://bugzilla.suse.com/show_bug.cgi?id=1264427 * https://bugzilla.suse.com/show_bug.cgi?id=1264469 * https://bugzilla.suse.com/show_bug.cgi?id=1264586 * https://bugzilla.suse.com/show_bug.cgi?id=1264674 * https://bugzilla.suse.com/show_bug.cgi?id=1264837 * https://bugzilla.suse.com/show_bug.cgi?id=1264848 * https://bugzilla.suse.com/show_bug.cgi?id=1265085 * https://bugzilla.suse.com/show_bug.cgi?id=1265116 * https://bugzilla.suse.com/show_bug.cgi?id=1265119 * https://bugzilla.suse.com/show_bug.cgi?id=1265144 * https://bugzilla.suse.com/show_bug.cgi?id=1265308 * https://bugzilla.suse.com/show_bug.cgi?id=1265421 * https://bugzilla.suse.com/show_bug.cgi?id=1265449 * https://bugzilla.suse.com/show_bug.cgi?id=1265456 * https://bugzilla.suse.com/show_bug.cgi?id=1265626 * https://bugzilla.suse.com/show_bug.cgi?id=1265846 * https://bugzilla.suse.com/show_bug.cgi?id=1265960 * https://jira.suse.com/browse/PED-13771 * https://jira.suse.com/browse/PED-14156 * https://jira.suse.com/browse/PED-14238 * https://jira.suse.com/browse/PED-16113 * https://jira.suse.com/browse/PED-7912 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 20:43:42 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 20:43:42 -0000 Subject: SUSE-SU-2026:2207-1: important: Security update for the Linux Kernel (Live Patch 13 for SUSE Linux Enterprise 15 SP7) Message-ID: <178034662299.1034.16466765243954684305@cf67f1158b88> # Security update for the Linux Kernel (Live Patch 13 for SUSE Linux Enterprise 15 SP7) Announcement ID: SUSE-SU-2026:2207-1 Release Date: 2026-06-01T15:33:50Z Rating: important References: * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * openSUSE Leap 15.6 * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Live Patching 12-SP5 * SUSE Linux Enterprise Live Patching 15-SP6 * SUSE Linux Enterprise Live Patching 15-SP7 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves three vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.53.45 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 12-SP5 zypper in -t patch SUSE-SLE-Live-Patching-12-SP5-2026-2207=1 * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-2208=1 * SUSE Linux Enterprise Live Patching 15-SP6 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP6-2026-2208=1 * SUSE Linux Enterprise Live Patching 15-SP7 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP7-2026-2210=1 SUSE-SLE- Module-Live-Patching-15-SP7-2026-2209=1 ## Package List: * SUSE Linux Enterprise Live Patching 12-SP5 (ppc64le s390x x86_64) * kgraft-patch-4_12_14-122_299-default-4-2.1 * openSUSE Leap 15.6 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP6_Update_24-debugsource-2-150600.2.1 * kernel-livepatch-6_4_0-150600_23_103-default-2-150600.2.1 * kernel-livepatch-6_4_0-150600_23_103-default-debuginfo-2-150600.2.1 * SUSE Linux Enterprise Live Patching 15-SP6 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP6_Update_24-debugsource-2-150600.2.1 * kernel-livepatch-6_4_0-150600_23_103-default-2-150600.2.1 * kernel-livepatch-6_4_0-150600_23_103-default-debuginfo-2-150600.2.1 * SUSE Linux Enterprise Live Patching 15-SP7 (ppc64le s390x x86_64) * kernel-livepatch-6_4_0-150700_53_45-default-2-150700.2.1 * kernel-livepatch-SLE15-SP7_Update_12-debugsource-3-150700.2.1 * kernel-livepatch-6_4_0-150700_53_40-default-3-150700.2.1 * kernel-livepatch-6_4_0-150700_53_40-default-debuginfo-3-150700.2.1 * kernel-livepatch-6_4_0-150700_53_45-default-debuginfo-2-150700.2.1 * kernel-livepatch-SLE15-SP7_Update_13-debugsource-2-150700.2.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 1 20:43:51 2026 From: null at suse.de (SLE-UPDATES) Date: Mon, 01 Jun 2026 20:43:51 -0000 Subject: SUSE-RU-2026:2206-1: important: Recommended update for suse-migration-services Message-ID: <178034663152.1034.6347362841117888137@cf67f1158b88> # Recommended update for suse-migration-services Announcement ID: SUSE-RU-2026:2206-1 Release Date: 2026-06-01T12:52:50Z Rating: important References: * bsc#1258174 * bsc#1258710 Affected Products: * Public Cloud Module 12 * SUSE Linux Enterprise High Performance Computing 12 SP2 * SUSE Linux Enterprise High Performance Computing 12 SP3 * SUSE Linux Enterprise High Performance Computing 12 SP4 * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 * SUSE Linux Enterprise Server 12 SP1 * SUSE Linux Enterprise Server 12 SP2 * SUSE Linux Enterprise Server 12 SP3 * SUSE Linux Enterprise Server 12 SP4 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 * SUSE Linux Enterprise Server for SAP Applications 12 SP1 * SUSE Linux Enterprise Server for SAP Applications 12 SP2 * SUSE Linux Enterprise Server for SAP Applications 12 SP3 * SUSE Linux Enterprise Server for SAP Applications 12 SP4 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that has two fixes can now be installed. ## Description: This update for suse-migration-services fixes the following issues: * Add explicit SLES15 migration target check Instead of falling back to the default with a misleading warning message, make sure to check for this target explicitly beforehand * Fixed ci-coding-format exit with an error if coding format was not applied * Fix Zypper class command output handling The way zypper is called always redirects all output, stdout and stderr into the main log file. Because of that the variables self.output and self.error are always empty. This commit fixes the command call in a way that stdout and stderr are multiplexed such that the caller data can be captured by the python call and the data gets appended to the log file too. This commit also drops the unused and due to the redirection always empty self.error variable. For multiplexing the tee command gets used which impacts the returncode of the actual call. In order to get the correct exit code we use set -o pipefail. * Fix validation of zypper migration result Up to now the assumption was that any situation in which zypper migration cannot migrate the system returns with an error, meaning exit code != 0. However, this assumption is wrong. There are condition in which zypper migration only indicates a problem with a message saying 'No migration available' and the call return with a successful error code = 0. This causes big trouble for the DMS in a way that it continues running its services which all assumes the migration to the next major release was performed. It misleads readers of the log file into the wrong direction and the worst it causes modifications to the host system when it was not migrated. This commit makes sure that the migration stops and treats the above message as an error condition. * Fix quoting * Add time info to backup directory So far only the date information was part of the backup directory. However, if multiple migration attempts happens on the same day, this would overwrite the data. * Fix migrate tool for container based migration The tool overwrites an eventually existing /etc/sle-migration-service.yml config file. This commit fixes it by using yq and inplace updates * Fix md device detection Fix detection of device mapper layered rootfs. Software raid disks are not found by findmnt if the actual rootfs is one or more layers down. This commit fixes the detection if we need to pass along the rd.auto cmdline option to let the boot process activate them. * Fix btrfs snapshot services Do not perform snapshot operations if the root filesystem is not btrfs based. * Fix lsm precheck Yet another test that doesn't restrict the scope of its runtime environment. This Fixes #469 * Fixed scope check for cpu_arch and check_ha The prechecks for cpu_arch and ha did not receive the value for the migration_system mode. As such these checks could not differentiate between being called on the host to upgrade or as part of the live migration system. This lead to unwanted check calls and invalid fail information as part of the migration log file * Fixed dataProvider setup in regionserverclnt.cfg In case of Azure the dataProvider information gets a device parameter added. This parameter must be added only once or not at all if it is already present. * Fixup import of certificates Only import if the file exists and is not a directory. We still assume that the file content of the pki trust directories matches certificates and not random non certificate files. * Fix consistency of regionserverclnt.cfg The DMS copies the contents of system-root/etc/regionserverclnt.cfg into the live migration system /etc/regionserverclnt.cfg. However, after the copy the update_regionsrv_setup() function modifies the contents of system- root/etc/regionserverclnt.cfg if the dataProvider is azuremetadata. This leads to different content of the file in system-root and the file in /. Whether or not this is causing a problem for the migration is unclear, but in any case having the file twice with different content during the DMS runtime is a bug. (bsc#1258710) * Fix setup of migration target for pre-check The check sending a request to the SCC offline migrations API requires a proper migration target name. This name is constructed from the installed migration live image package name which follows a strict naming policy. For SAP targets the code missed the detection path. This commit fixes it. (bsc#1258174) * Make sure to fallback to scc.suse.com Systems that are not providing /etc/SUSEConnect should fallback to the default registration server which is https://scc.suse.com * Switch reboot default In light of recent issues reported with soft reboot we are chaning the reboot method to a full reboot. This is intended to reduce the number of requests we receive to investigate boot issues. * Fixed disk device name passed to azuremetadata When setting the disk device name in the regionserverclnt.cfg for azure we used the unix device node, e.g /dev/sda. This is not a persistent device name and may change. This commit uses the by-id representation for the disk device from udev which is not expected to change. * Fix SLES SAP migration 12 - 15 in public clouds Workaround an issue in the SLE15 SP4 based live migration system used for SAP migrations only. The zypper version on SLE15 SP4 is too old and does not support --gpg-auto- import-keys. This workaround patches the DMS code to not use this option. As soon as the SAP migration live image can switch to a newer SP, this workaround can hopefully be removed again. * Fix python compatibility on latest zypper change Unfortunately the code has to comply with the oldest distribution migration that we support. This includes compatibility with the python 3.6 interpreter (SLE15). The latest change on the Zypper class introduced a TypeError and broke the migration. This commit fixes it. It should be safe to move the DMS code base to python 3.11 as the oldest migration live image is based on SLE15-SP4 which is the first target that has a python 3.11 stack. However, I hesitate to add this change now as we already have enough other problems with regards to the migration. As such it shouldn't be a problem to stay python 3.6 compatible for the moment. * Manage documentation version Make sure documentation version and code version are consistently managed. * Ensure NetworkManager is installed on the target system ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Public Cloud Module 12 zypper in -t patch SUSE-SLE-Module-Public-Cloud-12-2026-2206=1 ## Package List: * Public Cloud Module 12 (noarch) * python3-migration-2.1.34-6.39.1 * suse-migration-pre-checks-2.1.34-6.39.1 * suse-migration-scripts-2.1.34-6.39.1 * Public Cloud Module 12 (x86_64) * SLES15-Migration-2.1.34-6.75.1 * suse-migration-sle15-activation-2.1.34-6.58.1 * SLES15-SAP_Migration-2.1.34-6.17.1 ## References: * https://bugzilla.suse.com/show_bug.cgi?id=1258174 * https://bugzilla.suse.com/show_bug.cgi?id=1258710 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 08:30:06 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 08:30:06 -0000 Subject: SUSE-SU-2026:2212-1: important: Security update for the Linux Kernel (Live Patch 39 for SUSE Linux Enterprise 15 SP5) Message-ID: <178038900608.1212.6773150856276082120@28a6f8bc0cea> # Security update for the Linux Kernel (Live Patch 39 for SUSE Linux Enterprise 15 SP5) Announcement ID: SUSE-SU-2026:2212-1 Release Date: 2026-06-01T17:05:30Z Rating: important References: * bsc#1264096 Cross-References: * CVE-2025-54518 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 5.14.21-150500.55.153 fixes one security issue The following security issue was fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2026-2212=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2026-2212=1 ## Package List: * openSUSE Leap 15.5 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150500_55_163-default-2-150500.2.1 * kernel-livepatch-5_14_21-150500_55_163-default-debuginfo-2-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_39-debugsource-2-150500.2.1 * SUSE Linux Enterprise Live Patching 15-SP5 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150500_55_163-default-2-150500.2.1 * kernel-livepatch-5_14_21-150500_55_163-default-debuginfo-2-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_39-debugsource-2-150500.2.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://bugzilla.suse.com/show_bug.cgi?id=1264096 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 08:30:15 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 08:30:15 -0000 Subject: SUSE-SU-2026:2214-1: important: Security update for the Linux Kernel (Live Patch 11 for SUSE Linux Enterprise 15 SP7) Message-ID: <178038901582.1212.9758204701036285079@28a6f8bc0cea> # Security update for the Linux Kernel (Live Patch 11 for SUSE Linux Enterprise 15 SP7) Announcement ID: SUSE-SU-2026:2214-1 Release Date: 2026-06-01T18:33:54Z Rating: important References: * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * openSUSE Leap 15.4 * openSUSE Leap 15.6 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise Live Patching 15-SP4 * SUSE Linux Enterprise Live Patching 15-SP6 * SUSE Linux Enterprise Live Patching 15-SP7 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves three vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.53.37 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2026-2214=1 * SUSE Linux Enterprise Live Patching 15-SP4 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP4-2026-2214=1 * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-2211=1 * SUSE Linux Enterprise Live Patching 15-SP6 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP6-2026-2211=1 * SUSE Linux Enterprise Live Patching 15-SP7 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP7-2026-2213=1 ## Package List: * openSUSE Leap 15.4 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150400_24_209-default-2-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_52-debugsource-2-150400.2.1 * kernel-livepatch-5_14_21-150400_24_209-default-debuginfo-2-150400.2.1 * SUSE Linux Enterprise Live Patching 15-SP4 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150400_24_209-default-2-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_52-debugsource-2-150400.2.1 * kernel-livepatch-5_14_21-150400_24_209-default-debuginfo-2-150400.2.1 * openSUSE Leap 15.6 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP6_Update_23-debugsource-3-150600.2.1 * kernel-livepatch-6_4_0-150600_23_100-default-3-150600.2.1 * kernel-livepatch-6_4_0-150600_23_100-default-debuginfo-3-150600.2.1 * SUSE Linux Enterprise Live Patching 15-SP6 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP6_Update_23-debugsource-3-150600.2.1 * kernel-livepatch-6_4_0-150600_23_100-default-3-150600.2.1 * kernel-livepatch-6_4_0-150600_23_100-default-debuginfo-3-150600.2.1 * SUSE Linux Enterprise Live Patching 15-SP7 (ppc64le s390x x86_64) * kernel-livepatch-6_4_0-150700_53_37-default-4-150700.2.1 * kernel-livepatch-SLE15-SP7_Update_11-debugsource-4-150700.2.1 * kernel-livepatch-6_4_0-150700_53_37-default-debuginfo-4-150700.2.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 12:36:32 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 12:36:32 -0000 Subject: SUSE-SU-2026:2217-1: important: Security update for the Linux Kernel Message-ID: <178040379220.1312.9749280017703952244@28a6f8bc0cea> # Security update for the Linux Kernel Announcement ID: SUSE-SU-2026:2217-1 Release Date: 2026-06-02T05:58:34Z Rating: important References: * bsc#1215199 * bsc#1225897 * bsc#1234634 * bsc#1237452 * bsc#1241166 * bsc#1243603 * bsc#1248754 * bsc#1249104 * bsc#1253122 * bsc#1253754 * bsc#1254518 * bsc#1255160 * bsc#1255752 * bsc#1256863 * bsc#1257183 * bsc#1257631 * bsc#1258518 * bsc#1258718 * bsc#1258826 * bsc#1258849 * bsc#1258850 * bsc#1258854 * bsc#1258855 * bsc#1258856 * bsc#1258857 * bsc#1258961 * bsc#1259186 * bsc#1259199 * bsc#1259222 * bsc#1259461 * bsc#1259484 * bsc#1259485 * bsc#1259535 * bsc#1259672 * bsc#1259799 * bsc#1259806 * bsc#1259857 * bsc#1259868 * bsc#1259869 * bsc#1259870 * bsc#1259871 * bsc#1259873 * bsc#1259878 * bsc#1259995 * bsc#1260010 * bsc#1260012 * bsc#1260018 * bsc#1260428 * bsc#1260468 * bsc#1260483 * bsc#1260484 * bsc#1260485 * bsc#1260489 * bsc#1260497 * bsc#1260501 * bsc#1260504 * bsc#1260505 * bsc#1260507 * bsc#1260522 * bsc#1260523 * bsc#1260526 * bsc#1260527 * bsc#1260528 * bsc#1260529 * bsc#1260530 * bsc#1260531 * bsc#1260532 * bsc#1260533 * bsc#1260536 * bsc#1260537 * bsc#1260538 * bsc#1260541 * bsc#1260544 * bsc#1260546 * bsc#1260549 * bsc#1260550 * bsc#1260551 * bsc#1260552 * bsc#1260553 * bsc#1260555 * bsc#1260561 * bsc#1260566 * bsc#1260572 * bsc#1260580 * bsc#1260581 * bsc#1260728 * bsc#1260729 * bsc#1260731 * bsc#1260800 * bsc#1260801 * bsc#1260811 * bsc#1260989 * bsc#1261020 * bsc#1261287 * bsc#1261295 * bsc#1261348 * bsc#1261412 * bsc#1261503 * bsc#1261504 * bsc#1261505 * bsc#1261507 * bsc#1261555 * bsc#1261581 * bsc#1261582 * bsc#1261584 * bsc#1261585 * bsc#1261601 * bsc#1261602 * bsc#1261618 * bsc#1261628 * bsc#1261632 * bsc#1261636 * bsc#1261637 * bsc#1261638 * bsc#1261641 * bsc#1261644 * bsc#1261645 * bsc#1261648 * bsc#1261669 * bsc#1261679 * bsc#1261685 * bsc#1261686 * bsc#1261687 * bsc#1261692 * bsc#1261694 * bsc#1261700 * bsc#1261702 * bsc#1261703 * bsc#1261707 * bsc#1261710 * bsc#1261713 * bsc#1261714 * bsc#1261719 * bsc#1261738 * bsc#1261750 * bsc#1261751 * bsc#1261752 * bsc#1261768 * bsc#1261778 * bsc#1261779 * bsc#1261780 * bsc#1261781 * bsc#1261786 * bsc#1261788 * bsc#1261789 * bsc#1261796 * bsc#1261797 * bsc#1261896 * bsc#1262019 * bsc#1262020 * bsc#1262053 * bsc#1262054 * bsc#1262055 * bsc#1262061 * bsc#1262063 * bsc#1262074 * bsc#1262078 * bsc#1262086 * bsc#1262087 * bsc#1262099 * bsc#1262100 * bsc#1262101 * bsc#1262179 * bsc#1262181 * bsc#1262250 * bsc#1262480 * bsc#1262526 * bsc#1262599 * bsc#1262602 * bsc#1262616 * bsc#1262665 * bsc#1262671 * bsc#1262673 * bsc#1262709 * bsc#1262725 * bsc#1262731 * bsc#1262734 * bsc#1262746 * bsc#1262752 * bsc#1262758 * bsc#1263001 * bsc#1263012 * bsc#1263018 * bsc#1263064 * bsc#1263065 * bsc#1263085 * bsc#1263093 * bsc#1263095 * bsc#1263104 * bsc#1263131 * bsc#1263140 * bsc#1263141 * bsc#1263149 * bsc#1263165 * bsc#1263170 * bsc#1263176 * bsc#1263255 * bsc#1263556 * bsc#1263582 * bsc#1263592 * bsc#1263593 * bsc#1263595 * bsc#1263596 * bsc#1263600 * bsc#1263668 * bsc#1263723 * bsc#1263797 * bsc#1263815 * bsc#1263877 * bsc#1263882 * bsc#1263901 * bsc#1263931 * bsc#1263933 * bsc#1263995 * bsc#1264014 * bsc#1264059 * bsc#1264082 * bsc#1264087 * bsc#1264097 * bsc#1264183 * bsc#1264427 * bsc#1264449 * bsc#1264469 * bsc#1264482 * bsc#1264634 * bsc#1264651 * bsc#1264661 * bsc#1264674 * bsc#1264801 * bsc#1264848 * bsc#1265085 * bsc#1265090 * bsc#1265116 * bsc#1265119 * bsc#1265126 * bsc#1265144 * bsc#1265421 * bsc#1265449 * bsc#1265456 * bsc#1265626 * bsc#1265846 * bsc#1265960 * jsc#PED-10383 * jsc#PED-10664 * jsc#PED-11175 * jsc#PED-16221 * jsc#PED-16245 * jsc#PED-7249 Cross-References: * CVE-2023-20585 * CVE-2025-40219 * CVE-2025-68310 * CVE-2025-71183 * CVE-2025-71238 * CVE-2026-23168 * CVE-2026-23209 * CVE-2026-23236 * CVE-2026-23237 * CVE-2026-23239 * CVE-2026-23240 * CVE-2026-23245 * CVE-2026-23246 * CVE-2026-23253 * CVE-2026-23260 * CVE-2026-23261 * CVE-2026-23262 * CVE-2026-23264 * CVE-2026-23266 * CVE-2026-23268 * CVE-2026-23269 * CVE-2026-23271 * CVE-2026-23273 * CVE-2026-23276 * CVE-2026-23279 * CVE-2026-23290 * CVE-2026-23291 * CVE-2026-23298 * CVE-2026-23300 * CVE-2026-23304 * CVE-2026-23306 * CVE-2026-23307 * CVE-2026-23308 * CVE-2026-23312 * CVE-2026-23313 * CVE-2026-23315 * CVE-2026-23318 * CVE-2026-23321 * CVE-2026-23324 * CVE-2026-23325 * CVE-2026-23335 * CVE-2026-23336 * CVE-2026-23339 * CVE-2026-23340 * CVE-2026-23343 * CVE-2026-23346 * CVE-2026-23351 * CVE-2026-23354 * CVE-2026-23357 * CVE-2026-23362 * CVE-2026-23363 * CVE-2026-23365 * CVE-2026-23367 * CVE-2026-23368 * CVE-2026-23370 * CVE-2026-23372 * CVE-2026-23373 * CVE-2026-23374 * CVE-2026-23378 * CVE-2026-23382 * CVE-2026-23383 * CVE-2026-23391 * CVE-2026-23392 * CVE-2026-23393 * CVE-2026-23395 * CVE-2026-23396 * CVE-2026-23397 * CVE-2026-23399 * CVE-2026-23403 * CVE-2026-23404 * CVE-2026-23405 * CVE-2026-23406 * CVE-2026-23407 * CVE-2026-23408 * CVE-2026-23409 * CVE-2026-23410 * CVE-2026-23411 * CVE-2026-23412 * CVE-2026-23418 * CVE-2026-23419 * CVE-2026-23420 * CVE-2026-23426 * CVE-2026-23434 * CVE-2026-23440 * CVE-2026-23441 * CVE-2026-23442 * CVE-2026-23443 * CVE-2026-23445 * CVE-2026-23446 * CVE-2026-23447 * CVE-2026-23448 * CVE-2026-23449 * CVE-2026-23450 * CVE-2026-23452 * CVE-2026-23454 * CVE-2026-23455 * CVE-2026-23456 * CVE-2026-23457 * CVE-2026-23458 * CVE-2026-23460 * CVE-2026-23461 * CVE-2026-23462 * CVE-2026-23463 * CVE-2026-23465 * CVE-2026-23466 * CVE-2026-23468 * CVE-2026-23470 * CVE-2026-23472 * CVE-2026-23473 * CVE-2026-23474 * CVE-2026-23475 * CVE-2026-31389 * CVE-2026-31392 * CVE-2026-31393 * CVE-2026-31394 * CVE-2026-31395 * CVE-2026-31400 * CVE-2026-31402 * CVE-2026-31403 * CVE-2026-31404 * CVE-2026-31405 * CVE-2026-31407 * CVE-2026-31408 * CVE-2026-31411 * CVE-2026-31412 * CVE-2026-31415 * CVE-2026-31416 * CVE-2026-31417 * CVE-2026-31420 * CVE-2026-31421 * CVE-2026-31422 * CVE-2026-31423 * CVE-2026-31424 * CVE-2026-31425 * CVE-2026-31426 * CVE-2026-31427 * CVE-2026-31428 * CVE-2026-31436 * CVE-2026-31449 * CVE-2026-31470 * CVE-2026-31488 * CVE-2026-31494 * CVE-2026-31496 * CVE-2026-31504 * CVE-2026-31505 * CVE-2026-31507 * CVE-2026-31512 * CVE-2026-31515 * CVE-2026-31519 * CVE-2026-31525 * CVE-2026-31528 * CVE-2026-31533 * CVE-2026-31547 * CVE-2026-31550 * CVE-2026-31565 * CVE-2026-31570 * CVE-2026-31586 * CVE-2026-31588 * CVE-2026-31602 * CVE-2026-31607 * CVE-2026-31622 * CVE-2026-31649 * CVE-2026-31656 * CVE-2026-31662 * CVE-2026-31668 * CVE-2026-31669 * CVE-2026-31675 * CVE-2026-31679 * CVE-2026-31681 * CVE-2026-31682 * CVE-2026-31684 * CVE-2026-31685 * CVE-2026-31694 * CVE-2026-31700 * CVE-2026-31738 * CVE-2026-31787 * CVE-2026-43009 * CVE-2026-43025 * CVE-2026-43027 * CVE-2026-43037 * CVE-2026-43038 * CVE-2026-43044 * CVE-2026-43050 * CVE-2026-43060 * CVE-2026-43088 * CVE-2026-43110 * CVE-2026-43120 * CVE-2026-43126 * CVE-2026-43190 * CVE-2026-43214 * CVE-2026-43265 * CVE-2026-43329 * CVE-2026-43330 * CVE-2026-43334 * CVE-2026-43365 * CVE-2026-43366 * CVE-2026-43419 * CVE-2026-43437 * CVE-2026-43441 * CVE-2026-43494 * CVE-2026-43503 CVSS scores: * CVE-2023-20585 ( SUSE ): 5.6 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2023-20585 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:N * CVE-2023-20585 ( NVD ): 5.6 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2025-40219 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2025-40219 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2025-68310 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2025-68310 ( SUSE ): 5.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2025-71183 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-71183 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-71238 ( SUSE ): 5.9 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-71238 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H * CVE-2025-71238 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23168 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23168 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23168 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23209 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23209 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23236 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23236 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23236 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23236 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H * CVE-2026-23237 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23237 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23237 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23239 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23239 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23239 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23240 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23240 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23240 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23245 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23245 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23245 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23246 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23246 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23253 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23253 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23260 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-23260 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-23260 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23261 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-23261 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-23262 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23262 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-23264 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23264 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23264 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23266 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23266 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23266 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23268 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23268 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23268 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23269 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23269 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23269 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23271 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23271 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23271 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23273 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23273 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23273 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23276 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23276 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23279 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23279 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23279 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23290 ( SUSE ): 5.1 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23290 ( SUSE ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23290 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23291 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23291 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23298 ( SUSE ): 5.1 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23298 ( SUSE ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23298 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23300 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23300 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23300 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23304 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23304 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23304 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23306 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23306 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:H/A:H * CVE-2026-23306 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23307 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23307 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23308 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23308 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23312 ( SUSE ): 5.1 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23312 ( SUSE ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23312 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23313 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23313 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23315 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23315 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23318 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23318 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23321 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-23321 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-23321 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23324 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23324 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23324 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23325 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23325 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23335 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-23335 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-23335 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23336 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23336 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23339 ( SUSE ): 2.3 CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-23339 ( SUSE ): 3.1 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-23339 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23340 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23340 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23340 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23343 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23343 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23343 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23346 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23346 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23346 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23351 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23351 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23354 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-23354 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2026-23354 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23357 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23357 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23357 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23362 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23362 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23363 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23363 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23365 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23365 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23365 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23367 ( SUSE ): 5.3 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-23367 ( SUSE ): 6.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2026-23367 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23368 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23368 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23368 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23370 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23370 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23372 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23372 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23373 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23373 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23374 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23374 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23374 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23378 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23378 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-23378 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23378 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23382 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23382 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23382 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23383 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23383 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23391 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23391 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23392 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23392 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23392 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23393 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23393 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23393 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23395 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23395 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23395 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23395 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23396 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23396 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23396 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23397 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23397 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23397 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23399 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23399 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23399 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23403 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23403 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2026-23403 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23404 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23404 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23404 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23405 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23405 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23405 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23406 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23406 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23406 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23407 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23407 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23407 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23408 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23408 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23408 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23408 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23409 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23409 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-23409 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23410 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23410 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23410 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23410 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23411 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23412 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23412 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23412 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23412 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23418 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23418 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23418 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23419 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23419 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23419 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23419 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23420 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23420 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23420 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23426 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23426 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23426 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23434 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23434 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23434 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23434 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-23440 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23440 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23440 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23440 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23441 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23441 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23442 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23442 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23442 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23443 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23443 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23443 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23445 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23445 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23445 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23445 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23446 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23446 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23446 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23447 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23447 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23447 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23448 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23448 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23448 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23449 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23449 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23449 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23450 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23450 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23450 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23452 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23452 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23452 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23454 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23454 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23454 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23455 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23455 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23455 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23456 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-23456 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-23456 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23457 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23457 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23457 ( NVD ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-23458 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23458 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23458 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23460 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23460 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23460 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23461 ( SUSE ): 7.7 CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23461 ( SUSE ): 7.5 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23461 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23462 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23462 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23462 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23463 ( SUSE ): 0.0 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-23463 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N * CVE-2026-23463 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23465 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:L/SC:N/SI:N/SA:N * CVE-2026-23465 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2026-23465 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23466 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23466 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23466 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23468 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23468 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23468 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23470 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23470 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23470 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23472 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23472 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23472 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23473 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23473 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23474 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23474 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23474 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23475 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23475 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23475 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31389 ( SUSE ): 5.6 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31389 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31389 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31392 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-31392 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L * CVE-2026-31392 ( NVD ): 8.1 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:L * CVE-2026-31393 ( SUSE ): 5.3 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31393 ( SUSE ): 4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-31393 ( NVD ): 8.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31394 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31394 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31394 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31395 ( SUSE ): 5.4 CVSS:4.0/AV:P/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31395 ( SUSE ): 6.4 CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31395 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31400 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31400 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31400 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31402 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31402 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-31402 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31403 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31403 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31403 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31404 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31404 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31404 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31405 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31405 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31405 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31407 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31407 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N * CVE-2026-31407 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31408 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31408 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31408 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31411 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31411 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31411 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31412 ( SUSE ): 7.0 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31412 ( SUSE ): 6.8 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31412 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31415 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31415 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31415 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31416 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-31416 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-31416 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31417 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31417 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31417 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31420 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31420 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31420 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31421 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31421 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31421 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31422 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31422 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31422 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31423 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31423 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31423 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31424 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31424 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31424 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31425 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31425 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31425 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31426 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31426 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2026-31426 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31427 ( SUSE ): 2.0 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-31427 ( SUSE ): 4.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2026-31427 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31428 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31428 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2026-31428 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31436 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31436 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31436 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31449 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31449 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31449 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-31470 ( SUSE ): 6.0 CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:H/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31470 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H * CVE-2026-31470 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31488 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31488 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31488 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31494 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-31494 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N * CVE-2026-31494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31496 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31496 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-31496 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31504 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31504 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31504 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31505 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31505 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31505 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31507 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31507 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31507 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31512 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31512 ( SUSE ): 7.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-31512 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31515 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31515 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31515 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31519 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31519 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31519 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31525 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31525 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31525 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31528 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31528 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31528 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31533 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31533 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31533 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31547 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31547 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31547 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31550 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31550 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31550 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31565 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31565 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31565 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31570 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:H/SI:N/SA:N * CVE-2026-31570 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31570 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31586 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31586 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31586 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31588 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31588 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31588 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-31602 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31602 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31602 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31607 ( SUSE ): 7.0 CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31607 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H * CVE-2026-31607 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31622 ( SUSE ): 8.7 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31622 ( SUSE ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31622 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31649 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31649 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31649 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31656 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31656 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31656 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31662 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31662 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31662 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31668 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-31668 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2026-31668 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31669 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31669 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31669 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31675 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31675 ( SUSE ): 5.6 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H * CVE-2026-31675 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31679 ( SUSE ): 8.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31679 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31679 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31681 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31681 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N * CVE-2026-31681 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31682 ( SUSE ): 5.3 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31682 ( SUSE ): 4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-31682 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31684 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-31684 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L * CVE-2026-31684 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31685 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31685 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31685 ( NVD ): 9.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H * CVE-2026-31694 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31694 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31694 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31700 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31700 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31700 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31738 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31738 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31738 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31787 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31787 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31787 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43009 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43009 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43025 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43025 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H * CVE-2026-43027 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43027 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43037 ( SUSE ): 7.7 CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43037 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43037 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43038 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43038 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43044 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43044 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43044 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43050 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43050 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43050 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43060 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43060 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43088 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-43088 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-43110 ( SUSE ): 7.7 CVSS:4.0/AV:A/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43110 ( SUSE ): 7.5 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43110 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43120 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43120 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-43120 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43120 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43126 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43126 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43126 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43190 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43190 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-43190 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-43214 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43214 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43214 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43265 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43265 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43265 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43329 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43329 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43329 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43330 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43330 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43330 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43334 ( SUSE ): 8.6 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-43334 ( SUSE ): 8.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-43334 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43365 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-43365 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-43365 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-43366 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43366 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43366 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43419 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-43419 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-43437 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43437 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43437 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43441 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43441 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43494 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43494 ( SUSE ): 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43503 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43503 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-43503 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise Live Patching 15-SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Real Time Module 15-SP7 An update that solves 201 vulnerabilities, contains six features and has 41 security fixes can now be installed. ## Description: The SUSE Linux Enterprise 15 SP7 RT kernel was updated to fix various security issues The following security issues were fixed: * CVE-2023-20585: x86/CPU: Fix FPDSS on Zen1 (bsc#1243603). * CVE-2025-68310: s390/pci: Use pci_uevent_ers() in PCI recovery (bsc#1255160). * CVE-2025-71183: btrfs: always detect conflicting inodes when logging inode refs (bsc#1257631). * CVE-2026-23168: flex_proportions: make fprop_new_period() hardirq safe (bsc#1258826). * CVE-2026-23239: espintcp: Fix race condition in espintcp_close() (bsc#1259485). * CVE-2026-23240: tls: Fix race condition in tls_sw_cancel_work_tx() (bsc#1259484). * CVE-2026-23245: net/sched: act_gate: snapshot parameters with RCU on replace (bsc#1259799). * CVE-2026-23262: gve: Fix stats report corruption on queue count change (bsc#1259870). * CVE-2026-23271: perf: Fix __perf_event_overflow() vs perf_remove_from_context() race (bsc#1260018). * CVE-2026-23276: net: move dev_xmit_recursion() helpers to net/core/dev.h (bsc#1260012). * CVE-2026-23300: net: ipv6: fix panic when IPv4 route references loopback IPv6 nexthop (bsc#1260538). * CVE-2026-23304: ipv6: fix NULL pointer deref in ip6_rt_get_dev_rcu() (bsc#1260544). * CVE-2026-23306: scsi: pm8001: Fix use-after-free in pm8001_queue_command() (bsc#1260501). * CVE-2026-23313: i40e: Fix preempt count leak in napi poll tracepoint (bsc#1260555). * CVE-2026-23321: mptcp: pm: in-kernel: always mark signal+subflow endp as used (bsc#1260505). * CVE-2026-23335: RDMA/irdma: Fix kernel stack leak in irdma_create_user_ah() (bsc#1260550). * CVE-2026-23340: net: sched: avoid qdisc_reset_all_tx_gt() vs dequeue race for lockless qdiscs (bsc#1260523). * CVE-2026-23343: xdp: produce a warning when calculated tailroom is negative (bsc#1260527). * CVE-2026-23346: mm/ioremap: define generic_ioremap_prot() and generic_iounmap() (bsc#1260529). * CVE-2026-23351: netfilter: nft_set_pipapo: split gc into unlink and reclaim phase (bsc#1260526). * CVE-2026-23354: x86/fred: Correct speculative safety in fred_extint() (bsc#1260801). * CVE-2026-23368: net: phy: register phy led_triggers during probe to avoid AB-BA deadlock (bsc#1260530). * CVE-2026-23374: blktrace: fix __this_cpu_read/write in preemptible context (bsc#1260811). * CVE-2026-23378: net/sched: act_ife: Fix metalist update behavior (bsc#1260546). * CVE-2026-23383: bpf, arm64: Force 8-byte alignment for JIT buffer to prevent atomic tearing (bsc#1260497). * CVE-2026-23391: netfilter: xt_CT: drop pending enqueued packets on template removal (bsc#1260566). * CVE-2026-23392: netfilter: nf_tables: release flowtable after rcu grace period on error (bsc#1260531). * CVE-2026-23393: bridge: cfm: Fix race condition in peer_mep deletion (bsc#1260522). * CVE-2026-23395: Bluetooth: L2CAP: Fix accepting multiple L2CAP_ECRED_CONN_REQ (bsc#1260580). * CVE-2026-23397: nfnetlink_osf: validate individual option lengths in fingerprints (bsc#1260728). * CVE-2026-23399: nf_tables: nft_dynset: fix possible stateful expression memleak in error path (bsc#1261020). * CVE-2026-23412: netfilter: bpf: defer hook memory release until rcu readers are done (bsc#1261412). * CVE-2026-23419: net/rds: Fix circular locking dependency in rds_tcp_tune (bsc#1261507). * CVE-2026-23440: net/mlx5e: Fix race condition during IPSec ESN update (bsc#1261641). * CVE-2026-23441: net/mlx5e: Prevent concurrent access to IPSec ASO context (bsc#1261768). * CVE-2026-23442: ipv6: add NULL checks for idev in SRv6 paths (bsc#1261581). * CVE-2026-23445: igc: fix page fault in XDP TX timestamps handling (bsc#1261702). * CVE-2026-23449: net/sched: teql: Fix double-free in teql_master_xmit (bsc#1261779). * CVE-2026-23450: net/smc: fix NULL dereference and UAF in smc_tcp_syn_recv_sock() (bsc#1261584). * CVE-2026-23455: netfilter: nf_conntrack_h323: check for zero length in DecodeQ931() (bsc#1261687). * CVE-2026-23456: netfilter: nf_conntrack_h323: fix OOB read in decode_int() CONS case (bsc#1261703). * CVE-2026-23457: netfilter: nf_conntrack_sip: fix Content-Length u32 truncation in sip_help_tcp() (bsc#1261686). * CVE-2026-23458: netfilter: ctnetlink: fix use-after-free in ctnetlink_dump_exp_ct() (bsc#1261781). * CVE-2026-23461: Bluetooth: L2CAP: Fix use-after-free in l2cap_unregister_user (bsc#1261707). * CVE-2026-23462: Bluetooth: HIDP: Fix possible UAF (bsc#1261710). * CVE-2026-23468: drm/amdgpu: Limit BO list entry count to prevent resource exhaustion (bsc#1261692). * CVE-2026-23472: serial: core: fix infinite loop in handle_tx() for PORT_UNKNOWN (bsc#1261636). * CVE-2026-23473: io_uring/poll: fix multishot recv missing EOF on wakeup race (bsc#1261694). * CVE-2026-31395: bnxt_en: fix OOB access in DBG_BUF_PRODUCER async event handler (bsc#1261786). * CVE-2026-31400: sunrpc: fix cache_request leak in cache_release (bsc#1261645). * CVE-2026-31402: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache (bsc#1261638). * CVE-2026-31403: NFSD: Hold net reference for the lifetime of /proc/fs/nfs/exports fd (bsc#1261796). * CVE-2026-31404: xfs: avoid dereferencing log items after push callbacks (bsc#1261628). * CVE-2026-31407: netfilter: conntrack: add missing netlink policy validations (bsc#1261632). * CVE-2026-31411: net: atm: fix crash due to unvalidated vcc pointer in sigd_send() (bsc#1261752). * CVE-2026-31415: ipv6: avoid overflows in ip6_datagram_send_ctl() (bsc#1262099). * CVE-2026-31416: netfilter: nfnetlink_log: account for netlink header size (bsc#1262100). * CVE-2026-31420: bridge: mrp: reject zero test interval to avoid OOM panic (bsc#1262055). * CVE-2026-31421: net/sched: cls_fw: fix NULL pointer dereference on shared blocks (bsc#1262061). * CVE-2026-31422: net/sched: cls_flow: fix NULL pointer dereference on shared blocks (bsc#1262054). * CVE-2026-31423: net/sched: sch_hfsc: fix divide-by-zero in rtsc_min() (bsc#1262063). * CVE-2026-31424: netfilter: x_tables: restrict xt_check_match/xt_check_target extensions for NFPROTO_ARP (bsc#1262053). * CVE-2026-31425: rds: ib: reject FRMR registration before IB connection is established (bsc#1262074). * CVE-2026-31427: netfilter: nf_conntrack_sip: fix use of uninitialized rtp_addr in process_sdp (bsc#1262086). * CVE-2026-31428: netfilter: nfnetlink_log: fix uninitialized padding leak in NFULA_PAYLOAD (bsc#1262087). * CVE-2026-31436: dmaengine: idxd: fix possible wrong descriptor completion in llist_abort_desc() (bsc#1262602). * CVE-2026-31449: ext4: validate p_idx bounds in ext4_ext_correct_indexes (bsc#1262616). * CVE-2026-31470: virt: tdx-guest: Fix handling of host controlled 'quote' buffer length (bsc#1262665). * CVE-2026-31488: drm/amd/display: Do not skip unrelated mode changes in DSC validation (bsc#1262746). * CVE-2026-31494: net: cadence: macb: Synchronize stats calculations (bsc#1262671). * CVE-2026-31496: netfilter: nf_conntrack_expect: skip expectations in other netns via proc (bsc#1262673). * CVE-2026-31504: net: fix fanout UAF in packet_release() via NETDEV_UP race (bsc#1263085). * CVE-2026-31505: iavf: fix out-of-bounds writes in iavf_get_ethtool_stats() (bsc#1263093). * CVE-2026-31507: net/smc: fix double-free of smc_spd_priv when tee() duplicates splice pipe buffer (bsc#1263095). * CVE-2026-31512: Bluetooth: L2CAP: Validate PDU length before reading SDU length in l2cap_ecred_data_rcv() (bsc#1262734). * CVE-2026-31515: af_key: validate families in pfkey_send_migrate() (bsc#1262752). * CVE-2026-31519: btrfs: set BTRFS_ROOT_ORPHAN_CLEANUP during subvol create (bsc#1263012). * CVE-2026-31525: bpf: Fix undefined behavior in interpreter sdiv/smod for INT_MIN (bsc#1262725). * CVE-2026-31528: perf: Make sure to use pmu_ctx->pmu for groups (bsc#1263001). * CVE-2026-31533: net/tls: fix use-after-free in -EBUSY error path of tls_do_encryption (bsc#1262758). * CVE-2026-31547: drm/xe: Fix missing runtime PM reference in ccs_mode_store (bsc#1263018). * CVE-2026-31550: pmdomain: bcm: bcm2835-power: Increase ASB control timeout (bsc#1263104). * CVE-2026-31565: RDMA/irdma: Fix deadlock during netdev reset with active connections (bsc#1263064). * CVE-2026-31570: can: gw: fix OOB heap access in cgw_csum_crc8_rel() (bsc#1263065). * CVE-2026-31586: mm: blk-cgroup: fix use-after-free in cgwb_release_workfn() (bsc#1263176). * CVE-2026-31588: KVM: x86: Use scratch field in MMIO fragment to hold small write values (bsc#1263165). * CVE-2026-31602: ALSA: ctxfi: Limit PTP to a single page (bsc#1263723). * CVE-2026-31607: usbip: validate number_of_packets in usbip_pack_ret_submit() (bsc#1263600). * CVE-2026-31622: NFC: digital: Bounds check NFC-A cascade depth in SDD response handler (bsc#1263797). * CVE-2026-31649: net: stmmac: fix integer underflow in chain mode (bsc#1263582). * CVE-2026-31656: drm/i915/gt: fix refcount underflow in intel_engine_park_heartbeat (bsc#1263170). * CVE-2026-31662: tipc: fix bc_ackers underflow on duplicate GRP_ACK_MSG (bsc#1263131). * CVE-2026-31668: seg6: separate dst_cache for input and output paths in seg6 lwtunnel (bsc#1263140). * CVE-2026-31669: mptcp: fix slab-use-after-free in __inet_lookup_established (bsc#1263141). * CVE-2026-31675: net/sched: sch_netem: fix out-of-bounds access in packet corruption (bsc#1263556). * CVE-2026-31679: openvswitch: validate MPLS set/set_masked payload length (bsc#1263592). * CVE-2026-31681: netfilter: xt_multiport: validate range encoding in checkentry (bsc#1263593). * CVE-2026-31682: bridge: br_nd_send: linearize skb before parsing ND options (bsc#1263595). * CVE-2026-31684: net: sched: act_csum: validate nested VLAN headers (bsc#1263596). * CVE-2026-31685: netfilter: ip6t_eui64: reject invalid MAC header for all packets (bsc#1263668). * CVE-2026-31694: fuse: reject oversized dirents in page cache (bsc#1263901). * CVE-2026-31700: net/packet: fix TOCTOU race on mmap'd vnet_hdr in tpacket_snd() (bsc#1263882). * CVE-2026-31738: vxlan: validate ND option lengths in vxlan_na_create (bsc#1264059). * CVE-2026-31787: xen/privcmd: fix double free via VMA splitting (bsc#1262181). * CVE-2026-43009: bpf: Fix incorrect pruning due to atomic fetch precision tracking (bsc#1264014). * CVE-2026-43025: netfilter: ctnetlink: ignore explicit helper on new expectations (bsc#1263931). * CVE-2026-43027: netfilter: nf_conntrack_helper: pass helper to expect cleanup (bsc#1263933). * CVE-2026-43037: ip6_tunnel: clear skb2->cb in ip4ip6_err() (bsc#1263995). * CVE-2026-43038: ipv6: icmp: clear skb2->cb in ip6_err_gen_icmpv6_unreach() (bsc#1264097). * CVE-2026-43044: crypto: caam - fix DMA corruption on long hmac keys (bsc#1264087). * CVE-2026-43050: atm: lec: fix use-after-free in sock_def_readable() (bsc#1264082). * CVE-2026-43060: netfilter: nft_ct: drop pending enqueued packets on removal (bsc#1264183). * CVE-2026-43088: net: af_key: zero aligned sockaddr tail in PF_KEY exports (bsc#1264469). * CVE-2026-43110: wifi: brcmfmac: validate bsscfg indices in IF events (bsc#1264482). * CVE-2026-43120: RDMA/irdma: Fix double free related to rereg_user_mr. * CVE-2026-43126: ALSA: mixer: oss: Add card disconnect checkpoints (bsc#1264634). * CVE-2026-43190: netfilter: xt_tcpmss: check remaining length before reading optlen (bsc#1264848). * CVE-2026-43214: KVM: x86: Add SRCU protection for reading PDPTRs in __get_sregs2() (bsc#1264651). * CVE-2026-43265: KVM: x86: Ignore -EBUSY when checking nested events from vcpu_block() (bsc#1264427). * CVE-2026-43329: netfilter: flowtable: strictly check for maximum number of actions (bsc#1265085). * CVE-2026-43330: crypto: caam - fix overflow on long hmac keys (bsc#1264801). * CVE-2026-43334: Bluetooth: SMP: force responder MITM requirements before building the pairing response (bsc#1265090). * CVE-2026-43365: xfs: fix undersized l_iclog_roundoff values (bsc#1265119). * CVE-2026-43366: io_uring/kbuf: check if target buffer list is still legacy on recycle (bsc#1265116). * CVE-2026-43419: ceph: fix memory leaks in ceph_mdsc_build_path() (bsc#1264661). * CVE-2026-43437: ALSA: pcm: fix use-after-free on linked stream runtime in snd_pcm_drain() (bsc#1265126). * CVE-2026-43441: net: bonding: Fix nd_tbl NULL dereference when IPv6 is disabled (bsc#1264674). * CVE-2026-43494: net/rds: reset op_nents when zerocopy page pin fails (bsc#1265626). * CVE-2026-43503: net: skbuff: propagate shared-frag marker through frag- transfer helpers (bsc#1265960). The following non security issues were fixed: * accel/qaic: Add overflow check to remap_pfn_range during mmap (git-fixes). * ACPI: AGDI: fix missing newline in error message (git-fixes). * ACPI: CPPC: Fix related_cpus inconsistency during CPU hotplug (git-fixes). * ACPI: scan: Use acpi_dev_put() in object add error paths (git-fixes). * ACPI: video: Add backlight=native quirk for Dell OptiPlex 7770 AIO (git- fixes). * ACPI: video: force native backlight on HP OMEN 16 (8A44) (stable-fixes). * ALSA: 6fire: Fix input volume change detection (git-fixes). * ALSA: 6fire: fix use-after-free on disconnect (git-fixes). * ALSA: aoa: i2sbus: clear stale prepared state (git-fixes). * ALSA: aoa: i2sbus: fix OF node lifetime handling (git-fixes). * ALSA: aoa: Skip devices with no codecs in i2sbus_resume() (git-fixes). * ALSA: aoa: Use guard() for mutex locks (stable-fixes). * ALSA: asihpi: avoid write overflow check warning (stable-fixes). * ALSA: caiaq: Don't abort when no input device is available (git-fixes). * ALSA: caiaq: Fix control_put() result and cache rollback (git-fixes). * ALSA: caiaq: Fix potentially leftover ep1_in_urb at error path (git-fixes). * ALSA: caiaq: fix usb_dev refcount leak on probe failure (git-fixes). * ALSA: caiaq: Handle probe errors properly (git-fixes). * ALSA: caiaq: take a reference on the USB device in create_card() (git- fixes). * ALSA: control: Validate buf_len before strnlen() in snd_ctl_elem_init_enum_names() (git-fixes). * ALSA: core: Fix potential data race at fasync handling (git-fixes). * ALSA: core: Serialize deferred fasync state checks (git-fixes). * ALSA: core: Validate compress device numbers without dynamic minors (git- fixes). * ALSA: ctxfi: Add fallback to default RSR for S/PDIF (git-fixes). * ALSA: ctxfi: Fix missing SPDIFI1 index handling (stable-fixes). * ALSA: ctxfi: Limit PTP to a single page (git-fixes). * ALSA: firewire-tascam: Do not drop unread control events (git-fixes). * ALSA: fireworks: bound device-supplied status before string array lookup (git-fixes). * ALSA: hda/realtek - fixed speaker no sound update (git-fixes). * ALSA: hda/realtek: Add HP ENVY Laptop 13-ba0xxx quirk (stable-fixes). * ALSA: hda/realtek: Add mute LED quirk for HP Pavilion 15-eg0xxx (stable- fixes). * ALSA: hda/realtek: Add quirk for ASUS ROG Flow Z13-KJP GZ302EAC (stable- fixes). * ALSA: hda/realtek: add quirk for Framework F111:000F (stable-fixes). * ALSA: hda/realtek: Add quirk for Lenovo Yoga Pro 7 14IAH10 (stable-fixes). * ALSA: hda/realtek: fix code style (ERROR: else should follow close brace '}') (git-fixes). * ALSA: hda: cs35l41: Put ACPI device on missing physical node (git-fixes). * ALSA: hda: cs35l56: Propagate ASP TX source control errors (git-fixes). * ALSA: hda: cs35l56: Put ACPI device after setting companion (git-fixes). * ALSA: hda: Fix NULL pointer dereference in snd_hda_ctl_add() (git-fixes). * ALSA: misc: Use guard() for spin locks (stable-fixes). * ALSA: scarlett2: Add missing error check when initialise Autogain Status (git-fixes). * ALSA: scarlett2: Add missing sentinel initializer field (git-fixes). * ALSA: seq: Notify client and port info changes (stable-fixes). * ALSA: seq_oss: return full count for successful SEQ_FULLSIZE writes (stable- fixes). * ALSA: usb-audio: apply quirk for MOONDROP JU Jiu (stable-fixes). * ALSA: usb-audio: Avoid false E-MU sample-rate notifications (git-fixes). * ALSA: usb-audio: Avoid potential endless loop in convert_chmap_v3() (git- fixes). * ALSA: usb-audio: Bound MIDI 2.0 endpoint descriptor scans (git-fixes). * ALSA: usb-audio: Bound MIDI endpoint descriptor scans (git-fixes). * ALSA: usb-audio: Evaluate packsize caps at the right place (git-fixes). * ALSA: usb-audio: Fix Audio Advantage Micro II SPDIF switch (git-fixes). * ALSA: usb-audio: Fix potential leak of pd at parsing UAC3 streams (git- fixes). * ALSA: usb-audio: Fix quirk flags for NeuralDSP Quad Cortex (stable-fixes). * ALSA: usb-audio: Fix UAC3 cluster descriptor size check (git-fixes). * ALSA: usb-audio: midi2: Restart output URBs on resume (git-fixes). * ALSA: usb-audio: stop parsing UAC2 rates at MAX_NR_RATES (git-fixes). * amdgpu/jpeg: fix deepsleep register for jpeg 5_0_0 and 5_0_2 (stable-fixes). * ASoC: amd: acp: Add DMI quirk for Valve Steam Deck OLED (git-fixes). * ASoC: amd: yc: Add DMI entry for HP Laptop 15-fc0xxx (stable-fixes). * ASoC: amd: yc: Add DMI quirk for ASUS EXPERTBOOK BM1403CDA (stable-fixes). * ASoC: amd: yc: Add DMI quirk for Thin A15 B7VF (stable-fixes). * ASoC: amd: yc: Add HP OMEN Gaming Laptop 16-ap0xxx product line in quirk table (stable-fixes). * ASoC: codecs: ab8500: Fix casting of private data (git-fixes). * ASoC: cs35l56: Destroy workqueue in probe error path (git-fixes). * ASoC: cs35l56: Don't use devres to unregister component (git-fixes). * ASoC: cs35l56: Fix hibernate write in runtime resume error path (git-fixes). * ASoC: fsl_easrc: Change the type for iec958 channel status controls (git- fixes). * ASoC: fsl_easrc: Check the variable range in fsl_easrc_iec958_put_bits() (git-fixes). * ASoC: fsl_easrc: fix comment typo (git-fixes). * ASoC: fsl_easrc: Fix value type in fsl_easrc_iec958_get_bits() (git-fixes). * ASoC: fsl_micfil: Add access property for "VAD Detected" (git-fixes). * ASoC: fsl_micfil: Fix event generation in hwvad_put_enable() (git-fixes). * ASoC: fsl_micfil: Fix event generation in hwvad_put_init_mode() (git-fixes). * ASoC: fsl_micfil: Fix event generation in micfil_put_dc_remover_state() (git-fixes). * ASoC: fsl_micfil: Fix event generation in micfil_quality_set() (git-fixes). * ASoC: fsl_xcvr: Fix event generation for cached controls (git-fixes). * ASoC: fsl_xcvr: Fix event generation in fsl_xcvr_arc_mode_put() (git-fixes). * ASoC: fsl_xcvr: Fix event generation in fsl_xcvr_mode_put() (git-fixes). * ASoC: Intel: bytcr_wm5102: Fix MCLK leak on platform_clock_control error (git-fixes). * ASoC: qcom: q6apm-dai: reset queue ptr on trigger stop (git-fixes). * ASoC: qcom: q6apm-lpass-dai: Fix multiple graph opens (git-fixes). * ASoC: qcom: q6apm: move component registration to unmanaged version (git- fixes). * ASoC: qcom: q6apm: remove child devices when apm is removed (git-fixes). * ASoC: qcom: qdsp6: topology: check widget type before accessing data (git- fixes). * ASoC: soc-core: call missing INIT_LIST_HEAD() for card_aux_list (stable- fixes). * ASoC: SOF: compress: return the configured codec from get_params (git- fixes). * ASoC: SOF: Don't allow pointer operations on unconfigured streams (git- fixes). * ASoC: SOF: Intel: hda: Place check before dereference (git-fixes). * ASoC: SOF: topology: reject invalid vendor array size in token parser (stable-fixes). * ASoC: sti: Return errors from regmap_field_alloc() (git-fixes). * ASoC: sti: use managed regmap_field allocations (git-fixes). * ASoC: stm32_sai: fix incorrect BCLK polarity for DSP_A/B, LEFT_J (stable- fixes). * ata: ahci: force 32-bit DMA for JMicron JMB582/JMB585 (stable-fixes). * batman-adv: bla: only purge non-released claims (git-fixes). * batman-adv: bla: prevent use-after-free when deleting claims (git-fixes). * batman-adv: bla: put backbone reference on failed claim hash insert (git- fixes). * batman-adv: fix integer overflow on buff_pos (git-fixes). * batman-adv: hold claim backbone gateways by reference (git-fixes). * batman-adv: reject new tp_meter sessions during teardown (git-fixes). * batman-adv: reject oversized global TT response buffers (git-fixes). * batman-adv: stop caching unowned originator pointers in BAT IV (git-fixes). * Bluetooth: bnep: fix incorrect length parsing in bnep_rx_frame() extension handling (git-fixes). * Bluetooth: btmtk: validate WMT event SKB length before struct access (git- fixes). * Bluetooth: fix locking in hci_conn_request_evt() with HCI_PROTO_DEFER (git- fixes). * Bluetooth: hci_event: Fix OOB read and infinite loop in hci_le_create_big_complete_evt (git-fixes). * Bluetooth: hci_event: fix potential UAF in SSP passkey handlers (git-fixes). * Bluetooth: hci_ldisc: Clear HCI_UART_PROTO_INIT on error (git-fixes). * Bluetooth: HIDP: serialise l2cap_unregister_user via hidp_session_sem (git- fixes). * Bluetooth: ISO: Fix data-race on dst in iso_sock_connect() (git-fixes). * Bluetooth: l2cap: Add missing chan lock in l2cap_ecred_reconf_rsp (git- fixes). * Bluetooth: l2cap: fix MPS check in l2cap_ecred_reconf_req (git-fixes). * Bluetooth: L2CAP: Fix null-ptr-deref in l2cap_sock_new_connection_cb() (git- fixes). * Bluetooth: L2CAP: Fix null-ptr-deref in l2cap_sock_state_change_cb() (git- fixes). * Bluetooth: L2CAP: Fix printing wrong information if SDU length exceeds MTU (git-fixes). * Bluetooth: RFCOMM: pull credit byte with skb_pull_data() (git-fixes). * Bluetooth: SCO: check for codecs->num_codecs == 1 before assigning to sco_pi(sk)->codec (git-fixes). * Bluetooth: SCO: fix sleeping under spinlock in sco_conn_ready (git-fixes). * Bluetooth: SCO: hold sk properly in sco_conn_ready (git-fixes). * Bluetooth: virtio_bt: clamp rx length before skb_put (git-fixes). * Bluetooth: virtio_bt: validate rx pkt_type header length (git-fixes). * btrfs: do not skip logging new dentries when logging a new name (git-fixes). * btrfs: reject root items with drop_progress and zero drop_level (git-fixes). * btrfs: replace BUG() with error handling in __btrfs_balance() (git-fixes). * can: mcp251x: add error handling for power enable in open and resume (stable-fixes). * can: raw: fix ro->uniq use-after-free in raw_rcv() (git-fixes). * can: ucan: fix devres lifetime (git-fixes). * cdc-acm: new quirk for EPSON HMD (stable-fixes). * cgroup/cpuset: Fix incorrect change to effective_xcpus in partition_xcpus_del() (bsc#1241166). * cgroup/cpuset: Fix incorrect use of cpuset_update_tasks_cpumask() in update_cpumasks_hier() (bsc#1241166). * check-for-config-changes: Exclude CC_MS_EXTENSIONS. * check-for-config-changes: Exclude HAVE_CFI_ICALL_NORMALIZE_INTEGERS{,_RUSTC}. * checkpatch: add support for Assisted-by tag (stable-fixes). * comedi: dt2815: add hardware detection to prevent crash (stable-fixes). * cpufreq: intel_pstate: Drop Arrow Lake from "scaling factor" list (bsc#1249104). * crypto: algif_aead - Fix minimum RX size check for decryption (git-fixes). * crypto: arm64/aes - Fix 32-bit aes_mac_update() arg treated as 64-bit (git- fixes). * crypto: atmel-aes - Fix 3-page memory leak in atmel_aes_buff_cleanup (git- fixes). * crypto: atmel-ecc - Release client on allocation failure (git-fixes). * crypto: atmel-sha204a - Fix potential UAF and memory leak in remove path (git-fixes). * crypto: atmel-tdes - fix DMA sync direction (git-fixes). * crypto: authencesn - reject short ahash digests during instance creation (git-fixes). * crypto: ccp - copy IV using skcipher ivsize (git-fixes). * crypto: ccp: Don't attempt to copy CSR to userspace if PSP command failed (git-fixes). * crypto: ccp: Don't attempt to copy ID to userspace if PSP command failed (git-fixes). * crypto: ccp: Don't attempt to copy PDH cert to userspace if PSP command failed (git-fixes). * crypto: ccree - fix a memory leak in cc_mac_digest() (git-fixes). * crypto: hisilicon - Fix dma_unmap_single() direction (git-fixes). * crypto: jitterentropy - replace long-held spinlock with mutex (git-fixes). * crypto: pcrypt - Fix handling of MAY_BACKLOG requests (git-fixes). * crypto: qat - fix type mismatch in RAS sysfs show functions (git-fixes). * crypto: qat - use swab32 macro (git-fixes). * crypto: sa2ul - Fix AEAD fallback algorithm names (git-fixes). * crypto: simd - reject compat registrations without __ prefixes (git-fixes). * crypto: talitos - fix SEC1 32k ahash request limitation (git-fixes). * crypto: testmgr - Hide ENOENT errors (stable-fixes). * crypto: testmgr - Hide ENOENT errors better (git-fixes). * devres: fix missing node debug info in devm_krealloc() (git-fixes). * dm init: ensure device probing has finished in dm-mod.waitfor= (git-fixes). * dmaengine: dw-axi-dmac: Remove unnecessary return statement from void function (git-fixes). * dmaengine: mxs-dma: Fix missing return value from of_dma_controller_register() (git-fixes). * dpll: zl3073x: Add support to adjust phase (bsc#1255752). * dpll: zl3073x: Fix output pin phase adjustment sign (bsc#1255752). * dpll: zl3073x: Fix output pin registration (bsc#1255752). * dpll: zl3073x: fix REF_PHASE_OFFSET_COMP register width for some chip IDs (bsc#1255752). * dpll: zl3073x: Specify phase adjustment granularity for pins (bsc#1255752). * drm/amd/display: Add NULL check for integrated_info in clk_mgr_construct (git-fixes). * drm/amd/display: Allow DCE link encoder without AUX registers (git-fixes). * drm/amd/display: Avoid NULL dereference in dc_dmub_srv error paths (git- fixes). * drm/amd/display: Change dither policy for 10 bpc output back to dithering (git-fixes). * drm/amd/display: Correct logic check error for fastboot (git-fixes). * drm/amd/display: Disable 10-bit truncation and dithering on DCE 6.x (git- fixes). * drm/amd/display: Disable fastboot on DCE 6 too (stable-fixes). * drm/amd/display: Read EDID from VBIOS embedded panel info (git-fixes). * drm/amd/pm/ci: Clear EnabledForActivity field for memory levels (git-fixes). * drm/amd/pm/ci: Disable MCLK DPM on problematic CI ASICs (git-fixes). * drm/amd/pm/ci: Fill DW8 fields from SMC (git-fixes). * drm/amd/pm/ci: Fix powertune defaults for Hawaii 0x67B0 (git-fixes). * drm/amd/pm/ci: Use highest MCLK on CI when MCLK DPM is disabled (git-fixes). * drm/amd/pm/smu7: Add SCLK cap for quirky Hawaii board (git-fixes). * drm/amd/pm/smu7: Fix SMU7 voltage dependency on display clock (git-fixes). * drm/amd/pm: fix incorrect FeatureCtrlMask setting on smu v14.0.x (git- fixes). * drm/amdgpu/gfx6: Support harvested SI chips with disabled TCCs (v2) (git- fixes). * drm/amdgpu/gfx9: drop unnecessary 64-bit fence flag check in KIQ (stable- fixes). * drm/amdgpu/gfx10: look at the right prop for gfx queue priority (git-fixes). * drm/amdgpu/gfx11: look at the right prop for gfx queue priority (git-fixes). * drm/amdgpu/gmc: Fix AMDGPU_GART_PLACEMENT_LOW to not overlap with VRAM (git- fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v2.0 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v2.5 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v3.0 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v4.0 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v4.0.3 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v4.0.5 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v5.0.0 ring (git-fixes). * drm/amdgpu/pm: add missing revision check for CI (git-fixes). * drm/amdgpu/pm: align Hawaii mclk workaround with radeon (git-fixes). * drm/amdgpu/pm: drop SMU driver if version not matched messages (stable- fixes). * drm/amdgpu/sdma4: replace BUG_ON with WARN_ON in fence emission (git-fixes). * drm/amdgpu/vce: Prevent partial address patches (stable-fixes). * drm/amdgpu/vcn3: Avoid overflow on msg bound check (git-fixes). * drm/amdgpu/vcn3: Prevent OOB reads when parsing dec msg (stable-fixes). * drm/amdgpu/vcn4: Avoid overflow on msg bound check (git-fixes). * drm/amdgpu/vcn4: Prevent OOB reads when parsing dec msg (stable-fixes). * drm/amdgpu/vcn4: Prevent OOB reads when parsing IB (stable-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v2.0 enc/dec rings (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v2.5 enc/dec rings (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v3.0 enc/dec rings (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v4.0 enc ring (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v4.0.3 enc ring (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v4.0.5 enc ring (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v5.0.0 enc ring (git-fixes). * drm/amdgpu: Add bounds checking to ib_{get,set}_value (stable-fixes). * drm/amdgpu: Add default case in DVI mode validation (git-fixes). * drm/amdgpu: fix AMDGPU_INFO_READ_MMR_REG (git-fixes). * drm/amdgpu: fix the idr allocation flags (git-fixes). * drm/amdgpu: fix zero-size GDS range init on RDNA4 (stable-fixes). * drm/amdgpu: gate VM CPU HDP flush on reset lock (stable-fixes). * drm/amdgpu: replace PASID IDR with XArray (git-fixes). * drm/amdgpu: Use SMUIO 15.0.0 offsets for TSC upper and lower count (stable- fixes). * drm/amdgpu: zero-initialize GART table on allocation (stable-fixes). * drm/amdkfd: Add upper bound check for num_of_nodes (stable-fixes). * drm/amdkfd: Clear VRAM on allocation to prevent stale data exposure (stable- fixes). * drm/amdkfd: Make all TLB-flushes heavy-weight (stable-fixes). * drm/amdkfd: validate SVM ioctl nattr against buffer size (stable-fixes). * drm/arcpgu: fix device node leak (git-fixes). * drm/bridge: cadence: cdns-mhdp8546-core: Add mode_valid hook to drm_bridge_funcs (git-fixes). * drm/bridge: cadence: cdns-mhdp8546-core: Handle HDCP state in bridge atomic check (git-fixes). * drm/bridge: cadence: cdns-mhdp8546-core: Set the mhdp connector earlier in atomic_enable() (git-fixes). * drm/bridge: stm_lvds: Do not fail atomic_check on disabled connector (git- fixes). * drm/etnaviv: Fix armed job not being pushed to the DRM scheduler (git- fixes). * drm/exynos: remove bridge when component_add fails (git-fixes). * drm/fb-helper: Fix clipping when damage area spans a single scanline (git- fixes). * drm/gem: Fix inconsistent plane dimension calculation in drm_gem_fb_init_with_funcs() (git-fixes). * drm/gma500/oaktrail_hdmi: fix i2c adapter leak on setup (git-fixes). * drm/gma500/oaktrail_lvds: fix hang on init failure (git-fixes). * drm/gma500/oaktrail_lvds: fix i2c adapter leaks on init (git-fixes). * drm/i915/dp: Fix VSC dynamic range signaling for RGB formats (git-fixes). * drm/i915/gt: fix refcount underflow in intel_engine_park_heartbeat (git- fixes). * drm/i915/wm: Verify the correct plane DDB entry (git-fixes). * drm/i915: skip __i915_request_skip() for already signaled requests (git- fixes). * drm/imagination: Switch reset_reason fields from enum to u32 (git-fixes). * drm/komeda: fix integer overflow in AFBC framebuffer size check (git-fixes). * drm/loongson: Use managed KMS polling (git-fixes). * drm/msm/a6xx: Fix dumping A650+ debugbus blocks (git-fixes). * drm/msm/a6xx: Fix HLSQ register dumping (git-fixes). * drm/msm/a6xx: Use barriers while updating HFI Q headers (git-fixes). * drm/msm/dpu: fix mismatch between power and frequency (git-fixes). * drm/msm/dsi: add the missing parameter description (git-fixes). * drm/msm/dsi: fix bits_per_pclk (git-fixes). * drm/msm/dsi: fix hdisplay calculation for CMD mode panel (git-fixes). * drm/msm/dsi: rename MSM8998 DSI version from V2_2_0 to V2_0_0 (git-fixes). * drm/msm/gem: fix error handling in msm_ioctl_gem_info_get_metadata() (git- fixes). * drm/msm/shrinker: Fix can_block() logic (git-fixes). * drm/msm: add missing MODULE_DEVICE_ID definitions (git-fixes). * drm/nouveau: fix nvkm_device leak on aperture removal failure (git-fixes). * drm/nouveau: fix u32 overflow in pushbuf reloc bounds check (git-fixes). * drm/panel: boe-tv101wum-nl6: restore MODE_LPM after sending disable cmds (git-fixes). * drm/panel: himax-hx83102: restore MODE_LPM after sending disable cmds (git- fixes). * drm/panel: sharp-ls043t1le01: make use of prepare_prev_first (git-fixes). * drm/panel: simple: Correct G190EAN01 prepare timing (git-fixes). * drm/panfrost: Fix wait_bo ioctl leaking positive return from dma_resv_wait_timeout() (git-fixes). * drm/panthor: Fix outdated function documentation (git-fixes). * drm/radeon: add missing revision check for CI (git-fixes). * drm/sun4i: backend: fix error pointer dereference (git-fixes). * drm/sun4i: Fix resource leaks (git-fixes). * drm/v3d: Handle error from drm_sched_entity_init() (git-fixes). * drm/vc4: Fix a memory leak in hang state error path (git-fixes). * drm/vc4: Fix memory leak of BO array in hang state (git-fixes). * drm/vc4: platform_get_irq_byname() returns an int (stable-fixes). * drm/vc4: Protect madv read in vc4_gem_object_mmap() with madv_lock (git- fixes). * drm/vc4: Release runtime PM reference after binding V3D (git-fixes). * drm/vram: remove DRM_VRAM_MM_FILE_OPERATIONS from docs (git-fixes). * drm/xe/bo: Fix bo leak on GGTT flag validation in xe_bo_init_locked() (git- fixes). * drm/xe/bo: Fix bo leak on unaligned size validation in xe_bo_init_locked() (git-fixes). * drm/xe/debugfs: Correct printing of register whitelist ranges (git-fixes). * drm/xe/dma-buf: handle empty bo and UAF races (git-fixes). * drm/xe/gsc: Fix BO leak on error in query_compatibility_version() (git- fixes). * drm/xe/uapi: update used tracking kernel-doc (git-fixes). * drm/xe: Fix dma-buf attachment leak in xe_gem_prime_import() (git-fixes). * drm/xe: Fix error cleanup in xe_exec_queue_create_ioctl() (git-fixes). * dt-bindings: net: Fix Tegra234 MGBE PTP clock (git-fixes). * efi/capsule-loader: fix incorrect sizeof in phys array reallocation (git- fixes). * efi: pstore: Drop efivar lock when efi_pstore_open() returns with an error (git-fixes). * ext4: fix fsync(2) for nojournal mode (git-fixes). * ext4: make recently_deleted() properly work with lazy itable initialization (git-fixes). * ext4: reject mount if bigalloc with s_first_data_block != 0 (git-fixes). * extcon: ptn5150: handle pending IRQ events during system resume (git-fixes). * fbdev: matroxfb: Mark variable with __maybe_unused to avoid W=1 build break (git-fixes). * fbdev: offb: fix PCI device reference leak on probe failure (git-fixes). * fbdev: tdfxfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO (stable-fixes). * fbdev: udlfb: add vm_ops to dlfb_ops_mmap to prevent use-after-free (stable- fixes). * fbdev: udlfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO (git-fixes). * firmware: dmi: Correct an indexing error in dmi.h (git-fixes). * gpio: tegra: fix irq_release_resources calling enable instead of disable (git-fixes). * gtp: disable BH before calling udp_tunnel_xmit_skb() (git-fixes). * HID: alps: fix NULL pointer dereference in alps_raw_event() (git-fixes). * HID: asus: do not abort probe when not necessary (git-fixes). * HID: asus: make asus_resume adhere to linux kernel coding standards (git- fixes). * HID: core: clamp report_size in s32ton() to avoid undefined shift (stable- fixes). * HID: multitouch: Check to ensure report responses match the request (stable- fixes). * HID: playstation: Clamp num_touch_reports (git-fixes). * HID: quirks: add HID_QUIRK_ALWAYS_POLL for 8BitDo Pro 3 (stable-fixes). * HID: roccat: fix use-after-free in roccat_report_event (stable-fixes). * HID: usbhid: fix deadlock in hid_post_reset() (git-fixes). * HID: wacom: fix out-of-bounds read in wacom_intuos_bt_irq (stable-fixes). * hv_sock: fix ARM64 support (git-fixes). * hwmon: (ads7871) Fix endianness bug in 16-bit register reads (git-fixes). * hwmon: (corsair-psu) Close HID device on probe errors (git-fixes). * hwmon: (lm63) Add locking to avoid TOCTOU (git-fixes). * hwmon: (ltc2992) Clamp threshold writes to hardware range (git-fixes). * hwmon: (ltc2992) Fix u32 overflow in power read path (git-fixes). * i2c: s3c24xx: check the size of the SMBUS message before using it (stable- fixes). * i2c: smbus: reject oversized block transfers in the common path (git-fixes). * i2c: stm32f7: reinit_completion() per transfer not per msg (git-fixes). * i2c: stub: Reject I2C block transfers with invalid length (git-fixes). * i3c: master: Fix error codes at send_ccc_cmd (git-fixes). * i3c: mipi-i3c-hci: fix IBI payload length calculation for final status (git- fixes). * ibmveth: Disable GSO for packets with small MSS (bsc#1265144). * ice: set max queues in alloc_etherdev_mqs() (git-fixes). * iio: adc: ad7768-1: fix one-shot mode data acquisition (git-fixes). * iio: adc: ti-adc161s626: use DMA-safe memory for spi_read() (git-fixes). * iio: adc: ti-ads7950: use iio_push_to_buffers_with_ts_unaligned() (git- fixes). * Input: i8042 - add TUXEDO InfinityBook Max 16 Gen10 AMD to i8042 quirk table (stable-fixes). * Input: uinput - fix circular locking dependency with ff-core (git-fixes). * Input: uinput - take event lock when submitting FF request "event" (stable- fixes). * Input: xpad - add support for BETOP BTP-KP50B/C controller's wireless mode (stable-fixes). * Input: xpad - add support for Razer Wolverine V3 Pro (stable-fixes). * intel_idle: add Clearwater Forest SoC support (jsc#PED-10383). * ipmi: Add limits to event and receive message requests (git-fixes). * ipmi: Check event message buffer response for bad data (git-fixes). * ipmi: ssif_bmc: change log level to dbg in irq callback (git-fixes). * ipmi: ssif_bmc: fix message desynchronization after truncated response (git- fixes). * ipmi: ssif_bmc: fix missing check for copy_to_user() partial failure (git- fixes). * irqchip/irq-pic32-evic: Address warning related to wrong printf() formatter (git-fixes). * kdump, documentation: describe craskernel CMA reservation (jsc#PED-7249). * KVM: Reject wrapped offset in kvm_reset_dirty_gfn() (git-fixes). * KVM: SVM: Fix a missing kunmap_local() in sev_gmem_post_populate() (git- fixes). * KVM: SVM: Mark VMCB_NPT as dirty on nested VMRUN (git-fixes). * KVM: SVM: Mark VMCB_PERM_MAP as dirty on nested VMRUN (git-fixes). * KVM: x86/mmu: Drop/zap existing present SPTE even when creating an MMIO SPTE (bsc#1259461). * KVM: x86/mmu: Retry fault before acquiring mmu_lock if mapping is changing (bsc#1253122). * KVM: x86/xen: Fix cleanup logic in emulation of Xen schedop poll hypercalls (git-fixes). * KVM: x86: check for nEPT/nNPT in slow flush hypercalls (git-fixes). * KVM: x86: Fix shadow paging use-after-free due to unexpected GFN (git- fixes). * KVM: x86: hyper-v: Validate all GVAs during PV TLB flush (git-fixes). * KVM: x86: Ignore cpuid faulting in SMM (git-fixes). * leds: lgm-sso: Remove duplicate assignments for priv->mmap (git-fixes). * leds: qcom-lpg: Check for array overflow when selecting the high resolution (stable-fixes). * lib/hexdump: print_hex_dump_bytes() calls print_hex_dump_debug() (git- fixes). * md/raid1: fix the comparing region of interval tree (bsc#1261555). * md/raid1: serialize overlap io for writemostly disk (bsc#1261555). * media: amphion: Fix race between m2m job_abort and device_run (git-fixes). * media: as102: fix to not free memory after the device is registered in as102_usb_probe() (git-fixes). * media: chips-media: wave5: add missing spinlock protection for handle_dynamic_resolution_change() (git-fixes). * media: chips-media: wave5: add missing spinlock protection for send_eos_event() (git-fixes). * media: chips-media: wave5: fix a potential memory leak in wave5_vdi_init() (git-fixes). * media: dib8000: avoid division by 0 in dib8000_set_dds() (git-fixes). * media: em28xx: fix use-after-free in em28xx_v4l2_open() (git-fixes). * media: hackrf: fix to not free memory after the device is registered in hackrf_probe() (git-fixes). * media: i2c: imx219: Check return value of devm_gpiod_get_optional() in imx219_probe() (git-fixes). * media: i2c: imx412: Assert reset GPIO during probe (git-fixes). * media: i2c: ov08d10: fix image vertical start setting (git-fixes). * media: i2c: ov8856: free control handler on error in ov8856_init_controls() (git-fixes). * media: intel/ipu6: fix error pointer dereference (git-fixes). * media: mtk-jpeg: fix use-after-free in release path due to uncancelled work (git-fixes). * media: nxp: imx8-isi: Reduce minimum queued buffers from 2 to 0 (git-fixes). * media: omap3isp: drop the use count of v4l2 pipeline (git-fixes). * media: pci: zoran: fix potential memory leak in zoran_probe() (git-fixes). * media: rc: streamzap: Error handling in probe (git-fixes). * media: rc: xbox_remote: heed DMA restrictions (git-fixes). * media: saa7164: add ioremap return checks and cleanups (git-fixes). * media: staging: imx: configure src_mux in csi_start (git-fixes). * media: staging: imx: request mbus_config in csi_start (git-fixes). * media: uvcvideo: Enable VB2_DMABUF for metadata stream (git-fixes). * media: videobuf2: Set vma_flags in vb2_dma_sg_mmap (git-fixes). * media: vidtv: fix nfeeds state corruption on start_streaming failure (git- fixes). * media: vidtv: fix NULL pointer dereference in vidtv_channel_pmt_match_sections (git-fixes). * media: vidtv: fix pass-by-value structs causing MSAN warnings (git-fixes). * memory: tegra30-emc: Fix dll_change check (git-fixes). * memory: tegra124-emc: Fix dll_change check (git-fixes). * mfd: mc13xxx-core: Fix memory leak in mc13xxx_add_subdevice_pdata() (git- fixes). * mkspec: Add signature to source list only when it exists. * mmc: sdhci-of-dwcmshc: Disable clock before DLL configuration (git-fixes). * mmc: vub300: fix NULL-deref on disconnect (git-fixes). * modpost: Amend ppc64 save/restfpr symnames for -Os build (bsc#1215199). * mtd: docg3: Convert to platform remove callback returning void (stable- fixes). * mtd: docg3: fix use-after-free in docg3_release() (git-fixes). * mtd: parsers: ofpart: call of_node_get() for dedicated subpartitions (git- fixes). * mtd: parsers: ofpart: call of_node_put() only in ofpart_fail path (git- fixes). * mtd: physmap_of_gemini: Fix disabled pinctrl state check (git-fixes). * mtd: rawnand: sunxi: fix sunxi_nfc_hw_ecc_read_extra_oob (git-fixes). * mtd: spi-nor: core: correct the op.dummy.nbytes when check read operations (git-fixes). * mtd: spi-nor: debugfs: fix out-of-bounds read in spi_nor_params_show() (git- fixes). * mtd: spi-nor: sst: Factor out common write operation to `sst_nor_write_data()` (stable-fixes). * mtd: spi-nor: sst: Fix SST write failure (git-fixes). * mtd: spi-nor: sst: Fix write enable before AAI sequence (git-fixes). * mtd: spi-nor: swp: check SR_TB flag when getting tb_mask (git-fixes). * net/rds: reset op_nents when zerocopy page pin fails (bsc#1265626). * net/sched: cls_fw: fix NULL dereference of "old" filters before change() (git-fixes). * net/sched: fix pedit partial COW leading to page cache corruption (bsc#1265421). * net: gro: don't merge zcopy skbs (git-fixes). * net: mana: Add MAC address to vPort logs and clarify error messages (git- fixes). * net: mana: check xdp_rxq registration before unreg in mana_destroy_rxq() (git-fixes). * net: mana: Don't overwrite port probe error with add_adev result (git- fixes). * net: mana: Fix crash from unvalidated SHM offset read from BAR0 during FLR (bsc#1265846). * net: mana: Fix EQ leak in mana_remove on NULL port (git-fixes). * net: mana: Fix RX skb truesize accounting (bsc#1248754). * net: mana: fix use-after-free in mana_hwc_destroy_channel() by reordering teardown (git-fixes). * net: mana: Guard mana_remove against double invocation (git-fixes). * net: mana: hardening: Validate adapter_mtu from MANA_QUERY_DEV_CONFIG (git- fixes). * net: mana: hardening: Validate doorbell ID from GDMA_REGISTER_DEVICE response (git-fixes). * net: mana: Init gf_stats_work before potential error paths in probe (git- fixes). * net: mana: Init link_change_work before potential error paths in probe (git- fixes). * net: mana: remove double CQ cleanup in mana_create_rxq error path (git- fixes). * net: mana: Set default number of queues to 16 (bsc#1261648). * net: mana: Skip WQ object destruction for uninitialized RXQ (git-fixes). * net: mana: Use at least SZ_4K in doorbell ID range check (git-fixes). * net: mana: Use pci_name() for debugfs directory naming (git-fixes). * net: phy: dp83869: fix setting CLK_O_SEL field (git-fixes). * net: stmmac: Fix PTP ref clock for Tegra234 (git-fixes). * net: usb: asix: ax88772: re-add usbnet_link_change() in phylink callbacks (git-fixes). * net: usb: cdc-phonet: fix skb frags[] overflow in rx_complete() (git-fixes). * net: usb: rtl8150: fix use-after-free in rtl8150_start_xmit() (git-fixes). * net: usb: rtl8150: free skb on usb_submit_urb() failure in xmit (git-fixes). * net: wan: fsl_ucc_hdlc: fix ucc_hdlc_remove (git-fixes). * net: wan: fsl_ucc_hdlc: fix uhdlc_memclean (git-fixes). * net: wan: fsl_ucc_hdlc: free tx_skbuff in uhdlc_memclean (git-fixes). * NFC: digital: Bounds check NFC-A cascade depth in SDD response handler (git- fixes). * nfc: llcp: add missing return after LLCP_CLOSED checks (git-fixes). * nfc: pn533: allocate rx skb before consuming bytes (git-fixes). * nfc: s3fwrn5: allocate rx skb before consuming bytes (git-fixes). * NFC: trf7970a: Ignore antenna noise when checking for RF field (git-fixes). * nvme-auth: Include SC_C in RVAL controller hash (bsc#1260428). * nvme-fabrics: use kfree_sensitive() for DHCHAP secrets (git-fixes). * nvme-loop: do not cancel I/O and admin tagset during ctrl reset/shutdown (bsc#1262709). * nvme-pci: cap queue creation to used queues (git-fixes). * nvme-pci: ensure we're polling a polled queue (git-fixes). * nvme: Allow reauth from sysfs (bsc#1259672). * nvme: Expose the tls_configured sysfs for secure concat connections (bsc#1259672). * nvme: expose TLS mode (bsc#1259672). * nvme: fix PCIe subsystem reset controller state transition (bsc#1261738). * nvmet-tcp: propagate nvmet_tcp_build_pdu_iovec() errors to its callers (git- fixes). * ocfs2: fix possible deadlock between unlink and dio_end_io_write (bsc#1258718). * ocfs2: split transactions in dio completion to avoid credit exhaustion (bsc#1258718). * Partial revert "x86/xen: fix balloon target initialization for PVH dom0" (bsc#1262599). * PCI/AER: Clear only error bits in PCIe Device Status (git-fixes). * PCI/AER: Stop ruling out unbound devices as error source (git-fixes). * PCI: dwc: Apply ECRC workaround to DesignWare 5.00a as well (git-fixes). * PCI: Enable AtomicOps only if Root Port supports them (git-fixes). * PCI: endpoint: pci-epf-ntb: Remove duplicate resource teardown (git-fixes). * PCI: hv: Set default NUMA node to 0 for devices without affinity info (git- fixes). * PCI: mediatek-gen3: Prevent leaking IRQ domains when IRQ not found (git- fixes). * PCI: tegra194: Allow system suspend when the Endpoint link is not up (git- fixes). * PCI: tegra194: Disable direct speed change for Endpoint mode (git-fixes). * PCI: tegra194: Disable LTSSM after transition to Detect on surprise link down (git-fixes). * PCI: tegra194: Disable PERST# IRQ only in Endpoint mode (git-fixes). * PCI: tegra194: Fix polling delay for L2 state (git-fixes). * PCI: tegra194: Increase LTSSM poll time on surprise link down (git-fixes). * PCI: tegra194: Set LTR message request before PCIe link up in Endpoint mode (git-fixes). * PCI: tegra194: Use devm_gpiod_get_optional() to parse "nvidia,refclk-select" (git-fixes). * PCI: tegra194: Use DWC IP core version (git-fixes). * pinctrl: abx500: Fix type of 'argument' variable (git-fixes). * pinctrl: Fix spelling problem (git-fixes). * pinctrl: intel: Fix the revision for new features (1kOhm PD, HW debouncer) (stable-fixes). * pinctrl: pic32: change all cases of bare 'unsigned' to 'unsigned int' (git- fixes). * pinctrl: pic32: use consistent spacing around '+' (git-fixes). * pinctrl: pinctrl-pic32: Fix resource leak (git-fixes). * platform/chrome: chromeos_tbmc: Drop wakeup source on remove (git-fixes). * platform/surface: surfacepro3_button: Drop wakeup source on remove (git- fixes). * platform/x86/amd: pmc: Add Thinkpad L14 Gen3 to quirk_s2idle_bug (stable- fixes). * platform/x86/intel-uncore-freq: Handle autonomous UFS status bit (git- fixes). * platform/x86/intel: power-domains: Add Clearwater Forest support (jsc#PED-16221). * platform/x86: dell-wmi-sysman: bound enumeration string aggregation (git- fixes). * platform/x86: dell_rbu: avoid uninit value usage in packet_size_write() (git-fixes). * platform/x86: hp-wmi: Ignore backlight and FnLock events (stable-fixes). * platform/x86: ISST: Add Clearwater Forest to support list (jsc#PED-16221). * platform/x86: panasonic-laptop: Fix OPTD notifier registration and cleanup (git-fixes). * power: supply: axp288_charger: Do not cancel work before initializing it (git-fixes). * power: supply: max17042: avoid overflow when determining health (git-fixes). * powerpc/crash: adjust the elfcorehdr size (jsc#PED-11175 git-fixes). * powerpc/crash: fix backup region offset update to elfcorehdr (bsc#1259535). * powerpc/crash: Update backup region offset in elfcorehdr on memory hotplug (bsc#1259535). * powerpc/kdump: Fix size calculation for hot-removed memory ranges (jsc#PED-11175 git-fixes). * RDMA/mana: Fix error unwind in mana_ib_create_qp_rss() (git-fixes). * RDMA/mana: Fix mana_destroy_wq_obj() cleanup in mana_ib_create_qp_rss() (git-fixes). * RDMA/mana: Remove user triggerable WARN_ON() in mana_ib_create_qp_rss() (git-fixes). * RDMA/mana: Validate rx_hash_key_len (git-fixes). * RDMA/mana_ib: cleanup the usage of mana_gd_send_request() (git-fixes). * RDMA/mana_ib: Disable RX steering on RSS QP destroy (git-fixes). * RDMA/mana_ib: Support memory windows (git-fixes). * regulator: act8945a: fix OF node reference imbalance (git-fixes). * regulator: bd9571mwv: fix OF node reference imbalance (git-fixes). * regulator: max77650: fix OF node reference imbalance (git-fixes). * regulator: mt6357: fix OF node reference imbalance (git-fixes). * remoteproc: xlnx: Only access buffer information if IPI is buffered (git- fixes). * Revert "ALSA: usb: Increase volume range that triggers a warning" (git- fixes). * rtc: abx80x: Disable alarm feature if no interrupt attached (git-fixes). * rtc: ntxec: fix OF node reference imbalance (git-fixes). * s390/dasd: Copy detected format information to secondary device (bsc#1259995). * s390/dasd: Fix gendisk parent after copy pair swap (bsc#1259995). * s390/dasd: Move quiesce state with pprc swap (bsc#1259995). * sched/balancing: Switch the 'DEFINE_SPINLOCK(balancing)' spinlock into an 'atomic_t sched_balance_running' flag (bsc#1253754). * sched/fair: Change likelyhood of nohz.nr_cpus (bsc#1234634 bsc#1258961). * sched/fair: Have SD_SERIALIZE affect newidle balancing (bsc#1253754). * sched/fair: Move checking for nohz cpus after time check (bsc#1234634 bsc#1258961). * sched/fair: Remove nohz.nr_cpus and use weight of cpumask instead (bsc#1234634 bsc#1258961). * sched/fair: Skip sched_balance_running cmpxchg when balance is not due (bsc#1253754). * scsi: lpfc: Add clean up of aborted NVMe commands during PCI fcn reset (bsc#1262019). * scsi: lpfc: Add log messages to fabric login error labels (bsc#1262019). * scsi: lpfc: Add PCI ID support for LPe42100 series adapters (bsc#1262019). * scsi: lpfc: Add REG_VFI mailbox cmd error handling (bsc#1262019). * scsi: lpfc: Break out of IRQ affinity assignment when mask reaches nr_cpu_ids (bsc#1262019). * scsi: lpfc: Check ASIC_ID register to aid diagnostics during failed fw updates (bsc#1262019). * scsi: lpfc: Cleanup error exit paths in lpfc_fdmi_cmd() and associated messages (bsc#1262019). * scsi: lpfc: ELIMINATE kernel-doc warnings in lpfc.h (bsc#1262019). * scsi: lpfc: Fix incorrect txcmplq_cnt during cleanup in lpfc_sli_abort_ring() (bsc#1262019). * scsi: lpfc: Introduce 128G link speed selection and support (bsc#1262019). * scsi: lpfc: Log discarded and insufficient RQE buffer events (bsc#1262019). * scsi: lpfc: Log MCQE contents for mbox commands with no context (bsc#1262019). * scsi: lpfc: Properly set WC for DPP mapping (bsc#1262019). * scsi: lpfc: Reduce pointer chasing when accessing vmid_flag (bsc#1262019). * scsi: lpfc: Remove deprecated PBDE feature (bsc#1262019). * scsi: lpfc: Remove unnecessary ndlp kref get in lpfc_check_nlp_post_devloss (bsc#1262019). * scsi: lpfc: Restrict first burst to non-FCoE and SLI4 adapters only (bsc#1262019). * scsi: lpfc: Select mailbox rq_create cmd version based on SLI4 if_type (bsc#1262019). * scsi: lpfc: Update class of service bit field to 3 bits for WQE submissions (bsc#1262019). * scsi: lpfc: Update construction of SGL when XPSGL is enabled (bsc#1262019). * scsi: lpfc: Update copyright year string for 2026 (bsc#1262019). * scsi: lpfc: Update log message when ndlp kref get is unsuccessful (bsc#1262019). * scsi: lpfc: Update lpfc version to 14.4.0.14 (bsc#1262019). * scsi: lpfc: Update lpfc version to 15.0.0.0 (bsc#1262019). * scsi: lpfc: Update outdated comment for renamed lpfc_freenode() (bsc#1262019). * scsi: lpfc: Use min_t() instead of min() in lpfc_sli4_driver_resource_setup (bsc#1262019). * scsi: storvsc: Handle PERSISTENT_RESERVE_IN truncation for Hyper-V vFC (git- fixes). * scsi: target: iscsi: validate CHAP_R length before base64 decode (bsc#1265449). * selftests/powerpc: make sub-folders buildable on their own (bsc#1261669 ltc#212590). * selftests/powerpc: Re-order *FLAGS to follow lib.mk (bsc#1261669 ltc#212590). * selftests/powerpc: Suppress -Wmaybe-uninitialized with GCC 15 (bsc#1261669 ltc#212590). * serial: 8250: Add serial8250_handle_irq_locked() (bsc#1262480). * serial: 8250: Protect LCR write in shutdown (bsc#1262480). * serial: 8250_dw: Avoid unnecessary LCR writes (bsc#1262480). * serial: 8250_dw: Ensure BUSY is deasserted (bsc#1262480). * serial: 8250_dw: Rework dw8250_handle_irq() locking and IIR handling (bsc#1262480). * serial: 8250_dw: Rework IIR_NO_INT handling to stop interrupt storm (bsc#1262480). * soc/tegra: cbb: Set ERD on resume for err interrupt (git-fixes). * soc: qcom: aoss: compare against normalized cooling state (git-fixes). * soc: qcom: llcc: fix v1 SB syndrome register offset (git-fixes). * sound: ua101: fix division by zero at probe (git-fixes). * soundwire: bus: demote UNATTACHED state warnings to dev_dbg() (git-fixes). * soundwire: cadence: Clear message complete before signaling waiting thread (git-fixes). * spi: at91-usart: fix controller deregistration (git-fixes). * spi: atmel: fix controller deregistration (git-fixes). * spi: cadence: fix controller deregistration (git-fixes). * spi: fix controller cleanup() documentation (git-fixes). * spi: fix misleading controller deregistration kernel-doc (git-fixes). * spi: fix misleading controller registration kernel-doc (git-fixes). * spi: fsl-qspi: Use reinit_completion() for repeated operations (git-fixes). * spi: hisi-kunpeng: prevent infinite while() loop in hisi_spi_flush_fifo (git-fixes). * spi: imx: fix runtime pm leak on probe deferral (git-fixes). * spi: imx: fix use-after-free on unbind (git-fixes). * spi: microchip-core-qspi: fix controller deregistration (git-fixes). * spi: microchip-core-qspi: Use helper function devm_clk_get_enabled() (stable-fixes). * spi: mpc52xx: fix use-after-free on unbind (git-fixes). * spi: mtk-nor: fix controller deregistration (git-fixes). * spi: mtk-snfi: unregister ECC engine on probe failure and remove() callback (git-fixes). * spi: omap2-mcspi: fix controller deregistration (git-fixes). * spi: orion: fix clock imbalance on registration failure (git-fixes). * spi: orion: fix runtime pm leak on unbind (git-fixes). * spi: rockchip: fix controller deregistration (git-fixes). * spi: rspi: fix controller deregistration (git-fixes). * spi: sh-hspi: fix controller deregistration (git-fixes). * spi: spi-ti-qspi: Convert to platform remove callback returning void (stable-fixes). * spi: sprd: fix controller deregistration (git-fixes). * spi: sun4i: fix controller deregistration (git-fixes). * spi: sun4i: switch to use modern name (stable-fixes). * spi: syncuacer: fix controller deregistration (git-fixes). * spi: synquacer: switch to use modern name (stable-fixes). * spi: uniphier: fix controller deregistration (git-fixes). * spi: uniphier: Simplify clock handling with devm_clk_get_enabled() (stable- fixes). * spi: uniphier: switch to use modern name (stable-fixes). * spi: zynq-qspi: switch to use modern name (stable-fixes). * spi: zynqmp-gqspi: fix controller deregistration (git-fixes). * staging: media: atomisp: Disallow all private IOCTLs (git-fixes). * staging: rtl8723bs: initialize le_tmp64 in rtw_BIP_verify() (git-fixes). * staging: sm750fb: fix division by zero in ps_to_hz() (git-fixes). * staging: vme_user: added bound check to geoid (stable-fixes). * staging: vme_user: fix root device leak on init failure (git-fixes). * tg3: Fix race for querying speed/duplex (bsc#1257183). * tg3: replace placeholder MAC address with device property (git-fixes). * thermal/drivers/spear: Fix error condition for reading st,thermal-flags (git-fixes). * thermal/drivers/sprd: Fix raw temperature clamping in sprd_thm_rawdata_to_temp (git-fixes). * thermal/drivers/sprd: Fix temperature clamping in sprd_thm_temp_to_rawdata (git-fixes). * tpm: avoid -Wunused-but-set-variable (git-fixes). * tpm: tpm_tis: add error logging for data transfer (git-fixes). * tpm: tpm_tis: stop transmit if retries are exhausted (git-fixes). * tty: tty_io: update timestamps on all device nodes (bsc#1262020). * unshare: fix unshare_fs() handling (git-fixes). * USB: cdc-acm: Add quirks for Yoga Book 9 14IAH10 INGENIC touchscreen (stable-fixes). * usb: chipidea: core: allow ci_irq_handler() handle both ID and VBUS change (git-fixes). * usb: chipidea: otg: not wait vbus drop if use role_switch (git-fixes). * USB: core: add NO_LPM quirk for Razer Kiyo Pro webcam (stable-fixes). * usb: gadget: dummy_hcd: fix premature URB completion when ZLP follows partial transfer (stable-fixes). * usb: gadget: f_ncm: validate minimum block_len in ncm_unwrap_ntb() (git- fixes). * usb: gadget: f_phonet: fix skb frags[] overflow in pn_rx_complete() (stable- fixes). * usb: gadget: f_uac1_legacy: validate control request size (stable-fixes). * usb: gadget: renesas_usb3: validate endpoint index in standard request handlers (git-fixes). * USB: omap_udc: DMA: Don't enable burst 4 mode (git-fixes). * usb: port: add delay after usb_hub_set_port_power() (git-fixes). * usb: quirks: add DELAY_INIT quirk for another Silicon Motion flash drive (stable-fixes). * USB: serial: io_edgeport: add support for Blackbox IC135A (stable-fixes). * USB: serial: option: add MeiG Smart SRM825WN (stable-fixes). * USB: serial: option: add support for Rolling Wireless RW135R-GL (stable- fixes). * USB: serial: option: add Telit Cinterion FN990A MBIM composition (stable- fixes). * USB: serial: option: add Telit Cinterion LE910Cx compositions (stable- fixes). * usb: storage: Expand range of matched versions for VL817 quirks entry (stable-fixes). * usb: typec: tcpm: reset internal port states on soft reset AMS (git-fixes). * usb: ulpi: fix memory leak on ulpi_register() error paths (git-fixes). * usb: usblp: fix heap leak in IEEE 1284 device ID via short response (stable- fixes). * usb: usblp: fix uninitialized heap leak via LPGETSTATUS ioctl (stable- fixes). * usb: xhci: Make usb_host_endpoint.hcpriv survive endpoint_disable() (git- fixes). * usbip: validate number_of_packets in usbip_pack_ret_submit() (git-fixes). * virt: tdx-guest: Fix handling of host controlled 'quote' buffer length (git- fixes). * virt: tdx-guest: Return error for GetQuote failures (git-fixes). * wifi: ath5k: do not access array OOB (git-fixes). * wifi: ath9k: Fix typo (git-fixes). * wifi: ath11k: Pass the correct value of each TID during a stop AMPDU session (git-fixes). * wifi: ath11k: skip status ring entry processing (stable-fixes). * wifi: ath11k: Use dma_alloc_noncoherent for rx_tid buffer allocation (stable-fixes). * wifi: ath12k: fix leak in some ath12k_wmi_xxx() functions (git-fixes). * wifi: b43: enforce bounds check on firmware key index in b43_rx() (git- fixes). * wifi: b43legacy: enforce bounds check on firmware key index in RX path (git- fixes). * wifi: brcmfmac: Fix error pointer dereference (git-fixes). * wifi: brcmfmac: validate bsscfg indices in IF events (stable-fixes). * wifi: brcmsmac: Fix dma_free_coherent() size (git-fixes). * wifi: cw1200: Revert "Fix locking in error paths" (git-fixes). * wifi: libertas: notify firmware load wait on disconnect (git-fixes). * wifi: mac80211: check ieee80211_rx_data_set_link return in pubsta MLO path (git-fixes). * wifi: mac80211: check tdls flag in ieee80211_tdls_oper (stable-fixes). * wifi: mac80211: drop stray 'static' from fast-RX rx_result (git-fixes). * wifi: mac80211: handle VHT EXT NSS in ieee80211_determine_our_sta_mode() (git-fixes). * wifi: mac80211: remove station if connection prep fails (git-fixes). * wifi: mac80211: use safe list iteration in radar detect work (git-fixes). * wifi: mt76: mt792x: describe USB WFSYS reset with a descriptor (stable- fixes). * wifi: mt76: mt792x: fix mt7925u USB WFSYS reset handling (git-fixes). * wifi: mt76: mt7615: fix use_cts_prot support (git-fixes). * wifi: mt76: mt7915: fix use-after-free bugs in mt7915_mac_dump_work() (git- fixes). * wifi: mt76: mt7915: fix use_cts_prot support (git-fixes). * wifi: mt76: mt7921: fix 6GHz regulatory update on connection (git-fixes). * wifi: mt76: mt7921: fix a potential clc buffer length underflow (git-fixes). * wifi: mt76: mt7921: fix ROC abort flow interruption in mt7921_roc_work (git- fixes). * wifi: mt76: mt7921: Reset ampdu_state state in case of failure in mt76_connac2_tx_check_aggr() (git-fixes). * wifi: mt76: mt7925: fix incorrect length field in txpower command (git- fixes). * wifi: mt76: mt7996: fix FCS error flag check in RX descriptor (git-fixes). * wifi: mt76: mt7996: fix struct mt7996_mcu_uni_event (git-fixes). * wifi: mwifiex: Fix memory leak in mwifiex_11n_aggregate_pkt() (git-fixes). * wifi: nl80211: fix NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST usage (git- fixes). * wifi: nl80211: require admin perm on SET_PMK / DEL_PMK (git-fixes). * wifi: rsi: fix kthread lifetime race between self-exit and external-stop (git-fixes). * wifi: rt2x00usb: fix devres lifetime (git-fixes). * wifi: rtlwifi: pci: fix possible use-after-free caused by unfinished irq_prepare_bcn_tasklet (git-fixes). * wifi: rtw88: check for PCI upstream bridge existence (git-fixes). * wifi: rtw88: fix device leak on probe failure (git-fixes). * wifi: rtw89: phy: fix uninitialized variable access in rtw89_phy_cfo_set_crystal_cap() (git-fixes). * wifi: wl1251: validate packet IDs before indexing tx_frames (stable-fixes). * workqueue: Break up enum definitions and give names to the types (bsc#1260522). * workqueue: Clean up enum work_bits and related constants (bsc#1260522). * workqueue: Factor out work_grab_pending() from __cancel_work_sync() (bsc#1260522). * workqueue: Fix UBSAN 'subtraction overflow' error in shift_and_mask() (bsc#1260522). * workqueue: Implement disable/enable for (delayed) work items (bsc#1260522). * workqueue: Introduce work_cancel_flags (bsc#1260522). * workqueue: Make @flags handling consistent across set_work_data() and friends (bsc#1260522). * workqueue: Preserve OFFQ bits in cancel[_sync] paths (bsc#1260522). * workqueue: Rename __cancel_work_timer() to __cancel_timer_sync() (bsc#1260522). * workqueue: Reorganize flush and cancel[_sync] functions (bsc#1260522). * x86/boot/64: Clear most of CR4 in startup_64(), except PAE, MCE and LA57 (git-fixes). * x86/boot/sev: Avoid shared GHCB page for early memory acceptance (git- fixes). * x86/boot: Don't add the EFI stub to targets, again (git-fixes). * x86/boot: Fix page table access in 5-level to 4-level paging transition (git-fixes). * x86/CPU/AMD: Add models 0x60-0x6f to the Zen5 range (bsc#1263255). * x86/CPU/AMD: Add X86_FEATURE_ZEN6 (bsc#1263255). * x86/cpu: Remove X86_CR4_FRED from the CR4 pinned bits mask (git-fixes). * x86/cpufeatures: Free up unused feature bits (bsc#1263255). * x86/fred: Remove ENDBR64 from FRED entry points (git-fixes). * x86: KVM: Advertise CPUIDs for new instructions in Clearwater Forest (jsc#PED-16245). * X.509: Fix out-of-bounds access when parsing extensions (git-fixes). * Xarray: do not return sibling entries from xas_find_marked() (bsc#1263815). * xfrm: esp: avoid in-place decrypt on shared skb frags (bsc#1264449). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP7 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP7-2026-2217=1 * SUSE Real Time Module 15-SP7 zypper in -t patch SUSE-SLE-Module-RT-15-SP7-2026-2217=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP7 (x86_64) * kernel-livepatch-6_4_0-150700_7_54-rt-debuginfo-1-150700.1.3.1 * kernel-livepatch-SLE15-SP7-RT_Update_15-debugsource-1-150700.1.3.1 * kernel-livepatch-6_4_0-150700_7_54-rt-1-150700.1.3.1 * SUSE Real Time Module 15-SP7 (x86_64) * dlm-kmp-rt-6.4.0-150700.7.54.1 * ocfs2-kmp-rt-debuginfo-6.4.0-150700.7.54.1 * kernel-rt-devel-6.4.0-150700.7.54.1 * dlm-kmp-rt-debuginfo-6.4.0-150700.7.54.1 * kernel-rt-devel-debuginfo-6.4.0-150700.7.54.1 * kernel-rt-debuginfo-6.4.0-150700.7.54.1 * cluster-md-kmp-rt-debuginfo-6.4.0-150700.7.54.1 * kernel-rt-debugsource-6.4.0-150700.7.54.1 * gfs2-kmp-rt-6.4.0-150700.7.54.1 * kernel-syms-rt-6.4.0-150700.7.54.1 * ocfs2-kmp-rt-6.4.0-150700.7.54.1 * cluster-md-kmp-rt-6.4.0-150700.7.54.1 * gfs2-kmp-rt-debuginfo-6.4.0-150700.7.54.1 * SUSE Real Time Module 15-SP7 (noarch) * kernel-devel-rt-6.4.0-150700.7.54.1 * kernel-source-rt-6.4.0-150700.7.54.1 * SUSE Real Time Module 15-SP7 (nosrc x86_64) * kernel-rt-6.4.0-150700.7.54.1 ## References: * https://www.suse.com/security/cve/CVE-2023-20585.html * https://www.suse.com/security/cve/CVE-2025-40219.html * https://www.suse.com/security/cve/CVE-2025-68310.html * https://www.suse.com/security/cve/CVE-2025-71183.html * https://www.suse.com/security/cve/CVE-2025-71238.html * https://www.suse.com/security/cve/CVE-2026-23168.html * https://www.suse.com/security/cve/CVE-2026-23209.html * https://www.suse.com/security/cve/CVE-2026-23236.html * https://www.suse.com/security/cve/CVE-2026-23237.html * https://www.suse.com/security/cve/CVE-2026-23239.html * https://www.suse.com/security/cve/CVE-2026-23240.html * https://www.suse.com/security/cve/CVE-2026-23245.html * https://www.suse.com/security/cve/CVE-2026-23246.html * https://www.suse.com/security/cve/CVE-2026-23253.html * https://www.suse.com/security/cve/CVE-2026-23260.html * https://www.suse.com/security/cve/CVE-2026-23261.html * https://www.suse.com/security/cve/CVE-2026-23262.html * https://www.suse.com/security/cve/CVE-2026-23264.html * https://www.suse.com/security/cve/CVE-2026-23266.html * https://www.suse.com/security/cve/CVE-2026-23268.html * https://www.suse.com/security/cve/CVE-2026-23269.html * https://www.suse.com/security/cve/CVE-2026-23271.html * https://www.suse.com/security/cve/CVE-2026-23273.html * https://www.suse.com/security/cve/CVE-2026-23276.html * https://www.suse.com/security/cve/CVE-2026-23279.html * https://www.suse.com/security/cve/CVE-2026-23290.html * https://www.suse.com/security/cve/CVE-2026-23291.html * https://www.suse.com/security/cve/CVE-2026-23298.html * https://www.suse.com/security/cve/CVE-2026-23300.html * https://www.suse.com/security/cve/CVE-2026-23304.html * https://www.suse.com/security/cve/CVE-2026-23306.html * https://www.suse.com/security/cve/CVE-2026-23307.html * https://www.suse.com/security/cve/CVE-2026-23308.html * https://www.suse.com/security/cve/CVE-2026-23312.html * https://www.suse.com/security/cve/CVE-2026-23313.html * https://www.suse.com/security/cve/CVE-2026-23315.html * https://www.suse.com/security/cve/CVE-2026-23318.html * https://www.suse.com/security/cve/CVE-2026-23321.html * https://www.suse.com/security/cve/CVE-2026-23324.html * https://www.suse.com/security/cve/CVE-2026-23325.html * https://www.suse.com/security/cve/CVE-2026-23335.html * https://www.suse.com/security/cve/CVE-2026-23336.html * https://www.suse.com/security/cve/CVE-2026-23339.html * https://www.suse.com/security/cve/CVE-2026-23340.html * https://www.suse.com/security/cve/CVE-2026-23343.html * https://www.suse.com/security/cve/CVE-2026-23346.html * https://www.suse.com/security/cve/CVE-2026-23351.html * https://www.suse.com/security/cve/CVE-2026-23354.html * https://www.suse.com/security/cve/CVE-2026-23357.html * https://www.suse.com/security/cve/CVE-2026-23362.html * https://www.suse.com/security/cve/CVE-2026-23363.html * https://www.suse.com/security/cve/CVE-2026-23365.html * https://www.suse.com/security/cve/CVE-2026-23367.html * https://www.suse.com/security/cve/CVE-2026-23368.html * https://www.suse.com/security/cve/CVE-2026-23370.html * https://www.suse.com/security/cve/CVE-2026-23372.html * https://www.suse.com/security/cve/CVE-2026-23373.html * https://www.suse.com/security/cve/CVE-2026-23374.html * https://www.suse.com/security/cve/CVE-2026-23378.html * https://www.suse.com/security/cve/CVE-2026-23382.html * https://www.suse.com/security/cve/CVE-2026-23383.html * https://www.suse.com/security/cve/CVE-2026-23391.html * https://www.suse.com/security/cve/CVE-2026-23392.html * https://www.suse.com/security/cve/CVE-2026-23393.html * https://www.suse.com/security/cve/CVE-2026-23395.html * https://www.suse.com/security/cve/CVE-2026-23396.html * https://www.suse.com/security/cve/CVE-2026-23397.html * https://www.suse.com/security/cve/CVE-2026-23399.html * https://www.suse.com/security/cve/CVE-2026-23403.html * https://www.suse.com/security/cve/CVE-2026-23404.html * https://www.suse.com/security/cve/CVE-2026-23405.html * https://www.suse.com/security/cve/CVE-2026-23406.html * https://www.suse.com/security/cve/CVE-2026-23407.html * https://www.suse.com/security/cve/CVE-2026-23408.html * https://www.suse.com/security/cve/CVE-2026-23409.html * https://www.suse.com/security/cve/CVE-2026-23410.html * https://www.suse.com/security/cve/CVE-2026-23411.html * https://www.suse.com/security/cve/CVE-2026-23412.html * https://www.suse.com/security/cve/CVE-2026-23418.html * https://www.suse.com/security/cve/CVE-2026-23419.html * https://www.suse.com/security/cve/CVE-2026-23420.html * https://www.suse.com/security/cve/CVE-2026-23426.html * https://www.suse.com/security/cve/CVE-2026-23434.html * https://www.suse.com/security/cve/CVE-2026-23440.html * https://www.suse.com/security/cve/CVE-2026-23441.html * https://www.suse.com/security/cve/CVE-2026-23442.html * https://www.suse.com/security/cve/CVE-2026-23443.html * https://www.suse.com/security/cve/CVE-2026-23445.html * https://www.suse.com/security/cve/CVE-2026-23446.html * https://www.suse.com/security/cve/CVE-2026-23447.html * https://www.suse.com/security/cve/CVE-2026-23448.html * https://www.suse.com/security/cve/CVE-2026-23449.html * https://www.suse.com/security/cve/CVE-2026-23450.html * https://www.suse.com/security/cve/CVE-2026-23452.html * https://www.suse.com/security/cve/CVE-2026-23454.html * https://www.suse.com/security/cve/CVE-2026-23455.html * https://www.suse.com/security/cve/CVE-2026-23456.html * https://www.suse.com/security/cve/CVE-2026-23457.html * https://www.suse.com/security/cve/CVE-2026-23458.html * https://www.suse.com/security/cve/CVE-2026-23460.html * https://www.suse.com/security/cve/CVE-2026-23461.html * https://www.suse.com/security/cve/CVE-2026-23462.html * https://www.suse.com/security/cve/CVE-2026-23463.html * https://www.suse.com/security/cve/CVE-2026-23465.html * https://www.suse.com/security/cve/CVE-2026-23466.html * https://www.suse.com/security/cve/CVE-2026-23468.html * https://www.suse.com/security/cve/CVE-2026-23470.html * https://www.suse.com/security/cve/CVE-2026-23472.html * https://www.suse.com/security/cve/CVE-2026-23473.html * https://www.suse.com/security/cve/CVE-2026-23474.html * https://www.suse.com/security/cve/CVE-2026-23475.html * https://www.suse.com/security/cve/CVE-2026-31389.html * https://www.suse.com/security/cve/CVE-2026-31392.html * https://www.suse.com/security/cve/CVE-2026-31393.html * https://www.suse.com/security/cve/CVE-2026-31394.html * https://www.suse.com/security/cve/CVE-2026-31395.html * https://www.suse.com/security/cve/CVE-2026-31400.html * https://www.suse.com/security/cve/CVE-2026-31402.html * https://www.suse.com/security/cve/CVE-2026-31403.html * https://www.suse.com/security/cve/CVE-2026-31404.html * https://www.suse.com/security/cve/CVE-2026-31405.html * https://www.suse.com/security/cve/CVE-2026-31407.html * https://www.suse.com/security/cve/CVE-2026-31408.html * https://www.suse.com/security/cve/CVE-2026-31411.html * https://www.suse.com/security/cve/CVE-2026-31412.html * https://www.suse.com/security/cve/CVE-2026-31415.html * https://www.suse.com/security/cve/CVE-2026-31416.html * https://www.suse.com/security/cve/CVE-2026-31417.html * https://www.suse.com/security/cve/CVE-2026-31420.html * https://www.suse.com/security/cve/CVE-2026-31421.html * https://www.suse.com/security/cve/CVE-2026-31422.html * https://www.suse.com/security/cve/CVE-2026-31423.html * https://www.suse.com/security/cve/CVE-2026-31424.html * https://www.suse.com/security/cve/CVE-2026-31425.html * https://www.suse.com/security/cve/CVE-2026-31426.html * https://www.suse.com/security/cve/CVE-2026-31427.html * https://www.suse.com/security/cve/CVE-2026-31428.html * https://www.suse.com/security/cve/CVE-2026-31436.html * https://www.suse.com/security/cve/CVE-2026-31449.html * https://www.suse.com/security/cve/CVE-2026-31470.html * https://www.suse.com/security/cve/CVE-2026-31488.html * https://www.suse.com/security/cve/CVE-2026-31494.html * https://www.suse.com/security/cve/CVE-2026-31496.html * https://www.suse.com/security/cve/CVE-2026-31504.html * https://www.suse.com/security/cve/CVE-2026-31505.html * https://www.suse.com/security/cve/CVE-2026-31507.html * https://www.suse.com/security/cve/CVE-2026-31512.html * https://www.suse.com/security/cve/CVE-2026-31515.html * https://www.suse.com/security/cve/CVE-2026-31519.html * https://www.suse.com/security/cve/CVE-2026-31525.html * https://www.suse.com/security/cve/CVE-2026-31528.html * https://www.suse.com/security/cve/CVE-2026-31533.html * https://www.suse.com/security/cve/CVE-2026-31547.html * https://www.suse.com/security/cve/CVE-2026-31550.html * https://www.suse.com/security/cve/CVE-2026-31565.html * https://www.suse.com/security/cve/CVE-2026-31570.html * https://www.suse.com/security/cve/CVE-2026-31586.html * https://www.suse.com/security/cve/CVE-2026-31588.html * https://www.suse.com/security/cve/CVE-2026-31602.html * https://www.suse.com/security/cve/CVE-2026-31607.html * https://www.suse.com/security/cve/CVE-2026-31622.html * https://www.suse.com/security/cve/CVE-2026-31649.html * https://www.suse.com/security/cve/CVE-2026-31656.html * https://www.suse.com/security/cve/CVE-2026-31662.html * https://www.suse.com/security/cve/CVE-2026-31668.html * https://www.suse.com/security/cve/CVE-2026-31669.html * https://www.suse.com/security/cve/CVE-2026-31675.html * https://www.suse.com/security/cve/CVE-2026-31679.html * https://www.suse.com/security/cve/CVE-2026-31681.html * https://www.suse.com/security/cve/CVE-2026-31682.html * https://www.suse.com/security/cve/CVE-2026-31684.html * https://www.suse.com/security/cve/CVE-2026-31685.html * https://www.suse.com/security/cve/CVE-2026-31694.html * https://www.suse.com/security/cve/CVE-2026-31700.html * https://www.suse.com/security/cve/CVE-2026-31738.html * https://www.suse.com/security/cve/CVE-2026-31787.html * https://www.suse.com/security/cve/CVE-2026-43009.html * https://www.suse.com/security/cve/CVE-2026-43025.html * https://www.suse.com/security/cve/CVE-2026-43027.html * https://www.suse.com/security/cve/CVE-2026-43037.html * https://www.suse.com/security/cve/CVE-2026-43038.html * https://www.suse.com/security/cve/CVE-2026-43044.html * https://www.suse.com/security/cve/CVE-2026-43050.html * https://www.suse.com/security/cve/CVE-2026-43060.html * https://www.suse.com/security/cve/CVE-2026-43088.html * https://www.suse.com/security/cve/CVE-2026-43110.html * https://www.suse.com/security/cve/CVE-2026-43120.html * https://www.suse.com/security/cve/CVE-2026-43126.html * https://www.suse.com/security/cve/CVE-2026-43190.html * https://www.suse.com/security/cve/CVE-2026-43214.html * https://www.suse.com/security/cve/CVE-2026-43265.html * https://www.suse.com/security/cve/CVE-2026-43329.html * https://www.suse.com/security/cve/CVE-2026-43330.html * https://www.suse.com/security/cve/CVE-2026-43334.html * https://www.suse.com/security/cve/CVE-2026-43365.html * https://www.suse.com/security/cve/CVE-2026-43366.html * https://www.suse.com/security/cve/CVE-2026-43419.html * https://www.suse.com/security/cve/CVE-2026-43437.html * https://www.suse.com/security/cve/CVE-2026-43441.html * https://www.suse.com/security/cve/CVE-2026-43494.html * https://www.suse.com/security/cve/CVE-2026-43503.html * https://bugzilla.suse.com/show_bug.cgi?id=1215199 * https://bugzilla.suse.com/show_bug.cgi?id=1225897 * https://bugzilla.suse.com/show_bug.cgi?id=1234634 * https://bugzilla.suse.com/show_bug.cgi?id=1237452 * https://bugzilla.suse.com/show_bug.cgi?id=1241166 * https://bugzilla.suse.com/show_bug.cgi?id=1243603 * https://bugzilla.suse.com/show_bug.cgi?id=1248754 * https://bugzilla.suse.com/show_bug.cgi?id=1249104 * https://bugzilla.suse.com/show_bug.cgi?id=1253122 * https://bugzilla.suse.com/show_bug.cgi?id=1253754 * https://bugzilla.suse.com/show_bug.cgi?id=1254518 * https://bugzilla.suse.com/show_bug.cgi?id=1255160 * https://bugzilla.suse.com/show_bug.cgi?id=1255752 * https://bugzilla.suse.com/show_bug.cgi?id=1256863 * https://bugzilla.suse.com/show_bug.cgi?id=1257183 * https://bugzilla.suse.com/show_bug.cgi?id=1257631 * https://bugzilla.suse.com/show_bug.cgi?id=1258518 * https://bugzilla.suse.com/show_bug.cgi?id=1258718 * https://bugzilla.suse.com/show_bug.cgi?id=1258826 * https://bugzilla.suse.com/show_bug.cgi?id=1258849 * https://bugzilla.suse.com/show_bug.cgi?id=1258850 * https://bugzilla.suse.com/show_bug.cgi?id=1258854 * https://bugzilla.suse.com/show_bug.cgi?id=1258855 * https://bugzilla.suse.com/show_bug.cgi?id=1258856 * https://bugzilla.suse.com/show_bug.cgi?id=1258857 * https://bugzilla.suse.com/show_bug.cgi?id=1258961 * https://bugzilla.suse.com/show_bug.cgi?id=1259186 * https://bugzilla.suse.com/show_bug.cgi?id=1259199 * https://bugzilla.suse.com/show_bug.cgi?id=1259222 * https://bugzilla.suse.com/show_bug.cgi?id=1259461 * https://bugzilla.suse.com/show_bug.cgi?id=1259484 * https://bugzilla.suse.com/show_bug.cgi?id=1259485 * https://bugzilla.suse.com/show_bug.cgi?id=1259535 * https://bugzilla.suse.com/show_bug.cgi?id=1259672 * https://bugzilla.suse.com/show_bug.cgi?id=1259799 * https://bugzilla.suse.com/show_bug.cgi?id=1259806 * https://bugzilla.suse.com/show_bug.cgi?id=1259857 * https://bugzilla.suse.com/show_bug.cgi?id=1259868 * https://bugzilla.suse.com/show_bug.cgi?id=1259869 * https://bugzilla.suse.com/show_bug.cgi?id=1259870 * https://bugzilla.suse.com/show_bug.cgi?id=1259871 * https://bugzilla.suse.com/show_bug.cgi?id=1259873 * https://bugzilla.suse.com/show_bug.cgi?id=1259878 * https://bugzilla.suse.com/show_bug.cgi?id=1259995 * https://bugzilla.suse.com/show_bug.cgi?id=1260010 * https://bugzilla.suse.com/show_bug.cgi?id=1260012 * https://bugzilla.suse.com/show_bug.cgi?id=1260018 * https://bugzilla.suse.com/show_bug.cgi?id=1260428 * https://bugzilla.suse.com/show_bug.cgi?id=1260468 * https://bugzilla.suse.com/show_bug.cgi?id=1260483 * https://bugzilla.suse.com/show_bug.cgi?id=1260484 * https://bugzilla.suse.com/show_bug.cgi?id=1260485 * https://bugzilla.suse.com/show_bug.cgi?id=1260489 * https://bugzilla.suse.com/show_bug.cgi?id=1260497 * https://bugzilla.suse.com/show_bug.cgi?id=1260501 * https://bugzilla.suse.com/show_bug.cgi?id=1260504 * https://bugzilla.suse.com/show_bug.cgi?id=1260505 * https://bugzilla.suse.com/show_bug.cgi?id=1260507 * https://bugzilla.suse.com/show_bug.cgi?id=1260522 * https://bugzilla.suse.com/show_bug.cgi?id=1260523 * https://bugzilla.suse.com/show_bug.cgi?id=1260526 * https://bugzilla.suse.com/show_bug.cgi?id=1260527 * https://bugzilla.suse.com/show_bug.cgi?id=1260528 * https://bugzilla.suse.com/show_bug.cgi?id=1260529 * https://bugzilla.suse.com/show_bug.cgi?id=1260530 * https://bugzilla.suse.com/show_bug.cgi?id=1260531 * https://bugzilla.suse.com/show_bug.cgi?id=1260532 * https://bugzilla.suse.com/show_bug.cgi?id=1260533 * https://bugzilla.suse.com/show_bug.cgi?id=1260536 * https://bugzilla.suse.com/show_bug.cgi?id=1260537 * https://bugzilla.suse.com/show_bug.cgi?id=1260538 * https://bugzilla.suse.com/show_bug.cgi?id=1260541 * https://bugzilla.suse.com/show_bug.cgi?id=1260544 * https://bugzilla.suse.com/show_bug.cgi?id=1260546 * https://bugzilla.suse.com/show_bug.cgi?id=1260549 * https://bugzilla.suse.com/show_bug.cgi?id=1260550 * https://bugzilla.suse.com/show_bug.cgi?id=1260551 * https://bugzilla.suse.com/show_bug.cgi?id=1260552 * https://bugzilla.suse.com/show_bug.cgi?id=1260553 * https://bugzilla.suse.com/show_bug.cgi?id=1260555 * https://bugzilla.suse.com/show_bug.cgi?id=1260561 * https://bugzilla.suse.com/show_bug.cgi?id=1260566 * https://bugzilla.suse.com/show_bug.cgi?id=1260572 * https://bugzilla.suse.com/show_bug.cgi?id=1260580 * https://bugzilla.suse.com/show_bug.cgi?id=1260581 * https://bugzilla.suse.com/show_bug.cgi?id=1260728 * https://bugzilla.suse.com/show_bug.cgi?id=1260729 * https://bugzilla.suse.com/show_bug.cgi?id=1260731 * https://bugzilla.suse.com/show_bug.cgi?id=1260800 * https://bugzilla.suse.com/show_bug.cgi?id=1260801 * https://bugzilla.suse.com/show_bug.cgi?id=1260811 * https://bugzilla.suse.com/show_bug.cgi?id=1260989 * https://bugzilla.suse.com/show_bug.cgi?id=1261020 * https://bugzilla.suse.com/show_bug.cgi?id=1261287 * https://bugzilla.suse.com/show_bug.cgi?id=1261295 * https://bugzilla.suse.com/show_bug.cgi?id=1261348 * https://bugzilla.suse.com/show_bug.cgi?id=1261412 * https://bugzilla.suse.com/show_bug.cgi?id=1261503 * https://bugzilla.suse.com/show_bug.cgi?id=1261504 * https://bugzilla.suse.com/show_bug.cgi?id=1261505 * https://bugzilla.suse.com/show_bug.cgi?id=1261507 * https://bugzilla.suse.com/show_bug.cgi?id=1261555 * https://bugzilla.suse.com/show_bug.cgi?id=1261581 * https://bugzilla.suse.com/show_bug.cgi?id=1261582 * https://bugzilla.suse.com/show_bug.cgi?id=1261584 * https://bugzilla.suse.com/show_bug.cgi?id=1261585 * https://bugzilla.suse.com/show_bug.cgi?id=1261601 * https://bugzilla.suse.com/show_bug.cgi?id=1261602 * https://bugzilla.suse.com/show_bug.cgi?id=1261618 * https://bugzilla.suse.com/show_bug.cgi?id=1261628 * https://bugzilla.suse.com/show_bug.cgi?id=1261632 * https://bugzilla.suse.com/show_bug.cgi?id=1261636 * https://bugzilla.suse.com/show_bug.cgi?id=1261637 * https://bugzilla.suse.com/show_bug.cgi?id=1261638 * https://bugzilla.suse.com/show_bug.cgi?id=1261641 * https://bugzilla.suse.com/show_bug.cgi?id=1261644 * https://bugzilla.suse.com/show_bug.cgi?id=1261645 * https://bugzilla.suse.com/show_bug.cgi?id=1261648 * https://bugzilla.suse.com/show_bug.cgi?id=1261669 * https://bugzilla.suse.com/show_bug.cgi?id=1261679 * https://bugzilla.suse.com/show_bug.cgi?id=1261685 * https://bugzilla.suse.com/show_bug.cgi?id=1261686 * https://bugzilla.suse.com/show_bug.cgi?id=1261687 * https://bugzilla.suse.com/show_bug.cgi?id=1261692 * https://bugzilla.suse.com/show_bug.cgi?id=1261694 * https://bugzilla.suse.com/show_bug.cgi?id=1261700 * https://bugzilla.suse.com/show_bug.cgi?id=1261702 * https://bugzilla.suse.com/show_bug.cgi?id=1261703 * https://bugzilla.suse.com/show_bug.cgi?id=1261707 * https://bugzilla.suse.com/show_bug.cgi?id=1261710 * https://bugzilla.suse.com/show_bug.cgi?id=1261713 * https://bugzilla.suse.com/show_bug.cgi?id=1261714 * https://bugzilla.suse.com/show_bug.cgi?id=1261719 * https://bugzilla.suse.com/show_bug.cgi?id=1261738 * https://bugzilla.suse.com/show_bug.cgi?id=1261750 * https://bugzilla.suse.com/show_bug.cgi?id=1261751 * https://bugzilla.suse.com/show_bug.cgi?id=1261752 * https://bugzilla.suse.com/show_bug.cgi?id=1261768 * https://bugzilla.suse.com/show_bug.cgi?id=1261778 * https://bugzilla.suse.com/show_bug.cgi?id=1261779 * https://bugzilla.suse.com/show_bug.cgi?id=1261780 * https://bugzilla.suse.com/show_bug.cgi?id=1261781 * https://bugzilla.suse.com/show_bug.cgi?id=1261786 * https://bugzilla.suse.com/show_bug.cgi?id=1261788 * https://bugzilla.suse.com/show_bug.cgi?id=1261789 * https://bugzilla.suse.com/show_bug.cgi?id=1261796 * https://bugzilla.suse.com/show_bug.cgi?id=1261797 * https://bugzilla.suse.com/show_bug.cgi?id=1261896 * https://bugzilla.suse.com/show_bug.cgi?id=1262019 * https://bugzilla.suse.com/show_bug.cgi?id=1262020 * https://bugzilla.suse.com/show_bug.cgi?id=1262053 * https://bugzilla.suse.com/show_bug.cgi?id=1262054 * https://bugzilla.suse.com/show_bug.cgi?id=1262055 * https://bugzilla.suse.com/show_bug.cgi?id=1262061 * https://bugzilla.suse.com/show_bug.cgi?id=1262063 * https://bugzilla.suse.com/show_bug.cgi?id=1262074 * https://bugzilla.suse.com/show_bug.cgi?id=1262078 * https://bugzilla.suse.com/show_bug.cgi?id=1262086 * https://bugzilla.suse.com/show_bug.cgi?id=1262087 * https://bugzilla.suse.com/show_bug.cgi?id=1262099 * https://bugzilla.suse.com/show_bug.cgi?id=1262100 * https://bugzilla.suse.com/show_bug.cgi?id=1262101 * https://bugzilla.suse.com/show_bug.cgi?id=1262179 * https://bugzilla.suse.com/show_bug.cgi?id=1262181 * https://bugzilla.suse.com/show_bug.cgi?id=1262250 * https://bugzilla.suse.com/show_bug.cgi?id=1262480 * https://bugzilla.suse.com/show_bug.cgi?id=1262526 * https://bugzilla.suse.com/show_bug.cgi?id=1262599 * https://bugzilla.suse.com/show_bug.cgi?id=1262602 * https://bugzilla.suse.com/show_bug.cgi?id=1262616 * https://bugzilla.suse.com/show_bug.cgi?id=1262665 * https://bugzilla.suse.com/show_bug.cgi?id=1262671 * https://bugzilla.suse.com/show_bug.cgi?id=1262673 * https://bugzilla.suse.com/show_bug.cgi?id=1262709 * https://bugzilla.suse.com/show_bug.cgi?id=1262725 * https://bugzilla.suse.com/show_bug.cgi?id=1262731 * https://bugzilla.suse.com/show_bug.cgi?id=1262734 * https://bugzilla.suse.com/show_bug.cgi?id=1262746 * https://bugzilla.suse.com/show_bug.cgi?id=1262752 * https://bugzilla.suse.com/show_bug.cgi?id=1262758 * https://bugzilla.suse.com/show_bug.cgi?id=1263001 * https://bugzilla.suse.com/show_bug.cgi?id=1263012 * https://bugzilla.suse.com/show_bug.cgi?id=1263018 * https://bugzilla.suse.com/show_bug.cgi?id=1263064 * https://bugzilla.suse.com/show_bug.cgi?id=1263065 * https://bugzilla.suse.com/show_bug.cgi?id=1263085 * https://bugzilla.suse.com/show_bug.cgi?id=1263093 * https://bugzilla.suse.com/show_bug.cgi?id=1263095 * https://bugzilla.suse.com/show_bug.cgi?id=1263104 * https://bugzilla.suse.com/show_bug.cgi?id=1263131 * https://bugzilla.suse.com/show_bug.cgi?id=1263140 * https://bugzilla.suse.com/show_bug.cgi?id=1263141 * https://bugzilla.suse.com/show_bug.cgi?id=1263149 * https://bugzilla.suse.com/show_bug.cgi?id=1263165 * https://bugzilla.suse.com/show_bug.cgi?id=1263170 * https://bugzilla.suse.com/show_bug.cgi?id=1263176 * https://bugzilla.suse.com/show_bug.cgi?id=1263255 * https://bugzilla.suse.com/show_bug.cgi?id=1263556 * https://bugzilla.suse.com/show_bug.cgi?id=1263582 * https://bugzilla.suse.com/show_bug.cgi?id=1263592 * https://bugzilla.suse.com/show_bug.cgi?id=1263593 * https://bugzilla.suse.com/show_bug.cgi?id=1263595 * https://bugzilla.suse.com/show_bug.cgi?id=1263596 * https://bugzilla.suse.com/show_bug.cgi?id=1263600 * https://bugzilla.suse.com/show_bug.cgi?id=1263668 * https://bugzilla.suse.com/show_bug.cgi?id=1263723 * https://bugzilla.suse.com/show_bug.cgi?id=1263797 * https://bugzilla.suse.com/show_bug.cgi?id=1263815 * https://bugzilla.suse.com/show_bug.cgi?id=1263877 * https://bugzilla.suse.com/show_bug.cgi?id=1263882 * https://bugzilla.suse.com/show_bug.cgi?id=1263901 * https://bugzilla.suse.com/show_bug.cgi?id=1263931 * https://bugzilla.suse.com/show_bug.cgi?id=1263933 * https://bugzilla.suse.com/show_bug.cgi?id=1263995 * https://bugzilla.suse.com/show_bug.cgi?id=1264014 * https://bugzilla.suse.com/show_bug.cgi?id=1264059 * https://bugzilla.suse.com/show_bug.cgi?id=1264082 * https://bugzilla.suse.com/show_bug.cgi?id=1264087 * https://bugzilla.suse.com/show_bug.cgi?id=1264097 * https://bugzilla.suse.com/show_bug.cgi?id=1264183 * https://bugzilla.suse.com/show_bug.cgi?id=1264427 * https://bugzilla.suse.com/show_bug.cgi?id=1264449 * https://bugzilla.suse.com/show_bug.cgi?id=1264469 * https://bugzilla.suse.com/show_bug.cgi?id=1264482 * https://bugzilla.suse.com/show_bug.cgi?id=1264634 * https://bugzilla.suse.com/show_bug.cgi?id=1264651 * https://bugzilla.suse.com/show_bug.cgi?id=1264661 * https://bugzilla.suse.com/show_bug.cgi?id=1264674 * https://bugzilla.suse.com/show_bug.cgi?id=1264801 * https://bugzilla.suse.com/show_bug.cgi?id=1264848 * https://bugzilla.suse.com/show_bug.cgi?id=1265085 * https://bugzilla.suse.com/show_bug.cgi?id=1265090 * https://bugzilla.suse.com/show_bug.cgi?id=1265116 * https://bugzilla.suse.com/show_bug.cgi?id=1265119 * https://bugzilla.suse.com/show_bug.cgi?id=1265126 * https://bugzilla.suse.com/show_bug.cgi?id=1265144 * https://bugzilla.suse.com/show_bug.cgi?id=1265421 * https://bugzilla.suse.com/show_bug.cgi?id=1265449 * https://bugzilla.suse.com/show_bug.cgi?id=1265456 * https://bugzilla.suse.com/show_bug.cgi?id=1265626 * https://bugzilla.suse.com/show_bug.cgi?id=1265846 * https://bugzilla.suse.com/show_bug.cgi?id=1265960 * https://jira.suse.com/browse/PED-10383 * https://jira.suse.com/browse/PED-10664 * https://jira.suse.com/browse/PED-11175 * https://jira.suse.com/browse/PED-16221 * https://jira.suse.com/browse/PED-16245 * https://jira.suse.com/browse/PED-7249 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 12:36:38 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 12:36:38 -0000 Subject: SUSE-RU-2026:2220-1: important: Recommended update for fence-agents Message-ID: <178040379853.1312.15342998910653688453@28a6f8bc0cea> # Recommended update for fence-agents Announcement ID: SUSE-RU-2026:2220-1 Release Date: 2026-06-02T07:06:44Z Rating: important References: * bsc#1263816 Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Availability Extension 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that has one fix can now be installed. ## Description: This update for fence-agents fixes the following issues: * azure-cli - Stonith failing to start - "raise ValueError("API version {} does not have operation group 'virtual_machines'".format(api_version))" (bsc#1263816) * Update to fence-azure-arm ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2026-2220=1 * SUSE Linux Enterprise High Availability Extension 15 SP4 zypper in -t patch SUSE-SLE-Product-HA-15-SP4-2026-2220=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * fence-agents-amt_ws-4.9.0+git.1624456340.8d746be9-150400.6.10.1 * fence-agents-debugsource-4.9.0+git.1624456340.8d746be9-150400.6.10.1 * fence-agents-debuginfo-4.9.0+git.1624456340.8d746be9-150400.6.10.1 * fence-agents-4.9.0+git.1624456340.8d746be9-150400.6.10.1 * fence-agents-devel-4.9.0+git.1624456340.8d746be9-150400.6.10.1 * openSUSE Leap 15.4 (noarch) * fence-agents-azure-arm-4.9.0+git.1624456340.8d746be9-150400.6.10.1 * SUSE Linux Enterprise High Availability Extension 15 SP4 (aarch64 ppc64le s390x x86_64) * fence-agents-debugsource-4.9.0+git.1624456340.8d746be9-150400.6.10.1 * fence-agents-debuginfo-4.9.0+git.1624456340.8d746be9-150400.6.10.1 * fence-agents-4.9.0+git.1624456340.8d746be9-150400.6.10.1 * fence-agents-devel-4.9.0+git.1624456340.8d746be9-150400.6.10.1 * SUSE Linux Enterprise High Availability Extension 15 SP4 (noarch) * fence-agents-azure-arm-4.9.0+git.1624456340.8d746be9-150400.6.10.1 ## References: * https://bugzilla.suse.com/show_bug.cgi?id=1263816 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 12:36:42 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 12:36:42 -0000 Subject: SUSE-SU-2026:2219-1: important: Security update for python-Twisted Message-ID: <178040380263.1312.5423560374084636657@28a6f8bc0cea> # Security update for python-Twisted Announcement ID: SUSE-SU-2026:2219-1 Release Date: 2026-06-02T06:02:09Z Rating: important References: * bsc#1265265 Cross-References: * CVE-2026-42304 CVSS scores: * CVE-2026-42304 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42304 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.4 * Public Cloud Module 15-SP4 * Python 3 Module 15-SP7 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves one vulnerability can now be installed. ## Description: This update for python-Twisted fixes the following issue * CVE-2026-42304: Prior to 26.4.0rc2, the twisted.names module is vulnerable to a Denial of Service (DoS) attack via resource exhaustion during DNS name decompression (bsc#1265265). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2026-2219=1 * Public Cloud Module 15-SP4 zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP4-2026-2219=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2219=1 * Python 3 Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Python3-15-SP7-2026-2219=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2219=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2219=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2219=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2219=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2219=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2219=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2219=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2219=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2219=1 ## Package List: * openSUSE Leap 15.4 (noarch) * python311-Twisted-contextvars-22.10.0-150400.5.26.1 * python311-Twisted-conch_nacl-22.10.0-150400.5.26.1 * python311-Twisted-all_non_platform-22.10.0-150400.5.26.1 * python311-Twisted-serial-22.10.0-150400.5.26.1 * python311-Twisted-tls-22.10.0-150400.5.26.1 * python311-Twisted-conch-22.10.0-150400.5.26.1 * python311-Twisted-http2-22.10.0-150400.5.26.1 * python311-Twisted-22.10.0-150400.5.26.1 * Public Cloud Module 15-SP4 (noarch) * python311-Twisted-22.10.0-150400.5.26.1 * python311-Twisted-tls-22.10.0-150400.5.26.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (noarch) * python311-Twisted-contextvars-22.10.0-150400.5.26.1 * python311-Twisted-conch_nacl-22.10.0-150400.5.26.1 * python311-Twisted-all_non_platform-22.10.0-150400.5.26.1 * python311-Twisted-tls-22.10.0-150400.5.26.1 * python311-Twisted-serial-22.10.0-150400.5.26.1 * python311-Twisted-conch-22.10.0-150400.5.26.1 * python311-Twisted-http2-22.10.0-150400.5.26.1 * python311-Twisted-22.10.0-150400.5.26.1 * Python 3 Module 15-SP7 (noarch) * python311-Twisted-contextvars-22.10.0-150400.5.26.1 * python311-Twisted-conch_nacl-22.10.0-150400.5.26.1 * python311-Twisted-all_non_platform-22.10.0-150400.5.26.1 * python311-Twisted-serial-22.10.0-150400.5.26.1 * python311-Twisted-tls-22.10.0-150400.5.26.1 * python311-Twisted-conch-22.10.0-150400.5.26.1 * python311-Twisted-http2-22.10.0-150400.5.26.1 * python311-Twisted-22.10.0-150400.5.26.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch) * python311-Twisted-contextvars-22.10.0-150400.5.26.1 * python311-Twisted-conch_nacl-22.10.0-150400.5.26.1 * python311-Twisted-all_non_platform-22.10.0-150400.5.26.1 * python311-Twisted-tls-22.10.0-150400.5.26.1 * python311-Twisted-serial-22.10.0-150400.5.26.1 * python311-Twisted-conch-22.10.0-150400.5.26.1 * python311-Twisted-http2-22.10.0-150400.5.26.1 * python311-Twisted-22.10.0-150400.5.26.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch) * python311-Twisted-contextvars-22.10.0-150400.5.26.1 * python311-Twisted-conch_nacl-22.10.0-150400.5.26.1 * python311-Twisted-all_non_platform-22.10.0-150400.5.26.1 * python311-Twisted-serial-22.10.0-150400.5.26.1 * python311-Twisted-tls-22.10.0-150400.5.26.1 * python311-Twisted-conch-22.10.0-150400.5.26.1 * python311-Twisted-http2-22.10.0-150400.5.26.1 * python311-Twisted-22.10.0-150400.5.26.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * python311-Twisted-contextvars-22.10.0-150400.5.26.1 * python311-Twisted-conch_nacl-22.10.0-150400.5.26.1 * python311-Twisted-all_non_platform-22.10.0-150400.5.26.1 * python311-Twisted-serial-22.10.0-150400.5.26.1 * python311-Twisted-tls-22.10.0-150400.5.26.1 * python311-Twisted-conch-22.10.0-150400.5.26.1 * python311-Twisted-http2-22.10.0-150400.5.26.1 * python311-Twisted-22.10.0-150400.5.26.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (noarch) * python311-Twisted-contextvars-22.10.0-150400.5.26.1 * python311-Twisted-conch_nacl-22.10.0-150400.5.26.1 * python311-Twisted-all_non_platform-22.10.0-150400.5.26.1 * python311-Twisted-serial-22.10.0-150400.5.26.1 * python311-Twisted-tls-22.10.0-150400.5.26.1 * python311-Twisted-conch-22.10.0-150400.5.26.1 * python311-Twisted-http2-22.10.0-150400.5.26.1 * python311-Twisted-22.10.0-150400.5.26.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (noarch) * python311-Twisted-contextvars-22.10.0-150400.5.26.1 * python311-Twisted-conch_nacl-22.10.0-150400.5.26.1 * python311-Twisted-all_non_platform-22.10.0-150400.5.26.1 * python311-Twisted-serial-22.10.0-150400.5.26.1 * python311-Twisted-tls-22.10.0-150400.5.26.1 * python311-Twisted-conch-22.10.0-150400.5.26.1 * python311-Twisted-http2-22.10.0-150400.5.26.1 * python311-Twisted-22.10.0-150400.5.26.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * python311-Twisted-contextvars-22.10.0-150400.5.26.1 * python311-Twisted-conch_nacl-22.10.0-150400.5.26.1 * python311-Twisted-all_non_platform-22.10.0-150400.5.26.1 * python311-Twisted-serial-22.10.0-150400.5.26.1 * python311-Twisted-tls-22.10.0-150400.5.26.1 * python311-Twisted-conch-22.10.0-150400.5.26.1 * python311-Twisted-http2-22.10.0-150400.5.26.1 * python311-Twisted-22.10.0-150400.5.26.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (noarch) * python311-Twisted-contextvars-22.10.0-150400.5.26.1 * python311-Twisted-conch_nacl-22.10.0-150400.5.26.1 * python311-Twisted-all_non_platform-22.10.0-150400.5.26.1 * python311-Twisted-serial-22.10.0-150400.5.26.1 * python311-Twisted-tls-22.10.0-150400.5.26.1 * python311-Twisted-conch-22.10.0-150400.5.26.1 * python311-Twisted-http2-22.10.0-150400.5.26.1 * python311-Twisted-22.10.0-150400.5.26.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * python311-Twisted-contextvars-22.10.0-150400.5.26.1 * python311-Twisted-conch_nacl-22.10.0-150400.5.26.1 * python311-Twisted-all_non_platform-22.10.0-150400.5.26.1 * python311-Twisted-serial-22.10.0-150400.5.26.1 * python311-Twisted-tls-22.10.0-150400.5.26.1 * python311-Twisted-conch-22.10.0-150400.5.26.1 * python311-Twisted-http2-22.10.0-150400.5.26.1 * python311-Twisted-22.10.0-150400.5.26.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (noarch) * python311-Twisted-contextvars-22.10.0-150400.5.26.1 * python311-Twisted-conch_nacl-22.10.0-150400.5.26.1 * python311-Twisted-all_non_platform-22.10.0-150400.5.26.1 * python311-Twisted-serial-22.10.0-150400.5.26.1 * python311-Twisted-tls-22.10.0-150400.5.26.1 * python311-Twisted-conch-22.10.0-150400.5.26.1 * python311-Twisted-http2-22.10.0-150400.5.26.1 * python311-Twisted-22.10.0-150400.5.26.1 ## References: * https://www.suse.com/security/cve/CVE-2026-42304.html * https://bugzilla.suse.com/show_bug.cgi?id=1265265 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 12:36:48 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 12:36:48 -0000 Subject: SUSE-SU-2026:2218-1: important: Security update for python3-Twisted Message-ID: <178040380834.1312.1276622250825925416@28a6f8bc0cea> # Security update for python3-Twisted Announcement ID: SUSE-SU-2026:2218-1 Release Date: 2026-06-02T06:00:52Z Rating: important References: * bsc#1265265 Cross-References: * CVE-2026-42304 CVSS scores: * CVE-2026-42304 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42304 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.4 * Server Applications Module 15-SP7 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves one vulnerability can now be installed. ## Description: This update for python3-Twisted fixes the following issue * CVE-2026-42304: Prior to 26.4.0rc2, the twisted.names module is vulnerable to a Denial of Service (DoS) attack via resource exhaustion during DNS name decompression (bsc#1265265). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2026-2218=1 * Server Applications Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP7-2026-2218=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2218=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2218=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2218=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2218=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2218=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2218=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2218=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2218=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2218=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2218=1 ## Package List: * openSUSE Leap 15.4 (noarch) * python3-Twisted-22.2.0-150400.24.1 * python-Twisted-doc-22.2.0-150400.24.1 * Server Applications Module 15-SP7 (noarch) * python3-Twisted-22.2.0-150400.24.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * python3-Twisted-22.2.0-150400.24.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * python3-Twisted-22.2.0-150400.24.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch) * python3-Twisted-22.2.0-150400.24.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch) * python3-Twisted-22.2.0-150400.24.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (noarch) * python3-Twisted-22.2.0-150400.24.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (noarch) * python3-Twisted-22.2.0-150400.24.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (noarch) * python3-Twisted-22.2.0-150400.24.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * python3-Twisted-22.2.0-150400.24.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (noarch) * python3-Twisted-22.2.0-150400.24.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (noarch) * python3-Twisted-22.2.0-150400.24.1 ## References: * https://www.suse.com/security/cve/CVE-2026-42304.html * https://bugzilla.suse.com/show_bug.cgi?id=1265265 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 12:38:30 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 12:38:30 -0000 Subject: SUSE-SU-2026:2216-1: important: Security update for the Linux Kernel Message-ID: <178040391040.1312.15235648919432537248@28a6f8bc0cea> # Security update for the Linux Kernel Announcement ID: SUSE-SU-2026:2216-1 Release Date: 2026-06-02T05:58:23Z Rating: important References: * bsc#1243603 * bsc#1245109 * bsc#1256504 * bsc#1258518 * bsc#1258718 * bsc#1258849 * bsc#1258850 * bsc#1258854 * bsc#1258855 * bsc#1258856 * bsc#1258857 * bsc#1259484 * bsc#1259485 * bsc#1259857 * bsc#1260010 * bsc#1260018 * bsc#1260522 * bsc#1260526 * bsc#1261287 * bsc#1261295 * bsc#1261584 * bsc#1261638 * bsc#1261710 * bsc#1261779 * bsc#1261781 * bsc#1261796 * bsc#1261797 * bsc#1262179 * bsc#1262181 * bsc#1262602 * bsc#1262665 * bsc#1262734 * bsc#1262758 * bsc#1263065 * bsc#1263085 * bsc#1263093 * bsc#1263095 * bsc#1263131 * bsc#1263141 * bsc#1263165 * bsc#1263170 * bsc#1263176 * bsc#1263582 * bsc#1263600 * bsc#1263668 * bsc#1263723 * bsc#1263882 * bsc#1263901 * bsc#1263931 * bsc#1263933 * bsc#1264059 * bsc#1264082 * bsc#1264450 * bsc#1264482 * bsc#1264634 * bsc#1264651 * bsc#1264848 * bsc#1265085 * bsc#1265090 * bsc#1265119 * bsc#1265126 * bsc#1265456 * bsc#1265626 * bsc#1265960 Cross-References: * CVE-2022-49979 * CVE-2023-20585 * CVE-2026-23209 * CVE-2026-23239 * CVE-2026-23240 * CVE-2026-23268 * CVE-2026-23269 * CVE-2026-23271 * CVE-2026-23273 * CVE-2026-23351 * CVE-2026-23393 * CVE-2026-23403 * CVE-2026-23404 * CVE-2026-23405 * CVE-2026-23406 * CVE-2026-23407 * CVE-2026-23408 * CVE-2026-23409 * CVE-2026-23410 * CVE-2026-23411 * CVE-2026-23449 * CVE-2026-23450 * CVE-2026-23458 * CVE-2026-23462 * CVE-2026-31402 * CVE-2026-31403 * CVE-2026-31408 * CVE-2026-31436 * CVE-2026-31470 * CVE-2026-31504 * CVE-2026-31505 * CVE-2026-31507 * CVE-2026-31512 * CVE-2026-31533 * CVE-2026-31570 * CVE-2026-31586 * CVE-2026-31588 * CVE-2026-31602 * CVE-2026-31607 * CVE-2026-31649 * CVE-2026-31656 * CVE-2026-31662 * CVE-2026-31669 * CVE-2026-31685 * CVE-2026-31694 * CVE-2026-31700 * CVE-2026-31738 * CVE-2026-31787 * CVE-2026-43025 * CVE-2026-43027 * CVE-2026-43050 * CVE-2026-43110 * CVE-2026-43126 * CVE-2026-43190 * CVE-2026-43214 * CVE-2026-43329 * CVE-2026-43334 * CVE-2026-43365 * CVE-2026-43437 * CVE-2026-43494 * CVE-2026-43500 * CVE-2026-43503 CVSS scores: * CVE-2022-49979 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2022-49979 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-49979 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-20585 ( SUSE ): 5.6 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2023-20585 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:N * CVE-2023-20585 ( NVD ): 5.6 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23209 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23209 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23239 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23239 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23239 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23240 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23240 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23240 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23268 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23268 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23268 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23269 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23269 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23269 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23271 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23271 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23271 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23273 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23273 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23273 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23351 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23351 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23393 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23393 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23393 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23403 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23403 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2026-23403 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23404 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23404 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23404 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23405 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23405 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23405 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23406 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23406 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23406 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23407 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23407 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23407 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23408 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23408 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23408 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23408 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23409 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23409 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-23409 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23410 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23410 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23410 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23410 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23411 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23449 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23449 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23449 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23450 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23450 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23450 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23458 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23458 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23458 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23462 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23462 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23462 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31402 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31402 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-31402 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31403 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31403 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31403 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31408 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31408 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31408 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31436 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31436 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31436 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31470 ( SUSE ): 6.0 CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:H/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31470 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H * CVE-2026-31470 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31504 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31504 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31504 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31505 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31505 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31505 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31507 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31507 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31507 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31512 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31512 ( SUSE ): 7.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-31512 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31533 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31533 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31533 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31570 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:H/SI:N/SA:N * CVE-2026-31570 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31570 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31586 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31586 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31586 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31588 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31588 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31588 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-31602 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31602 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31602 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31607 ( SUSE ): 7.0 CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31607 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H * CVE-2026-31607 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31649 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31649 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31649 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31656 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31656 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31656 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31662 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31662 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31662 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31669 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31669 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31669 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31685 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31685 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31685 ( NVD ): 9.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H * CVE-2026-31694 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31694 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31694 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31700 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31700 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31700 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31738 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31738 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31738 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31787 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31787 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31787 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43025 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43025 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H * CVE-2026-43027 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43027 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43050 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43050 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43050 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43110 ( SUSE ): 7.7 CVSS:4.0/AV:A/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43110 ( SUSE ): 7.5 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43110 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43126 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43126 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43126 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43190 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43190 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-43190 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-43214 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43214 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43214 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43329 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43329 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43329 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43334 ( SUSE ): 8.6 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-43334 ( SUSE ): 8.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-43334 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43365 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-43365 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-43365 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-43437 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43437 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43437 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43494 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43494 ( SUSE ): 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43500 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-43500 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43500 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43503 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43503 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-43503 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise Micro 5.5 An update that solves 62 vulnerabilities and has two security fixes can now be installed. ## Description: The SUSE Linux Enterprise 15 SP5 RT kernel was updated to fix various security issues The following security issues were fixed: * CVE-2022-49979: net: fix refcount bug in sk_psock_get (bsc#1245109). * CVE-2023-20585: x86/CPU: Fix FPDSS on Zen1 (bsc#1243603). * CVE-2026-23239: espintcp: Fix race condition in espintcp_close() (bsc#1259485). * CVE-2026-23240: tls: Fix race condition in tls_sw_cancel_work_tx() (bsc#1259484). * CVE-2026-23271: perf: Fix __perf_event_overflow() vs perf_remove_from_context() race (bsc#1260018). * CVE-2026-23351: netfilter: nft_set_pipapo: split gc into unlink and reclaim phase (bsc#1260526). * CVE-2026-23393: bridge: cfm: Fix race condition in peer_mep deletion (bsc#1260522). * CVE-2026-23449: net/sched: teql: Fix double-free in teql_master_xmit (bsc#1261779). * CVE-2026-23450: net/smc: fix NULL dereference and UAF in smc_tcp_syn_recv_sock() (bsc#1261584). * CVE-2026-23458: netfilter: ctnetlink: fix use-after-free in ctnetlink_dump_exp_ct() (bsc#1261781). * CVE-2026-23462: Bluetooth: HIDP: Fix possible UAF (bsc#1261710). * CVE-2026-31402: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache (bsc#1261638). * CVE-2026-31403: NFSD: Hold net reference for the lifetime of /proc/fs/nfs/exports fd (bsc#1261796). * CVE-2026-31408: Bluetooth: SCO: Fix use-after-free in sco_recv_frame() due to missing sock_hold (bsc#1261797). * CVE-2026-31436: dmaengine: idxd: fix possible wrong descriptor completion in llist_abort_desc() (bsc#1262602). * CVE-2026-31470: virt: tdx-guest: Fix handling of host controlled 'quote' buffer length (bsc#1262665). * CVE-2026-31504: net: fix fanout UAF in packet_release() via NETDEV_UP race (bsc#1263085). * CVE-2026-31505: iavf: fix out-of-bounds writes in iavf_get_ethtool_stats() (bsc#1263093). * CVE-2026-31507: net/smc: fix double-free of smc_spd_priv when tee() duplicates splice pipe buffer (bsc#1263095). * CVE-2026-31512: Bluetooth: L2CAP: Validate PDU length before reading SDU length in l2cap_ecred_data_rcv() (bsc#1262734). * CVE-2026-31533: net/tls: fix use-after-free in -EBUSY error path of tls_do_encryption (bsc#1262758). * CVE-2026-31570: can: gw: fix OOB heap access in cgw_csum_crc8_rel() (bsc#1263065). * CVE-2026-31586: mm: blk-cgroup: fix use-after-free in cgwb_release_workfn() (bsc#1263176). * CVE-2026-31588: KVM: x86: Use scratch field in MMIO fragment to hold small write values (bsc#1263165). * CVE-2026-31602: ALSA: ctxfi: Limit PTP to a single page (bsc#1263723). * CVE-2026-31607: usbip: validate number_of_packets in usbip_pack_ret_submit() (bsc#1263600). * CVE-2026-31649: net: stmmac: fix integer underflow in chain mode (bsc#1263582). * CVE-2026-31656: drm/i915/gt: fix refcount underflow in intel_engine_park_heartbeat (bsc#1263170). * CVE-2026-31662: tipc: fix bc_ackers underflow on duplicate GRP_ACK_MSG (bsc#1263131). * CVE-2026-31669: mptcp: fix slab-use-after-free in __inet_lookup_established (bsc#1263141). * CVE-2026-31685: netfilter: ip6t_eui64: reject invalid MAC header for all packets (bsc#1263668). * CVE-2026-31694: fuse: reject oversized dirents in page cache (bsc#1263901). * CVE-2026-31700: net/packet: fix TOCTOU race on mmap'd vnet_hdr in tpacket_snd() (bsc#1263882). * CVE-2026-31738: vxlan: validate ND option lengths in vxlan_na_create (bsc#1264059). * CVE-2026-31787: xen/privcmd: fix double free via VMA splitting (bsc#1262181). * CVE-2026-43025: netfilter: ctnetlink: ignore explicit helper on new expectations (bsc#1263931). * CVE-2026-43027: netfilter: nf_conntrack_helper: pass helper to expect cleanup (bsc#1263933). * CVE-2026-43050: atm: lec: fix use-after-free in sock_def_readable() (bsc#1264082). * CVE-2026-43110: wifi: brcmfmac: validate bsscfg indices in IF events (bsc#1264482). * CVE-2026-43126: ALSA: mixer: oss: Add card disconnect checkpoints (bsc#1264634). * CVE-2026-43190: netfilter: xt_tcpmss: check remaining length before reading optlen (bsc#1264848). * CVE-2026-43214: KVM: x86: Add SRCU protection for reading PDPTRs in __get_sregs2() (bsc#1264651). * CVE-2026-43329: netfilter: flowtable: strictly check for maximum number of actions (bsc#1265085). * CVE-2026-43334: Bluetooth: SMP: force responder MITM requirements before building the pairing response (bsc#1265090). * CVE-2026-43365: xfs: fix undersized l_iclog_roundoff values (bsc#1265119). * CVE-2026-43437: ALSA: pcm: fix use-after-free on linked stream runtime in snd_pcm_drain() (bsc#1265126). * CVE-2026-43494: net/rds: reset op_nents when zerocopy page pin fails (bsc#1265626). * CVE-2026-43500: supported.conf: drop rxrpc and af_kfs (bsc#1264450). * CVE-2026-43503: net: skbuff: propagate shared-frag marker through frag- transfer helpers (bsc#1265960). The following non security issues were fixed: * check-for-config-changes: Exclude CC_MS_EXTENSIONS. * check-for-config-changes: Exclude HAVE_CFI_ICALL_NORMALIZE_INTEGERS{,_RUSTC}. * dm init: ensure device probing has finished in dm-mod.waitfor= (git-fixes). * mkspec: Add signature to source list only when it exists. * net/rds: reset op_nents when zerocopy page pin fails (bsc#1265626). * net: gro: don't merge zcopy skbs (git-fixes). * ocfs2: fix possible deadlock between unlink and dio_end_io_write (bsc#1258718). * ocfs2: split transactions in dio completion to avoid credit exhaustion (bsc#1258718). * tcp: derive delack_max from rto_min (git-fixes). * virt: tdx-guest: Return error for GetQuote failures (git-fixes). * watchdog/perf: properly initialize the turbo mode timestamp and rearm counter (bsc#1256504). * xfrm: esp: avoid in-place decrypt on shared skb frags. ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2026-2216=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2026-2216=1 ## Package List: * openSUSE Leap 15.5 (x86_64) * kernel-rt-extra-5.14.21-150500.13.140.1 * kselftests-kmp-rt-debuginfo-5.14.21-150500.13.140.1 * kernel-rt-devel-5.14.21-150500.13.140.1 * kernel-rt_debug-devel-5.14.21-150500.13.140.1 * gfs2-kmp-rt-5.14.21-150500.13.140.1 * kernel-rt-livepatch-5.14.21-150500.13.140.1 * kernel-rt-debuginfo-5.14.21-150500.13.140.1 * kernel-rt-livepatch-devel-5.14.21-150500.13.140.1 * reiserfs-kmp-rt-debuginfo-5.14.21-150500.13.140.1 * kernel-rt-extra-debuginfo-5.14.21-150500.13.140.1 * kselftests-kmp-rt-5.14.21-150500.13.140.1 * kernel-rt-debugsource-5.14.21-150500.13.140.1 * kernel-rt_debug-debugsource-5.14.21-150500.13.140.1 * cluster-md-kmp-rt-debuginfo-5.14.21-150500.13.140.1 * reiserfs-kmp-rt-5.14.21-150500.13.140.1 * dlm-kmp-rt-debuginfo-5.14.21-150500.13.140.1 * kernel-rt-optional-5.14.21-150500.13.140.1 * kernel-rt_debug-devel-debuginfo-5.14.21-150500.13.140.1 * kernel-rt-vdso-5.14.21-150500.13.140.1 * dlm-kmp-rt-5.14.21-150500.13.140.1 * kernel-syms-rt-5.14.21-150500.13.140.1 * cluster-md-kmp-rt-5.14.21-150500.13.140.1 * kernel-rt_debug-debuginfo-5.14.21-150500.13.140.1 * kernel-rt_debug-vdso-5.14.21-150500.13.140.1 * ocfs2-kmp-rt-5.14.21-150500.13.140.1 * gfs2-kmp-rt-debuginfo-5.14.21-150500.13.140.1 * kernel-rt-optional-debuginfo-5.14.21-150500.13.140.1 * kernel-rt-vdso-debuginfo-5.14.21-150500.13.140.1 * kernel-rt-devel-debuginfo-5.14.21-150500.13.140.1 * kernel-rt_debug-vdso-debuginfo-5.14.21-150500.13.140.1 * ocfs2-kmp-rt-debuginfo-5.14.21-150500.13.140.1 * openSUSE Leap 15.5 (nosrc x86_64) * kernel-rt-5.14.21-150500.13.140.1 * kernel-rt_debug-5.14.21-150500.13.140.1 * openSUSE Leap 15.5 (noarch) * kernel-source-rt-5.14.21-150500.13.140.1 * kernel-devel-rt-5.14.21-150500.13.140.1 * SUSE Linux Enterprise Micro 5.5 (noarch) * kernel-source-rt-5.14.21-150500.13.140.1 * kernel-devel-rt-5.14.21-150500.13.140.1 * SUSE Linux Enterprise Micro 5.5 (nosrc x86_64) * kernel-rt-5.14.21-150500.13.140.1 * SUSE Linux Enterprise Micro 5.5 (x86_64) * kernel-rt-debuginfo-5.14.21-150500.13.140.1 * kernel-rt-debugsource-5.14.21-150500.13.140.1 ## References: * https://www.suse.com/security/cve/CVE-2022-49979.html * https://www.suse.com/security/cve/CVE-2023-20585.html * https://www.suse.com/security/cve/CVE-2026-23209.html * https://www.suse.com/security/cve/CVE-2026-23239.html * https://www.suse.com/security/cve/CVE-2026-23240.html * https://www.suse.com/security/cve/CVE-2026-23268.html * https://www.suse.com/security/cve/CVE-2026-23269.html * https://www.suse.com/security/cve/CVE-2026-23271.html * https://www.suse.com/security/cve/CVE-2026-23273.html * https://www.suse.com/security/cve/CVE-2026-23351.html * https://www.suse.com/security/cve/CVE-2026-23393.html * https://www.suse.com/security/cve/CVE-2026-23403.html * https://www.suse.com/security/cve/CVE-2026-23404.html * https://www.suse.com/security/cve/CVE-2026-23405.html * https://www.suse.com/security/cve/CVE-2026-23406.html * https://www.suse.com/security/cve/CVE-2026-23407.html * https://www.suse.com/security/cve/CVE-2026-23408.html * https://www.suse.com/security/cve/CVE-2026-23409.html * https://www.suse.com/security/cve/CVE-2026-23410.html * https://www.suse.com/security/cve/CVE-2026-23411.html * https://www.suse.com/security/cve/CVE-2026-23449.html * https://www.suse.com/security/cve/CVE-2026-23450.html * https://www.suse.com/security/cve/CVE-2026-23458.html * https://www.suse.com/security/cve/CVE-2026-23462.html * https://www.suse.com/security/cve/CVE-2026-31402.html * https://www.suse.com/security/cve/CVE-2026-31403.html * https://www.suse.com/security/cve/CVE-2026-31408.html * https://www.suse.com/security/cve/CVE-2026-31436.html * https://www.suse.com/security/cve/CVE-2026-31470.html * https://www.suse.com/security/cve/CVE-2026-31504.html * https://www.suse.com/security/cve/CVE-2026-31505.html * https://www.suse.com/security/cve/CVE-2026-31507.html * https://www.suse.com/security/cve/CVE-2026-31512.html * https://www.suse.com/security/cve/CVE-2026-31533.html * https://www.suse.com/security/cve/CVE-2026-31570.html * https://www.suse.com/security/cve/CVE-2026-31586.html * https://www.suse.com/security/cve/CVE-2026-31588.html * https://www.suse.com/security/cve/CVE-2026-31602.html * https://www.suse.com/security/cve/CVE-2026-31607.html * https://www.suse.com/security/cve/CVE-2026-31649.html * https://www.suse.com/security/cve/CVE-2026-31656.html * https://www.suse.com/security/cve/CVE-2026-31662.html * https://www.suse.com/security/cve/CVE-2026-31669.html * https://www.suse.com/security/cve/CVE-2026-31685.html * https://www.suse.com/security/cve/CVE-2026-31694.html * https://www.suse.com/security/cve/CVE-2026-31700.html * https://www.suse.com/security/cve/CVE-2026-31738.html * https://www.suse.com/security/cve/CVE-2026-31787.html * https://www.suse.com/security/cve/CVE-2026-43025.html * https://www.suse.com/security/cve/CVE-2026-43027.html * https://www.suse.com/security/cve/CVE-2026-43050.html * https://www.suse.com/security/cve/CVE-2026-43110.html * https://www.suse.com/security/cve/CVE-2026-43126.html * https://www.suse.com/security/cve/CVE-2026-43190.html * https://www.suse.com/security/cve/CVE-2026-43214.html * https://www.suse.com/security/cve/CVE-2026-43329.html * https://www.suse.com/security/cve/CVE-2026-43334.html * https://www.suse.com/security/cve/CVE-2026-43365.html * https://www.suse.com/security/cve/CVE-2026-43437.html * https://www.suse.com/security/cve/CVE-2026-43494.html * https://www.suse.com/security/cve/CVE-2026-43500.html * https://www.suse.com/security/cve/CVE-2026-43503.html * https://bugzilla.suse.com/show_bug.cgi?id=1243603 * https://bugzilla.suse.com/show_bug.cgi?id=1245109 * https://bugzilla.suse.com/show_bug.cgi?id=1256504 * https://bugzilla.suse.com/show_bug.cgi?id=1258518 * https://bugzilla.suse.com/show_bug.cgi?id=1258718 * https://bugzilla.suse.com/show_bug.cgi?id=1258849 * https://bugzilla.suse.com/show_bug.cgi?id=1258850 * https://bugzilla.suse.com/show_bug.cgi?id=1258854 * https://bugzilla.suse.com/show_bug.cgi?id=1258855 * https://bugzilla.suse.com/show_bug.cgi?id=1258856 * https://bugzilla.suse.com/show_bug.cgi?id=1258857 * https://bugzilla.suse.com/show_bug.cgi?id=1259484 * https://bugzilla.suse.com/show_bug.cgi?id=1259485 * https://bugzilla.suse.com/show_bug.cgi?id=1259857 * https://bugzilla.suse.com/show_bug.cgi?id=1260010 * https://bugzilla.suse.com/show_bug.cgi?id=1260018 * https://bugzilla.suse.com/show_bug.cgi?id=1260522 * https://bugzilla.suse.com/show_bug.cgi?id=1260526 * https://bugzilla.suse.com/show_bug.cgi?id=1261287 * https://bugzilla.suse.com/show_bug.cgi?id=1261295 * https://bugzilla.suse.com/show_bug.cgi?id=1261584 * https://bugzilla.suse.com/show_bug.cgi?id=1261638 * https://bugzilla.suse.com/show_bug.cgi?id=1261710 * https://bugzilla.suse.com/show_bug.cgi?id=1261779 * https://bugzilla.suse.com/show_bug.cgi?id=1261781 * https://bugzilla.suse.com/show_bug.cgi?id=1261796 * https://bugzilla.suse.com/show_bug.cgi?id=1261797 * https://bugzilla.suse.com/show_bug.cgi?id=1262179 * https://bugzilla.suse.com/show_bug.cgi?id=1262181 * https://bugzilla.suse.com/show_bug.cgi?id=1262602 * https://bugzilla.suse.com/show_bug.cgi?id=1262665 * https://bugzilla.suse.com/show_bug.cgi?id=1262734 * https://bugzilla.suse.com/show_bug.cgi?id=1262758 * https://bugzilla.suse.com/show_bug.cgi?id=1263065 * https://bugzilla.suse.com/show_bug.cgi?id=1263085 * https://bugzilla.suse.com/show_bug.cgi?id=1263093 * https://bugzilla.suse.com/show_bug.cgi?id=1263095 * https://bugzilla.suse.com/show_bug.cgi?id=1263131 * https://bugzilla.suse.com/show_bug.cgi?id=1263141 * https://bugzilla.suse.com/show_bug.cgi?id=1263165 * https://bugzilla.suse.com/show_bug.cgi?id=1263170 * https://bugzilla.suse.com/show_bug.cgi?id=1263176 * https://bugzilla.suse.com/show_bug.cgi?id=1263582 * https://bugzilla.suse.com/show_bug.cgi?id=1263600 * https://bugzilla.suse.com/show_bug.cgi?id=1263668 * https://bugzilla.suse.com/show_bug.cgi?id=1263723 * https://bugzilla.suse.com/show_bug.cgi?id=1263882 * https://bugzilla.suse.com/show_bug.cgi?id=1263901 * https://bugzilla.suse.com/show_bug.cgi?id=1263931 * https://bugzilla.suse.com/show_bug.cgi?id=1263933 * https://bugzilla.suse.com/show_bug.cgi?id=1264059 * https://bugzilla.suse.com/show_bug.cgi?id=1264082 * https://bugzilla.suse.com/show_bug.cgi?id=1264450 * https://bugzilla.suse.com/show_bug.cgi?id=1264482 * https://bugzilla.suse.com/show_bug.cgi?id=1264634 * https://bugzilla.suse.com/show_bug.cgi?id=1264651 * https://bugzilla.suse.com/show_bug.cgi?id=1264848 * https://bugzilla.suse.com/show_bug.cgi?id=1265085 * https://bugzilla.suse.com/show_bug.cgi?id=1265090 * https://bugzilla.suse.com/show_bug.cgi?id=1265119 * https://bugzilla.suse.com/show_bug.cgi?id=1265126 * https://bugzilla.suse.com/show_bug.cgi?id=1265456 * https://bugzilla.suse.com/show_bug.cgi?id=1265626 * https://bugzilla.suse.com/show_bug.cgi?id=1265960 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 12:40:19 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 12:40:19 -0000 Subject: SUSE-SU-2026:2215-1: important: Security update for the Linux Kernel Message-ID: <178040401975.1312.1460959292869397742@28a6f8bc0cea> # Security update for the Linux Kernel Announcement ID: SUSE-SU-2026:2215-1 Release Date: 2026-06-02T05:58:01Z Rating: important References: * bsc#1243603 * bsc#1245109 * bsc#1256504 * bsc#1258518 * bsc#1258718 * bsc#1258849 * bsc#1258850 * bsc#1258854 * bsc#1258855 * bsc#1258856 * bsc#1258857 * bsc#1259484 * bsc#1259485 * bsc#1259857 * bsc#1260010 * bsc#1260018 * bsc#1260522 * bsc#1260526 * bsc#1261287 * bsc#1261295 * bsc#1261584 * bsc#1261638 * bsc#1261710 * bsc#1261779 * bsc#1261781 * bsc#1261796 * bsc#1261797 * bsc#1262179 * bsc#1262181 * bsc#1262602 * bsc#1262665 * bsc#1262734 * bsc#1262758 * bsc#1263065 * bsc#1263085 * bsc#1263093 * bsc#1263095 * bsc#1263131 * bsc#1263141 * bsc#1263165 * bsc#1263170 * bsc#1263176 * bsc#1263582 * bsc#1263600 * bsc#1263668 * bsc#1263723 * bsc#1263882 * bsc#1263901 * bsc#1263931 * bsc#1263933 * bsc#1264059 * bsc#1264082 * bsc#1264450 * bsc#1264482 * bsc#1264634 * bsc#1264651 * bsc#1264848 * bsc#1265085 * bsc#1265090 * bsc#1265119 * bsc#1265126 * bsc#1265308 * bsc#1265456 * bsc#1265626 * bsc#1265960 Cross-References: * CVE-2022-49979 * CVE-2023-20585 * CVE-2026-23209 * CVE-2026-23239 * CVE-2026-23240 * CVE-2026-23268 * CVE-2026-23269 * CVE-2026-23271 * CVE-2026-23273 * CVE-2026-23351 * CVE-2026-23393 * CVE-2026-23403 * CVE-2026-23404 * CVE-2026-23405 * CVE-2026-23406 * CVE-2026-23407 * CVE-2026-23408 * CVE-2026-23409 * CVE-2026-23410 * CVE-2026-23411 * CVE-2026-23449 * CVE-2026-23450 * CVE-2026-23458 * CVE-2026-23462 * CVE-2026-31402 * CVE-2026-31403 * CVE-2026-31408 * CVE-2026-31436 * CVE-2026-31470 * CVE-2026-31504 * CVE-2026-31505 * CVE-2026-31507 * CVE-2026-31512 * CVE-2026-31533 * CVE-2026-31570 * CVE-2026-31586 * CVE-2026-31588 * CVE-2026-31602 * CVE-2026-31607 * CVE-2026-31649 * CVE-2026-31656 * CVE-2026-31662 * CVE-2026-31669 * CVE-2026-31685 * CVE-2026-31694 * CVE-2026-31700 * CVE-2026-31738 * CVE-2026-31787 * CVE-2026-43025 * CVE-2026-43027 * CVE-2026-43050 * CVE-2026-43110 * CVE-2026-43126 * CVE-2026-43190 * CVE-2026-43214 * CVE-2026-43329 * CVE-2026-43334 * CVE-2026-43365 * CVE-2026-43437 * CVE-2026-43494 * CVE-2026-43500 * CVE-2026-43503 * CVE-2026-46333 CVSS scores: * CVE-2022-49979 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2022-49979 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2022-49979 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-20585 ( SUSE ): 5.6 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2023-20585 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:N * CVE-2023-20585 ( NVD ): 5.6 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23209 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23209 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23239 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23239 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23239 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23240 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23240 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23240 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23268 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23268 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23268 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23269 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23269 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23269 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23271 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23271 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23271 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23273 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23273 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23273 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23351 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23351 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23393 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23393 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23393 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23403 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23403 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2026-23403 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23404 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23404 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23404 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23405 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23405 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23405 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23406 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23406 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23406 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23407 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23407 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23407 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23408 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23408 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23408 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23408 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23409 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23409 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-23409 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23410 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23410 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23410 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23410 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23411 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23449 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23449 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23449 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23450 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23450 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23450 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23458 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23458 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23458 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23462 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23462 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23462 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31402 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31402 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-31402 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31403 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31403 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31403 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31408 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31408 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31408 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31436 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31436 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31436 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31470 ( SUSE ): 6.0 CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:H/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31470 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H * CVE-2026-31470 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31504 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31504 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31504 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31505 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31505 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31505 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31507 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31507 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31507 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31512 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31512 ( SUSE ): 7.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-31512 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31533 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31533 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31533 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31570 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:H/SI:N/SA:N * CVE-2026-31570 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31570 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31586 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31586 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31586 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31588 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31588 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31588 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-31602 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31602 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31602 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31607 ( SUSE ): 7.0 CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31607 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H * CVE-2026-31607 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31649 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31649 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31649 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31656 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31656 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31656 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31662 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31662 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31662 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31669 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31669 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31669 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31685 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31685 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31685 ( NVD ): 9.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H * CVE-2026-31694 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31694 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31694 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31700 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31700 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31700 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31738 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31738 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31738 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31787 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31787 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31787 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43025 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43025 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H * CVE-2026-43027 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43027 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43050 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43050 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43050 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43110 ( SUSE ): 7.7 CVSS:4.0/AV:A/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43110 ( SUSE ): 7.5 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43110 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43126 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43126 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43126 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43190 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43190 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-43190 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-43214 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43214 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43214 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43329 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43329 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43329 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43334 ( SUSE ): 8.6 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-43334 ( SUSE ): 8.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-43334 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43365 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-43365 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-43365 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-43437 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43437 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43437 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43494 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43494 ( SUSE ): 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43500 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-43500 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43500 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43503 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43503 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-43503 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves 63 vulnerabilities and has two security fixes can now be installed. ## Description: The SUSE Linux Enterprise 15 SP5 kernel was updated to fix various security issues The following security issues were fixed: * CVE-2022-49979: net: fix refcount bug in sk_psock_get (bsc#1245109). * CVE-2023-20585: x86/CPU: Fix FPDSS on Zen1 (bsc#1243603). * CVE-2026-23239: espintcp: Fix race condition in espintcp_close() (bsc#1259485). * CVE-2026-23240: tls: Fix race condition in tls_sw_cancel_work_tx() (bsc#1259484). * CVE-2026-23271: perf: Fix __perf_event_overflow() vs perf_remove_from_context() race (bsc#1260018). * CVE-2026-23351: netfilter: nft_set_pipapo: split gc into unlink and reclaim phase (bsc#1260526). * CVE-2026-23393: bridge: cfm: Fix race condition in peer_mep deletion (bsc#1260522). * CVE-2026-23449: net/sched: teql: Fix double-free in teql_master_xmit (bsc#1261779). * CVE-2026-23450: net/smc: fix NULL dereference and UAF in smc_tcp_syn_recv_sock() (bsc#1261584). * CVE-2026-23458: netfilter: ctnetlink: fix use-after-free in ctnetlink_dump_exp_ct() (bsc#1261781). * CVE-2026-23462: Bluetooth: HIDP: Fix possible UAF (bsc#1261710). * CVE-2026-31402: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache (bsc#1261638). * CVE-2026-31403: NFSD: Hold net reference for the lifetime of /proc/fs/nfs/exports fd (bsc#1261796). * CVE-2026-31408: Bluetooth: SCO: Fix use-after-free in sco_recv_frame() due to missing sock_hold (bsc#1261797). * CVE-2026-31436: dmaengine: idxd: fix possible wrong descriptor completion in llist_abort_desc() (bsc#1262602). * CVE-2026-31470: virt: tdx-guest: Fix handling of host controlled 'quote' buffer length (bsc#1262665). * CVE-2026-31504: net: fix fanout UAF in packet_release() via NETDEV_UP race (bsc#1263085). * CVE-2026-31505: iavf: fix out-of-bounds writes in iavf_get_ethtool_stats() (bsc#1263093). * CVE-2026-31507: net/smc: fix double-free of smc_spd_priv when tee() duplicates splice pipe buffer (bsc#1263095). * CVE-2026-31512: Bluetooth: L2CAP: Validate PDU length before reading SDU length in l2cap_ecred_data_rcv() (bsc#1262734). * CVE-2026-31533: net/tls: fix use-after-free in -EBUSY error path of tls_do_encryption (bsc#1262758). * CVE-2026-31570: can: gw: fix OOB heap access in cgw_csum_crc8_rel() (bsc#1263065). * CVE-2026-31586: mm: blk-cgroup: fix use-after-free in cgwb_release_workfn() (bsc#1263176). * CVE-2026-31588: KVM: x86: Use scratch field in MMIO fragment to hold small write values (bsc#1263165). * CVE-2026-31602: ALSA: ctxfi: Limit PTP to a single page (bsc#1263723). * CVE-2026-31607: usbip: validate number_of_packets in usbip_pack_ret_submit() (bsc#1263600). * CVE-2026-31649: net: stmmac: fix integer underflow in chain mode (bsc#1263582). * CVE-2026-31656: drm/i915/gt: fix refcount underflow in intel_engine_park_heartbeat (bsc#1263170). * CVE-2026-31662: tipc: fix bc_ackers underflow on duplicate GRP_ACK_MSG (bsc#1263131). * CVE-2026-31669: mptcp: fix slab-use-after-free in __inet_lookup_established (bsc#1263141). * CVE-2026-31685: netfilter: ip6t_eui64: reject invalid MAC header for all packets (bsc#1263668). * CVE-2026-31694: fuse: reject oversized dirents in page cache (bsc#1263901). * CVE-2026-31700: net/packet: fix TOCTOU race on mmap'd vnet_hdr in tpacket_snd() (bsc#1263882). * CVE-2026-31738: vxlan: validate ND option lengths in vxlan_na_create (bsc#1264059). * CVE-2026-31787: xen/privcmd: fix double free via VMA splitting (bsc#1262181). * CVE-2026-43025: netfilter: ctnetlink: ignore explicit helper on new expectations (bsc#1263931). * CVE-2026-43027: netfilter: nf_conntrack_helper: pass helper to expect cleanup (bsc#1263933). * CVE-2026-43050: atm: lec: fix use-after-free in sock_def_readable() (bsc#1264082). * CVE-2026-43110: wifi: brcmfmac: validate bsscfg indices in IF events (bsc#1264482). * CVE-2026-43126: ALSA: mixer: oss: Add card disconnect checkpoints (bsc#1264634). * CVE-2026-43190: netfilter: xt_tcpmss: check remaining length before reading optlen (bsc#1264848). * CVE-2026-43214: KVM: x86: Add SRCU protection for reading PDPTRs in __get_sregs2() (bsc#1264651). * CVE-2026-43329: netfilter: flowtable: strictly check for maximum number of actions (bsc#1265085). * CVE-2026-43334: Bluetooth: SMP: force responder MITM requirements before building the pairing response (bsc#1265090). * CVE-2026-43365: xfs: fix undersized l_iclog_roundoff values (bsc#1265119). * CVE-2026-43437: ALSA: pcm: fix use-after-free on linked stream runtime in snd_pcm_drain() (bsc#1265126). * CVE-2026-43494: net/rds: reset op_nents when zerocopy page pin fails (bsc#1265626). * CVE-2026-43500: supported.conf: drop rxrpc and af_kfs (bsc#1264450). * CVE-2026-43503: net: skbuff: propagate shared-frag marker through frag- transfer helpers (bsc#1265960). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265308). The following non security issues were fixed: * check-for-config-changes: Exclude CC_MS_EXTENSIONS. * check-for-config-changes: Exclude HAVE_CFI_ICALL_NORMALIZE_INTEGERS{,_RUSTC}. * dm init: ensure device probing has finished in dm-mod.waitfor= (git-fixes). * mkspec: Add signature to source list only when it exists. * net/rds: reset op_nents when zerocopy page pin fails (bsc#1265626). * net: gro: don't merge zcopy skbs (git-fixes). * ocfs2: fix possible deadlock between unlink and dio_end_io_write (bsc#1258718). * ocfs2: split transactions in dio completion to avoid credit exhaustion (bsc#1258718). * tcp: derive delack_max from rto_min (git-fixes). (cherry picked from commit 681cef669f5a14ab844195d5b0e3dab01e42b3b7). * virt: tdx-guest: Return error for GetQuote failures (git-fixes). * watchdog/perf: properly initialize the turbo mode timestamp and rearm counter (bsc#1256504). * xfrm: esp: avoid in-place decrypt on shared skb frags. ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2215=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2215=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2215=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2026-2215=1 * openSUSE Leap 15.5 zypper in -t patch SUSE-2026-2215=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2026-2215=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2215=1 ## Package List: * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * kernel-default-devel-5.14.21-150500.55.166.1 * kernel-obs-build-debugsource-5.14.21-150500.55.166.1 * cluster-md-kmp-default-debuginfo-5.14.21-150500.55.166.1 * kernel-default-debuginfo-5.14.21-150500.55.166.1 * kernel-default-base-5.14.21-150500.55.166.1.150500.6.77.1 * dlm-kmp-default-5.14.21-150500.55.166.1 * cluster-md-kmp-default-5.14.21-150500.55.166.1 * kernel-syms-5.14.21-150500.55.166.1 * kernel-default-devel-debuginfo-5.14.21-150500.55.166.1 * ocfs2-kmp-default-debuginfo-5.14.21-150500.55.166.1 * gfs2-kmp-default-debuginfo-5.14.21-150500.55.166.1 * kernel-obs-build-5.14.21-150500.55.166.1 * gfs2-kmp-default-5.14.21-150500.55.166.1 * kernel-default-debugsource-5.14.21-150500.55.166.1 * dlm-kmp-default-debuginfo-5.14.21-150500.55.166.1 * ocfs2-kmp-default-5.14.21-150500.55.166.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 nosrc x86_64) * kernel-default-5.14.21-150500.55.166.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch) * kernel-source-5.14.21-150500.55.166.1 * kernel-devel-5.14.21-150500.55.166.1 * kernel-macros-5.14.21-150500.55.166.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch nosrc) * kernel-docs-5.14.21-150500.55.166.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 nosrc) * kernel-64kb-5.14.21-150500.55.166.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64) * kernel-64kb-devel-5.14.21-150500.55.166.1 * kernel-64kb-debugsource-5.14.21-150500.55.166.1 * kernel-64kb-debuginfo-5.14.21-150500.55.166.1 * kernel-64kb-devel-debuginfo-5.14.21-150500.55.166.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64 nosrc) * kernel-default-5.14.21-150500.55.166.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le x86_64) * kernel-default-base-5.14.21-150500.55.166.1.150500.6.77.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * kernel-default-devel-5.14.21-150500.55.166.1 * kernel-obs-build-debugsource-5.14.21-150500.55.166.1 * cluster-md-kmp-default-debuginfo-5.14.21-150500.55.166.1 * kernel-default-debuginfo-5.14.21-150500.55.166.1 * dlm-kmp-default-5.14.21-150500.55.166.1 * cluster-md-kmp-default-5.14.21-150500.55.166.1 * reiserfs-kmp-default-debuginfo-5.14.21-150500.55.166.1 * kernel-syms-5.14.21-150500.55.166.1 * kernel-default-devel-debuginfo-5.14.21-150500.55.166.1 * ocfs2-kmp-default-debuginfo-5.14.21-150500.55.166.1 * gfs2-kmp-default-debuginfo-5.14.21-150500.55.166.1 * reiserfs-kmp-default-5.14.21-150500.55.166.1 * kernel-obs-build-5.14.21-150500.55.166.1 * gfs2-kmp-default-5.14.21-150500.55.166.1 * kernel-default-debugsource-5.14.21-150500.55.166.1 * dlm-kmp-default-debuginfo-5.14.21-150500.55.166.1 * ocfs2-kmp-default-5.14.21-150500.55.166.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (noarch) * kernel-source-5.14.21-150500.55.166.1 * kernel-devel-5.14.21-150500.55.166.1 * kernel-macros-5.14.21-150500.55.166.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (noarch nosrc) * kernel-docs-5.14.21-150500.55.166.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (nosrc s390x) * kernel-zfcpdump-5.14.21-150500.55.166.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (s390x) * kernel-zfcpdump-debugsource-5.14.21-150500.55.166.1 * kernel-zfcpdump-debuginfo-5.14.21-150500.55.166.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 nosrc) * kernel-64kb-5.14.21-150500.55.166.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64) * kernel-64kb-devel-5.14.21-150500.55.166.1 * kernel-64kb-debugsource-5.14.21-150500.55.166.1 * kernel-64kb-debuginfo-5.14.21-150500.55.166.1 * kernel-64kb-devel-debuginfo-5.14.21-150500.55.166.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * kernel-default-devel-5.14.21-150500.55.166.1 * cluster-md-kmp-default-debuginfo-5.14.21-150500.55.166.1 * kernel-obs-build-debugsource-5.14.21-150500.55.166.1 * kernel-default-debuginfo-5.14.21-150500.55.166.1 * dlm-kmp-default-5.14.21-150500.55.166.1 * cluster-md-kmp-default-5.14.21-150500.55.166.1 * kernel-default-base-5.14.21-150500.55.166.1.150500.6.77.1 * kernel-syms-5.14.21-150500.55.166.1 * reiserfs-kmp-default-debuginfo-5.14.21-150500.55.166.1 * kernel-default-devel-debuginfo-5.14.21-150500.55.166.1 * ocfs2-kmp-default-debuginfo-5.14.21-150500.55.166.1 * gfs2-kmp-default-debuginfo-5.14.21-150500.55.166.1 * reiserfs-kmp-default-5.14.21-150500.55.166.1 * kernel-obs-build-5.14.21-150500.55.166.1 * gfs2-kmp-default-5.14.21-150500.55.166.1 * kernel-default-debugsource-5.14.21-150500.55.166.1 * dlm-kmp-default-debuginfo-5.14.21-150500.55.166.1 * ocfs2-kmp-default-5.14.21-150500.55.166.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (nosrc ppc64le x86_64) * kernel-default-5.14.21-150500.55.166.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (noarch) * kernel-source-5.14.21-150500.55.166.1 * kernel-devel-5.14.21-150500.55.166.1 * kernel-macros-5.14.21-150500.55.166.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (noarch nosrc) * kernel-docs-5.14.21-150500.55.166.1 * SUSE Linux Enterprise Live Patching 15-SP5 (ppc64le s390x x86_64) * kernel-default-debuginfo-5.14.21-150500.55.166.1 * kernel-livepatch-5_14_21-150500_55_166-default-1-150500.11.3.1 * kernel-default-livepatch-devel-5.14.21-150500.55.166.1 * kernel-default-debugsource-5.14.21-150500.55.166.1 * kernel-livepatch-5_14_21-150500_55_166-default-debuginfo-1-150500.11.3.1 * kernel-default-livepatch-5.14.21-150500.55.166.1 * kernel-livepatch-SLE15-SP5_Update_40-debugsource-1-150500.11.3.1 * SUSE Linux Enterprise Live Patching 15-SP5 (nosrc) * kernel-default-5.14.21-150500.55.166.1 * openSUSE Leap 15.5 (noarch nosrc) * kernel-docs-5.14.21-150500.55.166.1 * openSUSE Leap 15.5 (noarch) * kernel-source-5.14.21-150500.55.166.1 * kernel-source-vanilla-5.14.21-150500.55.166.1 * kernel-devel-5.14.21-150500.55.166.1 * kernel-macros-5.14.21-150500.55.166.1 * kernel-docs-html-5.14.21-150500.55.166.1 * openSUSE Leap 15.5 (aarch64 ppc64le x86_64) * kernel-kvmsmall-debugsource-5.14.21-150500.55.166.1 * kernel-kvmsmall-devel-debuginfo-5.14.21-150500.55.166.1 * kernel-kvmsmall-debuginfo-5.14.21-150500.55.166.1 * kernel-default-base-5.14.21-150500.55.166.1.150500.6.77.1 * kernel-kvmsmall-devel-5.14.21-150500.55.166.1 * kernel-default-base-rebuild-5.14.21-150500.55.166.1.150500.6.77.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * kernel-obs-build-debugsource-5.14.21-150500.55.166.1 * cluster-md-kmp-default-debuginfo-5.14.21-150500.55.166.1 * kernel-syms-5.14.21-150500.55.166.1 * kernel-default-extra-5.14.21-150500.55.166.1 * ocfs2-kmp-default-5.14.21-150500.55.166.1 * kernel-default-optional-5.14.21-150500.55.166.1 * kernel-default-optional-debuginfo-5.14.21-150500.55.166.1 * dlm-kmp-default-5.14.21-150500.55.166.1 * kselftests-kmp-default-5.14.21-150500.55.166.1 * kernel-obs-qa-5.14.21-150500.55.166.1 * gfs2-kmp-default-5.14.21-150500.55.166.1 * kernel-default-livepatch-5.14.21-150500.55.166.1 * kernel-default-devel-5.14.21-150500.55.166.1 * kernel-default-extra-debuginfo-5.14.21-150500.55.166.1 * ocfs2-kmp-default-debuginfo-5.14.21-150500.55.166.1 * gfs2-kmp-default-debuginfo-5.14.21-150500.55.166.1 * kernel-default-debugsource-5.14.21-150500.55.166.1 * dlm-kmp-default-debuginfo-5.14.21-150500.55.166.1 * kernel-default-debuginfo-5.14.21-150500.55.166.1 * cluster-md-kmp-default-5.14.21-150500.55.166.1 * reiserfs-kmp-default-debuginfo-5.14.21-150500.55.166.1 * kernel-default-devel-debuginfo-5.14.21-150500.55.166.1 * kselftests-kmp-default-debuginfo-5.14.21-150500.55.166.1 * reiserfs-kmp-default-5.14.21-150500.55.166.1 * kernel-obs-build-5.14.21-150500.55.166.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 nosrc) * kernel-default-5.14.21-150500.55.166.1 * openSUSE Leap 15.5 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150500_55_166-default-debuginfo-1-150500.11.3.1 * kernel-livepatch-5_14_21-150500_55_166-default-1-150500.11.3.1 * kernel-livepatch-SLE15-SP5_Update_40-debugsource-1-150500.11.3.1 * kernel-default-livepatch-devel-5.14.21-150500.55.166.1 * openSUSE Leap 15.5 (x86_64) * kernel-default-vdso-5.14.21-150500.55.166.1 * kernel-kvmsmall-vdso-debuginfo-5.14.21-150500.55.166.1 * kernel-default-vdso-debuginfo-5.14.21-150500.55.166.1 * kernel-kvmsmall-vdso-5.14.21-150500.55.166.1 * openSUSE Leap 15.5 (aarch64 nosrc ppc64le x86_64) * kernel-kvmsmall-5.14.21-150500.55.166.1 * openSUSE Leap 15.5 (nosrc s390x) * kernel-zfcpdump-5.14.21-150500.55.166.1 * openSUSE Leap 15.5 (s390x) * kernel-zfcpdump-debugsource-5.14.21-150500.55.166.1 * kernel-zfcpdump-debuginfo-5.14.21-150500.55.166.1 * openSUSE Leap 15.5 (nosrc) * dtb-aarch64-5.14.21-150500.55.166.1 * openSUSE Leap 15.5 (aarch64) * dtb-broadcom-5.14.21-150500.55.166.1 * gfs2-kmp-64kb-debuginfo-5.14.21-150500.55.166.1 * dtb-lg-5.14.21-150500.55.166.1 * gfs2-kmp-64kb-5.14.21-150500.55.166.1 * kselftests-kmp-64kb-debuginfo-5.14.21-150500.55.166.1 * kernel-64kb-devel-debuginfo-5.14.21-150500.55.166.1 * kernel-64kb-optional-5.14.21-150500.55.166.1 * dtb-nvidia-5.14.21-150500.55.166.1 * dlm-kmp-64kb-5.14.21-150500.55.166.1 * dtb-hisilicon-5.14.21-150500.55.166.1 * cluster-md-kmp-64kb-debuginfo-5.14.21-150500.55.166.1 * kernel-64kb-debugsource-5.14.21-150500.55.166.1 * dtb-renesas-5.14.21-150500.55.166.1 * kernel-64kb-extra-5.14.21-150500.55.166.1 * dtb-freescale-5.14.21-150500.55.166.1 * kselftests-kmp-64kb-5.14.21-150500.55.166.1 * dtb-apm-5.14.21-150500.55.166.1 * dtb-qcom-5.14.21-150500.55.166.1 * dtb-allwinner-5.14.21-150500.55.166.1 * reiserfs-kmp-64kb-5.14.21-150500.55.166.1 * dtb-apple-5.14.21-150500.55.166.1 * kernel-64kb-devel-5.14.21-150500.55.166.1 * dlm-kmp-64kb-debuginfo-5.14.21-150500.55.166.1 * kernel-64kb-optional-debuginfo-5.14.21-150500.55.166.1 * dtb-altera-5.14.21-150500.55.166.1 * dtb-mediatek-5.14.21-150500.55.166.1 * dtb-amazon-5.14.21-150500.55.166.1 * kernel-64kb-extra-debuginfo-5.14.21-150500.55.166.1 * dtb-arm-5.14.21-150500.55.166.1 * dtb-rockchip-5.14.21-150500.55.166.1 * reiserfs-kmp-64kb-debuginfo-5.14.21-150500.55.166.1 * dtb-socionext-5.14.21-150500.55.166.1 * dtb-marvell-5.14.21-150500.55.166.1 * dtb-amlogic-5.14.21-150500.55.166.1 * ocfs2-kmp-64kb-5.14.21-150500.55.166.1 * ocfs2-kmp-64kb-debuginfo-5.14.21-150500.55.166.1 * dtb-amd-5.14.21-150500.55.166.1 * kernel-64kb-debuginfo-5.14.21-150500.55.166.1 * cluster-md-kmp-64kb-5.14.21-150500.55.166.1 * dtb-sprd-5.14.21-150500.55.166.1 * dtb-xilinx-5.14.21-150500.55.166.1 * dtb-exynos-5.14.21-150500.55.166.1 * dtb-cavium-5.14.21-150500.55.166.1 * openSUSE Leap 15.5 (aarch64 nosrc) * kernel-64kb-5.14.21-150500.55.166.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64 nosrc) * kernel-default-5.14.21-150500.55.166.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 x86_64) * kernel-default-base-5.14.21-150500.55.166.1.150500.6.77.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * kernel-default-debugsource-5.14.21-150500.55.166.1 * kernel-default-debuginfo-5.14.21-150500.55.166.1 * SUSE Linux Enterprise Micro 5.5 (noarch) * kernel-source-5.14.21-150500.55.166.1 * kernel-macros-5.14.21-150500.55.166.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * kernel-default-devel-5.14.21-150500.55.166.1 * cluster-md-kmp-default-debuginfo-5.14.21-150500.55.166.1 * kernel-obs-build-debugsource-5.14.21-150500.55.166.1 * kernel-default-debuginfo-5.14.21-150500.55.166.1 * dlm-kmp-default-5.14.21-150500.55.166.1 * cluster-md-kmp-default-5.14.21-150500.55.166.1 * kernel-default-base-5.14.21-150500.55.166.1.150500.6.77.1 * kernel-syms-5.14.21-150500.55.166.1 * kernel-default-devel-debuginfo-5.14.21-150500.55.166.1 * ocfs2-kmp-default-debuginfo-5.14.21-150500.55.166.1 * gfs2-kmp-default-debuginfo-5.14.21-150500.55.166.1 * kernel-obs-build-5.14.21-150500.55.166.1 * gfs2-kmp-default-5.14.21-150500.55.166.1 * kernel-default-debugsource-5.14.21-150500.55.166.1 * dlm-kmp-default-debuginfo-5.14.21-150500.55.166.1 * ocfs2-kmp-default-5.14.21-150500.55.166.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 nosrc) * kernel-64kb-5.14.21-150500.55.166.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64) * kernel-64kb-devel-5.14.21-150500.55.166.1 * kernel-64kb-debugsource-5.14.21-150500.55.166.1 * kernel-64kb-debuginfo-5.14.21-150500.55.166.1 * kernel-64kb-devel-debuginfo-5.14.21-150500.55.166.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 nosrc x86_64) * kernel-default-5.14.21-150500.55.166.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch) * kernel-source-5.14.21-150500.55.166.1 * kernel-devel-5.14.21-150500.55.166.1 * kernel-macros-5.14.21-150500.55.166.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch nosrc) * kernel-docs-5.14.21-150500.55.166.1 ## References: * https://www.suse.com/security/cve/CVE-2022-49979.html * https://www.suse.com/security/cve/CVE-2023-20585.html * https://www.suse.com/security/cve/CVE-2026-23209.html * https://www.suse.com/security/cve/CVE-2026-23239.html * https://www.suse.com/security/cve/CVE-2026-23240.html * https://www.suse.com/security/cve/CVE-2026-23268.html * https://www.suse.com/security/cve/CVE-2026-23269.html * https://www.suse.com/security/cve/CVE-2026-23271.html * https://www.suse.com/security/cve/CVE-2026-23273.html * https://www.suse.com/security/cve/CVE-2026-23351.html * https://www.suse.com/security/cve/CVE-2026-23393.html * https://www.suse.com/security/cve/CVE-2026-23403.html * https://www.suse.com/security/cve/CVE-2026-23404.html * https://www.suse.com/security/cve/CVE-2026-23405.html * https://www.suse.com/security/cve/CVE-2026-23406.html * https://www.suse.com/security/cve/CVE-2026-23407.html * https://www.suse.com/security/cve/CVE-2026-23408.html * https://www.suse.com/security/cve/CVE-2026-23409.html * https://www.suse.com/security/cve/CVE-2026-23410.html * https://www.suse.com/security/cve/CVE-2026-23411.html * https://www.suse.com/security/cve/CVE-2026-23449.html * https://www.suse.com/security/cve/CVE-2026-23450.html * https://www.suse.com/security/cve/CVE-2026-23458.html * https://www.suse.com/security/cve/CVE-2026-23462.html * https://www.suse.com/security/cve/CVE-2026-31402.html * https://www.suse.com/security/cve/CVE-2026-31403.html * https://www.suse.com/security/cve/CVE-2026-31408.html * https://www.suse.com/security/cve/CVE-2026-31436.html * https://www.suse.com/security/cve/CVE-2026-31470.html * https://www.suse.com/security/cve/CVE-2026-31504.html * https://www.suse.com/security/cve/CVE-2026-31505.html * https://www.suse.com/security/cve/CVE-2026-31507.html * https://www.suse.com/security/cve/CVE-2026-31512.html * https://www.suse.com/security/cve/CVE-2026-31533.html * https://www.suse.com/security/cve/CVE-2026-31570.html * https://www.suse.com/security/cve/CVE-2026-31586.html * https://www.suse.com/security/cve/CVE-2026-31588.html * https://www.suse.com/security/cve/CVE-2026-31602.html * https://www.suse.com/security/cve/CVE-2026-31607.html * https://www.suse.com/security/cve/CVE-2026-31649.html * https://www.suse.com/security/cve/CVE-2026-31656.html * https://www.suse.com/security/cve/CVE-2026-31662.html * https://www.suse.com/security/cve/CVE-2026-31669.html * https://www.suse.com/security/cve/CVE-2026-31685.html * https://www.suse.com/security/cve/CVE-2026-31694.html * https://www.suse.com/security/cve/CVE-2026-31700.html * https://www.suse.com/security/cve/CVE-2026-31738.html * https://www.suse.com/security/cve/CVE-2026-31787.html * https://www.suse.com/security/cve/CVE-2026-43025.html * https://www.suse.com/security/cve/CVE-2026-43027.html * https://www.suse.com/security/cve/CVE-2026-43050.html * https://www.suse.com/security/cve/CVE-2026-43110.html * https://www.suse.com/security/cve/CVE-2026-43126.html * https://www.suse.com/security/cve/CVE-2026-43190.html * https://www.suse.com/security/cve/CVE-2026-43214.html * https://www.suse.com/security/cve/CVE-2026-43329.html * https://www.suse.com/security/cve/CVE-2026-43334.html * https://www.suse.com/security/cve/CVE-2026-43365.html * https://www.suse.com/security/cve/CVE-2026-43437.html * https://www.suse.com/security/cve/CVE-2026-43494.html * https://www.suse.com/security/cve/CVE-2026-43500.html * https://www.suse.com/security/cve/CVE-2026-43503.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1243603 * https://bugzilla.suse.com/show_bug.cgi?id=1245109 * https://bugzilla.suse.com/show_bug.cgi?id=1256504 * https://bugzilla.suse.com/show_bug.cgi?id=1258518 * https://bugzilla.suse.com/show_bug.cgi?id=1258718 * https://bugzilla.suse.com/show_bug.cgi?id=1258849 * https://bugzilla.suse.com/show_bug.cgi?id=1258850 * https://bugzilla.suse.com/show_bug.cgi?id=1258854 * https://bugzilla.suse.com/show_bug.cgi?id=1258855 * https://bugzilla.suse.com/show_bug.cgi?id=1258856 * https://bugzilla.suse.com/show_bug.cgi?id=1258857 * https://bugzilla.suse.com/show_bug.cgi?id=1259484 * https://bugzilla.suse.com/show_bug.cgi?id=1259485 * https://bugzilla.suse.com/show_bug.cgi?id=1259857 * https://bugzilla.suse.com/show_bug.cgi?id=1260010 * https://bugzilla.suse.com/show_bug.cgi?id=1260018 * https://bugzilla.suse.com/show_bug.cgi?id=1260522 * https://bugzilla.suse.com/show_bug.cgi?id=1260526 * https://bugzilla.suse.com/show_bug.cgi?id=1261287 * https://bugzilla.suse.com/show_bug.cgi?id=1261295 * https://bugzilla.suse.com/show_bug.cgi?id=1261584 * https://bugzilla.suse.com/show_bug.cgi?id=1261638 * https://bugzilla.suse.com/show_bug.cgi?id=1261710 * https://bugzilla.suse.com/show_bug.cgi?id=1261779 * https://bugzilla.suse.com/show_bug.cgi?id=1261781 * https://bugzilla.suse.com/show_bug.cgi?id=1261796 * https://bugzilla.suse.com/show_bug.cgi?id=1261797 * https://bugzilla.suse.com/show_bug.cgi?id=1262179 * https://bugzilla.suse.com/show_bug.cgi?id=1262181 * https://bugzilla.suse.com/show_bug.cgi?id=1262602 * https://bugzilla.suse.com/show_bug.cgi?id=1262665 * https://bugzilla.suse.com/show_bug.cgi?id=1262734 * https://bugzilla.suse.com/show_bug.cgi?id=1262758 * https://bugzilla.suse.com/show_bug.cgi?id=1263065 * https://bugzilla.suse.com/show_bug.cgi?id=1263085 * https://bugzilla.suse.com/show_bug.cgi?id=1263093 * https://bugzilla.suse.com/show_bug.cgi?id=1263095 * https://bugzilla.suse.com/show_bug.cgi?id=1263131 * https://bugzilla.suse.com/show_bug.cgi?id=1263141 * https://bugzilla.suse.com/show_bug.cgi?id=1263165 * https://bugzilla.suse.com/show_bug.cgi?id=1263170 * https://bugzilla.suse.com/show_bug.cgi?id=1263176 * https://bugzilla.suse.com/show_bug.cgi?id=1263582 * https://bugzilla.suse.com/show_bug.cgi?id=1263600 * https://bugzilla.suse.com/show_bug.cgi?id=1263668 * https://bugzilla.suse.com/show_bug.cgi?id=1263723 * https://bugzilla.suse.com/show_bug.cgi?id=1263882 * https://bugzilla.suse.com/show_bug.cgi?id=1263901 * https://bugzilla.suse.com/show_bug.cgi?id=1263931 * https://bugzilla.suse.com/show_bug.cgi?id=1263933 * https://bugzilla.suse.com/show_bug.cgi?id=1264059 * https://bugzilla.suse.com/show_bug.cgi?id=1264082 * https://bugzilla.suse.com/show_bug.cgi?id=1264450 * https://bugzilla.suse.com/show_bug.cgi?id=1264482 * https://bugzilla.suse.com/show_bug.cgi?id=1264634 * https://bugzilla.suse.com/show_bug.cgi?id=1264651 * https://bugzilla.suse.com/show_bug.cgi?id=1264848 * https://bugzilla.suse.com/show_bug.cgi?id=1265085 * https://bugzilla.suse.com/show_bug.cgi?id=1265090 * https://bugzilla.suse.com/show_bug.cgi?id=1265119 * https://bugzilla.suse.com/show_bug.cgi?id=1265126 * https://bugzilla.suse.com/show_bug.cgi?id=1265308 * https://bugzilla.suse.com/show_bug.cgi?id=1265456 * https://bugzilla.suse.com/show_bug.cgi?id=1265626 * https://bugzilla.suse.com/show_bug.cgi?id=1265960 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:30:19 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:30:19 -0000 Subject: SUSE-SU-2026:21948-1: important: Security update for vim Message-ID: <178041781947.42.10765650259313504628@b0da085613fb> # Security update for vim Announcement ID: SUSE-SU-2026:21948-1 Release Date: 2026-06-01T10:45:03Z Rating: important References: * bsc#1262395 * bsc#1264706 * bsc#1264707 * bsc#1264708 * bsc#1265349 * bsc#1265360 Cross-References: * CVE-2026-42307 * CVE-2026-43961 * CVE-2026-44656 * CVE-2026-45130 * CVE-2026-46483 CVSS scores: * CVE-2026-42307 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N * CVE-2026-43961 ( SUSE ): 5.4 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43961 ( SUSE ): 4.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L * CVE-2026-44656 ( SUSE ): 4.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-44656 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N * CVE-2026-44656 ( NVD ): 4.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-44656 ( NVD ): 5.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L * CVE-2026-45130 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H * CVE-2026-45130 ( NVD ): 6.6 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H * CVE-2026-45130 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-46483 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46483 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-46483 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-46483 ( NVD ): 3.6 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N Affected Products: * SUSE Linux Micro 6.1 * SUSE Linux Micro Extras 6.1 An update that solves five vulnerabilities and has one fix can now be installed. ## Description: This update for vim fixes the following issues * CVE-2026-42307: Prior to version 9.2.0383, an OS command injection vulnerability exists in the netrw standard plugin bundled with Vim (bsc#1264706). * CVE-2026-43961: Vimscript Code Injection in netrw NetrwMarkFile() via crafted filename (bsc#1265349). * CVE-2026-44656: Prior to version 9.2.0435, an OS command injection vulnerability exists in Vim's: find command-line completion (bsc#1264707). * CVE-2026-45130: Prior to version 9.2.0450, a heap buffer overflow exists in read_compound() in src/spellfile.c when loading a crafted spell file (.spl) with UTF-8 encoding active (bsc#1264708). * CVE-2026-46483: command injection via `tar#Vimuntar()` in `runtime/autoload/tar.vim` when decompressing `.tgz` archives on Unix-like systems (bsc#1265360). Changes for vim: * Update to v9.2.0530. * Fix for incorrectly detecting scientific parameter files as bitbake recipies. (bsc#1262395) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro Extras 6.1 zypper in -t patch SUSE-SLE-Micro-Extras-6.1-557=1 ## Package List: * SUSE Linux Micro Extras 6.1 (aarch64 ppc64le s390x x86_64) * vim-debugsource-9.2.0530-slfo.1.1_1.1 * vim-9.2.0530-slfo.1.1_1.1 * vim-debuginfo-9.2.0530-slfo.1.1_1.1 ## References: * https://www.suse.com/security/cve/CVE-2026-42307.html * https://www.suse.com/security/cve/CVE-2026-43961.html * https://www.suse.com/security/cve/CVE-2026-44656.html * https://www.suse.com/security/cve/CVE-2026-45130.html * https://www.suse.com/security/cve/CVE-2026-46483.html * https://bugzilla.suse.com/show_bug.cgi?id=1262395 * https://bugzilla.suse.com/show_bug.cgi?id=1264706 * https://bugzilla.suse.com/show_bug.cgi?id=1264707 * https://bugzilla.suse.com/show_bug.cgi?id=1264708 * https://bugzilla.suse.com/show_bug.cgi?id=1265349 * https://bugzilla.suse.com/show_bug.cgi?id=1265360 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:35:21 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:35:21 -0000 Subject: SUSE-SU-2026:21947-1: important: Security update for the Linux Kernel Message-ID: <178041812191.42.7621110844418639902@b0da085613fb> # Security update for the Linux Kernel Announcement ID: SUSE-SU-2026:21947-1 Release Date: 2026-05-29T17:53:27Z Rating: important References: * bsc#1215199 * bsc#1234634 * bsc#1243603 * bsc#1248754 * bsc#1253122 * bsc#1253754 * bsc#1254518 * bsc#1256863 * bsc#1257631 * bsc#1258518 * bsc#1258718 * bsc#1258826 * bsc#1258849 * bsc#1258850 * bsc#1258854 * bsc#1258855 * bsc#1258856 * bsc#1258857 * bsc#1258961 * bsc#1259186 * bsc#1259199 * bsc#1259222 * bsc#1259484 * bsc#1259485 * bsc#1259535 * bsc#1259799 * bsc#1259806 * bsc#1259857 * bsc#1259868 * bsc#1259869 * bsc#1259873 * bsc#1259878 * bsc#1260010 * bsc#1260012 * bsc#1260018 * bsc#1260468 * bsc#1260483 * bsc#1260484 * bsc#1260485 * bsc#1260489 * bsc#1260501 * bsc#1260504 * bsc#1260505 * bsc#1260507 * bsc#1260522 * bsc#1260523 * bsc#1260526 * bsc#1260528 * bsc#1260529 * bsc#1260530 * bsc#1260531 * bsc#1260532 * bsc#1260533 * bsc#1260536 * bsc#1260537 * bsc#1260538 * bsc#1260541 * bsc#1260546 * bsc#1260549 * bsc#1260551 * bsc#1260552 * bsc#1260553 * bsc#1260555 * bsc#1260561 * bsc#1260566 * bsc#1260572 * bsc#1260581 * bsc#1260728 * bsc#1260729 * bsc#1260731 * bsc#1260800 * bsc#1260811 * bsc#1261020 * bsc#1261287 * bsc#1261295 * bsc#1261348 * bsc#1261503 * bsc#1261504 * bsc#1261581 * bsc#1261582 * bsc#1261584 * bsc#1261601 * bsc#1261602 * bsc#1261618 * bsc#1261628 * bsc#1261632 * bsc#1261636 * bsc#1261638 * bsc#1261641 * bsc#1261644 * bsc#1261645 * bsc#1261648 * bsc#1261679 * bsc#1261685 * bsc#1261686 * bsc#1261687 * bsc#1261692 * bsc#1261694 * bsc#1261700 * bsc#1261703 * bsc#1261707 * bsc#1261710 * bsc#1261713 * bsc#1261719 * bsc#1261750 * bsc#1261751 * bsc#1261752 * bsc#1261768 * bsc#1261778 * bsc#1261779 * bsc#1261781 * bsc#1261789 * bsc#1261796 * bsc#1261797 * bsc#1261896 * bsc#1262020 * bsc#1262053 * bsc#1262054 * bsc#1262055 * bsc#1262061 * bsc#1262063 * bsc#1262074 * bsc#1262078 * bsc#1262086 * bsc#1262087 * bsc#1262099 * bsc#1262100 * bsc#1262101 * bsc#1262179 * bsc#1262181 * bsc#1262602 * bsc#1262616 * bsc#1262665 * bsc#1262671 * bsc#1262673 * bsc#1262725 * bsc#1262731 * bsc#1262734 * bsc#1262746 * bsc#1262752 * bsc#1262758 * bsc#1263001 * bsc#1263012 * bsc#1263064 * bsc#1263065 * bsc#1263085 * bsc#1263093 * bsc#1263095 * bsc#1263104 * bsc#1263131 * bsc#1263140 * bsc#1263141 * bsc#1263149 * bsc#1263165 * bsc#1263170 * bsc#1263176 * bsc#1263556 * bsc#1263582 * bsc#1263592 * bsc#1263593 * bsc#1263595 * bsc#1263596 * bsc#1263600 * bsc#1263668 * bsc#1263723 * bsc#1263797 * bsc#1263815 * bsc#1263882 * bsc#1263901 * bsc#1263931 * bsc#1263933 * bsc#1263995 * bsc#1264014 * bsc#1264059 * bsc#1264082 * bsc#1264087 * bsc#1264097 * bsc#1264183 * bsc#1264427 * bsc#1264469 * bsc#1264482 * bsc#1264634 * bsc#1264651 * bsc#1264661 * bsc#1264674 * bsc#1264801 * bsc#1264848 * bsc#1265085 * bsc#1265090 * bsc#1265116 * bsc#1265119 * bsc#1265126 * bsc#1265144 * bsc#1265308 * bsc#1265421 * bsc#1265449 * bsc#1265456 * bsc#1265626 * bsc#1265846 * bsc#1265960 * jsc#PED-7249 Cross-References: * CVE-2023-2058 * CVE-2025-40219 * CVE-2025-71183 * CVE-2025-71238 * CVE-2026-23168 * CVE-2026-23209 * CVE-2026-23236 * CVE-2026-23237 * CVE-2026-23239 * CVE-2026-23240 * CVE-2026-23245 * CVE-2026-23246 * CVE-2026-23253 * CVE-2026-23260 * CVE-2026-23264 * CVE-2026-23266 * CVE-2026-23268 * CVE-2026-23269 * CVE-2026-23271 * CVE-2026-23273 * CVE-2026-23276 * CVE-2026-23279 * CVE-2026-23290 * CVE-2026-23291 * CVE-2026-23298 * CVE-2026-23300 * CVE-2026-23306 * CVE-2026-23307 * CVE-2026-23308 * CVE-2026-23312 * CVE-2026-23313 * CVE-2026-23315 * CVE-2026-23318 * CVE-2026-23321 * CVE-2026-23324 * CVE-2026-23325 * CVE-2026-23336 * CVE-2026-23339 * CVE-2026-23340 * CVE-2026-23346 * CVE-2026-23351 * CVE-2026-23357 * CVE-2026-23362 * CVE-2026-23363 * CVE-2026-23365 * CVE-2026-23367 * CVE-2026-23368 * CVE-2026-23370 * CVE-2026-23372 * CVE-2026-23373 * CVE-2026-23374 * CVE-2026-23378 * CVE-2026-23382 * CVE-2026-23391 * CVE-2026-23392 * CVE-2026-23393 * CVE-2026-23396 * CVE-2026-23397 * CVE-2026-23399 * CVE-2026-23403 * CVE-2026-23404 * CVE-2026-23405 * CVE-2026-23406 * CVE-2026-23407 * CVE-2026-23408 * CVE-2026-23409 * CVE-2026-23410 * CVE-2026-23411 * CVE-2026-23420 * CVE-2026-23426 * CVE-2026-23434 * CVE-2026-23440 * CVE-2026-23441 * CVE-2026-23442 * CVE-2026-23443 * CVE-2026-23446 * CVE-2026-23447 * CVE-2026-23448 * CVE-2026-23449 * CVE-2026-23450 * CVE-2026-23452 * CVE-2026-23455 * CVE-2026-23456 * CVE-2026-23457 * CVE-2026-23458 * CVE-2026-23460 * CVE-2026-23461 * CVE-2026-23462 * CVE-2026-23463 * CVE-2026-23465 * CVE-2026-23468 * CVE-2026-23472 * CVE-2026-23473 * CVE-2026-23474 * CVE-2026-23475 * CVE-2026-31389 * CVE-2026-31393 * CVE-2026-31400 * CVE-2026-31402 * CVE-2026-31403 * CVE-2026-31404 * CVE-2026-31405 * CVE-2026-31407 * CVE-2026-31408 * CVE-2026-31411 * CVE-2026-31412 * CVE-2026-31415 * CVE-2026-31416 * CVE-2026-31417 * CVE-2026-31420 * CVE-2026-31421 * CVE-2026-31422 * CVE-2026-31423 * CVE-2026-31424 * CVE-2026-31425 * CVE-2026-31426 * CVE-2026-31427 * CVE-2026-31428 * CVE-2026-31436 * CVE-2026-31449 * CVE-2026-31470 * CVE-2026-31488 * CVE-2026-31494 * CVE-2026-31496 * CVE-2026-31504 * CVE-2026-31505 * CVE-2026-31507 * CVE-2026-31512 * CVE-2026-31515 * CVE-2026-31519 * CVE-2026-31525 * CVE-2026-31528 * CVE-2026-31533 * CVE-2026-31550 * CVE-2026-31565 * CVE-2026-31570 * CVE-2026-31586 * CVE-2026-31588 * CVE-2026-31602 * CVE-2026-31607 * CVE-2026-31622 * CVE-2026-31649 * CVE-2026-31656 * CVE-2026-31662 * CVE-2026-31668 * CVE-2026-31669 * CVE-2026-31675 * CVE-2026-31679 * CVE-2026-31681 * CVE-2026-31682 * CVE-2026-31684 * CVE-2026-31685 * CVE-2026-31694 * CVE-2026-31700 * CVE-2026-31738 * CVE-2026-31787 * CVE-2026-43009 * CVE-2026-43025 * CVE-2026-43027 * CVE-2026-43037 * CVE-2026-43038 * CVE-2026-43044 * CVE-2026-43050 * CVE-2026-43060 * CVE-2026-43088 * CVE-2026-43110 * CVE-2026-43120 * CVE-2026-43126 * CVE-2026-43190 * CVE-2026-43214 * CVE-2026-43265 * CVE-2026-43329 * CVE-2026-43330 * CVE-2026-43334 * CVE-2026-43365 * CVE-2026-43366 * CVE-2026-43419 * CVE-2026-43437 * CVE-2026-43441 * CVE-2026-43494 * CVE-2026-43503 CVSS scores: * CVE-2023-2058 ( NVD ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N * CVE-2023-2058 ( NVD ): 2.4 CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N * CVE-2025-40219 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2025-40219 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2025-71183 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-71183 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-71238 ( SUSE ): 5.9 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-71238 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H * CVE-2025-71238 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23168 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23168 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23168 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23209 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23209 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23236 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23236 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23236 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23236 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H * CVE-2026-23237 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23237 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23237 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23239 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23239 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23239 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23240 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23240 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23240 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23245 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23245 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23245 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23246 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23246 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23253 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23253 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23260 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-23260 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-23260 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23264 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23264 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23264 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23266 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23266 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23266 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23268 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23268 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23268 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23269 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23269 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23269 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23271 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23271 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23271 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23273 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23273 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23273 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23276 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23276 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23279 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23279 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23279 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23290 ( SUSE ): 5.1 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23290 ( SUSE ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23290 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23291 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23291 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23298 ( SUSE ): 5.1 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23298 ( SUSE ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23298 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23300 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23300 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23300 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23306 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23306 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:H/A:H * CVE-2026-23306 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23307 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23307 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23308 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23308 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23312 ( SUSE ): 5.1 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23312 ( SUSE ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23312 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23313 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23313 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23315 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23315 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23318 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23318 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23321 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-23321 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-23321 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23324 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23324 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23324 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23325 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23325 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23336 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23336 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23339 ( SUSE ): 2.3 CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-23339 ( SUSE ): 3.1 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-23339 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23340 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23340 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23340 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23346 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23346 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23346 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23351 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23351 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23357 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23357 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23357 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23362 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23362 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23363 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23363 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23365 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23365 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23365 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23367 ( SUSE ): 5.3 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-23367 ( SUSE ): 6.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2026-23367 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23368 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23368 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23368 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23370 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23370 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23372 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23372 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23373 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23373 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23374 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23374 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23374 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23378 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23378 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-23378 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23378 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23382 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23382 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23382 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23391 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23391 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23392 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23392 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23392 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23393 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23393 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23393 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23396 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23396 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23396 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23397 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23397 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23397 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23399 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23399 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23399 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23403 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23403 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2026-23403 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23404 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23404 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23404 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23405 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23405 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23405 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23406 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23406 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23406 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23407 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23407 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23407 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23408 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23408 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23408 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23408 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23409 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23409 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-23409 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23410 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23410 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23410 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23410 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23411 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23420 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23420 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23420 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23426 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23426 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23426 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23434 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23434 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23434 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23434 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-23440 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23440 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23440 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23440 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23441 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23441 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23442 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23442 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23442 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23443 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23443 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23443 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23446 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23446 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23446 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23447 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23447 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23447 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23448 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23448 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23448 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23449 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23449 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23449 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23450 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23450 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23450 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23452 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23452 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23452 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23455 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23455 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23455 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23456 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-23456 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-23456 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23457 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23457 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23457 ( NVD ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-23458 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23458 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23458 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23460 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23460 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23460 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23461 ( SUSE ): 7.7 CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23461 ( SUSE ): 7.5 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23461 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23462 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23462 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23462 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23463 ( SUSE ): 0.0 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-23463 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N * CVE-2026-23463 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23465 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:L/SC:N/SI:N/SA:N * CVE-2026-23465 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2026-23465 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23468 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23468 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23468 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23472 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23472 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23472 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23473 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23473 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23474 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23474 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23474 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23475 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23475 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23475 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31389 ( SUSE ): 5.6 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31389 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31389 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31393 ( SUSE ): 5.3 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31393 ( SUSE ): 4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-31393 ( NVD ): 8.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31400 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31400 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31400 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31402 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31402 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-31402 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31403 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31403 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31403 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31404 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31404 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31404 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31405 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31405 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31405 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31407 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31407 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N * CVE-2026-31407 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31408 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31408 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31408 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31411 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31411 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31411 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31412 ( SUSE ): 7.0 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31412 ( SUSE ): 6.8 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31412 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31415 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31415 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31415 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31416 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-31416 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-31416 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31417 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31417 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31417 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31420 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31420 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31420 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31421 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31421 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31421 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31422 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31422 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31422 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31423 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31423 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31423 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31424 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31424 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31424 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31425 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31425 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31425 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31426 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31426 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2026-31426 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31427 ( SUSE ): 2.0 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-31427 ( SUSE ): 4.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2026-31427 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31428 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31428 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2026-31428 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31436 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31436 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31436 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31449 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31449 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31449 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-31470 ( SUSE ): 6.0 CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:H/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31470 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H * CVE-2026-31470 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31488 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31488 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31488 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31494 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-31494 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N * CVE-2026-31494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31496 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31496 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-31496 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31504 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31504 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31504 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31505 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31505 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31505 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31507 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31507 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31507 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31512 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31512 ( SUSE ): 7.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-31512 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31515 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31515 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31515 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31519 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31519 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31519 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31525 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31525 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31525 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31528 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31528 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31528 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31533 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31533 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31533 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31550 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31550 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31550 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31565 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31565 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31565 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31570 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:H/SI:N/SA:N * CVE-2026-31570 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31570 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31586 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31586 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31586 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31588 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31588 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31588 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-31602 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31602 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31602 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31607 ( SUSE ): 7.0 CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31607 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H * CVE-2026-31607 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31622 ( SUSE ): 8.7 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31622 ( SUSE ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31622 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31649 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31649 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31649 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31656 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31656 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31656 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31662 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31662 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31662 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31668 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-31668 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2026-31668 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31669 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31669 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31669 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31675 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31675 ( SUSE ): 5.6 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H * CVE-2026-31675 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31679 ( SUSE ): 8.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31679 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31679 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31681 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31681 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N * CVE-2026-31681 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31682 ( SUSE ): 5.3 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31682 ( SUSE ): 4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-31682 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31684 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-31684 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L * CVE-2026-31684 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31685 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31685 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31685 ( NVD ): 9.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H * CVE-2026-31694 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31694 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31694 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31700 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31700 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31700 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31738 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31738 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31738 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31787 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31787 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31787 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43009 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43009 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43025 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43025 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H * CVE-2026-43027 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43027 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43037 ( SUSE ): 7.7 CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43037 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43037 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43038 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43038 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43044 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43044 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43044 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43050 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43050 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43050 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43060 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43060 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43088 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-43088 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-43110 ( SUSE ): 7.7 CVSS:4.0/AV:A/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43110 ( SUSE ): 7.5 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43110 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43120 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43120 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-43120 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43120 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43126 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43126 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43126 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43190 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43190 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-43190 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-43214 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43214 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43214 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43265 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43265 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43265 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43329 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43329 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43329 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43330 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43330 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43330 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43334 ( SUSE ): 8.6 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-43334 ( SUSE ): 8.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-43334 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43365 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-43365 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-43365 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-43366 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43366 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43366 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43419 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-43419 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-43437 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43437 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43437 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43441 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43441 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43494 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43494 ( SUSE ): 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43503 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43503 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-43503 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H Affected Products: * SUSE Linux Micro 6.1 * SUSE Linux Micro Extras 6.1 An update that solves 181 vulnerabilities, contains one feature and has 19 fixes can now be installed. ## Description: The SUSE Linux Enterprise Micro 6.0 and Micro 6.1 kernel was updated to fix various security issues The following security issues were fixed: * CVE-2023-2058: x86/CPU: Fix FPDSS on Zen1 (bsc#1243603). * CVE-2025-71183: btrfs: always detect conflicting inodes when logging inode refs (bsc#1257631). * CVE-2026-23168: flex_proportions: make fprop_new_period() hardirq safe (bsc#1258826). * CVE-2026-23239: espintcp: Fix race condition in espintcp_close() (bsc#1259485). * CVE-2026-23240: tls: Fix race condition in tls_sw_cancel_work_tx() (bsc#1259484). * CVE-2026-23245: net/sched: act_gate: snapshot parameters with RCU on replace (bsc#1259799). * CVE-2026-23271: perf: Fix __perf_event_overflow() vs perf_remove_from_context() race (bsc#1260018). * CVE-2026-23276: net: move dev_xmit_recursion() helpers to net/core/dev.h (bsc#1260012). * CVE-2026-23300: net: ipv6: fix panic when IPv4 route references loopback IPv6 nexthop (bsc#1260538). * CVE-2026-23306: scsi: pm8001: Fix use-after-free in pm8001_queue_command() (bsc#1260501). * CVE-2026-23313: i40e: Fix preempt count leak in napi poll tracepoint (bsc#1260555). * CVE-2026-23321: mptcp: pm: in-kernel: always mark signal+subflow endp as used (bsc#1260505). * CVE-2026-23340: net: sched: avoid qdisc_reset_all_tx_gt() vs dequeue race for lockless qdiscs (bsc#1260523). * CVE-2026-23346: mm/ioremap: define generic_ioremap_prot() and generic_iounmap() (bsc#1260529). * CVE-2026-23351: netfilter: nft_set_pipapo: split gc into unlink and reclaim phase (bsc#1260526). * CVE-2026-23368: net: phy: register phy led_triggers during probe to avoid AB-BA deadlock (bsc#1260530). * CVE-2026-23374: blktrace: fix __this_cpu_read/write in preemptible context (bsc#1260811). * CVE-2026-23378: net/sched: act_ife: Fix metalist update behavior (bsc#1260546). * CVE-2026-23391: netfilter: xt_CT: drop pending enqueued packets on template removal (bsc#1260566). * CVE-2026-23392: netfilter: nf_tables: release flowtable after rcu grace period on error (bsc#1260531). * CVE-2026-23393: bridge: cfm: Fix race condition in peer_mep deletion (bsc#1260522). * CVE-2026-23397: nfnetlink_osf: validate individual option lengths in fingerprints (bsc#1260728). * CVE-2026-23399: nf_tables: nft_dynset: fix possible stateful expression memleak in error path (bsc#1261020). * CVE-2026-23440: net/mlx5e: Fix race condition during IPSec ESN update (bsc#1261641). * CVE-2026-23441: net/mlx5e: Prevent concurrent access to IPSec ASO context (bsc#1261768). * CVE-2026-23442: ipv6: add NULL checks for idev in SRv6 paths (bsc#1261581). * CVE-2026-23449: net/sched: teql: Fix double-free in teql_master_xmit (bsc#1261779). * CVE-2026-23450: net/smc: fix NULL dereference and UAF in smc_tcp_syn_recv_sock() (bsc#1261584). * CVE-2026-23455: netfilter: nf_conntrack_h323: check for zero length in DecodeQ931() (bsc#1261687). * CVE-2026-23456: netfilter: nf_conntrack_h323: fix OOB read in decode_int() CONS case (bsc#1261703). * CVE-2026-23457: netfilter: nf_conntrack_sip: fix Content-Length u32 truncation in sip_help_tcp() (bsc#1261686). * CVE-2026-23458: netfilter: ctnetlink: fix use-after-free in ctnetlink_dump_exp_ct() (bsc#1261781). * CVE-2026-23461: Bluetooth: L2CAP: Fix use-after-free in l2cap_unregister_user (bsc#1261707). * CVE-2026-23462: Bluetooth: HIDP: Fix possible UAF (bsc#1261710). * CVE-2026-23468: drm/amdgpu: Limit BO list entry count to prevent resource exhaustion (bsc#1261692). * CVE-2026-23472: serial: core: fix infinite loop in handle_tx() for PORT_UNKNOWN (bsc#1261636). * CVE-2026-23473: io_uring/poll: fix multishot recv missing EOF on wakeup race (bsc#1261694). * CVE-2026-31400: sunrpc: fix cache_request leak in cache_release (bsc#1261645). * CVE-2026-31402: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache (bsc#1261638). * CVE-2026-31403: NFSD: Hold net reference for the lifetime of /proc/fs/nfs/exports fd (bsc#1261796). * CVE-2026-31404: xfs: avoid dereferencing log items after push callbacks (bsc#1261628). * CVE-2026-31407: netfilter: conntrack: add missing netlink policy validations (bsc#1261632). * CVE-2026-31411: net: atm: fix crash due to unvalidated vcc pointer in sigd_send() (bsc#1261752). * CVE-2026-31415: ipv6: avoid overflows in ip6_datagram_send_ctl() (bsc#1262099). * CVE-2026-31416: netfilter: nfnetlink_log: account for netlink header size (bsc#1262100). * CVE-2026-31420: bridge: mrp: reject zero test interval to avoid OOM panic (bsc#1262055). * CVE-2026-31421: net/sched: cls_fw: fix NULL pointer dereference on shared blocks (bsc#1262061). * CVE-2026-31422: net/sched: cls_flow: fix NULL pointer dereference on shared blocks (bsc#1262054). * CVE-2026-31423: net/sched: sch_hfsc: fix divide-by-zero in rtsc_min() (bsc#1262063). * CVE-2026-31424: netfilter: x_tables: restrict xt_check_match/xt_check_target extensions for NFPROTO_ARP (bsc#1262053). * CVE-2026-31425: rds: ib: reject FRMR registration before IB connection is established (bsc#1262074). * CVE-2026-31427: netfilter: nf_conntrack_sip: fix use of uninitialized rtp_addr in process_sdp (bsc#1262086). * CVE-2026-31428: netfilter: nfnetlink_log: fix uninitialized padding leak in NFULA_PAYLOAD (bsc#1262087). * CVE-2026-31436: dmaengine: idxd: fix possible wrong descriptor completion in llist_abort_desc() (bsc#1262602). * CVE-2026-31449: ext4: validate p_idx bounds in ext4_ext_correct_indexes (bsc#1262616). * CVE-2026-31470: virt: tdx-guest: Fix handling of host controlled 'quote' buffer length (bsc#1262665). * CVE-2026-31488: drm/amd/display: Do not skip unrelated mode changes in DSC validation (bsc#1262746). * CVE-2026-31494: net: cadence: macb: Synchronize stats calculations (bsc#1262671). * CVE-2026-31496: netfilter: nf_conntrack_expect: skip expectations in other netns via proc (bsc#1262673). * CVE-2026-31504: net: fix fanout UAF in packet_release() via NETDEV_UP race (bsc#1263085). * CVE-2026-31505: iavf: fix out-of-bounds writes in iavf_get_ethtool_stats() (bsc#1263093). * CVE-2026-31507: net/smc: fix double-free of smc_spd_priv when tee() duplicates splice pipe buffer (bsc#1263095). * CVE-2026-31512: Bluetooth: L2CAP: Validate PDU length before reading SDU length in l2cap_ecred_data_rcv() (bsc#1262734). * CVE-2026-31515: af_key: validate families in pfkey_send_migrate() (bsc#1262752). * CVE-2026-31519: btrfs: set BTRFS_ROOT_ORPHAN_CLEANUP during subvol create (bsc#1263012). * CVE-2026-31525: bpf: Fix undefined behavior in interpreter sdiv/smod for INT_MIN (bsc#1262725). * CVE-2026-31528: perf: Make sure to use pmu_ctx->pmu for groups (bsc#1263001). * CVE-2026-31533: net/tls: fix use-after-free in -EBUSY error path of tls_do_encryption (bsc#1262758). * CVE-2026-31550: pmdomain: bcm: bcm2835-power: Increase ASB control timeout (bsc#1263104). * CVE-2026-31565: RDMA/irdma: Fix deadlock during netdev reset with active connections (bsc#1263064). * CVE-2026-31570: can: gw: fix OOB heap access in cgw_csum_crc8_rel() (bsc#1263065). * CVE-2026-31586: mm: blk-cgroup: fix use-after-free in cgwb_release_workfn() (bsc#1263176). * CVE-2026-31588: KVM: x86: Use scratch field in MMIO fragment to hold small write values (bsc#1263165). * CVE-2026-31602: ALSA: ctxfi: Limit PTP to a single page (bsc#1263723). * CVE-2026-31607: usbip: validate number_of_packets in usbip_pack_ret_submit() (bsc#1263600). * CVE-2026-31622: NFC: digital: Bounds check NFC-A cascade depth in SDD response handler (bsc#1263797). * CVE-2026-31649: net: stmmac: fix integer underflow in chain mode (bsc#1263582). * CVE-2026-31656: drm/i915/gt: fix refcount underflow in intel_engine_park_heartbeat (bsc#1263170). * CVE-2026-31662: tipc: fix bc_ackers underflow on duplicate GRP_ACK_MSG (bsc#1263131). * CVE-2026-31668: seg6: separate dst_cache for input and output paths in seg6 lwtunnel (bsc#1263140). * CVE-2026-31669: mptcp: fix slab-use-after-free in __inet_lookup_established (bsc#1263141). * CVE-2026-31675: net/sched: sch_netem: fix out-of-bounds access in packet corruption (bsc#1263556). * CVE-2026-31679: openvswitch: validate MPLS set/set_masked payload length (bsc#1263592). * CVE-2026-31681: netfilter: xt_multiport: validate range encoding in checkentry (bsc#1263593). * CVE-2026-31682: bridge: br_nd_send: linearize skb before parsing ND options (bsc#1263595). * CVE-2026-31684: net: sched: act_csum: validate nested VLAN headers (bsc#1263596). * CVE-2026-31685: netfilter: ip6t_eui64: reject invalid MAC header for all packets (bsc#1263668). * CVE-2026-31694: fuse: reject oversized dirents in page cache (bsc#1263901). * CVE-2026-31700: net/packet: fix TOCTOU race on mmap'd vnet_hdr in tpacket_snd() (bsc#1263882). * CVE-2026-31738: vxlan: validate ND option lengths in vxlan_na_create (bsc#1264059). * CVE-2026-31787: xen/privcmd: fix double free via VMA splitting (bsc#1262181). * CVE-2026-43009: bpf: Fix incorrect pruning due to atomic fetch precision tracking (bsc#1264014). * CVE-2026-43025: netfilter: ctnetlink: ignore explicit helper on new expectations (bsc#1263931). * CVE-2026-43027: netfilter: nf_conntrack_helper: pass helper to expect cleanup (bsc#1263933). * CVE-2026-43037: ip6_tunnel: clear skb2->cb in ip4ip6_err() (bsc#1263995). * CVE-2026-43038: ipv6: icmp: clear skb2->cb in ip6_err_gen_icmpv6_unreach() (bsc#1264097). * CVE-2026-43044: crypto: caam - fix DMA corruption on long hmac keys (bsc#1264087). * CVE-2026-43050: atm: lec: fix use-after-free in sock_def_readable() (bsc#1264082). * CVE-2026-43060: netfilter: nft_ct: drop pending enqueued packets on removal (bsc#1264183). * CVE-2026-43088: net: af_key: zero aligned sockaddr tail in PF_KEY exports (bsc#1264469). * CVE-2026-43110: wifi: brcmfmac: validate bsscfg indices in IF events (bsc#1264482). * CVE-2026-43120: RDMA/irdma: Fix double free related to rereg_user_mr. * CVE-2026-43126: ALSA: mixer: oss: Add card disconnect checkpoints (bsc#1264634). * CVE-2026-43190: netfilter: xt_tcpmss: check remaining length before reading optlen (bsc#1264848). * CVE-2026-43214: KVM: x86: Add SRCU protection for reading PDPTRs in __get_sregs2() (bsc#1264651). * CVE-2026-43265: KVM: x86: Ignore -EBUSY when checking nested events from vcpu_block() (bsc#1264427). * CVE-2026-43329: netfilter: flowtable: strictly check for maximum number of actions (bsc#1265085). * CVE-2026-43330: crypto: caam - fix overflow on long hmac keys (bsc#1264801). * CVE-2026-43334: Bluetooth: SMP: force responder MITM requirements before building the pairing response (bsc#1265090). * CVE-2026-43365: xfs: fix undersized l_iclog_roundoff values (bsc#1265119). * CVE-2026-43366: io_uring/kbuf: check if target buffer list is still legacy on recycle (bsc#1265116). * CVE-2026-43419: ceph: fix memory leaks in ceph_mdsc_build_path() (bsc#1264661). * CVE-2026-43437: ALSA: pcm: fix use-after-free on linked stream runtime in snd_pcm_drain() (bsc#1265126). * CVE-2026-43441: net: bonding: Fix nd_tbl NULL dereference when IPv6 is disabled (bsc#1264674). * CVE-2026-43494: net/rds: reset op_nents when zerocopy page pin fails (bsc#1265626). * CVE-2026-43503: net: skbuff: propagate shared-frag marker through frag- transfer helpers (bsc#1265960). The following non security issues were fixed: * accel/qaic: Add overflow check to remap_pfn_range during mmap (git-fixes). * ACPI: AGDI: fix missing newline in error message (git-fixes). * ACPI: CPPC: Fix related_cpus inconsistency during CPU hotplug (git-fixes). * ACPI: scan: Use acpi_dev_put() in object add error paths (git-fixes). * ACPI: video: force native backlight on HP OMEN 16 (8A44) (stable-fixes). * ALSA: 6fire: Fix input volume change detection (git-fixes). * ALSA: 6fire: fix use-after-free on disconnect (git-fixes). * ALSA: aoa: i2sbus: clear stale prepared state (git-fixes). * ALSA: aoa: i2sbus: fix OF node lifetime handling (git-fixes). * ALSA: aoa: Skip devices with no codecs in i2sbus_resume() (git-fixes). * ALSA: aoa: Use guard() for mutex locks (stable-fixes). * ALSA: asihpi: avoid write overflow check warning (stable-fixes). * ALSA: caiaq: Don't abort when no input device is available (git-fixes). * ALSA: caiaq: Fix control_put() result and cache rollback (git-fixes). * ALSA: caiaq: Fix potentially leftover ep1_in_urb at error path (git-fixes). * ALSA: caiaq: fix usb_dev refcount leak on probe failure (git-fixes). * ALSA: caiaq: Handle probe errors properly (git-fixes). * ALSA: caiaq: take a reference on the USB device in create_card() (git- fixes). * ALSA: control: Validate buf_len before strnlen() in snd_ctl_elem_init_enum_names() (git-fixes). * ALSA: core: Fix potential data race at fasync handling (git-fixes). * ALSA: core: Serialize deferred fasync state checks (git-fixes). * ALSA: core: Validate compress device numbers without dynamic minors (git- fixes). * ALSA: ctxfi: Add fallback to default RSR for S/PDIF (git-fixes). * ALSA: ctxfi: Fix missing SPDIFI1 index handling (stable-fixes). * ALSA: ctxfi: Limit PTP to a single page (git-fixes). * ALSA: firewire-tascam: Do not drop unread control events (git-fixes). * ALSA: fireworks: bound device-supplied status before string array lookup (git-fixes). * ALSA: hda/realtek - fixed speaker no sound update (git-fixes). * ALSA: hda/realtek: Add HP ENVY Laptop 13-ba0xxx quirk (stable-fixes). * ALSA: hda/realtek: Add mute LED quirk for HP Pavilion 15-eg0xxx (stable- fixes). * ALSA: hda/realtek: Add quirk for ASUS ROG Flow Z13-KJP GZ302EAC (stable- fixes). * ALSA: hda/realtek: add quirk for Framework F111:000F (stable-fixes). * ALSA: hda/realtek: Add quirk for Lenovo Yoga Pro 7 14IAH10 (stable-fixes). * ALSA: hda/realtek: fix code style (ERROR: else should follow close brace '}') (git-fixes). * ALSA: misc: Use guard() for spin locks (stable-fixes). * ALSA: scarlett2: Add missing sentinel initializer field (git-fixes). * ALSA: seq: Notify client and port info changes (stable-fixes). * ALSA: seq_oss: return full count for successful SEQ_FULLSIZE writes (stable- fixes). * ALSA: usb-audio: apply quirk for MOONDROP JU Jiu (stable-fixes). * ALSA: usb-audio: Avoid false E-MU sample-rate notifications (git-fixes). * ALSA: usb-audio: Avoid potential endless loop in convert_chmap_v3() (git- fixes). * ALSA: usb-audio: Evaluate packsize caps at the right place (git-fixes). * ALSA: usb-audio: Fix Audio Advantage Micro II SPDIF switch (git-fixes). * ALSA: usb-audio: Fix potential leak of pd at parsing UAC3 streams (git- fixes). * ALSA: usb-audio: Fix quirk flags for NeuralDSP Quad Cortex (stable-fixes). * ALSA: usb-audio: Fix UAC3 cluster descriptor size check (git-fixes). * ALSA: usb-audio: midi2: Restart output URBs on resume (git-fixes). * ALSA: usb-audio: stop parsing UAC2 rates at MAX_NR_RATES (git-fixes). * ASoC: amd: yc: Add DMI entry for HP Laptop 15-fc0xxx (stable-fixes). * ASoC: amd: yc: Add DMI quirk for ASUS EXPERTBOOK BM1403CDA (stable-fixes). * ASoC: amd: yc: Add DMI quirk for Thin A15 B7VF (stable-fixes). * ASoC: amd: yc: Add HP OMEN Gaming Laptop 16-ap0xxx product line in quirk table (stable-fixes). * ASoC: codecs: ab8500: Fix casting of private data (git-fixes). * ASoC: cs35l56: Destroy workqueue in probe error path (git-fixes). * ASoC: cs35l56: Don't use devres to unregister component (git-fixes). * ASoC: fsl_easrc: Change the type for iec958 channel status controls (git- fixes). * ASoC: fsl_easrc: Check the variable range in fsl_easrc_iec958_put_bits() (git-fixes). * ASoC: fsl_easrc: fix comment typo (git-fixes). * ASoC: fsl_easrc: Fix value type in fsl_easrc_iec958_get_bits() (git-fixes). * ASoC: fsl_micfil: Add access property for "VAD Detected" (git-fixes). * ASoC: fsl_micfil: Fix event generation in hwvad_put_enable() (git-fixes). * ASoC: fsl_micfil: Fix event generation in hwvad_put_init_mode() (git-fixes). * ASoC: fsl_micfil: Fix event generation in micfil_put_dc_remover_state() (git-fixes). * ASoC: fsl_micfil: Fix event generation in micfil_quality_set() (git-fixes). * ASoC: fsl_xcvr: Fix event generation for cached controls (git-fixes). * ASoC: fsl_xcvr: Fix event generation in fsl_xcvr_arc_mode_put() (git-fixes). * ASoC: fsl_xcvr: Fix event generation in fsl_xcvr_mode_put() (git-fixes). * ASoC: Intel: bytcr_wm5102: Fix MCLK leak on platform_clock_control error (git-fixes). * ASoC: qcom: q6apm-lpass-dai: Fix multiple graph opens (git-fixes). * ASoC: qcom: q6apm: move component registration to unmanaged version (git- fixes). * ASoC: qcom: q6apm: remove child devices when apm is removed (git-fixes). * ASoC: qcom: qdsp6: topology: check widget type before accessing data (git- fixes). * ASoC: soc-core: call missing INIT_LIST_HEAD() for card_aux_list (stable- fixes). * ASoC: SOF: compress: return the configured codec from get_params (git- fixes). * ASoC: SOF: Don't allow pointer operations on unconfigured streams (git- fixes). * ASoC: SOF: Intel: hda: Place check before dereference (git-fixes). * ASoC: SOF: topology: reject invalid vendor array size in token parser (stable-fixes). * ASoC: sti: Return errors from regmap_field_alloc() (git-fixes). * ASoC: sti: use managed regmap_field allocations (git-fixes). * ASoC: stm32_sai: fix incorrect BCLK polarity for DSP_A/B, LEFT_J (stable- fixes). * ata: ahci: force 32-bit DMA for JMicron JMB582/JMB585 (stable-fixes). * batman-adv: bla: only purge non-released claims (git-fixes). * batman-adv: bla: prevent use-after-free when deleting claims (git-fixes). * batman-adv: bla: put backbone reference on failed claim hash insert (git- fixes). * batman-adv: fix integer overflow on buff_pos (git-fixes). * batman-adv: hold claim backbone gateways by reference (git-fixes). * batman-adv: reject new tp_meter sessions during teardown (git-fixes). * batman-adv: reject oversized global TT response buffers (git-fixes). * batman-adv: stop caching unowned originator pointers in BAT IV (git-fixes). * Bluetooth: bnep: fix incorrect length parsing in bnep_rx_frame() extension handling (git-fixes). * Bluetooth: fix locking in hci_conn_request_evt() with HCI_PROTO_DEFER (git- fixes). * Bluetooth: hci_event: Fix OOB read and infinite loop in hci_le_create_big_complete_evt (git-fixes). * Bluetooth: hci_event: fix potential UAF in SSP passkey handlers (git-fixes). * Bluetooth: hci_ldisc: Clear HCI_UART_PROTO_INIT on error (git-fixes). * Bluetooth: HIDP: serialise l2cap_unregister_user via hidp_session_sem (git- fixes). * Bluetooth: ISO: Fix data-race on dst in iso_sock_connect() (git-fixes). * Bluetooth: l2cap: Add missing chan lock in l2cap_ecred_reconf_rsp (git- fixes). * Bluetooth: l2cap: fix MPS check in l2cap_ecred_reconf_req (git-fixes). * Bluetooth: L2CAP: Fix null-ptr-deref in l2cap_sock_new_connection_cb() (git- fixes). * Bluetooth: L2CAP: Fix null-ptr-deref in l2cap_sock_state_change_cb() (git- fixes). * Bluetooth: L2CAP: Fix printing wrong information if SDU length exceeds MTU (git-fixes). * Bluetooth: RFCOMM: pull credit byte with skb_pull_data() (git-fixes). * Bluetooth: SCO: check for codecs->num_codecs == 1 before assigning to sco_pi(sk)->codec (git-fixes). * Bluetooth: SCO: fix sleeping under spinlock in sco_conn_ready (git-fixes). * Bluetooth: SCO: hold sk properly in sco_conn_ready (git-fixes). * Bluetooth: virtio_bt: clamp rx length before skb_put (git-fixes). * Bluetooth: virtio_bt: validate rx pkt_type header length (git-fixes). * btrfs: do not skip logging new dentries when logging a new name (git-fixes). * btrfs: reject root items with drop_progress and zero drop_level (git-fixes). * btrfs: replace BUG() with error handling in __btrfs_balance() (git-fixes). * can: mcp251x: add error handling for power enable in open and resume (stable-fixes). * can: raw: fix ro->uniq use-after-free in raw_rcv() (git-fixes). * can: ucan: fix devres lifetime (git-fixes). * cdc-acm: new quirk for EPSON HMD (stable-fixes). * check-for-config-changes: Exclude CC_MS_EXTENSIONS. * check-for-config-changes: Exclude HAVE_CFI_ICALL_NORMALIZE_INTEGERS{,_RUSTC}. * checkpatch: add support for Assisted-by tag (stable-fixes). * comedi: dt2815: add hardware detection to prevent crash (stable-fixes). * crypto: algif_aead - Fix minimum RX size check for decryption (git-fixes). * crypto: arm64/aes - Fix 32-bit aes_mac_update() arg treated as 64-bit (git- fixes). * crypto: atmel-aes - Fix 3-page memory leak in atmel_aes_buff_cleanup (git- fixes). * crypto: atmel-ecc - Release client on allocation failure (git-fixes). * crypto: atmel-sha204a - Fix potential UAF and memory leak in remove path (git-fixes). * crypto: atmel-tdes - fix DMA sync direction (git-fixes). * crypto: authencesn - reject short ahash digests during instance creation (git-fixes). * crypto: ccp - copy IV using skcipher ivsize (git-fixes). * crypto: ccp: Don't attempt to copy CSR to userspace if PSP command failed (git-fixes). * crypto: ccp: Don't attempt to copy ID to userspace if PSP command failed (git-fixes). * crypto: ccp: Don't attempt to copy PDH cert to userspace if PSP command failed (git-fixes). * crypto: ccree - fix a memory leak in cc_mac_digest() (git-fixes). * crypto: hisilicon - Fix dma_unmap_single() direction (git-fixes). * crypto: jitterentropy - replace long-held spinlock with mutex (git-fixes). * crypto: pcrypt - Fix handling of MAY_BACKLOG requests (git-fixes). * crypto: qat - fix type mismatch in RAS sysfs show functions (git-fixes). * crypto: qat - use swab32 macro (git-fixes). * crypto: sa2ul - Fix AEAD fallback algorithm names (git-fixes). * crypto: simd - reject compat registrations without __ prefixes (git-fixes). * crypto: talitos - fix SEC1 32k ahash request limitation (git-fixes). * crypto: testmgr - Hide ENOENT errors (stable-fixes). * crypto: testmgr - Hide ENOENT errors better (git-fixes). * devres: fix missing node debug info in devm_krealloc() (git-fixes). * dm init: ensure device probing has finished in dm-mod.waitfor= (git-fixes). * dmaengine: dw-axi-dmac: Remove unnecessary return statement from void function (git-fixes). * dmaengine: mxs-dma: Fix missing return value from of_dma_controller_register() (git-fixes). * drm/amd/display: Add NULL check for integrated_info in clk_mgr_construct (git-fixes). * drm/amd/display: Allow DCE link encoder without AUX registers (git-fixes). * drm/amd/display: Avoid NULL dereference in dc_dmub_srv error paths (git- fixes). * drm/amd/display: Disable 10-bit truncation and dithering on DCE 6.x (git- fixes). * drm/amd/display: Read EDID from VBIOS embedded panel info (git-fixes). * drm/amd/pm/ci: Clear EnabledForActivity field for memory levels (git-fixes). * drm/amd/pm/ci: Disable MCLK DPM on problematic CI ASICs (git-fixes). * drm/amd/pm/ci: Fill DW8 fields from SMC (git-fixes). * drm/amd/pm/ci: Fix powertune defaults for Hawaii 0x67B0 (git-fixes). * drm/amd/pm/ci: Use highest MCLK on CI when MCLK DPM is disabled (git-fixes). * drm/amd/pm/smu7: Add SCLK cap for quirky Hawaii board (git-fixes). * drm/amd/pm/smu7: Fix SMU7 voltage dependency on display clock (git-fixes). * drm/amdgpu/gfx6: Support harvested SI chips with disabled TCCs (v2) (git- fixes). * drm/amdgpu/gfx9: drop unnecessary 64-bit fence flag check in KIQ (stable- fixes). * drm/amdgpu/gfx10: look at the right prop for gfx queue priority (git-fixes). * drm/amdgpu/gmc: Fix AMDGPU_GART_PLACEMENT_LOW to not overlap with VRAM (git- fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v2.0 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v2.5 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v3.0 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v4.0 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v4.0.3 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v4.0.5 ring (git-fixes). * drm/amdgpu/pm: add missing revision check for CI (git-fixes). * drm/amdgpu/pm: align Hawaii mclk workaround with radeon (git-fixes). * drm/amdgpu/sdma4: replace BUG_ON with WARN_ON in fence emission (git-fixes). * drm/amdgpu/vce: Prevent partial address patches (stable-fixes). * drm/amdgpu/vcn3: Avoid overflow on msg bound check (git-fixes). * drm/amdgpu/vcn3: Prevent OOB reads when parsing dec msg (stable-fixes). * drm/amdgpu/vcn4: Avoid overflow on msg bound check (git-fixes). * drm/amdgpu/vcn4: Prevent OOB reads when parsing dec msg (stable-fixes). * drm/amdgpu/vcn4: Prevent OOB reads when parsing IB (stable-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v2.0 enc/dec rings (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v2.5 enc/dec rings (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v3.0 enc/dec rings (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v4.0 enc ring (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v4.0.3 enc ring (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v4.0.5 enc ring (git-fixes). * drm/amdgpu: Add bounds checking to ib_{get,set}_value (stable-fixes). * drm/amdgpu: fix AMDGPU_INFO_READ_MMR_REG (git-fixes). * drm/amdgpu: fix zero-size GDS range init on RDNA4 (stable-fixes). * drm/amdgpu: zero-initialize GART table on allocation (stable-fixes). * drm/amdkfd: Add upper bound check for num_of_nodes (stable-fixes). * drm/amdkfd: Clear VRAM on allocation to prevent stale data exposure (stable- fixes). * drm/amdkfd: validate SVM ioctl nattr against buffer size (stable-fixes). * drm/arcpgu: fix device node leak (git-fixes). * drm/bridge: cadence: cdns-mhdp8546-core: Add mode_valid hook to drm_bridge_funcs (git-fixes). * drm/bridge: cadence: cdns-mhdp8546-core: Handle HDCP state in bridge atomic check (git-fixes). * drm/bridge: cadence: cdns-mhdp8546-core: Set the mhdp connector earlier in atomic_enable() (git-fixes). * drm/etnaviv: Fix armed job not being pushed to the DRM scheduler (git- fixes). * drm/fb-helper: Fix clipping when damage area spans a single scanline (git- fixes). * drm/gem: Fix inconsistent plane dimension calculation in drm_gem_fb_init_with_funcs() (git-fixes). * drm/gma500/oaktrail_hdmi: fix i2c adapter leak on setup (git-fixes). * drm/gma500/oaktrail_lvds: fix hang on init failure (git-fixes). * drm/gma500/oaktrail_lvds: fix i2c adapter leaks on init (git-fixes). * drm/i915/dp: Fix VSC dynamic range signaling for RGB formats (git-fixes). * drm/i915/gt: fix refcount underflow in intel_engine_park_heartbeat (git- fixes). * drm/i915/wm: Verify the correct plane DDB entry (git-fixes). * drm/i915: skip __i915_request_skip() for already signaled requests (git- fixes). * drm/komeda: fix integer overflow in AFBC framebuffer size check (git-fixes). * drm/msm/a6xx: Fix dumping A650+ debugbus blocks (git-fixes). * drm/msm/a6xx: Fix HLSQ register dumping (git-fixes). * drm/msm/a6xx: Use barriers while updating HFI Q headers (git-fixes). * drm/msm/dpu: fix mismatch between power and frequency (git-fixes). * drm/msm/dsi: add the missing parameter description (git-fixes). * drm/msm/dsi: fix bits_per_pclk (git-fixes). * drm/msm/dsi: fix hdisplay calculation for CMD mode panel (git-fixes). * drm/msm/dsi: rename MSM8998 DSI version from V2_2_0 to V2_0_0 (git-fixes). * drm/msm/shrinker: Fix can_block() logic (git-fixes). * drm/nouveau: fix u32 overflow in pushbuf reloc bounds check (git-fixes). * drm/panel: sharp-ls043t1le01: make use of prepare_prev_first (git-fixes). * drm/panel: simple: Correct G190EAN01 prepare timing (git-fixes). * drm/panfrost: Fix wait_bo ioctl leaking positive return from dma_resv_wait_timeout() (git-fixes). * drm/radeon: add missing revision check for CI (git-fixes). * drm/sun4i: backend: fix error pointer dereference (git-fixes). * drm/sun4i: Fix resource leaks (git-fixes). * drm/vc4: Fix a memory leak in hang state error path (git-fixes). * drm/vc4: Fix memory leak of BO array in hang state (git-fixes). * drm/vc4: platform_get_irq_byname() returns an int (stable-fixes). * drm/vc4: Protect madv read in vc4_gem_object_mmap() with madv_lock (git- fixes). * drm/vc4: Release runtime PM reference after binding V3D (git-fixes). * drm/vram: remove DRM_VRAM_MM_FILE_OPERATIONS from docs (git-fixes). * dt-bindings: net: Fix Tegra234 MGBE PTP clock (git-fixes). * efi/capsule-loader: fix incorrect sizeof in phys array reallocation (git- fixes). * efi: pstore: Drop efivar lock when efi_pstore_open() returns with an error (git-fixes). * ext4: fix fsync(2) for nojournal mode (git-fixes). * ext4: make recently_deleted() properly work with lazy itable initialization (git-fixes). * ext4: reject mount if bigalloc with s_first_data_block != 0 (git-fixes). * extcon: ptn5150: handle pending IRQ events during system resume (git-fixes). * fbdev: matroxfb: Mark variable with __maybe_unused to avoid W=1 build break (git-fixes). * fbdev: offb: fix PCI device reference leak on probe failure (git-fixes). * fbdev: tdfxfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO (stable-fixes). * fbdev: udlfb: add vm_ops to dlfb_ops_mmap to prevent use-after-free (stable- fixes). * fbdev: udlfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO (git-fixes). * firmware: dmi: Correct an indexing error in dmi.h (git-fixes). * gpio: tegra: fix irq_release_resources calling enable instead of disable (git-fixes). * gtp: disable BH before calling udp_tunnel_xmit_skb() (git-fixes). * HID: alps: fix NULL pointer dereference in alps_raw_event() (git-fixes). * HID: asus: do not abort probe when not necessary (git-fixes). * HID: asus: make asus_resume adhere to linux kernel coding standards (git- fixes). * HID: core: clamp report_size in s32ton() to avoid undefined shift (stable- fixes). * HID: multitouch: Check to ensure report responses match the request (stable- fixes). * HID: playstation: Clamp num_touch_reports (git-fixes). * HID: quirks: add HID_QUIRK_ALWAYS_POLL for 8BitDo Pro 3 (stable-fixes). * HID: roccat: fix use-after-free in roccat_report_event (stable-fixes). * HID: usbhid: fix deadlock in hid_post_reset() (git-fixes). * HID: wacom: fix out-of-bounds read in wacom_intuos_bt_irq (stable-fixes). * hv_sock: fix ARM64 support (git-fixes). * hwmon: (ads7871) Fix endianness bug in 16-bit register reads (git-fixes). * hwmon: (corsair-psu) Close HID device on probe errors (git-fixes). * hwmon: (lm63) Add locking to avoid TOCTOU (git-fixes). * hwmon: (ltc2992) Clamp threshold writes to hardware range (git-fixes). * hwmon: (ltc2992) Fix u32 overflow in power read path (git-fixes). * i2c: s3c24xx: check the size of the SMBUS message before using it (stable- fixes). * i2c: smbus: reject oversized block transfers in the common path (git-fixes). * i2c: stm32f7: reinit_completion() per transfer not per msg (git-fixes). * i2c: stub: Reject I2C block transfers with invalid length (git-fixes). * i3c: master: Fix error codes at send_ccc_cmd (git-fixes). * i3c: mipi-i3c-hci: fix IBI payload length calculation for final status (git- fixes). * ibmveth: Disable GSO for packets with small MSS (bsc#1265144). * ice: set max queues in alloc_etherdev_mqs() (git-fixes). * iio: adc: ad7768-1: fix one-shot mode data acquisition (git-fixes). * iio: adc: ti-adc161s626: use DMA-safe memory for spi_read() (git-fixes). * iio: adc: ti-ads7950: use iio_push_to_buffers_with_ts_unaligned() (git- fixes). * Input: i8042 - add TUXEDO InfinityBook Max 16 Gen10 AMD to i8042 quirk table (stable-fixes). * Input: uinput - fix circular locking dependency with ff-core (git-fixes). * Input: uinput - take event lock when submitting FF request "event" (stable- fixes). * Input: xpad - add support for BETOP BTP-KP50B/C controller's wireless mode (stable-fixes). * Input: xpad - add support for Razer Wolverine V3 Pro (stable-fixes). * ipmi: Add limits to event and receive message requests (git-fixes). * ipmi: Check event message buffer response for bad data (git-fixes). * ipmi: ssif_bmc: change log level to dbg in irq callback (git-fixes). * ipmi: ssif_bmc: fix message desynchronization after truncated response (git- fixes). * ipmi: ssif_bmc: fix missing check for copy_to_user() partial failure (git- fixes). * irqchip/irq-pic32-evic: Address warning related to wrong printf() formatter (git-fixes). * kdump, documentation: describe craskernel CMA reservation (jsc#PED-7249). * KVM: Reject wrapped offset in kvm_reset_dirty_gfn() (git-fixes). * KVM: SVM: Mark VMCB_NPT as dirty on nested VMRUN (git-fixes). * KVM: SVM: Mark VMCB_PERM_MAP as dirty on nested VMRUN (git-fixes). * KVM: x86/mmu: Retry fault before acquiring mmu_lock if mapping is changing (bsc#1253122). * KVM: x86/xen: Fix cleanup logic in emulation of Xen schedop poll hypercalls (git-fixes). * KVM: x86: check for nEPT/nNPT in slow flush hypercalls (git-fixes). * KVM: x86: Fix shadow paging use-after-free due to unexpected GFN (git- fixes). * KVM: x86: hyper-v: Validate all GVAs during PV TLB flush (git-fixes). * KVM: x86: Ignore cpuid faulting in SMM (git-fixes). * leds: lgm-sso: Remove duplicate assignments for priv->mmap (git-fixes). * lib/hexdump: print_hex_dump_bytes() calls print_hex_dump_debug() (git- fixes). * media: amphion: Fix race between m2m job_abort and device_run (git-fixes). * media: as102: fix to not free memory after the device is registered in as102_usb_probe() (git-fixes). * media: dib8000: avoid division by 0 in dib8000_set_dds() (git-fixes). * media: em28xx: fix use-after-free in em28xx_v4l2_open() (git-fixes). * media: hackrf: fix to not free memory after the device is registered in hackrf_probe() (git-fixes). * media: i2c: imx219: Check return value of devm_gpiod_get_optional() in imx219_probe() (git-fixes). * media: i2c: imx412: Assert reset GPIO during probe (git-fixes). * media: i2c: ov08d10: fix image vertical start setting (git-fixes). * media: i2c: ov8856: free control handler on error in ov8856_init_controls() (git-fixes). * media: mtk-jpeg: fix use-after-free in release path due to uncancelled work (git-fixes). * media: omap3isp: drop the use count of v4l2 pipeline (git-fixes). * media: pci: zoran: fix potential memory leak in zoran_probe() (git-fixes). * media: rc: streamzap: Error handling in probe (git-fixes). * media: rc: xbox_remote: heed DMA restrictions (git-fixes). * media: saa7164: add ioremap return checks and cleanups (git-fixes). * media: staging: imx: configure src_mux in csi_start (git-fixes). * media: staging: imx: request mbus_config in csi_start (git-fixes). * media: uvcvideo: Enable VB2_DMABUF for metadata stream (git-fixes). * media: videobuf2: Set vma_flags in vb2_dma_sg_mmap (git-fixes). * media: vidtv: fix nfeeds state corruption on start_streaming failure (git- fixes). * media: vidtv: fix NULL pointer dereference in vidtv_channel_pmt_match_sections (git-fixes). * media: vidtv: fix pass-by-value structs causing MSAN warnings (git-fixes). * memory: tegra30-emc: Fix dll_change check (git-fixes). * memory: tegra124-emc: Fix dll_change check (git-fixes). * mfd: mc13xxx-core: Fix memory leak in mc13xxx_add_subdevice_pdata() (git- fixes). * mkspec: Add signature to source list only when it exists. * mmc: sdhci-of-dwcmshc: Disable clock before DLL configuration (git-fixes). * mmc: vub300: fix NULL-deref on disconnect (git-fixes). * modpost: Amend ppc64 save/restfpr symnames for -Os build (bsc#1215199). * mtd: docg3: Convert to platform remove callback returning void (stable- fixes). * mtd: docg3: fix use-after-free in docg3_release() (git-fixes). * mtd: parsers: ofpart: call of_node_get() for dedicated subpartitions (git- fixes). * mtd: parsers: ofpart: call of_node_put() only in ofpart_fail path (git- fixes). * mtd: physmap_of_gemini: Fix disabled pinctrl state check (git-fixes). * mtd: rawnand: sunxi: fix sunxi_nfc_hw_ecc_read_extra_oob (git-fixes). * mtd: spi-nor: core: correct the op.dummy.nbytes when check read operations (git-fixes). * mtd: spi-nor: sst: Factor out common write operation to `sst_nor_write_data()` (stable-fixes). * mtd: spi-nor: sst: Fix SST write failure (git-fixes). * mtd: spi-nor: sst: Fix write enable before AAI sequence (git-fixes). * mtd: spi-nor: swp: check SR_TB flag when getting tb_mask (git-fixes). * net/rds: reset op_nents when zerocopy page pin fails (bsc#1265626). * net/sched: cls_fw: fix NULL dereference of "old" filters before change() (git-fixes). * net/sched: fix pedit partial COW leading to page cache corruption (bsc#1265421). * net: gro: don't merge zcopy skbs (git-fixes). * net: mana: Add MAC address to vPort logs and clarify error messages (git- fixes). * net: mana: check xdp_rxq registration before unreg in mana_destroy_rxq() (git-fixes). * net: mana: Don't overwrite port probe error with add_adev result (git- fixes). * net: mana: Fix crash from unvalidated SHM offset read from BAR0 during FLR (bsc#1265846). * net: mana: Fix EQ leak in mana_remove on NULL port (git-fixes). * net: mana: Fix RX skb truesize accounting (bsc#1248754). * net: mana: fix use-after-free in mana_hwc_destroy_channel() by reordering teardown (git-fixes). * net: mana: Guard mana_remove against double invocation (git-fixes). * net: mana: hardening: Validate adapter_mtu from MANA_QUERY_DEV_CONFIG (git- fixes). * net: mana: hardening: Validate doorbell ID from GDMA_REGISTER_DEVICE response (git-fixes). * net: mana: Init gf_stats_work before potential error paths in probe (git- fixes). * net: mana: Init link_change_work before potential error paths in probe (git- fixes). * net: mana: remove double CQ cleanup in mana_create_rxq error path (git- fixes). * net: mana: Set default number of queues to 16 (bsc#1261648). * net: mana: Skip WQ object destruction for uninitialized RXQ (git-fixes). * net: mana: Use at least SZ_4K in doorbell ID range check (git-fixes). * net: mana: Use pci_name() for debugfs directory naming (git-fixes). * net: phy: dp83869: fix setting CLK_O_SEL field (git-fixes). * net: stmmac: Fix PTP ref clock for Tegra234 (git-fixes). * net: usb: asix: ax88772: re-add usbnet_link_change() in phylink callbacks (git-fixes). * net: usb: cdc-phonet: fix skb frags[] overflow in rx_complete() (git-fixes). * net: usb: rtl8150: fix use-after-free in rtl8150_start_xmit() (git-fixes). * net: usb: rtl8150: free skb on usb_submit_urb() failure in xmit (git-fixes). * net: wan: fsl_ucc_hdlc: fix ucc_hdlc_remove (git-fixes). * net: wan: fsl_ucc_hdlc: fix uhdlc_memclean (git-fixes). * net: wan: fsl_ucc_hdlc: free tx_skbuff in uhdlc_memclean (git-fixes). * NFC: digital: Bounds check NFC-A cascade depth in SDD response handler (git- fixes). * nfc: llcp: add missing return after LLCP_CLOSED checks (git-fixes). * nfc: pn533: allocate rx skb before consuming bytes (git-fixes). * nfc: s3fwrn5: allocate rx skb before consuming bytes (git-fixes). * NFC: trf7970a: Ignore antenna noise when checking for RF field (git-fixes). * nvmet-tcp: propagate nvmet_tcp_build_pdu_iovec() errors to its callers (git- fixes). * ocfs2: fix possible deadlock between unlink and dio_end_io_write (bsc#1258718). * ocfs2: split transactions in dio completion to avoid credit exhaustion (bsc#1258718). * PCI/AER: Clear only error bits in PCIe Device Status (git-fixes). * PCI/AER: Stop ruling out unbound devices as error source (git-fixes). * PCI: dwc: Apply ECRC workaround to DesignWare 5.00a as well (git-fixes). * PCI: Enable AtomicOps only if Root Port supports them (git-fixes). * PCI: endpoint: pci-epf-ntb: Remove duplicate resource teardown (git-fixes). * PCI: hv: Set default NUMA node to 0 for devices without affinity info (git- fixes). * PCI: mediatek-gen3: Prevent leaking IRQ domains when IRQ not found (git- fixes). * PCI: tegra194: Allow system suspend when the Endpoint link is not up (git- fixes). * PCI: tegra194: Disable direct speed change for Endpoint mode (git-fixes). * PCI: tegra194: Disable LTSSM after transition to Detect on surprise link down (git-fixes). * PCI: tegra194: Disable PERST# IRQ only in Endpoint mode (git-fixes). * PCI: tegra194: Fix polling delay for L2 state (git-fixes). * PCI: tegra194: Increase LTSSM poll time on surprise link down (git-fixes). * PCI: tegra194: Set LTR message request before PCIe link up in Endpoint mode (git-fixes). * PCI: tegra194: Use devm_gpiod_get_optional() to parse "nvidia,refclk-select" (git-fixes). * PCI: tegra194: Use DWC IP core version (git-fixes). * pinctrl: abx500: Fix type of 'argument' variable (git-fixes). * pinctrl: Fix spelling problem (git-fixes). * pinctrl: intel: Fix the revision for new features (1kOhm PD, HW debouncer) (stable-fixes). * pinctrl: pic32: change all cases of bare 'unsigned' to 'unsigned int' (git- fixes). * pinctrl: pic32: use consistent spacing around '+' (git-fixes). * pinctrl: pinctrl-pic32: Fix resource leak (git-fixes). * platform/chrome: chromeos_tbmc: Drop wakeup source on remove (git-fixes). * platform/surface: surfacepro3_button: Drop wakeup source on remove (git- fixes). * platform/x86/amd: pmc: Add Thinkpad L14 Gen3 to quirk_s2idle_bug (stable- fixes). * platform/x86: dell-wmi-sysman: bound enumeration string aggregation (git- fixes). * platform/x86: dell_rbu: avoid uninit value usage in packet_size_write() (git-fixes). * platform/x86: hp-wmi: Ignore backlight and FnLock events (stable-fixes). * platform/x86: panasonic-laptop: Fix OPTD notifier registration and cleanup (git-fixes). * power: supply: axp288_charger: Do not cancel work before initializing it (git-fixes). * power: supply: max17042: avoid overflow when determining health (git-fixes). * powerpc/crash: fix backup region offset update to elfcorehdr (bsc#1259535). * RDMA/mana: Fix error unwind in mana_ib_create_qp_rss() (git-fixes). * RDMA/mana: Fix mana_destroy_wq_obj() cleanup in mana_ib_create_qp_rss() (git-fixes). * RDMA/mana: Remove user triggerable WARN_ON() in mana_ib_create_qp_rss() (git-fixes). * RDMA/mana: Validate rx_hash_key_len (git-fixes). * RDMA/mana_ib: cleanup the usage of mana_gd_send_request() (git-fixes). * RDMA/mana_ib: Disable RX steering on RSS QP destroy (git-fixes). * RDMA/mana_ib: Support memory windows (git-fixes). * regulator: act8945a: fix OF node reference imbalance (git-fixes). * regulator: bd9571mwv: fix OF node reference imbalance (git-fixes). * regulator: max77650: fix OF node reference imbalance (git-fixes). * regulator: mt6357: fix OF node reference imbalance (git-fixes). * remoteproc: xlnx: Only access buffer information if IPI is buffered (git- fixes). * Revert "ALSA: usb: Increase volume range that triggers a warning" (git- fixes). * rtc: abx80x: Disable alarm feature if no interrupt attached (git-fixes). * rtc: ntxec: fix OF node reference imbalance (git-fixes). * sched/balancing: Switch the 'DEFINE_SPINLOCK(balancing)' spinlock into an 'atomic_t sched_balance_running' flag (bsc#1253754). * sched/fair: Change likelyhood of nohz.nr_cpus (bsc#1234634 bsc#1258961). * sched/fair: Have SD_SERIALIZE affect newidle balancing (bsc#1253754). * sched/fair: Move checking for nohz cpus after time check (bsc#1234634 bsc#1258961). * sched/fair: Remove nohz.nr_cpus and use weight of cpumask instead (bsc#1234634 bsc#1258961). * sched/fair: Skip sched_balance_running cmpxchg when balance is not due (bsc#1253754). * scsi: storvsc: Handle PERSISTENT_RESERVE_IN truncation for Hyper-V vFC (git- fixes). * scsi: target: iscsi: validate CHAP_R length before base64 decode (bsc#1265449). * soc/tegra: cbb: Set ERD on resume for err interrupt (git-fixes). * soc: qcom: aoss: compare against normalized cooling state (git-fixes). * soc: qcom: llcc: fix v1 SB syndrome register offset (git-fixes). * sound: ua101: fix division by zero at probe (git-fixes). * soundwire: bus: demote UNATTACHED state warnings to dev_dbg() (git-fixes). * soundwire: cadence: Clear message complete before signaling waiting thread (git-fixes). * spi: at91-usart: fix controller deregistration (git-fixes). * spi: atmel: fix controller deregistration (git-fixes). * spi: cadence: fix controller deregistration (git-fixes). * spi: fix controller cleanup() documentation (git-fixes). * spi: fix misleading controller deregistration kernel-doc (git-fixes). * spi: fix misleading controller registration kernel-doc (git-fixes). * spi: fsl-qspi: Use reinit_completion() for repeated operations (git-fixes). * spi: hisi-kunpeng: prevent infinite while() loop in hisi_spi_flush_fifo (git-fixes). * spi: imx: fix runtime pm leak on probe deferral (git-fixes). * spi: imx: fix use-after-free on unbind (git-fixes). * spi: microchip-core-qspi: fix controller deregistration (git-fixes). * spi: microchip-core-qspi: Use helper function devm_clk_get_enabled() (stable-fixes). * spi: mpc52xx: fix use-after-free on unbind (git-fixes). * spi: mtk-nor: fix controller deregistration (git-fixes). * spi: mtk-snfi: unregister ECC engine on probe failure and remove() callback (git-fixes). * spi: omap2-mcspi: fix controller deregistration (git-fixes). * spi: orion: fix clock imbalance on registration failure (git-fixes). * spi: orion: fix runtime pm leak on unbind (git-fixes). * spi: rockchip: fix controller deregistration (git-fixes). * spi: rspi: fix controller deregistration (git-fixes). * spi: sh-hspi: fix controller deregistration (git-fixes). * spi: spi-ti-qspi: Convert to platform remove callback returning void (stable-fixes). * spi: sprd: fix controller deregistration (git-fixes). * spi: sun4i: fix controller deregistration (git-fixes). * spi: sun4i: switch to use modern name (stable-fixes). * spi: syncuacer: fix controller deregistration (git-fixes). * spi: synquacer: switch to use modern name (stable-fixes). * spi: uniphier: fix controller deregistration (git-fixes). * spi: uniphier: Simplify clock handling with devm_clk_get_enabled() (stable- fixes). * spi: uniphier: switch to use modern name (stable-fixes). * spi: zynq-qspi: switch to use modern name (stable-fixes). * spi: zynqmp-gqspi: fix controller deregistration (git-fixes). * staging: media: atomisp: Disallow all private IOCTLs (git-fixes). * staging: rtl8723bs: initialize le_tmp64 in rtw_BIP_verify() (git-fixes). * staging: sm750fb: fix division by zero in ps_to_hz() (git-fixes). * staging: vme_user: added bound check to geoid (stable-fixes). * staging: vme_user: fix root device leak on init failure (git-fixes). * thermal/drivers/spear: Fix error condition for reading st,thermal-flags (git-fixes). * thermal/drivers/sprd: Fix raw temperature clamping in sprd_thm_rawdata_to_temp (git-fixes). * thermal/drivers/sprd: Fix temperature clamping in sprd_thm_temp_to_rawdata (git-fixes). * tpm: avoid -Wunused-but-set-variable (git-fixes). * tpm: tpm_tis: add error logging for data transfer (git-fixes). * tpm: tpm_tis: stop transmit if retries are exhausted (git-fixes). * tty: tty_io: update timestamps on all device nodes (bsc#1262020). * USB: cdc-acm: Add quirks for Yoga Book 9 14IAH10 INGENIC touchscreen (stable-fixes). * usb: chipidea: core: allow ci_irq_handler() handle both ID and VBUS change (git-fixes). * usb: chipidea: otg: not wait vbus drop if use role_switch (git-fixes). * USB: core: add NO_LPM quirk for Razer Kiyo Pro webcam (stable-fixes). * usb: gadget: dummy_hcd: fix premature URB completion when ZLP follows partial transfer (stable-fixes). * usb: gadget: f_ncm: validate minimum block_len in ncm_unwrap_ntb() (git- fixes). * usb: gadget: f_phonet: fix skb frags[] overflow in pn_rx_complete() (stable- fixes). * usb: gadget: f_uac1_legacy: validate control request size (stable-fixes). * usb: gadget: renesas_usb3: validate endpoint index in standard request handlers (git-fixes). * USB: omap_udc: DMA: Don't enable burst 4 mode (git-fixes). * usb: port: add delay after usb_hub_set_port_power() (git-fixes). * usb: quirks: add DELAY_INIT quirk for another Silicon Motion flash drive (stable-fixes). * USB: serial: io_edgeport: add support for Blackbox IC135A (stable-fixes). * USB: serial: option: add MeiG Smart SRM825WN (stable-fixes). * USB: serial: option: add support for Rolling Wireless RW135R-GL (stable- fixes). * USB: serial: option: add Telit Cinterion FN990A MBIM composition (stable- fixes). * USB: serial: option: add Telit Cinterion LE910Cx compositions (stable- fixes). * usb: storage: Expand range of matched versions for VL817 quirks entry (stable-fixes). * usb: ulpi: fix memory leak on ulpi_register() error paths (git-fixes). * usb: usblp: fix heap leak in IEEE 1284 device ID via short response (stable- fixes). * usb: usblp: fix uninitialized heap leak via LPGETSTATUS ioctl (stable- fixes). * usb: xhci: Make usb_host_endpoint.hcpriv survive endpoint_disable() (git- fixes). * usbip: validate number_of_packets in usbip_pack_ret_submit() (git-fixes). * virt: tdx-guest: Fix handling of host controlled 'quote' buffer length (git- fixes). * virt: tdx-guest: Return error for GetQuote failures (git-fixes). * wifi: ath5k: do not access array OOB (git-fixes). * wifi: ath9k: Fix typo (git-fixes). * wifi: ath11k: Pass the correct value of each TID during a stop AMPDU session (git-fixes). * wifi: ath11k: skip status ring entry processing (stable-fixes). * wifi: ath11k: Use dma_alloc_noncoherent for rx_tid buffer allocation (stable-fixes). * wifi: b43: enforce bounds check on firmware key index in b43_rx() (git- fixes). * wifi: b43legacy: enforce bounds check on firmware key index in RX path (git- fixes). * wifi: brcmfmac: Fix error pointer dereference (git-fixes). * wifi: brcmfmac: validate bsscfg indices in IF events (stable-fixes). * wifi: brcmsmac: Fix dma_free_coherent() size (git-fixes). * wifi: cw1200: Revert "Fix locking in error paths" (git-fixes). * wifi: libertas: notify firmware load wait on disconnect (git-fixes). * wifi: mac80211: check ieee80211_rx_data_set_link return in pubsta MLO path (git-fixes). * wifi: mac80211: drop stray 'static' from fast-RX rx_result (git-fixes). * wifi: mac80211: remove station if connection prep fails (git-fixes). * wifi: mt76: mt792x: describe USB WFSYS reset with a descriptor (stable- fixes). * wifi: mt76: mt792x: fix mt7925u USB WFSYS reset handling (git-fixes). * wifi: mt76: mt7615: fix use_cts_prot support (git-fixes). * wifi: mt76: mt7915: fix use-after-free bugs in mt7915_mac_dump_work() (git- fixes). * wifi: mt76: mt7915: fix use_cts_prot support (git-fixes). * wifi: mt76: mt7921: fix a potential clc buffer length underflow (git-fixes). * wifi: mt76: mt7921: fix ROC abort flow interruption in mt7921_roc_work (git- fixes). * wifi: mt76: mt7921: Reset ampdu_state state in case of failure in mt76_connac2_tx_check_aggr() (git-fixes). * wifi: mt76: mt7925: fix incorrect length field in txpower command (git- fixes). * wifi: mt76: mt7996: fix FCS error flag check in RX descriptor (git-fixes). * wifi: mt76: mt7996: fix struct mt7996_mcu_uni_event (git-fixes). * wifi: mwifiex: Fix memory leak in mwifiex_11n_aggregate_pkt() (git-fixes). * wifi: nl80211: fix NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST usage (git- fixes). * wifi: nl80211: require admin perm on SET_PMK / DEL_PMK (git-fixes). * wifi: rsi: fix kthread lifetime race between self-exit and external-stop (git-fixes). * wifi: rt2x00usb: fix devres lifetime (git-fixes). * wifi: rtlwifi: pci: fix possible use-after-free caused by unfinished irq_prepare_bcn_tasklet (git-fixes). * wifi: rtw88: check for PCI upstream bridge existence (git-fixes). * wifi: rtw88: fix device leak on probe failure (git-fixes). * wifi: rtw89: phy: fix uninitialized variable access in rtw89_phy_cfo_set_crystal_cap() (git-fixes). * wifi: wl1251: validate packet IDs before indexing tx_frames (stable-fixes). * workqueue: Break up enum definitions and give names to the types (bsc#1260522). * workqueue: Clean up enum work_bits and related constants (bsc#1260522). * workqueue: Factor out work_grab_pending() from __cancel_work_sync() (bsc#1260522). * workqueue: Fix UBSAN 'subtraction overflow' error in shift_and_mask() (bsc#1260522). * workqueue: Implement disable/enable for (delayed) work items (bsc#1260522). * workqueue: Introduce work_cancel_flags (bsc#1260522). * workqueue: Make @flags handling consistent across set_work_data() and friends (bsc#1260522). * workqueue: Preserve OFFQ bits in cancel[_sync] paths (bsc#1260522). * workqueue: Rename __cancel_work_timer() to __cancel_timer_sync() (bsc#1260522). * workqueue: Reorganize flush and cancel[_sync] functions (bsc#1260522). * x86/boot/64: Clear most of CR4 in startup_64(), except PAE, MCE and LA57 (git-fixes). * x86/boot/sev: Avoid shared GHCB page for early memory acceptance (git- fixes). * x86/boot: Don't add the EFI stub to targets, again (git-fixes). * x86/boot: Fix page table access in 5-level to 4-level paging transition (git-fixes). * X.509: Fix out-of-bounds access when parsing extensions (git-fixes). * Xarray: do not return sibling entries from xas_find_marked() (bsc#1263815). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro Extras 6.1 zypper in -t patch SUSE-SLE-Micro-Extras-6.1-kernel-435=1 ## Package List: * SUSE Linux Micro Extras 6.1 (aarch64 ppc64le s390x x86_64) * kernel-syms-6.4.0-46.1 * kernel-obs-build-6.4.0-46.1 * kernel-obs-build-debugsource-6.4.0-46.1 * SUSE Linux Micro Extras 6.1 (nosrc) * kernel-64kb-6.4.0-46.1 * SUSE Linux Micro Extras 6.1 (aarch64) * kernel-64kb-devel-6.4.0-46.1 * kernel-64kb-debugsource-6.4.0-46.1 ## References: * https://www.suse.com/security/cve/CVE-2023-2058.html * https://www.suse.com/security/cve/CVE-2025-40219.html * https://www.suse.com/security/cve/CVE-2025-71183.html * https://www.suse.com/security/cve/CVE-2025-71238.html * https://www.suse.com/security/cve/CVE-2026-23168.html * https://www.suse.com/security/cve/CVE-2026-23209.html * https://www.suse.com/security/cve/CVE-2026-23236.html * https://www.suse.com/security/cve/CVE-2026-23237.html * https://www.suse.com/security/cve/CVE-2026-23239.html * https://www.suse.com/security/cve/CVE-2026-23240.html * https://www.suse.com/security/cve/CVE-2026-23245.html * https://www.suse.com/security/cve/CVE-2026-23246.html * https://www.suse.com/security/cve/CVE-2026-23253.html * https://www.suse.com/security/cve/CVE-2026-23260.html * https://www.suse.com/security/cve/CVE-2026-23264.html * https://www.suse.com/security/cve/CVE-2026-23266.html * https://www.suse.com/security/cve/CVE-2026-23268.html * https://www.suse.com/security/cve/CVE-2026-23269.html * https://www.suse.com/security/cve/CVE-2026-23271.html * https://www.suse.com/security/cve/CVE-2026-23273.html * https://www.suse.com/security/cve/CVE-2026-23276.html * https://www.suse.com/security/cve/CVE-2026-23279.html * https://www.suse.com/security/cve/CVE-2026-23290.html * https://www.suse.com/security/cve/CVE-2026-23291.html * https://www.suse.com/security/cve/CVE-2026-23298.html * https://www.suse.com/security/cve/CVE-2026-23300.html * https://www.suse.com/security/cve/CVE-2026-23306.html * https://www.suse.com/security/cve/CVE-2026-23307.html * https://www.suse.com/security/cve/CVE-2026-23308.html * https://www.suse.com/security/cve/CVE-2026-23312.html * https://www.suse.com/security/cve/CVE-2026-23313.html * https://www.suse.com/security/cve/CVE-2026-23315.html * https://www.suse.com/security/cve/CVE-2026-23318.html * https://www.suse.com/security/cve/CVE-2026-23321.html * https://www.suse.com/security/cve/CVE-2026-23324.html * https://www.suse.com/security/cve/CVE-2026-23325.html * https://www.suse.com/security/cve/CVE-2026-23336.html * https://www.suse.com/security/cve/CVE-2026-23339.html * https://www.suse.com/security/cve/CVE-2026-23340.html * https://www.suse.com/security/cve/CVE-2026-23346.html * https://www.suse.com/security/cve/CVE-2026-23351.html * https://www.suse.com/security/cve/CVE-2026-23357.html * https://www.suse.com/security/cve/CVE-2026-23362.html * https://www.suse.com/security/cve/CVE-2026-23363.html * https://www.suse.com/security/cve/CVE-2026-23365.html * https://www.suse.com/security/cve/CVE-2026-23367.html * https://www.suse.com/security/cve/CVE-2026-23368.html * https://www.suse.com/security/cve/CVE-2026-23370.html * https://www.suse.com/security/cve/CVE-2026-23372.html * https://www.suse.com/security/cve/CVE-2026-23373.html * https://www.suse.com/security/cve/CVE-2026-23374.html * https://www.suse.com/security/cve/CVE-2026-23378.html * https://www.suse.com/security/cve/CVE-2026-23382.html * https://www.suse.com/security/cve/CVE-2026-23391.html * https://www.suse.com/security/cve/CVE-2026-23392.html * https://www.suse.com/security/cve/CVE-2026-23393.html * https://www.suse.com/security/cve/CVE-2026-23396.html * https://www.suse.com/security/cve/CVE-2026-23397.html * https://www.suse.com/security/cve/CVE-2026-23399.html * https://www.suse.com/security/cve/CVE-2026-23403.html * https://www.suse.com/security/cve/CVE-2026-23404.html * https://www.suse.com/security/cve/CVE-2026-23405.html * https://www.suse.com/security/cve/CVE-2026-23406.html * https://www.suse.com/security/cve/CVE-2026-23407.html * https://www.suse.com/security/cve/CVE-2026-23408.html * https://www.suse.com/security/cve/CVE-2026-23409.html * https://www.suse.com/security/cve/CVE-2026-23410.html * https://www.suse.com/security/cve/CVE-2026-23411.html * https://www.suse.com/security/cve/CVE-2026-23420.html * https://www.suse.com/security/cve/CVE-2026-23426.html * https://www.suse.com/security/cve/CVE-2026-23434.html * https://www.suse.com/security/cve/CVE-2026-23440.html * https://www.suse.com/security/cve/CVE-2026-23441.html * https://www.suse.com/security/cve/CVE-2026-23442.html * https://www.suse.com/security/cve/CVE-2026-23443.html * https://www.suse.com/security/cve/CVE-2026-23446.html * https://www.suse.com/security/cve/CVE-2026-23447.html * https://www.suse.com/security/cve/CVE-2026-23448.html * https://www.suse.com/security/cve/CVE-2026-23449.html * https://www.suse.com/security/cve/CVE-2026-23450.html * https://www.suse.com/security/cve/CVE-2026-23452.html * https://www.suse.com/security/cve/CVE-2026-23455.html * https://www.suse.com/security/cve/CVE-2026-23456.html * https://www.suse.com/security/cve/CVE-2026-23457.html * https://www.suse.com/security/cve/CVE-2026-23458.html * https://www.suse.com/security/cve/CVE-2026-23460.html * https://www.suse.com/security/cve/CVE-2026-23461.html * https://www.suse.com/security/cve/CVE-2026-23462.html * https://www.suse.com/security/cve/CVE-2026-23463.html * https://www.suse.com/security/cve/CVE-2026-23465.html * https://www.suse.com/security/cve/CVE-2026-23468.html * https://www.suse.com/security/cve/CVE-2026-23472.html * https://www.suse.com/security/cve/CVE-2026-23473.html * https://www.suse.com/security/cve/CVE-2026-23474.html * https://www.suse.com/security/cve/CVE-2026-23475.html * https://www.suse.com/security/cve/CVE-2026-31389.html * https://www.suse.com/security/cve/CVE-2026-31393.html * https://www.suse.com/security/cve/CVE-2026-31400.html * https://www.suse.com/security/cve/CVE-2026-31402.html * https://www.suse.com/security/cve/CVE-2026-31403.html * https://www.suse.com/security/cve/CVE-2026-31404.html * https://www.suse.com/security/cve/CVE-2026-31405.html * https://www.suse.com/security/cve/CVE-2026-31407.html * https://www.suse.com/security/cve/CVE-2026-31408.html * https://www.suse.com/security/cve/CVE-2026-31411.html * https://www.suse.com/security/cve/CVE-2026-31412.html * https://www.suse.com/security/cve/CVE-2026-31415.html * https://www.suse.com/security/cve/CVE-2026-31416.html * https://www.suse.com/security/cve/CVE-2026-31417.html * https://www.suse.com/security/cve/CVE-2026-31420.html * https://www.suse.com/security/cve/CVE-2026-31421.html * https://www.suse.com/security/cve/CVE-2026-31422.html * https://www.suse.com/security/cve/CVE-2026-31423.html * https://www.suse.com/security/cve/CVE-2026-31424.html * https://www.suse.com/security/cve/CVE-2026-31425.html * https://www.suse.com/security/cve/CVE-2026-31426.html * https://www.suse.com/security/cve/CVE-2026-31427.html * https://www.suse.com/security/cve/CVE-2026-31428.html * https://www.suse.com/security/cve/CVE-2026-31436.html * https://www.suse.com/security/cve/CVE-2026-31449.html * https://www.suse.com/security/cve/CVE-2026-31470.html * https://www.suse.com/security/cve/CVE-2026-31488.html * https://www.suse.com/security/cve/CVE-2026-31494.html * https://www.suse.com/security/cve/CVE-2026-31496.html * https://www.suse.com/security/cve/CVE-2026-31504.html * https://www.suse.com/security/cve/CVE-2026-31505.html * https://www.suse.com/security/cve/CVE-2026-31507.html * https://www.suse.com/security/cve/CVE-2026-31512.html * https://www.suse.com/security/cve/CVE-2026-31515.html * https://www.suse.com/security/cve/CVE-2026-31519.html * https://www.suse.com/security/cve/CVE-2026-31525.html * https://www.suse.com/security/cve/CVE-2026-31528.html * https://www.suse.com/security/cve/CVE-2026-31533.html * https://www.suse.com/security/cve/CVE-2026-31550.html * https://www.suse.com/security/cve/CVE-2026-31565.html * https://www.suse.com/security/cve/CVE-2026-31570.html * https://www.suse.com/security/cve/CVE-2026-31586.html * https://www.suse.com/security/cve/CVE-2026-31588.html * https://www.suse.com/security/cve/CVE-2026-31602.html * https://www.suse.com/security/cve/CVE-2026-31607.html * https://www.suse.com/security/cve/CVE-2026-31622.html * https://www.suse.com/security/cve/CVE-2026-31649.html * https://www.suse.com/security/cve/CVE-2026-31656.html * https://www.suse.com/security/cve/CVE-2026-31662.html * https://www.suse.com/security/cve/CVE-2026-31668.html * https://www.suse.com/security/cve/CVE-2026-31669.html * https://www.suse.com/security/cve/CVE-2026-31675.html * https://www.suse.com/security/cve/CVE-2026-31679.html * https://www.suse.com/security/cve/CVE-2026-31681.html * https://www.suse.com/security/cve/CVE-2026-31682.html * https://www.suse.com/security/cve/CVE-2026-31684.html * https://www.suse.com/security/cve/CVE-2026-31685.html * https://www.suse.com/security/cve/CVE-2026-31694.html * https://www.suse.com/security/cve/CVE-2026-31700.html * https://www.suse.com/security/cve/CVE-2026-31738.html * https://www.suse.com/security/cve/CVE-2026-31787.html * https://www.suse.com/security/cve/CVE-2026-43009.html * https://www.suse.com/security/cve/CVE-2026-43025.html * https://www.suse.com/security/cve/CVE-2026-43027.html * https://www.suse.com/security/cve/CVE-2026-43037.html * https://www.suse.com/security/cve/CVE-2026-43038.html * https://www.suse.com/security/cve/CVE-2026-43044.html * https://www.suse.com/security/cve/CVE-2026-43050.html * https://www.suse.com/security/cve/CVE-2026-43060.html * https://www.suse.com/security/cve/CVE-2026-43088.html * https://www.suse.com/security/cve/CVE-2026-43110.html * https://www.suse.com/security/cve/CVE-2026-43120.html * https://www.suse.com/security/cve/CVE-2026-43126.html * https://www.suse.com/security/cve/CVE-2026-43190.html * https://www.suse.com/security/cve/CVE-2026-43214.html * https://www.suse.com/security/cve/CVE-2026-43265.html * https://www.suse.com/security/cve/CVE-2026-43329.html * https://www.suse.com/security/cve/CVE-2026-43330.html * https://www.suse.com/security/cve/CVE-2026-43334.html * https://www.suse.com/security/cve/CVE-2026-43365.html * https://www.suse.com/security/cve/CVE-2026-43366.html * https://www.suse.com/security/cve/CVE-2026-43419.html * https://www.suse.com/security/cve/CVE-2026-43437.html * https://www.suse.com/security/cve/CVE-2026-43441.html * https://www.suse.com/security/cve/CVE-2026-43494.html * https://www.suse.com/security/cve/CVE-2026-43503.html * https://bugzilla.suse.com/show_bug.cgi?id=1215199 * https://bugzilla.suse.com/show_bug.cgi?id=1234634 * https://bugzilla.suse.com/show_bug.cgi?id=1243603 * https://bugzilla.suse.com/show_bug.cgi?id=1248754 * https://bugzilla.suse.com/show_bug.cgi?id=1253122 * https://bugzilla.suse.com/show_bug.cgi?id=1253754 * https://bugzilla.suse.com/show_bug.cgi?id=1254518 * https://bugzilla.suse.com/show_bug.cgi?id=1256863 * https://bugzilla.suse.com/show_bug.cgi?id=1257631 * https://bugzilla.suse.com/show_bug.cgi?id=1258518 * https://bugzilla.suse.com/show_bug.cgi?id=1258718 * https://bugzilla.suse.com/show_bug.cgi?id=1258826 * https://bugzilla.suse.com/show_bug.cgi?id=1258849 * https://bugzilla.suse.com/show_bug.cgi?id=1258850 * https://bugzilla.suse.com/show_bug.cgi?id=1258854 * https://bugzilla.suse.com/show_bug.cgi?id=1258855 * https://bugzilla.suse.com/show_bug.cgi?id=1258856 * https://bugzilla.suse.com/show_bug.cgi?id=1258857 * https://bugzilla.suse.com/show_bug.cgi?id=1258961 * https://bugzilla.suse.com/show_bug.cgi?id=1259186 * https://bugzilla.suse.com/show_bug.cgi?id=1259199 * https://bugzilla.suse.com/show_bug.cgi?id=1259222 * https://bugzilla.suse.com/show_bug.cgi?id=1259484 * https://bugzilla.suse.com/show_bug.cgi?id=1259485 * https://bugzilla.suse.com/show_bug.cgi?id=1259535 * https://bugzilla.suse.com/show_bug.cgi?id=1259799 * https://bugzilla.suse.com/show_bug.cgi?id=1259806 * https://bugzilla.suse.com/show_bug.cgi?id=1259857 * https://bugzilla.suse.com/show_bug.cgi?id=1259868 * https://bugzilla.suse.com/show_bug.cgi?id=1259869 * https://bugzilla.suse.com/show_bug.cgi?id=1259873 * https://bugzilla.suse.com/show_bug.cgi?id=1259878 * https://bugzilla.suse.com/show_bug.cgi?id=1260010 * https://bugzilla.suse.com/show_bug.cgi?id=1260012 * https://bugzilla.suse.com/show_bug.cgi?id=1260018 * https://bugzilla.suse.com/show_bug.cgi?id=1260468 * https://bugzilla.suse.com/show_bug.cgi?id=1260483 * https://bugzilla.suse.com/show_bug.cgi?id=1260484 * https://bugzilla.suse.com/show_bug.cgi?id=1260485 * https://bugzilla.suse.com/show_bug.cgi?id=1260489 * https://bugzilla.suse.com/show_bug.cgi?id=1260501 * https://bugzilla.suse.com/show_bug.cgi?id=1260504 * https://bugzilla.suse.com/show_bug.cgi?id=1260505 * https://bugzilla.suse.com/show_bug.cgi?id=1260507 * https://bugzilla.suse.com/show_bug.cgi?id=1260522 * https://bugzilla.suse.com/show_bug.cgi?id=1260523 * https://bugzilla.suse.com/show_bug.cgi?id=1260526 * https://bugzilla.suse.com/show_bug.cgi?id=1260528 * https://bugzilla.suse.com/show_bug.cgi?id=1260529 * https://bugzilla.suse.com/show_bug.cgi?id=1260530 * https://bugzilla.suse.com/show_bug.cgi?id=1260531 * https://bugzilla.suse.com/show_bug.cgi?id=1260532 * https://bugzilla.suse.com/show_bug.cgi?id=1260533 * https://bugzilla.suse.com/show_bug.cgi?id=1260536 * https://bugzilla.suse.com/show_bug.cgi?id=1260537 * https://bugzilla.suse.com/show_bug.cgi?id=1260538 * https://bugzilla.suse.com/show_bug.cgi?id=1260541 * https://bugzilla.suse.com/show_bug.cgi?id=1260546 * https://bugzilla.suse.com/show_bug.cgi?id=1260549 * https://bugzilla.suse.com/show_bug.cgi?id=1260551 * https://bugzilla.suse.com/show_bug.cgi?id=1260552 * https://bugzilla.suse.com/show_bug.cgi?id=1260553 * https://bugzilla.suse.com/show_bug.cgi?id=1260555 * https://bugzilla.suse.com/show_bug.cgi?id=1260561 * https://bugzilla.suse.com/show_bug.cgi?id=1260566 * https://bugzilla.suse.com/show_bug.cgi?id=1260572 * https://bugzilla.suse.com/show_bug.cgi?id=1260581 * https://bugzilla.suse.com/show_bug.cgi?id=1260728 * https://bugzilla.suse.com/show_bug.cgi?id=1260729 * https://bugzilla.suse.com/show_bug.cgi?id=1260731 * https://bugzilla.suse.com/show_bug.cgi?id=1260800 * https://bugzilla.suse.com/show_bug.cgi?id=1260811 * https://bugzilla.suse.com/show_bug.cgi?id=1261020 * https://bugzilla.suse.com/show_bug.cgi?id=1261287 * https://bugzilla.suse.com/show_bug.cgi?id=1261295 * https://bugzilla.suse.com/show_bug.cgi?id=1261348 * https://bugzilla.suse.com/show_bug.cgi?id=1261503 * https://bugzilla.suse.com/show_bug.cgi?id=1261504 * https://bugzilla.suse.com/show_bug.cgi?id=1261581 * https://bugzilla.suse.com/show_bug.cgi?id=1261582 * https://bugzilla.suse.com/show_bug.cgi?id=1261584 * https://bugzilla.suse.com/show_bug.cgi?id=1261601 * https://bugzilla.suse.com/show_bug.cgi?id=1261602 * https://bugzilla.suse.com/show_bug.cgi?id=1261618 * https://bugzilla.suse.com/show_bug.cgi?id=1261628 * https://bugzilla.suse.com/show_bug.cgi?id=1261632 * https://bugzilla.suse.com/show_bug.cgi?id=1261636 * https://bugzilla.suse.com/show_bug.cgi?id=1261638 * https://bugzilla.suse.com/show_bug.cgi?id=1261641 * https://bugzilla.suse.com/show_bug.cgi?id=1261644 * https://bugzilla.suse.com/show_bug.cgi?id=1261645 * https://bugzilla.suse.com/show_bug.cgi?id=1261648 * https://bugzilla.suse.com/show_bug.cgi?id=1261679 * https://bugzilla.suse.com/show_bug.cgi?id=1261685 * https://bugzilla.suse.com/show_bug.cgi?id=1261686 * https://bugzilla.suse.com/show_bug.cgi?id=1261687 * https://bugzilla.suse.com/show_bug.cgi?id=1261692 * https://bugzilla.suse.com/show_bug.cgi?id=1261694 * https://bugzilla.suse.com/show_bug.cgi?id=1261700 * https://bugzilla.suse.com/show_bug.cgi?id=1261703 * https://bugzilla.suse.com/show_bug.cgi?id=1261707 * https://bugzilla.suse.com/show_bug.cgi?id=1261710 * https://bugzilla.suse.com/show_bug.cgi?id=1261713 * https://bugzilla.suse.com/show_bug.cgi?id=1261719 * https://bugzilla.suse.com/show_bug.cgi?id=1261750 * https://bugzilla.suse.com/show_bug.cgi?id=1261751 * https://bugzilla.suse.com/show_bug.cgi?id=1261752 * https://bugzilla.suse.com/show_bug.cgi?id=1261768 * https://bugzilla.suse.com/show_bug.cgi?id=1261778 * https://bugzilla.suse.com/show_bug.cgi?id=1261779 * https://bugzilla.suse.com/show_bug.cgi?id=1261781 * https://bugzilla.suse.com/show_bug.cgi?id=1261789 * https://bugzilla.suse.com/show_bug.cgi?id=1261796 * https://bugzilla.suse.com/show_bug.cgi?id=1261797 * https://bugzilla.suse.com/show_bug.cgi?id=1261896 * https://bugzilla.suse.com/show_bug.cgi?id=1262020 * https://bugzilla.suse.com/show_bug.cgi?id=1262053 * https://bugzilla.suse.com/show_bug.cgi?id=1262054 * https://bugzilla.suse.com/show_bug.cgi?id=1262055 * https://bugzilla.suse.com/show_bug.cgi?id=1262061 * https://bugzilla.suse.com/show_bug.cgi?id=1262063 * https://bugzilla.suse.com/show_bug.cgi?id=1262074 * https://bugzilla.suse.com/show_bug.cgi?id=1262078 * https://bugzilla.suse.com/show_bug.cgi?id=1262086 * https://bugzilla.suse.com/show_bug.cgi?id=1262087 * https://bugzilla.suse.com/show_bug.cgi?id=1262099 * https://bugzilla.suse.com/show_bug.cgi?id=1262100 * https://bugzilla.suse.com/show_bug.cgi?id=1262101 * https://bugzilla.suse.com/show_bug.cgi?id=1262179 * https://bugzilla.suse.com/show_bug.cgi?id=1262181 * https://bugzilla.suse.com/show_bug.cgi?id=1262602 * https://bugzilla.suse.com/show_bug.cgi?id=1262616 * https://bugzilla.suse.com/show_bug.cgi?id=1262665 * https://bugzilla.suse.com/show_bug.cgi?id=1262671 * https://bugzilla.suse.com/show_bug.cgi?id=1262673 * https://bugzilla.suse.com/show_bug.cgi?id=1262725 * https://bugzilla.suse.com/show_bug.cgi?id=1262731 * https://bugzilla.suse.com/show_bug.cgi?id=1262734 * https://bugzilla.suse.com/show_bug.cgi?id=1262746 * https://bugzilla.suse.com/show_bug.cgi?id=1262752 * https://bugzilla.suse.com/show_bug.cgi?id=1262758 * https://bugzilla.suse.com/show_bug.cgi?id=1263001 * https://bugzilla.suse.com/show_bug.cgi?id=1263012 * https://bugzilla.suse.com/show_bug.cgi?id=1263064 * https://bugzilla.suse.com/show_bug.cgi?id=1263065 * https://bugzilla.suse.com/show_bug.cgi?id=1263085 * https://bugzilla.suse.com/show_bug.cgi?id=1263093 * https://bugzilla.suse.com/show_bug.cgi?id=1263095 * https://bugzilla.suse.com/show_bug.cgi?id=1263104 * https://bugzilla.suse.com/show_bug.cgi?id=1263131 * https://bugzilla.suse.com/show_bug.cgi?id=1263140 * https://bugzilla.suse.com/show_bug.cgi?id=1263141 * https://bugzilla.suse.com/show_bug.cgi?id=1263149 * https://bugzilla.suse.com/show_bug.cgi?id=1263165 * https://bugzilla.suse.com/show_bug.cgi?id=1263170 * https://bugzilla.suse.com/show_bug.cgi?id=1263176 * https://bugzilla.suse.com/show_bug.cgi?id=1263556 * https://bugzilla.suse.com/show_bug.cgi?id=1263582 * https://bugzilla.suse.com/show_bug.cgi?id=1263592 * https://bugzilla.suse.com/show_bug.cgi?id=1263593 * https://bugzilla.suse.com/show_bug.cgi?id=1263595 * https://bugzilla.suse.com/show_bug.cgi?id=1263596 * https://bugzilla.suse.com/show_bug.cgi?id=1263600 * https://bugzilla.suse.com/show_bug.cgi?id=1263668 * https://bugzilla.suse.com/show_bug.cgi?id=1263723 * https://bugzilla.suse.com/show_bug.cgi?id=1263797 * https://bugzilla.suse.com/show_bug.cgi?id=1263815 * https://bugzilla.suse.com/show_bug.cgi?id=1263882 * https://bugzilla.suse.com/show_bug.cgi?id=1263901 * https://bugzilla.suse.com/show_bug.cgi?id=1263931 * https://bugzilla.suse.com/show_bug.cgi?id=1263933 * https://bugzilla.suse.com/show_bug.cgi?id=1263995 * https://bugzilla.suse.com/show_bug.cgi?id=1264014 * https://bugzilla.suse.com/show_bug.cgi?id=1264059 * https://bugzilla.suse.com/show_bug.cgi?id=1264082 * https://bugzilla.suse.com/show_bug.cgi?id=1264087 * https://bugzilla.suse.com/show_bug.cgi?id=1264097 * https://bugzilla.suse.com/show_bug.cgi?id=1264183 * https://bugzilla.suse.com/show_bug.cgi?id=1264427 * https://bugzilla.suse.com/show_bug.cgi?id=1264469 * https://bugzilla.suse.com/show_bug.cgi?id=1264482 * https://bugzilla.suse.com/show_bug.cgi?id=1264634 * https://bugzilla.suse.com/show_bug.cgi?id=1264651 * https://bugzilla.suse.com/show_bug.cgi?id=1264661 * https://bugzilla.suse.com/show_bug.cgi?id=1264674 * https://bugzilla.suse.com/show_bug.cgi?id=1264801 * https://bugzilla.suse.com/show_bug.cgi?id=1264848 * https://bugzilla.suse.com/show_bug.cgi?id=1265085 * https://bugzilla.suse.com/show_bug.cgi?id=1265090 * https://bugzilla.suse.com/show_bug.cgi?id=1265116 * https://bugzilla.suse.com/show_bug.cgi?id=1265119 * https://bugzilla.suse.com/show_bug.cgi?id=1265126 * https://bugzilla.suse.com/show_bug.cgi?id=1265144 * https://bugzilla.suse.com/show_bug.cgi?id=1265308 * https://bugzilla.suse.com/show_bug.cgi?id=1265421 * https://bugzilla.suse.com/show_bug.cgi?id=1265449 * https://bugzilla.suse.com/show_bug.cgi?id=1265456 * https://bugzilla.suse.com/show_bug.cgi?id=1265626 * https://bugzilla.suse.com/show_bug.cgi?id=1265846 * https://bugzilla.suse.com/show_bug.cgi?id=1265960 * https://jira.suse.com/browse/PED-7249 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:35:27 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:35:27 -0000 Subject: SUSE-SU-2026:21946-1: important: Security update for libsoup Message-ID: <178041812729.42.8235970949723046734@b0da085613fb> # Security update for libsoup Announcement ID: SUSE-SU-2026:21946-1 Release Date: 2026-06-01T12:59:52Z Rating: important References: * bsc#1259767 Cross-References: * CVE-2026-4271 CVSS scores: * CVE-2026-4271 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-4271 ( SUSE ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-4271 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-4271 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Micro 6.0 An update that solves one vulnerability can now be installed. ## Description: This update for libsoup fixes the following issue * CVE-2026-4271: use-after-free in the HTTP/2 server when user signal handlers disconnect connections during callback execution (bsc#1259767). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-737=1 ## Package List: * SUSE Linux Micro 6.0 (aarch64 s390x x86_64) * libsoup-3_0-0-debuginfo-3.4.2-15.1 * libsoup-debugsource-3.4.2-15.1 * libsoup-3_0-0-3.4.2-15.1 ## References: * https://www.suse.com/security/cve/CVE-2026-4271.html * https://bugzilla.suse.com/show_bug.cgi?id=1259767 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:35:36 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:35:36 -0000 Subject: SUSE-SU-2026:21945-1: critical: Security update for nvidia-open-driver-G06-signed Message-ID: <178041813603.42.5136415899938820042@b0da085613fb> # Security update for nvidia-open-driver-G06-signed Announcement ID: SUSE-SU-2026:21945-1 Release Date: 2026-06-01T12:51:52Z Rating: critical References: * bsc#1212841 * bsc#1259719 * bsc#1259740 * bsc#1262749 * bsc#1263834 * jsc#PED-15826 Cross-References: * CVE-2025-33221 * CVE-2026-24182 * CVE-2026-24187 * CVE-2026-24192 * CVE-2026-24194 * CVE-2026-24195 * CVE-2026-24196 * CVE-2026-24197 * CVE-2026-24198 * CVE-2026-24199 CVSS scores: * CVE-2025-33221 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-24182 ( NVD ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H * CVE-2026-24187 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-24192 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-24194 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-24195 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H * CVE-2026-24196 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-24197 ( NVD ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H * CVE-2026-24198 ( NVD ): 5.6 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H * CVE-2026-24199 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Micro 6.0 An update that solves 10 vulnerabilities and contains one feature can now be installed. ## Description: This update for nvidia-open-driver-G06-signed fixes the following issues: * Get rid of "'naked' return found in MITIGATION_RETHUNK build" objtool warnings (bsc#1212841, bsc#1263834) * update CUDA variant to 580.159.03 * update non-CUDA variant to 580.159.03 (bsc#1262749) * Fixes CVEs: CVE-2025-33221, CVE-2026-24187, CVE-2026-24182, CVE-2026-24192, CVE-2026-24194, CVE-2026-24195, CVE-2026-24196, CVE-2026-24197, CVE-2026-24198, CVE-2026-24199 * add 'Provides: open-driver-non-cuda-variant = %version' for non-CUDA variant to be able to distinguish between both variants; to be used by nvidia-open- driver-G06-signed-kmp-meta for TW ... (bsc#1259740) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-kernel-462=1 ## Package List: * SUSE Linux Micro 6.0 (aarch64 x86_64) * nvidia-open-driver-G06-signed-cuda-debugsource-580.159.03-1.1 * nvidia-open-driver-G06-signed-cuda-kmp-default-580.159.03_k6.4.0_46-1.1 * nvidia-open-driver-G06-signed-kmp-default-580.159.03_k6.4.0_46-1.1 * nvidia-open-driver-G06-signed-cuda-kmp-default-debuginfo-580.159.03_k6.4.0_46-1.1 * nvidia-open-driver-G06-signed-debugsource-580.159.03-1.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-580.159.03_k6.4.0_46-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-33221.html * https://www.suse.com/security/cve/CVE-2026-24182.html * https://www.suse.com/security/cve/CVE-2026-24187.html * https://www.suse.com/security/cve/CVE-2026-24192.html * https://www.suse.com/security/cve/CVE-2026-24194.html * https://www.suse.com/security/cve/CVE-2026-24195.html * https://www.suse.com/security/cve/CVE-2026-24196.html * https://www.suse.com/security/cve/CVE-2026-24197.html * https://www.suse.com/security/cve/CVE-2026-24198.html * https://www.suse.com/security/cve/CVE-2026-24199.html * https://bugzilla.suse.com/show_bug.cgi?id=1212841 * https://bugzilla.suse.com/show_bug.cgi?id=1259719 * https://bugzilla.suse.com/show_bug.cgi?id=1259740 * https://bugzilla.suse.com/show_bug.cgi?id=1262749 * https://bugzilla.suse.com/show_bug.cgi?id=1263834 * https://jira.suse.com/browse/PED-15826 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:35:46 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:35:46 -0000 Subject: SUSE-SU-2026:21944-1: important: Security update for vim Message-ID: <178041814603.42.5979229160944828918@b0da085613fb> # Security update for vim Announcement ID: SUSE-SU-2026:21944-1 Release Date: 2026-06-01T10:57:05Z Rating: important References: * bsc#1262395 * bsc#1264706 * bsc#1264707 * bsc#1264708 * bsc#1265349 * bsc#1265360 Cross-References: * CVE-2026-42307 * CVE-2026-43961 * CVE-2026-44656 * CVE-2026-45130 * CVE-2026-46483 CVSS scores: * CVE-2026-42307 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N * CVE-2026-43961 ( SUSE ): 5.4 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43961 ( SUSE ): 4.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L * CVE-2026-44656 ( SUSE ): 4.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-44656 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N * CVE-2026-44656 ( NVD ): 4.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-44656 ( NVD ): 5.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L * CVE-2026-45130 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H * CVE-2026-45130 ( NVD ): 6.6 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H * CVE-2026-45130 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-46483 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46483 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-46483 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-46483 ( NVD ): 3.6 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N Affected Products: * SUSE Linux Micro 6.0 An update that solves five vulnerabilities and has one fix can now be installed. ## Description: This update for vim fixes the following issues * CVE-2026-42307: Prior to version 9.2.0383, an OS command injection vulnerability exists in the netrw standard plugin bundled with Vim (bsc#1264706). * CVE-2026-43961: Vimscript Code Injection in netrw NetrwMarkFile() via crafted filename (bsc#1265349). * CVE-2026-44656: Prior to version 9.2.0435, an OS command injection vulnerability exists in Vim's: find command-line completion (bsc#1264707). * CVE-2026-45130: Prior to version 9.2.0450, a heap buffer overflow exists in read_compound() in src/spellfile.c when loading a crafted spell file (.spl) with UTF-8 encoding active (bsc#1264708). * CVE-2026-46483: command injection via `tar#Vimuntar()` in `runtime/autoload/tar.vim` when decompressing `.tgz` archives on Unix-like systems (bsc#1265360). Changes for vim: * Update to v9.2.0530. * Fix for incorrectly detecting scientific parameter files as bitbake recipies. (bsc#1262395) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-736=1 ## Package List: * SUSE Linux Micro 6.0 (noarch) * vim-data-common-9.2.0530-1.1 * SUSE Linux Micro 6.0 (aarch64 s390x x86_64) * vim-debugsource-9.2.0530-1.1 * vim-small-debuginfo-9.2.0530-1.1 * vim-small-9.2.0530-1.1 ## References: * https://www.suse.com/security/cve/CVE-2026-42307.html * https://www.suse.com/security/cve/CVE-2026-43961.html * https://www.suse.com/security/cve/CVE-2026-44656.html * https://www.suse.com/security/cve/CVE-2026-45130.html * https://www.suse.com/security/cve/CVE-2026-46483.html * https://bugzilla.suse.com/show_bug.cgi?id=1262395 * https://bugzilla.suse.com/show_bug.cgi?id=1264706 * https://bugzilla.suse.com/show_bug.cgi?id=1264707 * https://bugzilla.suse.com/show_bug.cgi?id=1264708 * https://bugzilla.suse.com/show_bug.cgi?id=1265349 * https://bugzilla.suse.com/show_bug.cgi?id=1265360 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:35:49 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:35:49 -0000 Subject: SUSE-SU-2026:21943-1: important: Security update for busybox Message-ID: <178041814907.42.11848744784983860631@b0da085613fb> # Security update for busybox Announcement ID: SUSE-SU-2026:21943-1 Release Date: 2026-06-01T10:57:05Z Rating: important References: * bsc#1263989 Cross-References: * CVE-2026-29004 CVSS scores: * CVE-2026-29004 ( SUSE ): 7.2 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-29004 ( SUSE ): 8.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H * CVE-2026-29004 ( NVD ): 7.2 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-29004 ( NVD ): 8.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H Affected Products: * SUSE Linux Micro 6.0 An update that solves one vulnerability can now be installed. ## Description: This update for busybox fixes the following issue * CVE-2026-29004: a crafted DHCPv6 response can lead to a heap buffer overflow in the DHCPv6 client (bsc#1263989). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-735=1 ## Package List: * SUSE Linux Micro 6.0 (aarch64 s390x x86_64) * busybox-1.36.1-4.1 ## References: * https://www.suse.com/security/cve/CVE-2026-29004.html * https://bugzilla.suse.com/show_bug.cgi?id=1263989 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:36:01 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:36:01 -0000 Subject: SUSE-SU-2026:21942-1: important: Security update for the Linux Kernel RT (Live Patch 7 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041816107.42.16506370375486087857@b0da085613fb> # Security update for the Linux Kernel RT (Live Patch 7 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21942-1 Release Date: 2026-06-01T09:32:33Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.0 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-30.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-kernel-454=1 ## Package List: * SUSE Linux Micro 6.0 (x86_64) * kernel-livepatch-6_4_0-30-rt-debuginfo-19-1.3 * kernel-livepatch-MICRO-6-0-RT_Update_7-debugsource-19-1.3 * kernel-livepatch-6_4_0-30-rt-19-1.3 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:36:07 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:36:07 -0000 Subject: SUSE-SU-2026:21941-1: important: Security update for the Linux Kernel (Live Patch 18 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041816767.42.4966280772559956525@b0da085613fb> # Security update for the Linux Kernel (Live Patch 18 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21941-1 Release Date: 2026-06-01T09:26:54Z Rating: important References: * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.0 An update that solves three vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-41.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-kernel-461=1 ## Package List: * SUSE Linux Micro 6.0 (s390x x86_64) * kernel-livepatch-6_4_0-41-default-debuginfo-4-1.1 * kernel-livepatch-MICRO-6-0_Update_18-debugsource-4-1.1 * kernel-livepatch-6_4_0-41-default-4-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:36:17 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:36:17 -0000 Subject: SUSE-SU-2026:21940-1: important: Security update for the Linux Kernel (Live Patch 17 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041817738.42.8802448414540121702@b0da085613fb> # Security update for the Linux Kernel (Live Patch 17 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21940-1 Release Date: 2026-06-01T09:26:54Z Rating: important References: * bsc#1259798 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.0 An update that solves five vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-40.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-kernel-460=1 ## Package List: * SUSE Linux Micro 6.0 (s390x x86_64) * kernel-livepatch-MICRO-6-0_Update_17-debugsource-5-1.1 * kernel-livepatch-6_4_0-40-default-debuginfo-5-1.1 * kernel-livepatch-6_4_0-40-default-5-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:36:32 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:36:32 -0000 Subject: SUSE-SU-2026:21939-1: important: Security update for the Linux Kernel (Live Patch 16 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041819263.42.12091193921646726314@b0da085613fb> # Security update for the Linux Kernel (Live Patch 16 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21939-1 Release Date: 2026-06-01T09:26:54Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.0 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-39.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-kernel-459=1 ## Package List: * SUSE Linux Micro 6.0 (s390x x86_64) * kernel-livepatch-6_4_0-39-default-6-1.1 * kernel-livepatch-6_4_0-39-default-debuginfo-6-1.1 * kernel-livepatch-MICRO-6-0_Update_16-debugsource-6-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:36:47 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:36:47 -0000 Subject: SUSE-SU-2026:21938-1: important: Security update for the Linux Kernel (Live Patch 14 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041820792.42.3427341685614088808@b0da085613fb> # Security update for the Linux Kernel (Live Patch 14 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21938-1 Release Date: 2026-06-01T09:26:53Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.0 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-38.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-kernel-458=1 ## Package List: * SUSE Linux Micro 6.0 (s390x x86_64) * kernel-livepatch-6_4_0-38-default-debuginfo-7-1.2 * kernel-livepatch-6_4_0-38-default-7-1.2 * kernel-livepatch-MICRO-6-0_Update_14-debugsource-7-1.2 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:37:03 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:37:03 -0000 Subject: SUSE-SU-2026:21937-1: important: Security update for the Linux Kernel (Live Patch 13 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041822390.42.1303241400517293844@b0da085613fb> # Security update for the Linux Kernel (Live Patch 13 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21937-1 Release Date: 2026-06-01T09:26:53Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.0 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-36.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-kernel-457=1 ## Package List: * SUSE Linux Micro 6.0 (s390x x86_64) * kernel-livepatch-MICRO-6-0_Update_13-debugsource-9-1.1 * kernel-livepatch-6_4_0-36-default-debuginfo-9-1.1 * kernel-livepatch-6_4_0-36-default-9-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:37:15 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:37:15 -0000 Subject: SUSE-SU-2026:21936-1: important: Security update for the Linux Kernel (Live Patch 12 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041823505.42.9910980298258260375@b0da085613fb> # Security update for the Linux Kernel (Live Patch 12 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21936-1 Release Date: 2026-06-01T09:26:53Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.0 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-35.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-kernel-453=1 ## Package List: * SUSE Linux Micro 6.0 (s390x x86_64) * kernel-livepatch-MICRO-6-0_Update_12-debugsource-11-1.1 * kernel-livepatch-6_4_0-35-default-debuginfo-11-1.1 * kernel-livepatch-6_4_0-35-default-11-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:37:27 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:37:27 -0000 Subject: SUSE-SU-2026:21935-1: important: Security update for the Linux Kernel (Live Patch 11 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041824713.42.3734616150789287400@b0da085613fb> # Security update for the Linux Kernel (Live Patch 11 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21935-1 Release Date: 2026-06-01T09:26:53Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.0 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-34.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-kernel-452=1 ## Package List: * SUSE Linux Micro 6.0 (s390x x86_64) * kernel-livepatch-6_4_0-34-default-11-1.1 * kernel-livepatch-6_4_0-34-default-debuginfo-11-1.1 * kernel-livepatch-MICRO-6-0_Update_11-debugsource-11-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:37:37 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:37:37 -0000 Subject: SUSE-SU-2026:21934-1: important: Security update for the Linux Kernel (Live Patch 9 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041825755.42.18091643689519234927@b0da085613fb> # Security update for the Linux Kernel (Live Patch 9 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21934-1 Release Date: 2026-06-01T09:26:53Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.0 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-31.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-kernel-456=1 ## Package List: * SUSE Linux Micro 6.0 (s390x x86_64) * kernel-livepatch-6_4_0-31-default-18-1.2 * kernel-livepatch-MICRO-6-0_Update_9-debugsource-18-1.2 * kernel-livepatch-6_4_0-31-default-debuginfo-18-1.2 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:37:47 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:37:47 -0000 Subject: SUSE-SU-2026:21933-1: important: Security update for the Linux Kernel (Live Patch 8 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041826792.42.17976371830410901711@b0da085613fb> # Security update for the Linux Kernel (Live Patch 8 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21933-1 Release Date: 2026-06-01T09:26:53Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.0 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-30.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-kernel-455=1 ## Package List: * SUSE Linux Micro 6.0 (s390x x86_64) * kernel-livepatch-6_4_0-30-default-18-1.2 * kernel-livepatch-6_4_0-30-default-debuginfo-18-1.2 * kernel-livepatch-MICRO-6-0_Update_8-debugsource-18-1.2 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:37:58 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:37:58 -0000 Subject: SUSE-SU-2026:21932-1: important: Security update for the Linux Kernel (Live Patch 7 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041827829.42.15891448258951346203@b0da085613fb> # Security update for the Linux Kernel (Live Patch 7 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21932-1 Release Date: 2026-06-01T09:26:53Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.0 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-29.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-kernel-450=1 ## Package List: * SUSE Linux Micro 6.0 (s390x x86_64) * kernel-livepatch-MICRO-6-0_Update_7-debugsource-19-1.2 * kernel-livepatch-6_4_0-29-default-debuginfo-19-1.2 * kernel-livepatch-6_4_0-29-default-19-1.2 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:38:04 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:38:04 -0000 Subject: SUSE-SU-2026:21931-1: important: Security update for the Linux Kernel RT (Live Patch 19 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041828467.42.8041456614736765293@b0da085613fb> # Security update for the Linux Kernel RT (Live Patch 19 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21931-1 Release Date: 2026-06-01T09:26:53Z Rating: important References: * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.0 An update that solves three vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-41.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-kernel-449=1 ## Package List: * SUSE Linux Micro 6.0 (x86_64) * kernel-livepatch-6_4_0-41-rt-4-1.1 * kernel-livepatch-MICRO-6-0-RT_Update_19-debugsource-4-1.1 * kernel-livepatch-6_4_0-41-rt-debuginfo-4-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:38:14 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:38:14 -0000 Subject: SUSE-SU-2026:21930-1: important: Security update for the Linux Kernel RT (Live Patch 18 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041829445.42.10693747374234315659@b0da085613fb> # Security update for the Linux Kernel RT (Live Patch 18 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21930-1 Release Date: 2026-06-01T09:26:52Z Rating: important References: * bsc#1259798 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.0 An update that solves five vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-40.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-kernel-448=1 ## Package List: * SUSE Linux Micro 6.0 (x86_64) * kernel-livepatch-MICRO-6-0-RT_Update_18-debugsource-5-1.1 * kernel-livepatch-6_4_0-40-rt-5-1.1 * kernel-livepatch-6_4_0-40-rt-debuginfo-5-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:38:25 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:38:25 -0000 Subject: SUSE-SU-2026:21929-1: important: Security update for the Linux Kernel RT (Live Patch 15 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041830553.42.16502322952234624492@b0da085613fb> # Security update for the Linux Kernel RT (Live Patch 15 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21929-1 Release Date: 2026-06-01T09:26:52Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.0 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-39.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-kernel-447=1 ## Package List: * SUSE Linux Micro 6.0 (x86_64) * kernel-livepatch-6_4_0-39-rt-6-1.1 * kernel-livepatch-6_4_0-39-rt-debuginfo-6-1.1 * kernel-livepatch-MICRO-6-0-RT_Update_15-debugsource-6-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:38:36 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:38:36 -0000 Subject: SUSE-SU-2026:21928-1: important: Security update for the Linux Kernel RT (Live Patch 14 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041831636.42.9762769577388802907@b0da085613fb> # Security update for the Linux Kernel RT (Live Patch 14 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21928-1 Release Date: 2026-06-01T09:26:52Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.0 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-38.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-kernel-446=1 ## Package List: * SUSE Linux Micro 6.0 (x86_64) * kernel-livepatch-MICRO-6-0-RT_Update_14-debugsource-7-1.1 * kernel-livepatch-6_4_0-38-rt-7-1.1 * kernel-livepatch-6_4_0-38-rt-debuginfo-7-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:38:46 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:38:46 -0000 Subject: SUSE-SU-2026:21927-1: important: Security update for the Linux Kernel RT (Live Patch 13 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041832689.42.5669745187126114803@b0da085613fb> # Security update for the Linux Kernel RT (Live Patch 13 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21927-1 Release Date: 2026-06-01T09:26:52Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.0 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-37.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-kernel-445=1 ## Package List: * SUSE Linux Micro 6.0 (x86_64) * kernel-livepatch-MICRO-6-0-RT_Update_13-debugsource-7-1.1 * kernel-livepatch-6_4_0-37-rt-debuginfo-7-1.1 * kernel-livepatch-6_4_0-37-rt-7-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:38:57 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:38:57 -0000 Subject: SUSE-SU-2026:21926-1: important: Security update for the Linux Kernel RT (Live Patch 12 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041833767.42.6610745696960840282@b0da085613fb> # Security update for the Linux Kernel RT (Live Patch 12 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21926-1 Release Date: 2026-06-01T09:26:52Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.0 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-36.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-kernel-444=1 ## Package List: * SUSE Linux Micro 6.0 (x86_64) * kernel-livepatch-6_4_0-36-rt-debuginfo-11-1.1 * kernel-livepatch-6_4_0-36-rt-11-1.1 * kernel-livepatch-MICRO-6-0-RT_Update_12-debugsource-11-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:39:08 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:39:08 -0000 Subject: SUSE-SU-2026:21925-1: important: Security update for the Linux Kernel RT (Live Patch 11 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041834814.42.11867641626061303045@b0da085613fb> # Security update for the Linux Kernel RT (Live Patch 11 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21925-1 Release Date: 2026-06-01T09:26:52Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.0 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-32.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-kernel-443=1 ## Package List: * SUSE Linux Micro 6.0 (x86_64) * kernel-livepatch-6_4_0-35-rt-debuginfo-12-1.1 * kernel-livepatch-MICRO-6-0-RT_Update_11-debugsource-12-1.1 * kernel-livepatch-6_4_0-35-rt-12-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:39:18 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:39:18 -0000 Subject: SUSE-SU-2026:21924-1: important: Security update for the Linux Kernel RT (Live Patch 10 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041835852.42.872678363410333919@b0da085613fb> # Security update for the Linux Kernel RT (Live Patch 10 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21924-1 Release Date: 2026-06-01T09:26:51Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.0 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-34.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-kernel-442=1 ## Package List: * SUSE Linux Micro 6.0 (x86_64) * kernel-livepatch-6_4_0-34-rt-debuginfo-16-1.1 * kernel-livepatch-6_4_0-34-rt-16-1.1 * kernel-livepatch-MICRO-6-0-RT_Update_10-debugsource-16-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:39:29 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:39:29 -0000 Subject: SUSE-SU-2026:21923-1: important: Security update for the Linux Kernel RT (Live Patch 9 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041836951.42.17392347368533428625@b0da085613fb> # Security update for the Linux Kernel RT (Live Patch 9 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21923-1 Release Date: 2026-06-01T09:26:51Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.0 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-33.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-kernel-441=1 ## Package List: * SUSE Linux Micro 6.0 (x86_64) * kernel-livepatch-6_4_0-33-rt-16-1.2 * kernel-livepatch-6_4_0-33-rt-debuginfo-16-1.2 * kernel-livepatch-MICRO-6-0-RT_Update_9-debugsource-16-1.2 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:39:45 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:39:45 -0000 Subject: SUSE-SU-2026:21922-1: important: Security update for the Linux Kernel RT (Live Patch 8 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041838528.42.13802579973406237970@b0da085613fb> # Security update for the Linux Kernel RT (Live Patch 8 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21922-1 Release Date: 2026-06-01T09:26:51Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.0 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-31.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-kernel-440=1 ## Package List: * SUSE Linux Micro 6.0 (x86_64) * kernel-livepatch-6_4_0-31-rt-debuginfo-18-1.2 * kernel-livepatch-MICRO-6-0-RT_Update_8-debugsource-18-1.2 * kernel-livepatch-6_4_0-31-rt-18-1.2 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:40:01 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:40:01 -0000 Subject: SUSE-SU-2026:21921-1: important: Security update for the Linux Kernel (Live Patch 10 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041840125.42.11369837183070164902@b0da085613fb> # Security update for the Linux Kernel (Live Patch 10 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21921-1 Release Date: 2026-06-01T09:24:52Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.0 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-32.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-kernel-451=1 ## Package List: * SUSE Linux Micro 6.0 (s390x x86_64) * kernel-livepatch-MICRO-6-0_Update_10-debugsource-12-1.1 * kernel-livepatch-6_4_0-32-default-debuginfo-12-1.1 * kernel-livepatch-6_4_0-32-default-12-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:40:07 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:40:07 -0000 Subject: SUSE-SU-2026:21920-1: critical: Security update for nvidia-open-driver-G07-signed Message-ID: <178041840743.42.6828149592837142381@b0da085613fb> # Security update for nvidia-open-driver-G07-signed Announcement ID: SUSE-SU-2026:21920-1 Release Date: 2026-06-01T09:14:35Z Rating: critical References: * bsc#1212841 * bsc#1262574 * bsc#1263834 Cross-References: * CVE-2025-33221 * CVE-2026-24182 * CVE-2026-24187 * CVE-2026-24192 * CVE-2026-24194 * CVE-2026-24195 * CVE-2026-24196 * CVE-2026-24197 * CVE-2026-24198 * CVE-2026-24199 CVSS scores: * CVE-2025-33221 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-24182 ( NVD ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H * CVE-2026-24187 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-24192 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-24194 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-24195 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H * CVE-2026-24196 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-24197 ( NVD ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H * CVE-2026-24198 ( NVD ): 5.6 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H * CVE-2026-24199 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Micro 6.0 An update that solves 10 vulnerabilities can now be installed. ## Description: This update for nvidia-open-driver-G07-signed fixes the following issues: * update CUDA variant to 595.71.05 * update non-CUDA variant to 595.71.05 (bsc#1262574) * CVEs fixed: CVE-2025-33221, CVE-2026-24187, CVE-2026-24182, CVE-2026-24192, CVE-2026-24194, CVE-2026-24195, CVE-2026-24196, CVE-2026-24197, CVE-2026-24198, CVE-2026-24199 ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-kernel-439=1 ## Package List: * SUSE Linux Micro 6.0 (aarch64 x86_64) * nvidia-open-driver-G07-signed-kmp-default-595.71.05_k6.4.0_46-1.1 * nvidia-open-driver-G07-signed-cuda-debugsource-595.71.05-1.1 * nvidia-open-driver-G07-signed-cuda-kmp-default-debuginfo-595.71.05_k6.4.0_46-1.1 * nvidia-open-driver-G07-signed-cuda-kmp-default-595.71.05_k6.4.0_46-1.1 * nvidia-open-driver-G07-signed-kmp-default-debuginfo-595.71.05_k6.4.0_46-1.1 * nvidia-open-driver-G07-signed-debugsource-595.71.05-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-33221.html * https://www.suse.com/security/cve/CVE-2026-24182.html * https://www.suse.com/security/cve/CVE-2026-24187.html * https://www.suse.com/security/cve/CVE-2026-24192.html * https://www.suse.com/security/cve/CVE-2026-24194.html * https://www.suse.com/security/cve/CVE-2026-24195.html * https://www.suse.com/security/cve/CVE-2026-24196.html * https://www.suse.com/security/cve/CVE-2026-24197.html * https://www.suse.com/security/cve/CVE-2026-24198.html * https://www.suse.com/security/cve/CVE-2026-24199.html * https://bugzilla.suse.com/show_bug.cgi?id=1212841 * https://bugzilla.suse.com/show_bug.cgi?id=1262574 * https://bugzilla.suse.com/show_bug.cgi?id=1263834 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:45:06 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:45:06 -0000 Subject: SUSE-SU-2026:21919-1: important: Security update for the Linux Kernel Message-ID: <178041870620.42.10716035508185335078@b0da085613fb> # Security update for the Linux Kernel Announcement ID: SUSE-SU-2026:21919-1 Release Date: 2026-05-29T16:16:49Z Rating: important References: * bsc#1215199 * bsc#1234634 * bsc#1243603 * bsc#1248754 * bsc#1253122 * bsc#1253754 * bsc#1254518 * bsc#1256863 * bsc#1257631 * bsc#1258518 * bsc#1258718 * bsc#1258826 * bsc#1258849 * bsc#1258850 * bsc#1258854 * bsc#1258855 * bsc#1258856 * bsc#1258857 * bsc#1258961 * bsc#1259186 * bsc#1259199 * bsc#1259222 * bsc#1259484 * bsc#1259485 * bsc#1259535 * bsc#1259799 * bsc#1259806 * bsc#1259857 * bsc#1259868 * bsc#1259869 * bsc#1259873 * bsc#1259878 * bsc#1260010 * bsc#1260012 * bsc#1260018 * bsc#1260468 * bsc#1260483 * bsc#1260484 * bsc#1260485 * bsc#1260489 * bsc#1260501 * bsc#1260504 * bsc#1260505 * bsc#1260507 * bsc#1260522 * bsc#1260523 * bsc#1260526 * bsc#1260528 * bsc#1260529 * bsc#1260530 * bsc#1260531 * bsc#1260532 * bsc#1260533 * bsc#1260536 * bsc#1260537 * bsc#1260538 * bsc#1260541 * bsc#1260546 * bsc#1260549 * bsc#1260551 * bsc#1260552 * bsc#1260553 * bsc#1260555 * bsc#1260561 * bsc#1260566 * bsc#1260572 * bsc#1260581 * bsc#1260728 * bsc#1260729 * bsc#1260731 * bsc#1260800 * bsc#1260811 * bsc#1261020 * bsc#1261287 * bsc#1261295 * bsc#1261348 * bsc#1261503 * bsc#1261504 * bsc#1261581 * bsc#1261582 * bsc#1261584 * bsc#1261601 * bsc#1261602 * bsc#1261618 * bsc#1261628 * bsc#1261632 * bsc#1261636 * bsc#1261638 * bsc#1261641 * bsc#1261644 * bsc#1261645 * bsc#1261648 * bsc#1261679 * bsc#1261685 * bsc#1261686 * bsc#1261687 * bsc#1261692 * bsc#1261694 * bsc#1261700 * bsc#1261703 * bsc#1261707 * bsc#1261710 * bsc#1261713 * bsc#1261719 * bsc#1261750 * bsc#1261751 * bsc#1261752 * bsc#1261768 * bsc#1261778 * bsc#1261779 * bsc#1261781 * bsc#1261789 * bsc#1261796 * bsc#1261797 * bsc#1261896 * bsc#1262020 * bsc#1262053 * bsc#1262054 * bsc#1262055 * bsc#1262061 * bsc#1262063 * bsc#1262074 * bsc#1262078 * bsc#1262086 * bsc#1262087 * bsc#1262099 * bsc#1262100 * bsc#1262101 * bsc#1262179 * bsc#1262181 * bsc#1262602 * bsc#1262616 * bsc#1262665 * bsc#1262671 * bsc#1262673 * bsc#1262725 * bsc#1262731 * bsc#1262734 * bsc#1262746 * bsc#1262752 * bsc#1262758 * bsc#1263001 * bsc#1263012 * bsc#1263064 * bsc#1263065 * bsc#1263085 * bsc#1263093 * bsc#1263095 * bsc#1263104 * bsc#1263131 * bsc#1263140 * bsc#1263141 * bsc#1263149 * bsc#1263165 * bsc#1263170 * bsc#1263176 * bsc#1263556 * bsc#1263582 * bsc#1263592 * bsc#1263593 * bsc#1263595 * bsc#1263596 * bsc#1263600 * bsc#1263668 * bsc#1263723 * bsc#1263797 * bsc#1263815 * bsc#1263882 * bsc#1263901 * bsc#1263931 * bsc#1263933 * bsc#1263995 * bsc#1264014 * bsc#1264059 * bsc#1264082 * bsc#1264087 * bsc#1264097 * bsc#1264183 * bsc#1264427 * bsc#1264469 * bsc#1264482 * bsc#1264634 * bsc#1264651 * bsc#1264661 * bsc#1264674 * bsc#1264801 * bsc#1264848 * bsc#1265085 * bsc#1265090 * bsc#1265116 * bsc#1265119 * bsc#1265126 * bsc#1265144 * bsc#1265308 * bsc#1265421 * bsc#1265449 * bsc#1265456 * bsc#1265626 * bsc#1265846 * bsc#1265960 * jsc#PED-7249 Cross-References: * CVE-2023-2058 * CVE-2025-40219 * CVE-2025-71183 * CVE-2025-71238 * CVE-2026-23168 * CVE-2026-23209 * CVE-2026-23236 * CVE-2026-23237 * CVE-2026-23239 * CVE-2026-23240 * CVE-2026-23245 * CVE-2026-23246 * CVE-2026-23253 * CVE-2026-23260 * CVE-2026-23264 * CVE-2026-23266 * CVE-2026-23268 * CVE-2026-23269 * CVE-2026-23271 * CVE-2026-23273 * CVE-2026-23276 * CVE-2026-23279 * CVE-2026-23290 * CVE-2026-23291 * CVE-2026-23298 * CVE-2026-23300 * CVE-2026-23306 * CVE-2026-23307 * CVE-2026-23308 * CVE-2026-23312 * CVE-2026-23313 * CVE-2026-23315 * CVE-2026-23318 * CVE-2026-23321 * CVE-2026-23324 * CVE-2026-23325 * CVE-2026-23336 * CVE-2026-23339 * CVE-2026-23340 * CVE-2026-23346 * CVE-2026-23351 * CVE-2026-23357 * CVE-2026-23362 * CVE-2026-23363 * CVE-2026-23365 * CVE-2026-23367 * CVE-2026-23368 * CVE-2026-23370 * CVE-2026-23372 * CVE-2026-23373 * CVE-2026-23374 * CVE-2026-23378 * CVE-2026-23382 * CVE-2026-23391 * CVE-2026-23392 * CVE-2026-23393 * CVE-2026-23396 * CVE-2026-23397 * CVE-2026-23399 * CVE-2026-23403 * CVE-2026-23404 * CVE-2026-23405 * CVE-2026-23406 * CVE-2026-23407 * CVE-2026-23408 * CVE-2026-23409 * CVE-2026-23410 * CVE-2026-23411 * CVE-2026-23420 * CVE-2026-23426 * CVE-2026-23434 * CVE-2026-23440 * CVE-2026-23441 * CVE-2026-23442 * CVE-2026-23443 * CVE-2026-23446 * CVE-2026-23447 * CVE-2026-23448 * CVE-2026-23449 * CVE-2026-23450 * CVE-2026-23452 * CVE-2026-23455 * CVE-2026-23456 * CVE-2026-23457 * CVE-2026-23458 * CVE-2026-23460 * CVE-2026-23461 * CVE-2026-23462 * CVE-2026-23463 * CVE-2026-23465 * CVE-2026-23468 * CVE-2026-23472 * CVE-2026-23473 * CVE-2026-23474 * CVE-2026-23475 * CVE-2026-31389 * CVE-2026-31393 * CVE-2026-31400 * CVE-2026-31402 * CVE-2026-31403 * CVE-2026-31404 * CVE-2026-31405 * CVE-2026-31407 * CVE-2026-31408 * CVE-2026-31411 * CVE-2026-31412 * CVE-2026-31415 * CVE-2026-31416 * CVE-2026-31417 * CVE-2026-31420 * CVE-2026-31421 * CVE-2026-31422 * CVE-2026-31423 * CVE-2026-31424 * CVE-2026-31425 * CVE-2026-31426 * CVE-2026-31427 * CVE-2026-31428 * CVE-2026-31436 * CVE-2026-31449 * CVE-2026-31470 * CVE-2026-31488 * CVE-2026-31494 * CVE-2026-31496 * CVE-2026-31504 * CVE-2026-31505 * CVE-2026-31507 * CVE-2026-31512 * CVE-2026-31515 * CVE-2026-31519 * CVE-2026-31525 * CVE-2026-31528 * CVE-2026-31533 * CVE-2026-31550 * CVE-2026-31565 * CVE-2026-31570 * CVE-2026-31586 * CVE-2026-31588 * CVE-2026-31602 * CVE-2026-31607 * CVE-2026-31622 * CVE-2026-31649 * CVE-2026-31656 * CVE-2026-31662 * CVE-2026-31668 * CVE-2026-31669 * CVE-2026-31675 * CVE-2026-31679 * CVE-2026-31681 * CVE-2026-31682 * CVE-2026-31684 * CVE-2026-31685 * CVE-2026-31694 * CVE-2026-31700 * CVE-2026-31738 * CVE-2026-31787 * CVE-2026-43009 * CVE-2026-43025 * CVE-2026-43027 * CVE-2026-43037 * CVE-2026-43038 * CVE-2026-43044 * CVE-2026-43050 * CVE-2026-43060 * CVE-2026-43088 * CVE-2026-43110 * CVE-2026-43120 * CVE-2026-43126 * CVE-2026-43190 * CVE-2026-43214 * CVE-2026-43265 * CVE-2026-43329 * CVE-2026-43330 * CVE-2026-43334 * CVE-2026-43365 * CVE-2026-43366 * CVE-2026-43419 * CVE-2026-43437 * CVE-2026-43441 * CVE-2026-43494 * CVE-2026-43503 CVSS scores: * CVE-2023-2058 ( NVD ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N * CVE-2023-2058 ( NVD ): 2.4 CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N * CVE-2025-40219 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2025-40219 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2025-71183 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-71183 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-71238 ( SUSE ): 5.9 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-71238 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H * CVE-2025-71238 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23168 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23168 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23168 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23209 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23209 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23236 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23236 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23236 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23236 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H * CVE-2026-23237 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23237 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23237 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23239 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23239 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23239 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23240 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23240 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23240 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23245 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23245 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23245 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23246 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23246 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23253 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23253 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23260 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-23260 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-23260 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23264 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23264 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23264 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23266 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23266 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23266 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23268 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23268 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23268 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23269 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23269 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23269 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23271 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23271 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23271 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23273 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23273 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23273 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23276 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23276 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23279 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23279 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23279 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23290 ( SUSE ): 5.1 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23290 ( SUSE ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23290 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23291 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23291 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23298 ( SUSE ): 5.1 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23298 ( SUSE ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23298 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23300 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23300 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23300 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23306 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23306 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:H/A:H * CVE-2026-23306 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23307 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23307 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23308 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23308 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23312 ( SUSE ): 5.1 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23312 ( SUSE ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23312 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23313 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23313 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23315 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23315 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23318 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23318 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23321 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-23321 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-23321 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23324 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23324 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23324 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23325 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23325 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23336 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23336 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23339 ( SUSE ): 2.3 CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-23339 ( SUSE ): 3.1 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-23339 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23340 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23340 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23340 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23346 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23346 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23346 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23351 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23351 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23357 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23357 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23357 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23362 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23362 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23363 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23363 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23365 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23365 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23365 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23367 ( SUSE ): 5.3 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-23367 ( SUSE ): 6.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2026-23367 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23368 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23368 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23368 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23370 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23370 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23372 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23372 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23373 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23373 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23374 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23374 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23374 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23378 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23378 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-23378 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23378 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23382 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23382 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23382 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23391 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23391 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23392 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23392 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23392 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23393 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23393 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23393 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23396 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23396 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23396 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23397 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23397 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23397 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23399 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23399 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23399 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23403 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23403 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2026-23403 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23404 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23404 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23404 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23405 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23405 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23405 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23406 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23406 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23406 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23407 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23407 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23407 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23408 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23408 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23408 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23408 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23409 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23409 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-23409 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23410 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23410 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23410 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23410 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23411 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23420 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23420 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23420 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23426 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23426 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23426 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23434 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23434 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23434 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23434 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-23440 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23440 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23440 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23440 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23441 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23441 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23442 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23442 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23442 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23443 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23443 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23443 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23446 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23446 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23446 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23447 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23447 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23447 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23448 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23448 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23448 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23449 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23449 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23449 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23450 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23450 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23450 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23452 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23452 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23452 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23455 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23455 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23455 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23456 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-23456 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-23456 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23457 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23457 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23457 ( NVD ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-23458 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23458 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23458 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23460 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23460 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23460 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23461 ( SUSE ): 7.7 CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23461 ( SUSE ): 7.5 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23461 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23462 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23462 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23462 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23463 ( SUSE ): 0.0 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-23463 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N * CVE-2026-23463 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23465 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:L/SC:N/SI:N/SA:N * CVE-2026-23465 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2026-23465 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23468 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23468 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23468 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23472 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23472 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23472 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23473 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23473 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23474 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23474 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23474 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23475 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23475 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23475 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31389 ( SUSE ): 5.6 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31389 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31389 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31393 ( SUSE ): 5.3 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31393 ( SUSE ): 4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-31393 ( NVD ): 8.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31400 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31400 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31400 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31402 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31402 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-31402 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31403 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31403 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31403 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31404 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31404 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31404 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31405 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31405 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31405 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31407 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31407 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N * CVE-2026-31407 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31408 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31408 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31408 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31411 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31411 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31411 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31412 ( SUSE ): 7.0 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31412 ( SUSE ): 6.8 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31412 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31415 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31415 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31415 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31416 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-31416 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-31416 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31417 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31417 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31417 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31420 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31420 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31420 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31421 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31421 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31421 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31422 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31422 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31422 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31423 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31423 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31423 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31424 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31424 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31424 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31425 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31425 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31425 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31426 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31426 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2026-31426 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31427 ( SUSE ): 2.0 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-31427 ( SUSE ): 4.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2026-31427 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31428 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31428 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2026-31428 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31436 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31436 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31436 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31449 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31449 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31449 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-31470 ( SUSE ): 6.0 CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:H/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31470 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H * CVE-2026-31470 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31488 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31488 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31488 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31494 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-31494 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N * CVE-2026-31494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31496 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31496 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-31496 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31504 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31504 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31504 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31505 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31505 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31505 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31507 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31507 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31507 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31512 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31512 ( SUSE ): 7.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-31512 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31515 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31515 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31515 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31519 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31519 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31519 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31525 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31525 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31525 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31528 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31528 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31528 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31533 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31533 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31533 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31550 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31550 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31550 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31565 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31565 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31565 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31570 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:H/SI:N/SA:N * CVE-2026-31570 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31570 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31586 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31586 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31586 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31588 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31588 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31588 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-31602 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31602 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31602 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31607 ( SUSE ): 7.0 CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31607 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H * CVE-2026-31607 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31622 ( SUSE ): 8.7 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31622 ( SUSE ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31622 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31649 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31649 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31649 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31656 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31656 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31656 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31662 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31662 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31662 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31668 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-31668 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2026-31668 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31669 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31669 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31669 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31675 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31675 ( SUSE ): 5.6 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H * CVE-2026-31675 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31679 ( SUSE ): 8.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31679 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31679 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31681 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31681 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N * CVE-2026-31681 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31682 ( SUSE ): 5.3 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31682 ( SUSE ): 4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-31682 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31684 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-31684 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L * CVE-2026-31684 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31685 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31685 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31685 ( NVD ): 9.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H * CVE-2026-31694 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31694 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31694 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31700 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31700 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31700 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31738 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31738 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31738 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31787 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31787 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31787 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43009 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43009 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43025 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43025 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H * CVE-2026-43027 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43027 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43037 ( SUSE ): 7.7 CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43037 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43037 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43038 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43038 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43044 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43044 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43044 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43050 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43050 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43050 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43060 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43060 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43088 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-43088 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-43110 ( SUSE ): 7.7 CVSS:4.0/AV:A/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43110 ( SUSE ): 7.5 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43110 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43120 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43120 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-43120 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43120 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43126 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43126 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43126 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43190 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43190 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-43190 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-43214 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43214 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43214 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43265 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43265 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43265 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43329 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43329 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43329 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43330 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43330 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43330 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43334 ( SUSE ): 8.6 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-43334 ( SUSE ): 8.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-43334 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43365 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-43365 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-43365 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-43366 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43366 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43366 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43419 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-43419 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-43437 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43437 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43437 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43441 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43441 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43494 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43494 ( SUSE ): 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43503 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43503 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-43503 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H Affected Products: * SUSE Linux Micro 6.0 An update that solves 181 vulnerabilities, contains one feature and has 19 fixes can now be installed. ## Description: The SUSE Linux Enterprise Micro 6.0 and Micro 6.1 kernel was updated to fix various security issues The following security issues were fixed: * CVE-2023-2058: x86/CPU: Fix FPDSS on Zen1 (bsc#1243603). * CVE-2025-71183: btrfs: always detect conflicting inodes when logging inode refs (bsc#1257631). * CVE-2026-23168: flex_proportions: make fprop_new_period() hardirq safe (bsc#1258826). * CVE-2026-23239: espintcp: Fix race condition in espintcp_close() (bsc#1259485). * CVE-2026-23240: tls: Fix race condition in tls_sw_cancel_work_tx() (bsc#1259484). * CVE-2026-23245: net/sched: act_gate: snapshot parameters with RCU on replace (bsc#1259799). * CVE-2026-23271: perf: Fix __perf_event_overflow() vs perf_remove_from_context() race (bsc#1260018). * CVE-2026-23276: net: move dev_xmit_recursion() helpers to net/core/dev.h (bsc#1260012). * CVE-2026-23300: net: ipv6: fix panic when IPv4 route references loopback IPv6 nexthop (bsc#1260538). * CVE-2026-23306: scsi: pm8001: Fix use-after-free in pm8001_queue_command() (bsc#1260501). * CVE-2026-23313: i40e: Fix preempt count leak in napi poll tracepoint (bsc#1260555). * CVE-2026-23321: mptcp: pm: in-kernel: always mark signal+subflow endp as used (bsc#1260505). * CVE-2026-23340: net: sched: avoid qdisc_reset_all_tx_gt() vs dequeue race for lockless qdiscs (bsc#1260523). * CVE-2026-23346: mm/ioremap: define generic_ioremap_prot() and generic_iounmap() (bsc#1260529). * CVE-2026-23351: netfilter: nft_set_pipapo: split gc into unlink and reclaim phase (bsc#1260526). * CVE-2026-23368: net: phy: register phy led_triggers during probe to avoid AB-BA deadlock (bsc#1260530). * CVE-2026-23374: blktrace: fix __this_cpu_read/write in preemptible context (bsc#1260811). * CVE-2026-23378: net/sched: act_ife: Fix metalist update behavior (bsc#1260546). * CVE-2026-23391: netfilter: xt_CT: drop pending enqueued packets on template removal (bsc#1260566). * CVE-2026-23392: netfilter: nf_tables: release flowtable after rcu grace period on error (bsc#1260531). * CVE-2026-23393: bridge: cfm: Fix race condition in peer_mep deletion (bsc#1260522). * CVE-2026-23397: nfnetlink_osf: validate individual option lengths in fingerprints (bsc#1260728). * CVE-2026-23399: nf_tables: nft_dynset: fix possible stateful expression memleak in error path (bsc#1261020). * CVE-2026-23440: net/mlx5e: Fix race condition during IPSec ESN update (bsc#1261641). * CVE-2026-23441: net/mlx5e: Prevent concurrent access to IPSec ASO context (bsc#1261768). * CVE-2026-23442: ipv6: add NULL checks for idev in SRv6 paths (bsc#1261581). * CVE-2026-23449: net/sched: teql: Fix double-free in teql_master_xmit (bsc#1261779). * CVE-2026-23450: net/smc: fix NULL dereference and UAF in smc_tcp_syn_recv_sock() (bsc#1261584). * CVE-2026-23455: netfilter: nf_conntrack_h323: check for zero length in DecodeQ931() (bsc#1261687). * CVE-2026-23456: netfilter: nf_conntrack_h323: fix OOB read in decode_int() CONS case (bsc#1261703). * CVE-2026-23457: netfilter: nf_conntrack_sip: fix Content-Length u32 truncation in sip_help_tcp() (bsc#1261686). * CVE-2026-23458: netfilter: ctnetlink: fix use-after-free in ctnetlink_dump_exp_ct() (bsc#1261781). * CVE-2026-23461: Bluetooth: L2CAP: Fix use-after-free in l2cap_unregister_user (bsc#1261707). * CVE-2026-23462: Bluetooth: HIDP: Fix possible UAF (bsc#1261710). * CVE-2026-23468: drm/amdgpu: Limit BO list entry count to prevent resource exhaustion (bsc#1261692). * CVE-2026-23472: serial: core: fix infinite loop in handle_tx() for PORT_UNKNOWN (bsc#1261636). * CVE-2026-23473: io_uring/poll: fix multishot recv missing EOF on wakeup race (bsc#1261694). * CVE-2026-31400: sunrpc: fix cache_request leak in cache_release (bsc#1261645). * CVE-2026-31402: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache (bsc#1261638). * CVE-2026-31403: NFSD: Hold net reference for the lifetime of /proc/fs/nfs/exports fd (bsc#1261796). * CVE-2026-31404: xfs: avoid dereferencing log items after push callbacks (bsc#1261628). * CVE-2026-31407: netfilter: conntrack: add missing netlink policy validations (bsc#1261632). * CVE-2026-31411: net: atm: fix crash due to unvalidated vcc pointer in sigd_send() (bsc#1261752). * CVE-2026-31415: ipv6: avoid overflows in ip6_datagram_send_ctl() (bsc#1262099). * CVE-2026-31416: netfilter: nfnetlink_log: account for netlink header size (bsc#1262100). * CVE-2026-31420: bridge: mrp: reject zero test interval to avoid OOM panic (bsc#1262055). * CVE-2026-31421: net/sched: cls_fw: fix NULL pointer dereference on shared blocks (bsc#1262061). * CVE-2026-31422: net/sched: cls_flow: fix NULL pointer dereference on shared blocks (bsc#1262054). * CVE-2026-31423: net/sched: sch_hfsc: fix divide-by-zero in rtsc_min() (bsc#1262063). * CVE-2026-31424: netfilter: x_tables: restrict xt_check_match/xt_check_target extensions for NFPROTO_ARP (bsc#1262053). * CVE-2026-31425: rds: ib: reject FRMR registration before IB connection is established (bsc#1262074). * CVE-2026-31427: netfilter: nf_conntrack_sip: fix use of uninitialized rtp_addr in process_sdp (bsc#1262086). * CVE-2026-31428: netfilter: nfnetlink_log: fix uninitialized padding leak in NFULA_PAYLOAD (bsc#1262087). * CVE-2026-31436: dmaengine: idxd: fix possible wrong descriptor completion in llist_abort_desc() (bsc#1262602). * CVE-2026-31449: ext4: validate p_idx bounds in ext4_ext_correct_indexes (bsc#1262616). * CVE-2026-31470: virt: tdx-guest: Fix handling of host controlled 'quote' buffer length (bsc#1262665). * CVE-2026-31488: drm/amd/display: Do not skip unrelated mode changes in DSC validation (bsc#1262746). * CVE-2026-31494: net: cadence: macb: Synchronize stats calculations (bsc#1262671). * CVE-2026-31496: netfilter: nf_conntrack_expect: skip expectations in other netns via proc (bsc#1262673). * CVE-2026-31504: net: fix fanout UAF in packet_release() via NETDEV_UP race (bsc#1263085). * CVE-2026-31505: iavf: fix out-of-bounds writes in iavf_get_ethtool_stats() (bsc#1263093). * CVE-2026-31507: net/smc: fix double-free of smc_spd_priv when tee() duplicates splice pipe buffer (bsc#1263095). * CVE-2026-31512: Bluetooth: L2CAP: Validate PDU length before reading SDU length in l2cap_ecred_data_rcv() (bsc#1262734). * CVE-2026-31515: af_key: validate families in pfkey_send_migrate() (bsc#1262752). * CVE-2026-31519: btrfs: set BTRFS_ROOT_ORPHAN_CLEANUP during subvol create (bsc#1263012). * CVE-2026-31525: bpf: Fix undefined behavior in interpreter sdiv/smod for INT_MIN (bsc#1262725). * CVE-2026-31528: perf: Make sure to use pmu_ctx->pmu for groups (bsc#1263001). * CVE-2026-31533: net/tls: fix use-after-free in -EBUSY error path of tls_do_encryption (bsc#1262758). * CVE-2026-31550: pmdomain: bcm: bcm2835-power: Increase ASB control timeout (bsc#1263104). * CVE-2026-31565: RDMA/irdma: Fix deadlock during netdev reset with active connections (bsc#1263064). * CVE-2026-31570: can: gw: fix OOB heap access in cgw_csum_crc8_rel() (bsc#1263065). * CVE-2026-31586: mm: blk-cgroup: fix use-after-free in cgwb_release_workfn() (bsc#1263176). * CVE-2026-31588: KVM: x86: Use scratch field in MMIO fragment to hold small write values (bsc#1263165). * CVE-2026-31602: ALSA: ctxfi: Limit PTP to a single page (bsc#1263723). * CVE-2026-31607: usbip: validate number_of_packets in usbip_pack_ret_submit() (bsc#1263600). * CVE-2026-31622: NFC: digital: Bounds check NFC-A cascade depth in SDD response handler (bsc#1263797). * CVE-2026-31649: net: stmmac: fix integer underflow in chain mode (bsc#1263582). * CVE-2026-31656: drm/i915/gt: fix refcount underflow in intel_engine_park_heartbeat (bsc#1263170). * CVE-2026-31662: tipc: fix bc_ackers underflow on duplicate GRP_ACK_MSG (bsc#1263131). * CVE-2026-31668: seg6: separate dst_cache for input and output paths in seg6 lwtunnel (bsc#1263140). * CVE-2026-31669: mptcp: fix slab-use-after-free in __inet_lookup_established (bsc#1263141). * CVE-2026-31675: net/sched: sch_netem: fix out-of-bounds access in packet corruption (bsc#1263556). * CVE-2026-31679: openvswitch: validate MPLS set/set_masked payload length (bsc#1263592). * CVE-2026-31681: netfilter: xt_multiport: validate range encoding in checkentry (bsc#1263593). * CVE-2026-31682: bridge: br_nd_send: linearize skb before parsing ND options (bsc#1263595). * CVE-2026-31684: net: sched: act_csum: validate nested VLAN headers (bsc#1263596). * CVE-2026-31685: netfilter: ip6t_eui64: reject invalid MAC header for all packets (bsc#1263668). * CVE-2026-31694: fuse: reject oversized dirents in page cache (bsc#1263901). * CVE-2026-31700: net/packet: fix TOCTOU race on mmap'd vnet_hdr in tpacket_snd() (bsc#1263882). * CVE-2026-31738: vxlan: validate ND option lengths in vxlan_na_create (bsc#1264059). * CVE-2026-31787: xen/privcmd: fix double free via VMA splitting (bsc#1262181). * CVE-2026-43009: bpf: Fix incorrect pruning due to atomic fetch precision tracking (bsc#1264014). * CVE-2026-43025: netfilter: ctnetlink: ignore explicit helper on new expectations (bsc#1263931). * CVE-2026-43027: netfilter: nf_conntrack_helper: pass helper to expect cleanup (bsc#1263933). * CVE-2026-43037: ip6_tunnel: clear skb2->cb in ip4ip6_err() (bsc#1263995). * CVE-2026-43038: ipv6: icmp: clear skb2->cb in ip6_err_gen_icmpv6_unreach() (bsc#1264097). * CVE-2026-43044: crypto: caam - fix DMA corruption on long hmac keys (bsc#1264087). * CVE-2026-43050: atm: lec: fix use-after-free in sock_def_readable() (bsc#1264082). * CVE-2026-43060: netfilter: nft_ct: drop pending enqueued packets on removal (bsc#1264183). * CVE-2026-43088: net: af_key: zero aligned sockaddr tail in PF_KEY exports (bsc#1264469). * CVE-2026-43110: wifi: brcmfmac: validate bsscfg indices in IF events (bsc#1264482). * CVE-2026-43120: RDMA/irdma: Fix double free related to rereg_user_mr. * CVE-2026-43126: ALSA: mixer: oss: Add card disconnect checkpoints (bsc#1264634). * CVE-2026-43190: netfilter: xt_tcpmss: check remaining length before reading optlen (bsc#1264848). * CVE-2026-43214: KVM: x86: Add SRCU protection for reading PDPTRs in __get_sregs2() (bsc#1264651). * CVE-2026-43265: KVM: x86: Ignore -EBUSY when checking nested events from vcpu_block() (bsc#1264427). * CVE-2026-43329: netfilter: flowtable: strictly check for maximum number of actions (bsc#1265085). * CVE-2026-43330: crypto: caam - fix overflow on long hmac keys (bsc#1264801). * CVE-2026-43334: Bluetooth: SMP: force responder MITM requirements before building the pairing response (bsc#1265090). * CVE-2026-43365: xfs: fix undersized l_iclog_roundoff values (bsc#1265119). * CVE-2026-43366: io_uring/kbuf: check if target buffer list is still legacy on recycle (bsc#1265116). * CVE-2026-43419: ceph: fix memory leaks in ceph_mdsc_build_path() (bsc#1264661). * CVE-2026-43437: ALSA: pcm: fix use-after-free on linked stream runtime in snd_pcm_drain() (bsc#1265126). * CVE-2026-43441: net: bonding: Fix nd_tbl NULL dereference when IPv6 is disabled (bsc#1264674). * CVE-2026-43494: net/rds: reset op_nents when zerocopy page pin fails (bsc#1265626). * CVE-2026-43503: net: skbuff: propagate shared-frag marker through frag- transfer helpers (bsc#1265960). The following non security issues were fixed: * accel/qaic: Add overflow check to remap_pfn_range during mmap (git-fixes). * ACPI: AGDI: fix missing newline in error message (git-fixes). * ACPI: CPPC: Fix related_cpus inconsistency during CPU hotplug (git-fixes). * ACPI: scan: Use acpi_dev_put() in object add error paths (git-fixes). * ACPI: video: force native backlight on HP OMEN 16 (8A44) (stable-fixes). * ALSA: 6fire: Fix input volume change detection (git-fixes). * ALSA: 6fire: fix use-after-free on disconnect (git-fixes). * ALSA: aoa: i2sbus: clear stale prepared state (git-fixes). * ALSA: aoa: i2sbus: fix OF node lifetime handling (git-fixes). * ALSA: aoa: Skip devices with no codecs in i2sbus_resume() (git-fixes). * ALSA: aoa: Use guard() for mutex locks (stable-fixes). * ALSA: asihpi: avoid write overflow check warning (stable-fixes). * ALSA: caiaq: Don't abort when no input device is available (git-fixes). * ALSA: caiaq: Fix control_put() result and cache rollback (git-fixes). * ALSA: caiaq: Fix potentially leftover ep1_in_urb at error path (git-fixes). * ALSA: caiaq: fix usb_dev refcount leak on probe failure (git-fixes). * ALSA: caiaq: Handle probe errors properly (git-fixes). * ALSA: caiaq: take a reference on the USB device in create_card() (git- fixes). * ALSA: control: Validate buf_len before strnlen() in snd_ctl_elem_init_enum_names() (git-fixes). * ALSA: core: Fix potential data race at fasync handling (git-fixes). * ALSA: core: Serialize deferred fasync state checks (git-fixes). * ALSA: core: Validate compress device numbers without dynamic minors (git- fixes). * ALSA: ctxfi: Add fallback to default RSR for S/PDIF (git-fixes). * ALSA: ctxfi: Fix missing SPDIFI1 index handling (stable-fixes). * ALSA: ctxfi: Limit PTP to a single page (git-fixes). * ALSA: firewire-tascam: Do not drop unread control events (git-fixes). * ALSA: fireworks: bound device-supplied status before string array lookup (git-fixes). * ALSA: hda/realtek - fixed speaker no sound update (git-fixes). * ALSA: hda/realtek: Add HP ENVY Laptop 13-ba0xxx quirk (stable-fixes). * ALSA: hda/realtek: Add mute LED quirk for HP Pavilion 15-eg0xxx (stable- fixes). * ALSA: hda/realtek: Add quirk for ASUS ROG Flow Z13-KJP GZ302EAC (stable- fixes). * ALSA: hda/realtek: add quirk for Framework F111:000F (stable-fixes). * ALSA: hda/realtek: Add quirk for Lenovo Yoga Pro 7 14IAH10 (stable-fixes). * ALSA: hda/realtek: fix code style (ERROR: else should follow close brace '}') (git-fixes). * ALSA: misc: Use guard() for spin locks (stable-fixes). * ALSA: scarlett2: Add missing sentinel initializer field (git-fixes). * ALSA: seq: Notify client and port info changes (stable-fixes). * ALSA: seq_oss: return full count for successful SEQ_FULLSIZE writes (stable- fixes). * ALSA: usb-audio: apply quirk for MOONDROP JU Jiu (stable-fixes). * ALSA: usb-audio: Avoid false E-MU sample-rate notifications (git-fixes). * ALSA: usb-audio: Avoid potential endless loop in convert_chmap_v3() (git- fixes). * ALSA: usb-audio: Evaluate packsize caps at the right place (git-fixes). * ALSA: usb-audio: Fix Audio Advantage Micro II SPDIF switch (git-fixes). * ALSA: usb-audio: Fix potential leak of pd at parsing UAC3 streams (git- fixes). * ALSA: usb-audio: Fix quirk flags for NeuralDSP Quad Cortex (stable-fixes). * ALSA: usb-audio: Fix UAC3 cluster descriptor size check (git-fixes). * ALSA: usb-audio: midi2: Restart output URBs on resume (git-fixes). * ALSA: usb-audio: stop parsing UAC2 rates at MAX_NR_RATES (git-fixes). * ASoC: amd: yc: Add DMI entry for HP Laptop 15-fc0xxx (stable-fixes). * ASoC: amd: yc: Add DMI quirk for ASUS EXPERTBOOK BM1403CDA (stable-fixes). * ASoC: amd: yc: Add DMI quirk for Thin A15 B7VF (stable-fixes). * ASoC: amd: yc: Add HP OMEN Gaming Laptop 16-ap0xxx product line in quirk table (stable-fixes). * ASoC: codecs: ab8500: Fix casting of private data (git-fixes). * ASoC: cs35l56: Destroy workqueue in probe error path (git-fixes). * ASoC: cs35l56: Don't use devres to unregister component (git-fixes). * ASoC: fsl_easrc: Change the type for iec958 channel status controls (git- fixes). * ASoC: fsl_easrc: Check the variable range in fsl_easrc_iec958_put_bits() (git-fixes). * ASoC: fsl_easrc: fix comment typo (git-fixes). * ASoC: fsl_easrc: Fix value type in fsl_easrc_iec958_get_bits() (git-fixes). * ASoC: fsl_micfil: Add access property for "VAD Detected" (git-fixes). * ASoC: fsl_micfil: Fix event generation in hwvad_put_enable() (git-fixes). * ASoC: fsl_micfil: Fix event generation in hwvad_put_init_mode() (git-fixes). * ASoC: fsl_micfil: Fix event generation in micfil_put_dc_remover_state() (git-fixes). * ASoC: fsl_micfil: Fix event generation in micfil_quality_set() (git-fixes). * ASoC: fsl_xcvr: Fix event generation for cached controls (git-fixes). * ASoC: fsl_xcvr: Fix event generation in fsl_xcvr_arc_mode_put() (git-fixes). * ASoC: fsl_xcvr: Fix event generation in fsl_xcvr_mode_put() (git-fixes). * ASoC: Intel: bytcr_wm5102: Fix MCLK leak on platform_clock_control error (git-fixes). * ASoC: qcom: q6apm-lpass-dai: Fix multiple graph opens (git-fixes). * ASoC: qcom: q6apm: move component registration to unmanaged version (git- fixes). * ASoC: qcom: q6apm: remove child devices when apm is removed (git-fixes). * ASoC: qcom: qdsp6: topology: check widget type before accessing data (git- fixes). * ASoC: soc-core: call missing INIT_LIST_HEAD() for card_aux_list (stable- fixes). * ASoC: SOF: compress: return the configured codec from get_params (git- fixes). * ASoC: SOF: Don't allow pointer operations on unconfigured streams (git- fixes). * ASoC: SOF: Intel: hda: Place check before dereference (git-fixes). * ASoC: SOF: topology: reject invalid vendor array size in token parser (stable-fixes). * ASoC: sti: Return errors from regmap_field_alloc() (git-fixes). * ASoC: sti: use managed regmap_field allocations (git-fixes). * ASoC: stm32_sai: fix incorrect BCLK polarity for DSP_A/B, LEFT_J (stable- fixes). * ata: ahci: force 32-bit DMA for JMicron JMB582/JMB585 (stable-fixes). * batman-adv: bla: only purge non-released claims (git-fixes). * batman-adv: bla: prevent use-after-free when deleting claims (git-fixes). * batman-adv: bla: put backbone reference on failed claim hash insert (git- fixes). * batman-adv: fix integer overflow on buff_pos (git-fixes). * batman-adv: hold claim backbone gateways by reference (git-fixes). * batman-adv: reject new tp_meter sessions during teardown (git-fixes). * batman-adv: reject oversized global TT response buffers (git-fixes). * batman-adv: stop caching unowned originator pointers in BAT IV (git-fixes). * Bluetooth: bnep: fix incorrect length parsing in bnep_rx_frame() extension handling (git-fixes). * Bluetooth: fix locking in hci_conn_request_evt() with HCI_PROTO_DEFER (git- fixes). * Bluetooth: hci_event: Fix OOB read and infinite loop in hci_le_create_big_complete_evt (git-fixes). * Bluetooth: hci_event: fix potential UAF in SSP passkey handlers (git-fixes). * Bluetooth: hci_ldisc: Clear HCI_UART_PROTO_INIT on error (git-fixes). * Bluetooth: HIDP: serialise l2cap_unregister_user via hidp_session_sem (git- fixes). * Bluetooth: ISO: Fix data-race on dst in iso_sock_connect() (git-fixes). * Bluetooth: l2cap: Add missing chan lock in l2cap_ecred_reconf_rsp (git- fixes). * Bluetooth: l2cap: fix MPS check in l2cap_ecred_reconf_req (git-fixes). * Bluetooth: L2CAP: Fix null-ptr-deref in l2cap_sock_new_connection_cb() (git- fixes). * Bluetooth: L2CAP: Fix null-ptr-deref in l2cap_sock_state_change_cb() (git- fixes). * Bluetooth: L2CAP: Fix printing wrong information if SDU length exceeds MTU (git-fixes). * Bluetooth: RFCOMM: pull credit byte with skb_pull_data() (git-fixes). * Bluetooth: SCO: check for codecs->num_codecs == 1 before assigning to sco_pi(sk)->codec (git-fixes). * Bluetooth: SCO: fix sleeping under spinlock in sco_conn_ready (git-fixes). * Bluetooth: SCO: hold sk properly in sco_conn_ready (git-fixes). * Bluetooth: virtio_bt: clamp rx length before skb_put (git-fixes). * Bluetooth: virtio_bt: validate rx pkt_type header length (git-fixes). * btrfs: do not skip logging new dentries when logging a new name (git-fixes). * btrfs: reject root items with drop_progress and zero drop_level (git-fixes). * btrfs: replace BUG() with error handling in __btrfs_balance() (git-fixes). * can: mcp251x: add error handling for power enable in open and resume (stable-fixes). * can: raw: fix ro->uniq use-after-free in raw_rcv() (git-fixes). * can: ucan: fix devres lifetime (git-fixes). * cdc-acm: new quirk for EPSON HMD (stable-fixes). * check-for-config-changes: Exclude CC_MS_EXTENSIONS. * check-for-config-changes: Exclude HAVE_CFI_ICALL_NORMALIZE_INTEGERS{,_RUSTC}. * checkpatch: add support for Assisted-by tag (stable-fixes). * comedi: dt2815: add hardware detection to prevent crash (stable-fixes). * crypto: algif_aead - Fix minimum RX size check for decryption (git-fixes). * crypto: arm64/aes - Fix 32-bit aes_mac_update() arg treated as 64-bit (git- fixes). * crypto: atmel-aes - Fix 3-page memory leak in atmel_aes_buff_cleanup (git- fixes). * crypto: atmel-ecc - Release client on allocation failure (git-fixes). * crypto: atmel-sha204a - Fix potential UAF and memory leak in remove path (git-fixes). * crypto: atmel-tdes - fix DMA sync direction (git-fixes). * crypto: authencesn - reject short ahash digests during instance creation (git-fixes). * crypto: ccp - copy IV using skcipher ivsize (git-fixes). * crypto: ccp: Don't attempt to copy CSR to userspace if PSP command failed (git-fixes). * crypto: ccp: Don't attempt to copy ID to userspace if PSP command failed (git-fixes). * crypto: ccp: Don't attempt to copy PDH cert to userspace if PSP command failed (git-fixes). * crypto: ccree - fix a memory leak in cc_mac_digest() (git-fixes). * crypto: hisilicon - Fix dma_unmap_single() direction (git-fixes). * crypto: jitterentropy - replace long-held spinlock with mutex (git-fixes). * crypto: pcrypt - Fix handling of MAY_BACKLOG requests (git-fixes). * crypto: qat - fix type mismatch in RAS sysfs show functions (git-fixes). * crypto: qat - use swab32 macro (git-fixes). * crypto: sa2ul - Fix AEAD fallback algorithm names (git-fixes). * crypto: simd - reject compat registrations without __ prefixes (git-fixes). * crypto: talitos - fix SEC1 32k ahash request limitation (git-fixes). * crypto: testmgr - Hide ENOENT errors (stable-fixes). * crypto: testmgr - Hide ENOENT errors better (git-fixes). * devres: fix missing node debug info in devm_krealloc() (git-fixes). * dm init: ensure device probing has finished in dm-mod.waitfor= (git-fixes). * dmaengine: dw-axi-dmac: Remove unnecessary return statement from void function (git-fixes). * dmaengine: mxs-dma: Fix missing return value from of_dma_controller_register() (git-fixes). * drm/amd/display: Add NULL check for integrated_info in clk_mgr_construct (git-fixes). * drm/amd/display: Allow DCE link encoder without AUX registers (git-fixes). * drm/amd/display: Avoid NULL dereference in dc_dmub_srv error paths (git- fixes). * drm/amd/display: Disable 10-bit truncation and dithering on DCE 6.x (git- fixes). * drm/amd/display: Read EDID from VBIOS embedded panel info (git-fixes). * drm/amd/pm/ci: Clear EnabledForActivity field for memory levels (git-fixes). * drm/amd/pm/ci: Disable MCLK DPM on problematic CI ASICs (git-fixes). * drm/amd/pm/ci: Fill DW8 fields from SMC (git-fixes). * drm/amd/pm/ci: Fix powertune defaults for Hawaii 0x67B0 (git-fixes). * drm/amd/pm/ci: Use highest MCLK on CI when MCLK DPM is disabled (git-fixes). * drm/amd/pm/smu7: Add SCLK cap for quirky Hawaii board (git-fixes). * drm/amd/pm/smu7: Fix SMU7 voltage dependency on display clock (git-fixes). * drm/amdgpu/gfx6: Support harvested SI chips with disabled TCCs (v2) (git- fixes). * drm/amdgpu/gfx9: drop unnecessary 64-bit fence flag check in KIQ (stable- fixes). * drm/amdgpu/gfx10: look at the right prop for gfx queue priority (git-fixes). * drm/amdgpu/gmc: Fix AMDGPU_GART_PLACEMENT_LOW to not overlap with VRAM (git- fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v2.0 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v2.5 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v3.0 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v4.0 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v4.0.3 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v4.0.5 ring (git-fixes). * drm/amdgpu/pm: add missing revision check for CI (git-fixes). * drm/amdgpu/pm: align Hawaii mclk workaround with radeon (git-fixes). * drm/amdgpu/sdma4: replace BUG_ON with WARN_ON in fence emission (git-fixes). * drm/amdgpu/vce: Prevent partial address patches (stable-fixes). * drm/amdgpu/vcn3: Avoid overflow on msg bound check (git-fixes). * drm/amdgpu/vcn3: Prevent OOB reads when parsing dec msg (stable-fixes). * drm/amdgpu/vcn4: Avoid overflow on msg bound check (git-fixes). * drm/amdgpu/vcn4: Prevent OOB reads when parsing dec msg (stable-fixes). * drm/amdgpu/vcn4: Prevent OOB reads when parsing IB (stable-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v2.0 enc/dec rings (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v2.5 enc/dec rings (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v3.0 enc/dec rings (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v4.0 enc ring (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v4.0.3 enc ring (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v4.0.5 enc ring (git-fixes). * drm/amdgpu: Add bounds checking to ib_{get,set}_value (stable-fixes). * drm/amdgpu: fix AMDGPU_INFO_READ_MMR_REG (git-fixes). * drm/amdgpu: fix zero-size GDS range init on RDNA4 (stable-fixes). * drm/amdgpu: zero-initialize GART table on allocation (stable-fixes). * drm/amdkfd: Add upper bound check for num_of_nodes (stable-fixes). * drm/amdkfd: Clear VRAM on allocation to prevent stale data exposure (stable- fixes). * drm/amdkfd: validate SVM ioctl nattr against buffer size (stable-fixes). * drm/arcpgu: fix device node leak (git-fixes). * drm/bridge: cadence: cdns-mhdp8546-core: Add mode_valid hook to drm_bridge_funcs (git-fixes). * drm/bridge: cadence: cdns-mhdp8546-core: Handle HDCP state in bridge atomic check (git-fixes). * drm/bridge: cadence: cdns-mhdp8546-core: Set the mhdp connector earlier in atomic_enable() (git-fixes). * drm/etnaviv: Fix armed job not being pushed to the DRM scheduler (git- fixes). * drm/fb-helper: Fix clipping when damage area spans a single scanline (git- fixes). * drm/gem: Fix inconsistent plane dimension calculation in drm_gem_fb_init_with_funcs() (git-fixes). * drm/gma500/oaktrail_hdmi: fix i2c adapter leak on setup (git-fixes). * drm/gma500/oaktrail_lvds: fix hang on init failure (git-fixes). * drm/gma500/oaktrail_lvds: fix i2c adapter leaks on init (git-fixes). * drm/i915/dp: Fix VSC dynamic range signaling for RGB formats (git-fixes). * drm/i915/gt: fix refcount underflow in intel_engine_park_heartbeat (git- fixes). * drm/i915/wm: Verify the correct plane DDB entry (git-fixes). * drm/i915: skip __i915_request_skip() for already signaled requests (git- fixes). * drm/komeda: fix integer overflow in AFBC framebuffer size check (git-fixes). * drm/msm/a6xx: Fix dumping A650+ debugbus blocks (git-fixes). * drm/msm/a6xx: Fix HLSQ register dumping (git-fixes). * drm/msm/a6xx: Use barriers while updating HFI Q headers (git-fixes). * drm/msm/dpu: fix mismatch between power and frequency (git-fixes). * drm/msm/dsi: add the missing parameter description (git-fixes). * drm/msm/dsi: fix bits_per_pclk (git-fixes). * drm/msm/dsi: fix hdisplay calculation for CMD mode panel (git-fixes). * drm/msm/dsi: rename MSM8998 DSI version from V2_2_0 to V2_0_0 (git-fixes). * drm/msm/shrinker: Fix can_block() logic (git-fixes). * drm/nouveau: fix u32 overflow in pushbuf reloc bounds check (git-fixes). * drm/panel: sharp-ls043t1le01: make use of prepare_prev_first (git-fixes). * drm/panel: simple: Correct G190EAN01 prepare timing (git-fixes). * drm/panfrost: Fix wait_bo ioctl leaking positive return from dma_resv_wait_timeout() (git-fixes). * drm/radeon: add missing revision check for CI (git-fixes). * drm/sun4i: backend: fix error pointer dereference (git-fixes). * drm/sun4i: Fix resource leaks (git-fixes). * drm/vc4: Fix a memory leak in hang state error path (git-fixes). * drm/vc4: Fix memory leak of BO array in hang state (git-fixes). * drm/vc4: platform_get_irq_byname() returns an int (stable-fixes). * drm/vc4: Protect madv read in vc4_gem_object_mmap() with madv_lock (git- fixes). * drm/vc4: Release runtime PM reference after binding V3D (git-fixes). * drm/vram: remove DRM_VRAM_MM_FILE_OPERATIONS from docs (git-fixes). * dt-bindings: net: Fix Tegra234 MGBE PTP clock (git-fixes). * efi/capsule-loader: fix incorrect sizeof in phys array reallocation (git- fixes). * efi: pstore: Drop efivar lock when efi_pstore_open() returns with an error (git-fixes). * ext4: fix fsync(2) for nojournal mode (git-fixes). * ext4: make recently_deleted() properly work with lazy itable initialization (git-fixes). * ext4: reject mount if bigalloc with s_first_data_block != 0 (git-fixes). * extcon: ptn5150: handle pending IRQ events during system resume (git-fixes). * fbdev: matroxfb: Mark variable with __maybe_unused to avoid W=1 build break (git-fixes). * fbdev: offb: fix PCI device reference leak on probe failure (git-fixes). * fbdev: tdfxfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO (stable-fixes). * fbdev: udlfb: add vm_ops to dlfb_ops_mmap to prevent use-after-free (stable- fixes). * fbdev: udlfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO (git-fixes). * firmware: dmi: Correct an indexing error in dmi.h (git-fixes). * gpio: tegra: fix irq_release_resources calling enable instead of disable (git-fixes). * gtp: disable BH before calling udp_tunnel_xmit_skb() (git-fixes). * HID: alps: fix NULL pointer dereference in alps_raw_event() (git-fixes). * HID: asus: do not abort probe when not necessary (git-fixes). * HID: asus: make asus_resume adhere to linux kernel coding standards (git- fixes). * HID: core: clamp report_size in s32ton() to avoid undefined shift (stable- fixes). * HID: multitouch: Check to ensure report responses match the request (stable- fixes). * HID: playstation: Clamp num_touch_reports (git-fixes). * HID: quirks: add HID_QUIRK_ALWAYS_POLL for 8BitDo Pro 3 (stable-fixes). * HID: roccat: fix use-after-free in roccat_report_event (stable-fixes). * HID: usbhid: fix deadlock in hid_post_reset() (git-fixes). * HID: wacom: fix out-of-bounds read in wacom_intuos_bt_irq (stable-fixes). * hv_sock: fix ARM64 support (git-fixes). * hwmon: (ads7871) Fix endianness bug in 16-bit register reads (git-fixes). * hwmon: (corsair-psu) Close HID device on probe errors (git-fixes). * hwmon: (lm63) Add locking to avoid TOCTOU (git-fixes). * hwmon: (ltc2992) Clamp threshold writes to hardware range (git-fixes). * hwmon: (ltc2992) Fix u32 overflow in power read path (git-fixes). * i2c: s3c24xx: check the size of the SMBUS message before using it (stable- fixes). * i2c: smbus: reject oversized block transfers in the common path (git-fixes). * i2c: stm32f7: reinit_completion() per transfer not per msg (git-fixes). * i2c: stub: Reject I2C block transfers with invalid length (git-fixes). * i3c: master: Fix error codes at send_ccc_cmd (git-fixes). * i3c: mipi-i3c-hci: fix IBI payload length calculation for final status (git- fixes). * ibmveth: Disable GSO for packets with small MSS (bsc#1265144). * ice: set max queues in alloc_etherdev_mqs() (git-fixes). * iio: adc: ad7768-1: fix one-shot mode data acquisition (git-fixes). * iio: adc: ti-adc161s626: use DMA-safe memory for spi_read() (git-fixes). * iio: adc: ti-ads7950: use iio_push_to_buffers_with_ts_unaligned() (git- fixes). * Input: i8042 - add TUXEDO InfinityBook Max 16 Gen10 AMD to i8042 quirk table (stable-fixes). * Input: uinput - fix circular locking dependency with ff-core (git-fixes). * Input: uinput - take event lock when submitting FF request "event" (stable- fixes). * Input: xpad - add support for BETOP BTP-KP50B/C controller's wireless mode (stable-fixes). * Input: xpad - add support for Razer Wolverine V3 Pro (stable-fixes). * ipmi: Add limits to event and receive message requests (git-fixes). * ipmi: Check event message buffer response for bad data (git-fixes). * ipmi: ssif_bmc: change log level to dbg in irq callback (git-fixes). * ipmi: ssif_bmc: fix message desynchronization after truncated response (git- fixes). * ipmi: ssif_bmc: fix missing check for copy_to_user() partial failure (git- fixes). * irqchip/irq-pic32-evic: Address warning related to wrong printf() formatter (git-fixes). * kdump, documentation: describe craskernel CMA reservation (jsc#PED-7249). * KVM: Reject wrapped offset in kvm_reset_dirty_gfn() (git-fixes). * KVM: SVM: Mark VMCB_NPT as dirty on nested VMRUN (git-fixes). * KVM: SVM: Mark VMCB_PERM_MAP as dirty on nested VMRUN (git-fixes). * KVM: x86/mmu: Retry fault before acquiring mmu_lock if mapping is changing (bsc#1253122). * KVM: x86/xen: Fix cleanup logic in emulation of Xen schedop poll hypercalls (git-fixes). * KVM: x86: check for nEPT/nNPT in slow flush hypercalls (git-fixes). * KVM: x86: Fix shadow paging use-after-free due to unexpected GFN (git- fixes). * KVM: x86: hyper-v: Validate all GVAs during PV TLB flush (git-fixes). * KVM: x86: Ignore cpuid faulting in SMM (git-fixes). * leds: lgm-sso: Remove duplicate assignments for priv->mmap (git-fixes). * lib/hexdump: print_hex_dump_bytes() calls print_hex_dump_debug() (git- fixes). * media: amphion: Fix race between m2m job_abort and device_run (git-fixes). * media: as102: fix to not free memory after the device is registered in as102_usb_probe() (git-fixes). * media: dib8000: avoid division by 0 in dib8000_set_dds() (git-fixes). * media: em28xx: fix use-after-free in em28xx_v4l2_open() (git-fixes). * media: hackrf: fix to not free memory after the device is registered in hackrf_probe() (git-fixes). * media: i2c: imx219: Check return value of devm_gpiod_get_optional() in imx219_probe() (git-fixes). * media: i2c: imx412: Assert reset GPIO during probe (git-fixes). * media: i2c: ov08d10: fix image vertical start setting (git-fixes). * media: i2c: ov8856: free control handler on error in ov8856_init_controls() (git-fixes). * media: mtk-jpeg: fix use-after-free in release path due to uncancelled work (git-fixes). * media: omap3isp: drop the use count of v4l2 pipeline (git-fixes). * media: pci: zoran: fix potential memory leak in zoran_probe() (git-fixes). * media: rc: streamzap: Error handling in probe (git-fixes). * media: rc: xbox_remote: heed DMA restrictions (git-fixes). * media: saa7164: add ioremap return checks and cleanups (git-fixes). * media: staging: imx: configure src_mux in csi_start (git-fixes). * media: staging: imx: request mbus_config in csi_start (git-fixes). * media: uvcvideo: Enable VB2_DMABUF for metadata stream (git-fixes). * media: videobuf2: Set vma_flags in vb2_dma_sg_mmap (git-fixes). * media: vidtv: fix nfeeds state corruption on start_streaming failure (git- fixes). * media: vidtv: fix NULL pointer dereference in vidtv_channel_pmt_match_sections (git-fixes). * media: vidtv: fix pass-by-value structs causing MSAN warnings (git-fixes). * memory: tegra30-emc: Fix dll_change check (git-fixes). * memory: tegra124-emc: Fix dll_change check (git-fixes). * mfd: mc13xxx-core: Fix memory leak in mc13xxx_add_subdevice_pdata() (git- fixes). * mkspec: Add signature to source list only when it exists. * mmc: sdhci-of-dwcmshc: Disable clock before DLL configuration (git-fixes). * mmc: vub300: fix NULL-deref on disconnect (git-fixes). * modpost: Amend ppc64 save/restfpr symnames for -Os build (bsc#1215199). * mtd: docg3: Convert to platform remove callback returning void (stable- fixes). * mtd: docg3: fix use-after-free in docg3_release() (git-fixes). * mtd: parsers: ofpart: call of_node_get() for dedicated subpartitions (git- fixes). * mtd: parsers: ofpart: call of_node_put() only in ofpart_fail path (git- fixes). * mtd: physmap_of_gemini: Fix disabled pinctrl state check (git-fixes). * mtd: rawnand: sunxi: fix sunxi_nfc_hw_ecc_read_extra_oob (git-fixes). * mtd: spi-nor: core: correct the op.dummy.nbytes when check read operations (git-fixes). * mtd: spi-nor: sst: Factor out common write operation to `sst_nor_write_data()` (stable-fixes). * mtd: spi-nor: sst: Fix SST write failure (git-fixes). * mtd: spi-nor: sst: Fix write enable before AAI sequence (git-fixes). * mtd: spi-nor: swp: check SR_TB flag when getting tb_mask (git-fixes). * net/rds: reset op_nents when zerocopy page pin fails (bsc#1265626). * net/sched: cls_fw: fix NULL dereference of "old" filters before change() (git-fixes). * net/sched: fix pedit partial COW leading to page cache corruption (bsc#1265421). * net: gro: don't merge zcopy skbs (git-fixes). * net: mana: Add MAC address to vPort logs and clarify error messages (git- fixes). * net: mana: check xdp_rxq registration before unreg in mana_destroy_rxq() (git-fixes). * net: mana: Don't overwrite port probe error with add_adev result (git- fixes). * net: mana: Fix crash from unvalidated SHM offset read from BAR0 during FLR (bsc#1265846). * net: mana: Fix EQ leak in mana_remove on NULL port (git-fixes). * net: mana: Fix RX skb truesize accounting (bsc#1248754). * net: mana: fix use-after-free in mana_hwc_destroy_channel() by reordering teardown (git-fixes). * net: mana: Guard mana_remove against double invocation (git-fixes). * net: mana: hardening: Validate adapter_mtu from MANA_QUERY_DEV_CONFIG (git- fixes). * net: mana: hardening: Validate doorbell ID from GDMA_REGISTER_DEVICE response (git-fixes). * net: mana: Init gf_stats_work before potential error paths in probe (git- fixes). * net: mana: Init link_change_work before potential error paths in probe (git- fixes). * net: mana: remove double CQ cleanup in mana_create_rxq error path (git- fixes). * net: mana: Set default number of queues to 16 (bsc#1261648). * net: mana: Skip WQ object destruction for uninitialized RXQ (git-fixes). * net: mana: Use at least SZ_4K in doorbell ID range check (git-fixes). * net: mana: Use pci_name() for debugfs directory naming (git-fixes). * net: phy: dp83869: fix setting CLK_O_SEL field (git-fixes). * net: stmmac: Fix PTP ref clock for Tegra234 (git-fixes). * net: usb: asix: ax88772: re-add usbnet_link_change() in phylink callbacks (git-fixes). * net: usb: cdc-phonet: fix skb frags[] overflow in rx_complete() (git-fixes). * net: usb: rtl8150: fix use-after-free in rtl8150_start_xmit() (git-fixes). * net: usb: rtl8150: free skb on usb_submit_urb() failure in xmit (git-fixes). * net: wan: fsl_ucc_hdlc: fix ucc_hdlc_remove (git-fixes). * net: wan: fsl_ucc_hdlc: fix uhdlc_memclean (git-fixes). * net: wan: fsl_ucc_hdlc: free tx_skbuff in uhdlc_memclean (git-fixes). * NFC: digital: Bounds check NFC-A cascade depth in SDD response handler (git- fixes). * nfc: llcp: add missing return after LLCP_CLOSED checks (git-fixes). * nfc: pn533: allocate rx skb before consuming bytes (git-fixes). * nfc: s3fwrn5: allocate rx skb before consuming bytes (git-fixes). * NFC: trf7970a: Ignore antenna noise when checking for RF field (git-fixes). * nvmet-tcp: propagate nvmet_tcp_build_pdu_iovec() errors to its callers (git- fixes). * ocfs2: fix possible deadlock between unlink and dio_end_io_write (bsc#1258718). * ocfs2: split transactions in dio completion to avoid credit exhaustion (bsc#1258718). * PCI/AER: Clear only error bits in PCIe Device Status (git-fixes). * PCI/AER: Stop ruling out unbound devices as error source (git-fixes). * PCI: dwc: Apply ECRC workaround to DesignWare 5.00a as well (git-fixes). * PCI: Enable AtomicOps only if Root Port supports them (git-fixes). * PCI: endpoint: pci-epf-ntb: Remove duplicate resource teardown (git-fixes). * PCI: hv: Set default NUMA node to 0 for devices without affinity info (git- fixes). * PCI: mediatek-gen3: Prevent leaking IRQ domains when IRQ not found (git- fixes). * PCI: tegra194: Allow system suspend when the Endpoint link is not up (git- fixes). * PCI: tegra194: Disable direct speed change for Endpoint mode (git-fixes). * PCI: tegra194: Disable LTSSM after transition to Detect on surprise link down (git-fixes). * PCI: tegra194: Disable PERST# IRQ only in Endpoint mode (git-fixes). * PCI: tegra194: Fix polling delay for L2 state (git-fixes). * PCI: tegra194: Increase LTSSM poll time on surprise link down (git-fixes). * PCI: tegra194: Set LTR message request before PCIe link up in Endpoint mode (git-fixes). * PCI: tegra194: Use devm_gpiod_get_optional() to parse "nvidia,refclk-select" (git-fixes). * PCI: tegra194: Use DWC IP core version (git-fixes). * pinctrl: abx500: Fix type of 'argument' variable (git-fixes). * pinctrl: Fix spelling problem (git-fixes). * pinctrl: intel: Fix the revision for new features (1kOhm PD, HW debouncer) (stable-fixes). * pinctrl: pic32: change all cases of bare 'unsigned' to 'unsigned int' (git- fixes). * pinctrl: pic32: use consistent spacing around '+' (git-fixes). * pinctrl: pinctrl-pic32: Fix resource leak (git-fixes). * platform/chrome: chromeos_tbmc: Drop wakeup source on remove (git-fixes). * platform/surface: surfacepro3_button: Drop wakeup source on remove (git- fixes). * platform/x86/amd: pmc: Add Thinkpad L14 Gen3 to quirk_s2idle_bug (stable- fixes). * platform/x86: dell-wmi-sysman: bound enumeration string aggregation (git- fixes). * platform/x86: dell_rbu: avoid uninit value usage in packet_size_write() (git-fixes). * platform/x86: hp-wmi: Ignore backlight and FnLock events (stable-fixes). * platform/x86: panasonic-laptop: Fix OPTD notifier registration and cleanup (git-fixes). * power: supply: axp288_charger: Do not cancel work before initializing it (git-fixes). * power: supply: max17042: avoid overflow when determining health (git-fixes). * powerpc/crash: fix backup region offset update to elfcorehdr (bsc#1259535). * RDMA/mana: Fix error unwind in mana_ib_create_qp_rss() (git-fixes). * RDMA/mana: Fix mana_destroy_wq_obj() cleanup in mana_ib_create_qp_rss() (git-fixes). * RDMA/mana: Remove user triggerable WARN_ON() in mana_ib_create_qp_rss() (git-fixes). * RDMA/mana: Validate rx_hash_key_len (git-fixes). * RDMA/mana_ib: cleanup the usage of mana_gd_send_request() (git-fixes). * RDMA/mana_ib: Disable RX steering on RSS QP destroy (git-fixes). * RDMA/mana_ib: Support memory windows (git-fixes). * regulator: act8945a: fix OF node reference imbalance (git-fixes). * regulator: bd9571mwv: fix OF node reference imbalance (git-fixes). * regulator: max77650: fix OF node reference imbalance (git-fixes). * regulator: mt6357: fix OF node reference imbalance (git-fixes). * remoteproc: xlnx: Only access buffer information if IPI is buffered (git- fixes). * Revert "ALSA: usb: Increase volume range that triggers a warning" (git- fixes). * rtc: abx80x: Disable alarm feature if no interrupt attached (git-fixes). * rtc: ntxec: fix OF node reference imbalance (git-fixes). * sched/balancing: Switch the 'DEFINE_SPINLOCK(balancing)' spinlock into an 'atomic_t sched_balance_running' flag (bsc#1253754). * sched/fair: Change likelyhood of nohz.nr_cpus (bsc#1234634 bsc#1258961). * sched/fair: Have SD_SERIALIZE affect newidle balancing (bsc#1253754). * sched/fair: Move checking for nohz cpus after time check (bsc#1234634 bsc#1258961). * sched/fair: Remove nohz.nr_cpus and use weight of cpumask instead (bsc#1234634 bsc#1258961). * sched/fair: Skip sched_balance_running cmpxchg when balance is not due (bsc#1253754). * scsi: storvsc: Handle PERSISTENT_RESERVE_IN truncation for Hyper-V vFC (git- fixes). * scsi: target: iscsi: validate CHAP_R length before base64 decode (bsc#1265449). * soc/tegra: cbb: Set ERD on resume for err interrupt (git-fixes). * soc: qcom: aoss: compare against normalized cooling state (git-fixes). * soc: qcom: llcc: fix v1 SB syndrome register offset (git-fixes). * sound: ua101: fix division by zero at probe (git-fixes). * soundwire: bus: demote UNATTACHED state warnings to dev_dbg() (git-fixes). * soundwire: cadence: Clear message complete before signaling waiting thread (git-fixes). * spi: at91-usart: fix controller deregistration (git-fixes). * spi: atmel: fix controller deregistration (git-fixes). * spi: cadence: fix controller deregistration (git-fixes). * spi: fix controller cleanup() documentation (git-fixes). * spi: fix misleading controller deregistration kernel-doc (git-fixes). * spi: fix misleading controller registration kernel-doc (git-fixes). * spi: fsl-qspi: Use reinit_completion() for repeated operations (git-fixes). * spi: hisi-kunpeng: prevent infinite while() loop in hisi_spi_flush_fifo (git-fixes). * spi: imx: fix runtime pm leak on probe deferral (git-fixes). * spi: imx: fix use-after-free on unbind (git-fixes). * spi: microchip-core-qspi: fix controller deregistration (git-fixes). * spi: microchip-core-qspi: Use helper function devm_clk_get_enabled() (stable-fixes). * spi: mpc52xx: fix use-after-free on unbind (git-fixes). * spi: mtk-nor: fix controller deregistration (git-fixes). * spi: mtk-snfi: unregister ECC engine on probe failure and remove() callback (git-fixes). * spi: omap2-mcspi: fix controller deregistration (git-fixes). * spi: orion: fix clock imbalance on registration failure (git-fixes). * spi: orion: fix runtime pm leak on unbind (git-fixes). * spi: rockchip: fix controller deregistration (git-fixes). * spi: rspi: fix controller deregistration (git-fixes). * spi: sh-hspi: fix controller deregistration (git-fixes). * spi: spi-ti-qspi: Convert to platform remove callback returning void (stable-fixes). * spi: sprd: fix controller deregistration (git-fixes). * spi: sun4i: fix controller deregistration (git-fixes). * spi: sun4i: switch to use modern name (stable-fixes). * spi: syncuacer: fix controller deregistration (git-fixes). * spi: synquacer: switch to use modern name (stable-fixes). * spi: uniphier: fix controller deregistration (git-fixes). * spi: uniphier: Simplify clock handling with devm_clk_get_enabled() (stable- fixes). * spi: uniphier: switch to use modern name (stable-fixes). * spi: zynq-qspi: switch to use modern name (stable-fixes). * spi: zynqmp-gqspi: fix controller deregistration (git-fixes). * staging: media: atomisp: Disallow all private IOCTLs (git-fixes). * staging: rtl8723bs: initialize le_tmp64 in rtw_BIP_verify() (git-fixes). * staging: sm750fb: fix division by zero in ps_to_hz() (git-fixes). * staging: vme_user: added bound check to geoid (stable-fixes). * staging: vme_user: fix root device leak on init failure (git-fixes). * thermal/drivers/spear: Fix error condition for reading st,thermal-flags (git-fixes). * thermal/drivers/sprd: Fix raw temperature clamping in sprd_thm_rawdata_to_temp (git-fixes). * thermal/drivers/sprd: Fix temperature clamping in sprd_thm_temp_to_rawdata (git-fixes). * tpm: avoid -Wunused-but-set-variable (git-fixes). * tpm: tpm_tis: add error logging for data transfer (git-fixes). * tpm: tpm_tis: stop transmit if retries are exhausted (git-fixes). * tty: tty_io: update timestamps on all device nodes (bsc#1262020). * USB: cdc-acm: Add quirks for Yoga Book 9 14IAH10 INGENIC touchscreen (stable-fixes). * usb: chipidea: core: allow ci_irq_handler() handle both ID and VBUS change (git-fixes). * usb: chipidea: otg: not wait vbus drop if use role_switch (git-fixes). * USB: core: add NO_LPM quirk for Razer Kiyo Pro webcam (stable-fixes). * usb: gadget: dummy_hcd: fix premature URB completion when ZLP follows partial transfer (stable-fixes). * usb: gadget: f_ncm: validate minimum block_len in ncm_unwrap_ntb() (git- fixes). * usb: gadget: f_phonet: fix skb frags[] overflow in pn_rx_complete() (stable- fixes). * usb: gadget: f_uac1_legacy: validate control request size (stable-fixes). * usb: gadget: renesas_usb3: validate endpoint index in standard request handlers (git-fixes). * USB: omap_udc: DMA: Don't enable burst 4 mode (git-fixes). * usb: port: add delay after usb_hub_set_port_power() (git-fixes). * usb: quirks: add DELAY_INIT quirk for another Silicon Motion flash drive (stable-fixes). * USB: serial: io_edgeport: add support for Blackbox IC135A (stable-fixes). * USB: serial: option: add MeiG Smart SRM825WN (stable-fixes). * USB: serial: option: add support for Rolling Wireless RW135R-GL (stable- fixes). * USB: serial: option: add Telit Cinterion FN990A MBIM composition (stable- fixes). * USB: serial: option: add Telit Cinterion LE910Cx compositions (stable- fixes). * usb: storage: Expand range of matched versions for VL817 quirks entry (stable-fixes). * usb: ulpi: fix memory leak on ulpi_register() error paths (git-fixes). * usb: usblp: fix heap leak in IEEE 1284 device ID via short response (stable- fixes). * usb: usblp: fix uninitialized heap leak via LPGETSTATUS ioctl (stable- fixes). * usb: xhci: Make usb_host_endpoint.hcpriv survive endpoint_disable() (git- fixes). * usbip: validate number_of_packets in usbip_pack_ret_submit() (git-fixes). * virt: tdx-guest: Fix handling of host controlled 'quote' buffer length (git- fixes). * virt: tdx-guest: Return error for GetQuote failures (git-fixes). * wifi: ath5k: do not access array OOB (git-fixes). * wifi: ath9k: Fix typo (git-fixes). * wifi: ath11k: Pass the correct value of each TID during a stop AMPDU session (git-fixes). * wifi: ath11k: skip status ring entry processing (stable-fixes). * wifi: ath11k: Use dma_alloc_noncoherent for rx_tid buffer allocation (stable-fixes). * wifi: b43: enforce bounds check on firmware key index in b43_rx() (git- fixes). * wifi: b43legacy: enforce bounds check on firmware key index in RX path (git- fixes). * wifi: brcmfmac: Fix error pointer dereference (git-fixes). * wifi: brcmfmac: validate bsscfg indices in IF events (stable-fixes). * wifi: brcmsmac: Fix dma_free_coherent() size (git-fixes). * wifi: cw1200: Revert "Fix locking in error paths" (git-fixes). * wifi: libertas: notify firmware load wait on disconnect (git-fixes). * wifi: mac80211: check ieee80211_rx_data_set_link return in pubsta MLO path (git-fixes). * wifi: mac80211: drop stray 'static' from fast-RX rx_result (git-fixes). * wifi: mac80211: remove station if connection prep fails (git-fixes). * wifi: mt76: mt792x: describe USB WFSYS reset with a descriptor (stable- fixes). * wifi: mt76: mt792x: fix mt7925u USB WFSYS reset handling (git-fixes). * wifi: mt76: mt7615: fix use_cts_prot support (git-fixes). * wifi: mt76: mt7915: fix use-after-free bugs in mt7915_mac_dump_work() (git- fixes). * wifi: mt76: mt7915: fix use_cts_prot support (git-fixes). * wifi: mt76: mt7921: fix a potential clc buffer length underflow (git-fixes). * wifi: mt76: mt7921: fix ROC abort flow interruption in mt7921_roc_work (git- fixes). * wifi: mt76: mt7921: Reset ampdu_state state in case of failure in mt76_connac2_tx_check_aggr() (git-fixes). * wifi: mt76: mt7925: fix incorrect length field in txpower command (git- fixes). * wifi: mt76: mt7996: fix FCS error flag check in RX descriptor (git-fixes). * wifi: mt76: mt7996: fix struct mt7996_mcu_uni_event (git-fixes). * wifi: mwifiex: Fix memory leak in mwifiex_11n_aggregate_pkt() (git-fixes). * wifi: nl80211: fix NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST usage (git- fixes). * wifi: nl80211: require admin perm on SET_PMK / DEL_PMK (git-fixes). * wifi: rsi: fix kthread lifetime race between self-exit and external-stop (git-fixes). * wifi: rt2x00usb: fix devres lifetime (git-fixes). * wifi: rtlwifi: pci: fix possible use-after-free caused by unfinished irq_prepare_bcn_tasklet (git-fixes). * wifi: rtw88: check for PCI upstream bridge existence (git-fixes). * wifi: rtw88: fix device leak on probe failure (git-fixes). * wifi: rtw89: phy: fix uninitialized variable access in rtw89_phy_cfo_set_crystal_cap() (git-fixes). * wifi: wl1251: validate packet IDs before indexing tx_frames (stable-fixes). * workqueue: Break up enum definitions and give names to the types (bsc#1260522). * workqueue: Clean up enum work_bits and related constants (bsc#1260522). * workqueue: Factor out work_grab_pending() from __cancel_work_sync() (bsc#1260522). * workqueue: Fix UBSAN 'subtraction overflow' error in shift_and_mask() (bsc#1260522). * workqueue: Implement disable/enable for (delayed) work items (bsc#1260522). * workqueue: Introduce work_cancel_flags (bsc#1260522). * workqueue: Make @flags handling consistent across set_work_data() and friends (bsc#1260522). * workqueue: Preserve OFFQ bits in cancel[_sync] paths (bsc#1260522). * workqueue: Rename __cancel_work_timer() to __cancel_timer_sync() (bsc#1260522). * workqueue: Reorganize flush and cancel[_sync] functions (bsc#1260522). * x86/boot/64: Clear most of CR4 in startup_64(), except PAE, MCE and LA57 (git-fixes). * x86/boot/sev: Avoid shared GHCB page for early memory acceptance (git- fixes). * x86/boot: Don't add the EFI stub to targets, again (git-fixes). * x86/boot: Fix page table access in 5-level to 4-level paging transition (git-fixes). * X.509: Fix out-of-bounds access when parsing extensions (git-fixes). * Xarray: do not return sibling entries from xas_find_marked() (bsc#1263815). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-kernel-435=1 ## Package List: * SUSE Linux Micro 6.0 (aarch64 x86_64) * kernel-default-base-6.4.0-46.1.21.23 * SUSE Linux Micro 6.0 (noarch) * kernel-macros-6.4.0-46.1 * kernel-devel-6.4.0-46.1 * kernel-source-6.4.0-46.1 * SUSE Linux Micro 6.0 (aarch64 nosrc s390x x86_64) * kernel-default-6.4.0-46.1 * SUSE Linux Micro 6.0 (aarch64 s390x x86_64) * kernel-default-debuginfo-6.4.0-46.1 * kernel-default-debugsource-6.4.0-46.1 * SUSE Linux Micro 6.0 (s390x x86_64) * kernel-default-livepatch-6.4.0-46.1 * SUSE Linux Micro 6.0 (nosrc x86_64) * kernel-kvmsmall-6.4.0-46.1 * SUSE Linux Micro 6.0 (x86_64) * kernel-kvmsmall-debugsource-6.4.0-46.1 * kernel-kvmsmall-debuginfo-6.4.0-46.1 ## References: * https://www.suse.com/security/cve/CVE-2023-2058.html * https://www.suse.com/security/cve/CVE-2025-40219.html * https://www.suse.com/security/cve/CVE-2025-71183.html * https://www.suse.com/security/cve/CVE-2025-71238.html * https://www.suse.com/security/cve/CVE-2026-23168.html * https://www.suse.com/security/cve/CVE-2026-23209.html * https://www.suse.com/security/cve/CVE-2026-23236.html * https://www.suse.com/security/cve/CVE-2026-23237.html * https://www.suse.com/security/cve/CVE-2026-23239.html * https://www.suse.com/security/cve/CVE-2026-23240.html * https://www.suse.com/security/cve/CVE-2026-23245.html * https://www.suse.com/security/cve/CVE-2026-23246.html * https://www.suse.com/security/cve/CVE-2026-23253.html * https://www.suse.com/security/cve/CVE-2026-23260.html * https://www.suse.com/security/cve/CVE-2026-23264.html * https://www.suse.com/security/cve/CVE-2026-23266.html * https://www.suse.com/security/cve/CVE-2026-23268.html * https://www.suse.com/security/cve/CVE-2026-23269.html * https://www.suse.com/security/cve/CVE-2026-23271.html * https://www.suse.com/security/cve/CVE-2026-23273.html * https://www.suse.com/security/cve/CVE-2026-23276.html * https://www.suse.com/security/cve/CVE-2026-23279.html * https://www.suse.com/security/cve/CVE-2026-23290.html * https://www.suse.com/security/cve/CVE-2026-23291.html * https://www.suse.com/security/cve/CVE-2026-23298.html * https://www.suse.com/security/cve/CVE-2026-23300.html * https://www.suse.com/security/cve/CVE-2026-23306.html * https://www.suse.com/security/cve/CVE-2026-23307.html * https://www.suse.com/security/cve/CVE-2026-23308.html * https://www.suse.com/security/cve/CVE-2026-23312.html * https://www.suse.com/security/cve/CVE-2026-23313.html * https://www.suse.com/security/cve/CVE-2026-23315.html * https://www.suse.com/security/cve/CVE-2026-23318.html * https://www.suse.com/security/cve/CVE-2026-23321.html * https://www.suse.com/security/cve/CVE-2026-23324.html * https://www.suse.com/security/cve/CVE-2026-23325.html * https://www.suse.com/security/cve/CVE-2026-23336.html * https://www.suse.com/security/cve/CVE-2026-23339.html * https://www.suse.com/security/cve/CVE-2026-23340.html * https://www.suse.com/security/cve/CVE-2026-23346.html * https://www.suse.com/security/cve/CVE-2026-23351.html * https://www.suse.com/security/cve/CVE-2026-23357.html * https://www.suse.com/security/cve/CVE-2026-23362.html * https://www.suse.com/security/cve/CVE-2026-23363.html * https://www.suse.com/security/cve/CVE-2026-23365.html * https://www.suse.com/security/cve/CVE-2026-23367.html * https://www.suse.com/security/cve/CVE-2026-23368.html * https://www.suse.com/security/cve/CVE-2026-23370.html * https://www.suse.com/security/cve/CVE-2026-23372.html * https://www.suse.com/security/cve/CVE-2026-23373.html * https://www.suse.com/security/cve/CVE-2026-23374.html * https://www.suse.com/security/cve/CVE-2026-23378.html * https://www.suse.com/security/cve/CVE-2026-23382.html * https://www.suse.com/security/cve/CVE-2026-23391.html * https://www.suse.com/security/cve/CVE-2026-23392.html * https://www.suse.com/security/cve/CVE-2026-23393.html * https://www.suse.com/security/cve/CVE-2026-23396.html * https://www.suse.com/security/cve/CVE-2026-23397.html * https://www.suse.com/security/cve/CVE-2026-23399.html * https://www.suse.com/security/cve/CVE-2026-23403.html * https://www.suse.com/security/cve/CVE-2026-23404.html * https://www.suse.com/security/cve/CVE-2026-23405.html * https://www.suse.com/security/cve/CVE-2026-23406.html * https://www.suse.com/security/cve/CVE-2026-23407.html * https://www.suse.com/security/cve/CVE-2026-23408.html * https://www.suse.com/security/cve/CVE-2026-23409.html * https://www.suse.com/security/cve/CVE-2026-23410.html * https://www.suse.com/security/cve/CVE-2026-23411.html * https://www.suse.com/security/cve/CVE-2026-23420.html * https://www.suse.com/security/cve/CVE-2026-23426.html * https://www.suse.com/security/cve/CVE-2026-23434.html * https://www.suse.com/security/cve/CVE-2026-23440.html * https://www.suse.com/security/cve/CVE-2026-23441.html * https://www.suse.com/security/cve/CVE-2026-23442.html * https://www.suse.com/security/cve/CVE-2026-23443.html * https://www.suse.com/security/cve/CVE-2026-23446.html * https://www.suse.com/security/cve/CVE-2026-23447.html * https://www.suse.com/security/cve/CVE-2026-23448.html * https://www.suse.com/security/cve/CVE-2026-23449.html * https://www.suse.com/security/cve/CVE-2026-23450.html * https://www.suse.com/security/cve/CVE-2026-23452.html * https://www.suse.com/security/cve/CVE-2026-23455.html * https://www.suse.com/security/cve/CVE-2026-23456.html * https://www.suse.com/security/cve/CVE-2026-23457.html * https://www.suse.com/security/cve/CVE-2026-23458.html * https://www.suse.com/security/cve/CVE-2026-23460.html * https://www.suse.com/security/cve/CVE-2026-23461.html * https://www.suse.com/security/cve/CVE-2026-23462.html * https://www.suse.com/security/cve/CVE-2026-23463.html * https://www.suse.com/security/cve/CVE-2026-23465.html * https://www.suse.com/security/cve/CVE-2026-23468.html * https://www.suse.com/security/cve/CVE-2026-23472.html * https://www.suse.com/security/cve/CVE-2026-23473.html * https://www.suse.com/security/cve/CVE-2026-23474.html * https://www.suse.com/security/cve/CVE-2026-23475.html * https://www.suse.com/security/cve/CVE-2026-31389.html * https://www.suse.com/security/cve/CVE-2026-31393.html * https://www.suse.com/security/cve/CVE-2026-31400.html * https://www.suse.com/security/cve/CVE-2026-31402.html * https://www.suse.com/security/cve/CVE-2026-31403.html * https://www.suse.com/security/cve/CVE-2026-31404.html * https://www.suse.com/security/cve/CVE-2026-31405.html * https://www.suse.com/security/cve/CVE-2026-31407.html * https://www.suse.com/security/cve/CVE-2026-31408.html * https://www.suse.com/security/cve/CVE-2026-31411.html * https://www.suse.com/security/cve/CVE-2026-31412.html * https://www.suse.com/security/cve/CVE-2026-31415.html * https://www.suse.com/security/cve/CVE-2026-31416.html * https://www.suse.com/security/cve/CVE-2026-31417.html * https://www.suse.com/security/cve/CVE-2026-31420.html * https://www.suse.com/security/cve/CVE-2026-31421.html * https://www.suse.com/security/cve/CVE-2026-31422.html * https://www.suse.com/security/cve/CVE-2026-31423.html * https://www.suse.com/security/cve/CVE-2026-31424.html * https://www.suse.com/security/cve/CVE-2026-31425.html * https://www.suse.com/security/cve/CVE-2026-31426.html * https://www.suse.com/security/cve/CVE-2026-31427.html * https://www.suse.com/security/cve/CVE-2026-31428.html * https://www.suse.com/security/cve/CVE-2026-31436.html * https://www.suse.com/security/cve/CVE-2026-31449.html * https://www.suse.com/security/cve/CVE-2026-31470.html * https://www.suse.com/security/cve/CVE-2026-31488.html * https://www.suse.com/security/cve/CVE-2026-31494.html * https://www.suse.com/security/cve/CVE-2026-31496.html * https://www.suse.com/security/cve/CVE-2026-31504.html * https://www.suse.com/security/cve/CVE-2026-31505.html * https://www.suse.com/security/cve/CVE-2026-31507.html * https://www.suse.com/security/cve/CVE-2026-31512.html * https://www.suse.com/security/cve/CVE-2026-31515.html * https://www.suse.com/security/cve/CVE-2026-31519.html * https://www.suse.com/security/cve/CVE-2026-31525.html * https://www.suse.com/security/cve/CVE-2026-31528.html * https://www.suse.com/security/cve/CVE-2026-31533.html * https://www.suse.com/security/cve/CVE-2026-31550.html * https://www.suse.com/security/cve/CVE-2026-31565.html * https://www.suse.com/security/cve/CVE-2026-31570.html * https://www.suse.com/security/cve/CVE-2026-31586.html * https://www.suse.com/security/cve/CVE-2026-31588.html * https://www.suse.com/security/cve/CVE-2026-31602.html * https://www.suse.com/security/cve/CVE-2026-31607.html * https://www.suse.com/security/cve/CVE-2026-31622.html * https://www.suse.com/security/cve/CVE-2026-31649.html * https://www.suse.com/security/cve/CVE-2026-31656.html * https://www.suse.com/security/cve/CVE-2026-31662.html * https://www.suse.com/security/cve/CVE-2026-31668.html * https://www.suse.com/security/cve/CVE-2026-31669.html * https://www.suse.com/security/cve/CVE-2026-31675.html * https://www.suse.com/security/cve/CVE-2026-31679.html * https://www.suse.com/security/cve/CVE-2026-31681.html * https://www.suse.com/security/cve/CVE-2026-31682.html * https://www.suse.com/security/cve/CVE-2026-31684.html * https://www.suse.com/security/cve/CVE-2026-31685.html * https://www.suse.com/security/cve/CVE-2026-31694.html * https://www.suse.com/security/cve/CVE-2026-31700.html * https://www.suse.com/security/cve/CVE-2026-31738.html * https://www.suse.com/security/cve/CVE-2026-31787.html * https://www.suse.com/security/cve/CVE-2026-43009.html * https://www.suse.com/security/cve/CVE-2026-43025.html * https://www.suse.com/security/cve/CVE-2026-43027.html * https://www.suse.com/security/cve/CVE-2026-43037.html * https://www.suse.com/security/cve/CVE-2026-43038.html * https://www.suse.com/security/cve/CVE-2026-43044.html * https://www.suse.com/security/cve/CVE-2026-43050.html * https://www.suse.com/security/cve/CVE-2026-43060.html * https://www.suse.com/security/cve/CVE-2026-43088.html * https://www.suse.com/security/cve/CVE-2026-43110.html * https://www.suse.com/security/cve/CVE-2026-43120.html * https://www.suse.com/security/cve/CVE-2026-43126.html * https://www.suse.com/security/cve/CVE-2026-43190.html * https://www.suse.com/security/cve/CVE-2026-43214.html * https://www.suse.com/security/cve/CVE-2026-43265.html * https://www.suse.com/security/cve/CVE-2026-43329.html * https://www.suse.com/security/cve/CVE-2026-43330.html * https://www.suse.com/security/cve/CVE-2026-43334.html * https://www.suse.com/security/cve/CVE-2026-43365.html * https://www.suse.com/security/cve/CVE-2026-43366.html * https://www.suse.com/security/cve/CVE-2026-43419.html * https://www.suse.com/security/cve/CVE-2026-43437.html * https://www.suse.com/security/cve/CVE-2026-43441.html * https://www.suse.com/security/cve/CVE-2026-43494.html * https://www.suse.com/security/cve/CVE-2026-43503.html * https://bugzilla.suse.com/show_bug.cgi?id=1215199 * https://bugzilla.suse.com/show_bug.cgi?id=1234634 * https://bugzilla.suse.com/show_bug.cgi?id=1243603 * https://bugzilla.suse.com/show_bug.cgi?id=1248754 * https://bugzilla.suse.com/show_bug.cgi?id=1253122 * https://bugzilla.suse.com/show_bug.cgi?id=1253754 * https://bugzilla.suse.com/show_bug.cgi?id=1254518 * https://bugzilla.suse.com/show_bug.cgi?id=1256863 * https://bugzilla.suse.com/show_bug.cgi?id=1257631 * https://bugzilla.suse.com/show_bug.cgi?id=1258518 * https://bugzilla.suse.com/show_bug.cgi?id=1258718 * https://bugzilla.suse.com/show_bug.cgi?id=1258826 * https://bugzilla.suse.com/show_bug.cgi?id=1258849 * https://bugzilla.suse.com/show_bug.cgi?id=1258850 * https://bugzilla.suse.com/show_bug.cgi?id=1258854 * https://bugzilla.suse.com/show_bug.cgi?id=1258855 * https://bugzilla.suse.com/show_bug.cgi?id=1258856 * https://bugzilla.suse.com/show_bug.cgi?id=1258857 * https://bugzilla.suse.com/show_bug.cgi?id=1258961 * https://bugzilla.suse.com/show_bug.cgi?id=1259186 * https://bugzilla.suse.com/show_bug.cgi?id=1259199 * https://bugzilla.suse.com/show_bug.cgi?id=1259222 * https://bugzilla.suse.com/show_bug.cgi?id=1259484 * https://bugzilla.suse.com/show_bug.cgi?id=1259485 * https://bugzilla.suse.com/show_bug.cgi?id=1259535 * https://bugzilla.suse.com/show_bug.cgi?id=1259799 * https://bugzilla.suse.com/show_bug.cgi?id=1259806 * https://bugzilla.suse.com/show_bug.cgi?id=1259857 * https://bugzilla.suse.com/show_bug.cgi?id=1259868 * https://bugzilla.suse.com/show_bug.cgi?id=1259869 * https://bugzilla.suse.com/show_bug.cgi?id=1259873 * https://bugzilla.suse.com/show_bug.cgi?id=1259878 * https://bugzilla.suse.com/show_bug.cgi?id=1260010 * https://bugzilla.suse.com/show_bug.cgi?id=1260012 * https://bugzilla.suse.com/show_bug.cgi?id=1260018 * https://bugzilla.suse.com/show_bug.cgi?id=1260468 * https://bugzilla.suse.com/show_bug.cgi?id=1260483 * https://bugzilla.suse.com/show_bug.cgi?id=1260484 * https://bugzilla.suse.com/show_bug.cgi?id=1260485 * https://bugzilla.suse.com/show_bug.cgi?id=1260489 * https://bugzilla.suse.com/show_bug.cgi?id=1260501 * https://bugzilla.suse.com/show_bug.cgi?id=1260504 * https://bugzilla.suse.com/show_bug.cgi?id=1260505 * https://bugzilla.suse.com/show_bug.cgi?id=1260507 * https://bugzilla.suse.com/show_bug.cgi?id=1260522 * https://bugzilla.suse.com/show_bug.cgi?id=1260523 * https://bugzilla.suse.com/show_bug.cgi?id=1260526 * https://bugzilla.suse.com/show_bug.cgi?id=1260528 * https://bugzilla.suse.com/show_bug.cgi?id=1260529 * https://bugzilla.suse.com/show_bug.cgi?id=1260530 * https://bugzilla.suse.com/show_bug.cgi?id=1260531 * https://bugzilla.suse.com/show_bug.cgi?id=1260532 * https://bugzilla.suse.com/show_bug.cgi?id=1260533 * https://bugzilla.suse.com/show_bug.cgi?id=1260536 * https://bugzilla.suse.com/show_bug.cgi?id=1260537 * https://bugzilla.suse.com/show_bug.cgi?id=1260538 * https://bugzilla.suse.com/show_bug.cgi?id=1260541 * https://bugzilla.suse.com/show_bug.cgi?id=1260546 * https://bugzilla.suse.com/show_bug.cgi?id=1260549 * https://bugzilla.suse.com/show_bug.cgi?id=1260551 * https://bugzilla.suse.com/show_bug.cgi?id=1260552 * https://bugzilla.suse.com/show_bug.cgi?id=1260553 * https://bugzilla.suse.com/show_bug.cgi?id=1260555 * https://bugzilla.suse.com/show_bug.cgi?id=1260561 * https://bugzilla.suse.com/show_bug.cgi?id=1260566 * https://bugzilla.suse.com/show_bug.cgi?id=1260572 * https://bugzilla.suse.com/show_bug.cgi?id=1260581 * https://bugzilla.suse.com/show_bug.cgi?id=1260728 * https://bugzilla.suse.com/show_bug.cgi?id=1260729 * https://bugzilla.suse.com/show_bug.cgi?id=1260731 * https://bugzilla.suse.com/show_bug.cgi?id=1260800 * https://bugzilla.suse.com/show_bug.cgi?id=1260811 * https://bugzilla.suse.com/show_bug.cgi?id=1261020 * https://bugzilla.suse.com/show_bug.cgi?id=1261287 * https://bugzilla.suse.com/show_bug.cgi?id=1261295 * https://bugzilla.suse.com/show_bug.cgi?id=1261348 * https://bugzilla.suse.com/show_bug.cgi?id=1261503 * https://bugzilla.suse.com/show_bug.cgi?id=1261504 * https://bugzilla.suse.com/show_bug.cgi?id=1261581 * https://bugzilla.suse.com/show_bug.cgi?id=1261582 * https://bugzilla.suse.com/show_bug.cgi?id=1261584 * https://bugzilla.suse.com/show_bug.cgi?id=1261601 * https://bugzilla.suse.com/show_bug.cgi?id=1261602 * https://bugzilla.suse.com/show_bug.cgi?id=1261618 * https://bugzilla.suse.com/show_bug.cgi?id=1261628 * https://bugzilla.suse.com/show_bug.cgi?id=1261632 * https://bugzilla.suse.com/show_bug.cgi?id=1261636 * https://bugzilla.suse.com/show_bug.cgi?id=1261638 * https://bugzilla.suse.com/show_bug.cgi?id=1261641 * https://bugzilla.suse.com/show_bug.cgi?id=1261644 * https://bugzilla.suse.com/show_bug.cgi?id=1261645 * https://bugzilla.suse.com/show_bug.cgi?id=1261648 * https://bugzilla.suse.com/show_bug.cgi?id=1261679 * https://bugzilla.suse.com/show_bug.cgi?id=1261685 * https://bugzilla.suse.com/show_bug.cgi?id=1261686 * https://bugzilla.suse.com/show_bug.cgi?id=1261687 * https://bugzilla.suse.com/show_bug.cgi?id=1261692 * https://bugzilla.suse.com/show_bug.cgi?id=1261694 * https://bugzilla.suse.com/show_bug.cgi?id=1261700 * https://bugzilla.suse.com/show_bug.cgi?id=1261703 * https://bugzilla.suse.com/show_bug.cgi?id=1261707 * https://bugzilla.suse.com/show_bug.cgi?id=1261710 * https://bugzilla.suse.com/show_bug.cgi?id=1261713 * https://bugzilla.suse.com/show_bug.cgi?id=1261719 * https://bugzilla.suse.com/show_bug.cgi?id=1261750 * https://bugzilla.suse.com/show_bug.cgi?id=1261751 * https://bugzilla.suse.com/show_bug.cgi?id=1261752 * https://bugzilla.suse.com/show_bug.cgi?id=1261768 * https://bugzilla.suse.com/show_bug.cgi?id=1261778 * https://bugzilla.suse.com/show_bug.cgi?id=1261779 * https://bugzilla.suse.com/show_bug.cgi?id=1261781 * https://bugzilla.suse.com/show_bug.cgi?id=1261789 * https://bugzilla.suse.com/show_bug.cgi?id=1261796 * https://bugzilla.suse.com/show_bug.cgi?id=1261797 * https://bugzilla.suse.com/show_bug.cgi?id=1261896 * https://bugzilla.suse.com/show_bug.cgi?id=1262020 * https://bugzilla.suse.com/show_bug.cgi?id=1262053 * https://bugzilla.suse.com/show_bug.cgi?id=1262054 * https://bugzilla.suse.com/show_bug.cgi?id=1262055 * https://bugzilla.suse.com/show_bug.cgi?id=1262061 * https://bugzilla.suse.com/show_bug.cgi?id=1262063 * https://bugzilla.suse.com/show_bug.cgi?id=1262074 * https://bugzilla.suse.com/show_bug.cgi?id=1262078 * https://bugzilla.suse.com/show_bug.cgi?id=1262086 * https://bugzilla.suse.com/show_bug.cgi?id=1262087 * https://bugzilla.suse.com/show_bug.cgi?id=1262099 * https://bugzilla.suse.com/show_bug.cgi?id=1262100 * https://bugzilla.suse.com/show_bug.cgi?id=1262101 * https://bugzilla.suse.com/show_bug.cgi?id=1262179 * https://bugzilla.suse.com/show_bug.cgi?id=1262181 * https://bugzilla.suse.com/show_bug.cgi?id=1262602 * https://bugzilla.suse.com/show_bug.cgi?id=1262616 * https://bugzilla.suse.com/show_bug.cgi?id=1262665 * https://bugzilla.suse.com/show_bug.cgi?id=1262671 * https://bugzilla.suse.com/show_bug.cgi?id=1262673 * https://bugzilla.suse.com/show_bug.cgi?id=1262725 * https://bugzilla.suse.com/show_bug.cgi?id=1262731 * https://bugzilla.suse.com/show_bug.cgi?id=1262734 * https://bugzilla.suse.com/show_bug.cgi?id=1262746 * https://bugzilla.suse.com/show_bug.cgi?id=1262752 * https://bugzilla.suse.com/show_bug.cgi?id=1262758 * https://bugzilla.suse.com/show_bug.cgi?id=1263001 * https://bugzilla.suse.com/show_bug.cgi?id=1263012 * https://bugzilla.suse.com/show_bug.cgi?id=1263064 * https://bugzilla.suse.com/show_bug.cgi?id=1263065 * https://bugzilla.suse.com/show_bug.cgi?id=1263085 * https://bugzilla.suse.com/show_bug.cgi?id=1263093 * https://bugzilla.suse.com/show_bug.cgi?id=1263095 * https://bugzilla.suse.com/show_bug.cgi?id=1263104 * https://bugzilla.suse.com/show_bug.cgi?id=1263131 * https://bugzilla.suse.com/show_bug.cgi?id=1263140 * https://bugzilla.suse.com/show_bug.cgi?id=1263141 * https://bugzilla.suse.com/show_bug.cgi?id=1263149 * https://bugzilla.suse.com/show_bug.cgi?id=1263165 * https://bugzilla.suse.com/show_bug.cgi?id=1263170 * https://bugzilla.suse.com/show_bug.cgi?id=1263176 * https://bugzilla.suse.com/show_bug.cgi?id=1263556 * https://bugzilla.suse.com/show_bug.cgi?id=1263582 * https://bugzilla.suse.com/show_bug.cgi?id=1263592 * https://bugzilla.suse.com/show_bug.cgi?id=1263593 * https://bugzilla.suse.com/show_bug.cgi?id=1263595 * https://bugzilla.suse.com/show_bug.cgi?id=1263596 * https://bugzilla.suse.com/show_bug.cgi?id=1263600 * https://bugzilla.suse.com/show_bug.cgi?id=1263668 * https://bugzilla.suse.com/show_bug.cgi?id=1263723 * https://bugzilla.suse.com/show_bug.cgi?id=1263797 * https://bugzilla.suse.com/show_bug.cgi?id=1263815 * https://bugzilla.suse.com/show_bug.cgi?id=1263882 * https://bugzilla.suse.com/show_bug.cgi?id=1263901 * https://bugzilla.suse.com/show_bug.cgi?id=1263931 * https://bugzilla.suse.com/show_bug.cgi?id=1263933 * https://bugzilla.suse.com/show_bug.cgi?id=1263995 * https://bugzilla.suse.com/show_bug.cgi?id=1264014 * https://bugzilla.suse.com/show_bug.cgi?id=1264059 * https://bugzilla.suse.com/show_bug.cgi?id=1264082 * https://bugzilla.suse.com/show_bug.cgi?id=1264087 * https://bugzilla.suse.com/show_bug.cgi?id=1264097 * https://bugzilla.suse.com/show_bug.cgi?id=1264183 * https://bugzilla.suse.com/show_bug.cgi?id=1264427 * https://bugzilla.suse.com/show_bug.cgi?id=1264469 * https://bugzilla.suse.com/show_bug.cgi?id=1264482 * https://bugzilla.suse.com/show_bug.cgi?id=1264634 * https://bugzilla.suse.com/show_bug.cgi?id=1264651 * https://bugzilla.suse.com/show_bug.cgi?id=1264661 * https://bugzilla.suse.com/show_bug.cgi?id=1264674 * https://bugzilla.suse.com/show_bug.cgi?id=1264801 * https://bugzilla.suse.com/show_bug.cgi?id=1264848 * https://bugzilla.suse.com/show_bug.cgi?id=1265085 * https://bugzilla.suse.com/show_bug.cgi?id=1265090 * https://bugzilla.suse.com/show_bug.cgi?id=1265116 * https://bugzilla.suse.com/show_bug.cgi?id=1265119 * https://bugzilla.suse.com/show_bug.cgi?id=1265126 * https://bugzilla.suse.com/show_bug.cgi?id=1265144 * https://bugzilla.suse.com/show_bug.cgi?id=1265308 * https://bugzilla.suse.com/show_bug.cgi?id=1265421 * https://bugzilla.suse.com/show_bug.cgi?id=1265449 * https://bugzilla.suse.com/show_bug.cgi?id=1265456 * https://bugzilla.suse.com/show_bug.cgi?id=1265626 * https://bugzilla.suse.com/show_bug.cgi?id=1265846 * https://bugzilla.suse.com/show_bug.cgi?id=1265960 * https://jira.suse.com/browse/PED-7249 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:45:08 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:45:08 -0000 Subject: SUSE-SU-2026:21918-1: important: Security update for kernel-livepatch-MICRO-6-0-RT_Update_24 Message-ID: <178041870858.42.296156662785895836@b0da085613fb> # Security update for kernel-livepatch-MICRO-6-0-RT_Update_24 Announcement ID: SUSE-SU-2026:21918-1 Release Date: 2026-05-29T16:12:43Z Rating: important References: Affected Products: * SUSE Linux Micro 6.0 An update that can now be installed. ## Description: This update for kernel-livepatch-MICRO-6-0-RT_Update_24 fixes the following issues: * New livepatch SLE Micro 6.0/6.1 kernel update 24 ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-kernel-438=1 ## Package List: * SUSE Linux Micro 6.0 (x86_64) * kernel-livepatch-MICRO-6-0-RT_Update_24-debugsource-1-1.1 * kernel-livepatch-6_4_0-47-rt-debuginfo-1-1.1 * kernel-livepatch-6_4_0-47-rt-1-1.1 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:45:09 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:45:09 -0000 Subject: SUSE-SU-2026:21917-1: important: Security update for kernel-livepatch-MICRO-6-0_Update_23 Message-ID: <178041870997.42.13659319891588420579@b0da085613fb> # Security update for kernel-livepatch-MICRO-6-0_Update_23 Announcement ID: SUSE-SU-2026:21917-1 Release Date: 2026-05-29T16:12:43Z Rating: important References: Affected Products: * SUSE Linux Micro 6.0 An update that can now be installed. ## Description: This update for kernel-livepatch-MICRO-6-0_Update_23 fixes the following issues: * New livepatch SLE Micro 6.0/6.1 kernel update 23 ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-kernel-436=1 ## Package List: * SUSE Linux Micro 6.0 (s390x x86_64) * kernel-livepatch-6_4_0-46-default-1-1.1 * kernel-livepatch-6_4_0-46-default-debuginfo-1-1.1 * kernel-livepatch-MICRO-6-0_Update_23-debugsource-1-1.1 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:49:58 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:49:58 -0000 Subject: SUSE-SU-2026:21916-1: important: Security update for the Linux Kernel Message-ID: <178041899839.42.17540659437406439241@b0da085613fb> # Security update for the Linux Kernel Announcement ID: SUSE-SU-2026:21916-1 Release Date: 2026-05-29T16:06:32Z Rating: important References: * bsc#1215199 * bsc#1234634 * bsc#1243603 * bsc#1248754 * bsc#1253122 * bsc#1253754 * bsc#1254518 * bsc#1256863 * bsc#1257631 * bsc#1258518 * bsc#1258718 * bsc#1258826 * bsc#1258849 * bsc#1258850 * bsc#1258854 * bsc#1258855 * bsc#1258856 * bsc#1258857 * bsc#1258961 * bsc#1259186 * bsc#1259199 * bsc#1259222 * bsc#1259484 * bsc#1259485 * bsc#1259535 * bsc#1259799 * bsc#1259806 * bsc#1259857 * bsc#1259868 * bsc#1259869 * bsc#1259873 * bsc#1259878 * bsc#1260010 * bsc#1260012 * bsc#1260018 * bsc#1260468 * bsc#1260483 * bsc#1260484 * bsc#1260485 * bsc#1260489 * bsc#1260501 * bsc#1260504 * bsc#1260505 * bsc#1260507 * bsc#1260522 * bsc#1260523 * bsc#1260526 * bsc#1260528 * bsc#1260529 * bsc#1260530 * bsc#1260531 * bsc#1260532 * bsc#1260533 * bsc#1260536 * bsc#1260537 * bsc#1260538 * bsc#1260541 * bsc#1260546 * bsc#1260549 * bsc#1260551 * bsc#1260552 * bsc#1260553 * bsc#1260555 * bsc#1260561 * bsc#1260566 * bsc#1260572 * bsc#1260581 * bsc#1260728 * bsc#1260729 * bsc#1260731 * bsc#1260800 * bsc#1260811 * bsc#1261020 * bsc#1261287 * bsc#1261295 * bsc#1261348 * bsc#1261503 * bsc#1261504 * bsc#1261581 * bsc#1261582 * bsc#1261584 * bsc#1261601 * bsc#1261602 * bsc#1261618 * bsc#1261628 * bsc#1261632 * bsc#1261636 * bsc#1261638 * bsc#1261641 * bsc#1261644 * bsc#1261645 * bsc#1261648 * bsc#1261679 * bsc#1261685 * bsc#1261686 * bsc#1261687 * bsc#1261692 * bsc#1261694 * bsc#1261700 * bsc#1261703 * bsc#1261707 * bsc#1261710 * bsc#1261713 * bsc#1261719 * bsc#1261750 * bsc#1261751 * bsc#1261752 * bsc#1261768 * bsc#1261778 * bsc#1261779 * bsc#1261781 * bsc#1261789 * bsc#1261796 * bsc#1261797 * bsc#1261896 * bsc#1262020 * bsc#1262053 * bsc#1262054 * bsc#1262055 * bsc#1262061 * bsc#1262063 * bsc#1262074 * bsc#1262078 * bsc#1262086 * bsc#1262087 * bsc#1262099 * bsc#1262100 * bsc#1262101 * bsc#1262179 * bsc#1262181 * bsc#1262602 * bsc#1262616 * bsc#1262665 * bsc#1262671 * bsc#1262673 * bsc#1262725 * bsc#1262731 * bsc#1262734 * bsc#1262746 * bsc#1262752 * bsc#1262758 * bsc#1263001 * bsc#1263012 * bsc#1263064 * bsc#1263065 * bsc#1263085 * bsc#1263093 * bsc#1263095 * bsc#1263104 * bsc#1263131 * bsc#1263140 * bsc#1263141 * bsc#1263149 * bsc#1263165 * bsc#1263170 * bsc#1263176 * bsc#1263556 * bsc#1263582 * bsc#1263592 * bsc#1263593 * bsc#1263595 * bsc#1263596 * bsc#1263600 * bsc#1263668 * bsc#1263723 * bsc#1263797 * bsc#1263815 * bsc#1263882 * bsc#1263901 * bsc#1263931 * bsc#1263933 * bsc#1263995 * bsc#1264014 * bsc#1264059 * bsc#1264082 * bsc#1264087 * bsc#1264097 * bsc#1264183 * bsc#1264427 * bsc#1264469 * bsc#1264482 * bsc#1264634 * bsc#1264651 * bsc#1264661 * bsc#1264674 * bsc#1264801 * bsc#1264848 * bsc#1265085 * bsc#1265090 * bsc#1265116 * bsc#1265119 * bsc#1265126 * bsc#1265144 * bsc#1265308 * bsc#1265421 * bsc#1265449 * bsc#1265456 * bsc#1265626 * bsc#1265846 * bsc#1265960 * jsc#PED-7249 Cross-References: * CVE-2023-20585 * CVE-2025-40219 * CVE-2025-71183 * CVE-2025-71238 * CVE-2026-23168 * CVE-2026-23209 * CVE-2026-23236 * CVE-2026-23237 * CVE-2026-23239 * CVE-2026-23240 * CVE-2026-23245 * CVE-2026-23246 * CVE-2026-23253 * CVE-2026-23260 * CVE-2026-23264 * CVE-2026-23266 * CVE-2026-23268 * CVE-2026-23269 * CVE-2026-23271 * CVE-2026-23273 * CVE-2026-23276 * CVE-2026-23279 * CVE-2026-23290 * CVE-2026-23291 * CVE-2026-23298 * CVE-2026-23300 * CVE-2026-23306 * CVE-2026-23307 * CVE-2026-23308 * CVE-2026-23312 * CVE-2026-23313 * CVE-2026-23315 * CVE-2026-23318 * CVE-2026-23321 * CVE-2026-23324 * CVE-2026-23325 * CVE-2026-23336 * CVE-2026-23339 * CVE-2026-23340 * CVE-2026-23346 * CVE-2026-23351 * CVE-2026-23357 * CVE-2026-23362 * CVE-2026-23363 * CVE-2026-23365 * CVE-2026-23367 * CVE-2026-23368 * CVE-2026-23370 * CVE-2026-23372 * CVE-2026-23373 * CVE-2026-23374 * CVE-2026-23378 * CVE-2026-23382 * CVE-2026-23391 * CVE-2026-23392 * CVE-2026-23393 * CVE-2026-23396 * CVE-2026-23397 * CVE-2026-23399 * CVE-2026-23403 * CVE-2026-23404 * CVE-2026-23405 * CVE-2026-23406 * CVE-2026-23407 * CVE-2026-23408 * CVE-2026-23409 * CVE-2026-23410 * CVE-2026-23411 * CVE-2026-23420 * CVE-2026-23426 * CVE-2026-23434 * CVE-2026-23440 * CVE-2026-23441 * CVE-2026-23442 * CVE-2026-23443 * CVE-2026-23446 * CVE-2026-23447 * CVE-2026-23448 * CVE-2026-23449 * CVE-2026-23450 * CVE-2026-23452 * CVE-2026-23455 * CVE-2026-23456 * CVE-2026-23457 * CVE-2026-23458 * CVE-2026-23460 * CVE-2026-23461 * CVE-2026-23462 * CVE-2026-23463 * CVE-2026-23465 * CVE-2026-23468 * CVE-2026-23472 * CVE-2026-23473 * CVE-2026-23474 * CVE-2026-23475 * CVE-2026-31389 * CVE-2026-31393 * CVE-2026-31400 * CVE-2026-31402 * CVE-2026-31403 * CVE-2026-31404 * CVE-2026-31405 * CVE-2026-31407 * CVE-2026-31408 * CVE-2026-31411 * CVE-2026-31412 * CVE-2026-31415 * CVE-2026-31416 * CVE-2026-31417 * CVE-2026-31420 * CVE-2026-31421 * CVE-2026-31422 * CVE-2026-31423 * CVE-2026-31424 * CVE-2026-31425 * CVE-2026-31426 * CVE-2026-31427 * CVE-2026-31428 * CVE-2026-31436 * CVE-2026-31449 * CVE-2026-31470 * CVE-2026-31488 * CVE-2026-31494 * CVE-2026-31496 * CVE-2026-31504 * CVE-2026-31505 * CVE-2026-31507 * CVE-2026-31512 * CVE-2026-31515 * CVE-2026-31519 * CVE-2026-31525 * CVE-2026-31528 * CVE-2026-31533 * CVE-2026-31550 * CVE-2026-31565 * CVE-2026-31570 * CVE-2026-31586 * CVE-2026-31588 * CVE-2026-31602 * CVE-2026-31607 * CVE-2026-31622 * CVE-2026-31649 * CVE-2026-31656 * CVE-2026-31662 * CVE-2026-31668 * CVE-2026-31669 * CVE-2026-31675 * CVE-2026-31679 * CVE-2026-31681 * CVE-2026-31682 * CVE-2026-31684 * CVE-2026-31685 * CVE-2026-31694 * CVE-2026-31700 * CVE-2026-31738 * CVE-2026-31787 * CVE-2026-43009 * CVE-2026-43025 * CVE-2026-43027 * CVE-2026-43037 * CVE-2026-43038 * CVE-2026-43044 * CVE-2026-43050 * CVE-2026-43060 * CVE-2026-43088 * CVE-2026-43110 * CVE-2026-43120 * CVE-2026-43126 * CVE-2026-43190 * CVE-2026-43214 * CVE-2026-43265 * CVE-2026-43329 * CVE-2026-43330 * CVE-2026-43334 * CVE-2026-43365 * CVE-2026-43366 * CVE-2026-43419 * CVE-2026-43437 * CVE-2026-43441 * CVE-2026-43494 * CVE-2026-43503 CVSS scores: * CVE-2023-20585 ( SUSE ): 5.6 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2023-20585 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:N * CVE-2023-20585 ( NVD ): 5.6 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2025-40219 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2025-40219 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2025-71183 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-71183 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-71238 ( SUSE ): 5.9 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-71238 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H * CVE-2025-71238 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23168 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23168 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23168 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23209 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23209 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23236 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23236 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23236 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H * CVE-2026-23236 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23237 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23237 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23237 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23239 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23239 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23239 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23240 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23240 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23240 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23245 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23245 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23245 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23246 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23246 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23253 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23253 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23260 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-23260 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-23260 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23264 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23264 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23264 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23266 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23266 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23266 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23268 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23268 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23268 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23269 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23269 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23269 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23271 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23271 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23271 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23273 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23273 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23273 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23276 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23276 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23279 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23279 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23279 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23290 ( SUSE ): 5.1 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23290 ( SUSE ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23290 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23291 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23291 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23298 ( SUSE ): 5.1 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23298 ( SUSE ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23298 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23300 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23300 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23300 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23306 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23306 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:H/A:H * CVE-2026-23306 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23307 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23307 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23308 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23308 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23312 ( SUSE ): 5.1 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23312 ( SUSE ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23312 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23313 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23313 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23315 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23315 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23318 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23318 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23321 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-23321 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-23321 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23324 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23324 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23324 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23325 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23325 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23336 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23336 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23339 ( SUSE ): 2.3 CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-23339 ( SUSE ): 3.1 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-23339 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23340 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23340 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23340 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23346 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23346 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23346 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23351 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23351 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23357 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23357 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23357 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23362 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23362 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23363 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23363 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23365 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23365 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23365 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23367 ( SUSE ): 5.3 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-23367 ( SUSE ): 6.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2026-23367 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23368 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23368 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23368 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23370 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23370 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23372 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23372 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23373 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23373 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23374 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23374 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23374 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23378 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23378 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-23378 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23378 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23382 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23382 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23382 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23391 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23391 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23392 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23392 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23392 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23393 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23393 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23393 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23396 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23396 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23396 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23397 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23397 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23397 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23399 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23399 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23399 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23403 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23403 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2026-23403 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23404 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23404 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23404 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23405 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23405 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23405 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23406 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23406 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23406 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23407 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23407 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23407 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23408 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23408 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23408 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23408 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23409 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23409 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-23409 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23410 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23410 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23410 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23410 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23411 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23420 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23420 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23420 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23426 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23426 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23426 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23434 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23434 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23434 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23434 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-23440 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23440 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23440 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23440 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23441 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23441 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23442 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23442 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23442 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23443 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23443 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23443 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23446 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23446 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23446 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23447 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23447 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23447 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23448 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23448 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23448 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23449 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23449 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23449 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23450 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23450 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23450 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23452 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23452 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23452 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23455 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23455 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23455 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23456 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-23456 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-23456 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23457 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23457 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23457 ( NVD ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-23458 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23458 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23458 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23460 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23460 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23460 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23461 ( SUSE ): 7.7 CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23461 ( SUSE ): 7.5 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23461 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23462 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23462 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23462 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23463 ( SUSE ): 0.0 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-23463 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N * CVE-2026-23463 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23465 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:L/SC:N/SI:N/SA:N * CVE-2026-23465 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2026-23465 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23468 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23468 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23468 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23472 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23472 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23472 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23473 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23473 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23474 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23474 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23474 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23475 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23475 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23475 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31389 ( SUSE ): 5.6 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31389 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31389 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31393 ( SUSE ): 5.3 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31393 ( SUSE ): 4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-31393 ( NVD ): 8.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31400 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31400 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31400 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31402 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31402 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-31402 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31403 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31403 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31403 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31404 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31404 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31404 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31405 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31405 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31405 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31407 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31407 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N * CVE-2026-31407 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31408 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31408 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31408 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31411 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31411 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31411 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31412 ( SUSE ): 7.0 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31412 ( SUSE ): 6.8 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31412 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31415 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31415 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31415 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31416 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-31416 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-31416 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31417 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31417 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31417 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31420 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31420 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31420 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31421 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31421 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31421 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31422 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31422 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31422 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31423 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31423 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31423 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31424 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31424 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31424 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31425 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31425 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31425 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31426 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31426 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2026-31426 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31427 ( SUSE ): 2.0 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-31427 ( SUSE ): 4.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2026-31427 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31428 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31428 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2026-31428 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31436 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31436 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31436 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31449 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31449 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31449 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-31470 ( SUSE ): 6.0 CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:H/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31470 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H * CVE-2026-31470 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31488 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31488 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31488 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31494 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-31494 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N * CVE-2026-31494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31496 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31496 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-31496 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31504 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31504 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31504 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31505 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31505 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31505 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31507 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31507 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31507 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31512 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31512 ( SUSE ): 7.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-31512 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31515 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31515 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31515 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31519 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31519 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31519 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31525 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31525 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31525 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31528 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31528 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31528 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31533 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31533 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31533 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31550 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31550 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31550 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31565 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31565 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31565 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31570 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:H/SI:N/SA:N * CVE-2026-31570 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31570 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31586 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31586 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31586 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31588 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31588 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31588 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-31602 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31602 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31602 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31607 ( SUSE ): 7.0 CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31607 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H * CVE-2026-31607 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31622 ( SUSE ): 8.7 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31622 ( SUSE ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31622 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31649 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31649 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31649 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31656 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31656 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31656 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31662 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31662 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31662 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31668 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-31668 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2026-31668 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31669 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31669 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31669 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31675 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31675 ( SUSE ): 5.6 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H * CVE-2026-31675 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31679 ( SUSE ): 8.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31679 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31679 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31681 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31681 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N * CVE-2026-31681 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31682 ( SUSE ): 5.3 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31682 ( SUSE ): 4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-31682 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31684 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-31684 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L * CVE-2026-31684 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31685 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31685 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31685 ( NVD ): 9.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H * CVE-2026-31694 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31694 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31694 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31700 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31700 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31700 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31738 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31738 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31738 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31787 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31787 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31787 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43009 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43009 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43025 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43025 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H * CVE-2026-43027 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43027 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43037 ( SUSE ): 7.7 CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43037 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43037 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43038 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43038 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43044 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43044 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43044 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43050 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43050 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43050 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43060 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43060 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43088 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-43088 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-43110 ( SUSE ): 7.7 CVSS:4.0/AV:A/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43110 ( SUSE ): 7.5 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43110 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43120 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43120 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-43120 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43120 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43126 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43126 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43126 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43190 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43190 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-43190 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-43214 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43214 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43214 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43265 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43265 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43265 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43329 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43329 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43329 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43330 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43330 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43330 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43334 ( SUSE ): 8.6 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-43334 ( SUSE ): 8.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-43334 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43365 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-43365 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-43365 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-43366 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43366 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43366 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43419 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-43419 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-43437 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43437 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43437 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43441 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43441 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43494 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43494 ( SUSE ): 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43503 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43503 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-43503 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H Affected Products: * SUSE Linux Micro 6.0 An update that solves 181 vulnerabilities, contains one feature and has 19 fixes can now be installed. ## Description: The SUSE Linux Enterprise Micro 6.0 and Micro 6.1 RT kernel was updated to fix various security issues The following security issues were fixed: * CVE-2023-20585: x86/CPU: Fix FPDSS on Zen1 (bsc#1243603). * CVE-2025-71183: btrfs: always detect conflicting inodes when logging inode refs (bsc#1257631). * CVE-2026-23168: flex_proportions: make fprop_new_period() hardirq safe (bsc#1258826). * CVE-2026-23239: espintcp: Fix race condition in espintcp_close() (bsc#1259485). * CVE-2026-23240: tls: Fix race condition in tls_sw_cancel_work_tx() (bsc#1259484). * CVE-2026-23245: net/sched: act_gate: snapshot parameters with RCU on replace (bsc#1259799). * CVE-2026-23271: perf: Fix __perf_event_overflow() vs perf_remove_from_context() race (bsc#1260018). * CVE-2026-23276: net: move dev_xmit_recursion() helpers to net/core/dev.h (bsc#1260012). * CVE-2026-23300: net: ipv6: fix panic when IPv4 route references loopback IPv6 nexthop (bsc#1260538). * CVE-2026-23306: scsi: pm8001: Fix use-after-free in pm8001_queue_command() (bsc#1260501). * CVE-2026-23313: i40e: Fix preempt count leak in napi poll tracepoint (bsc#1260555). * CVE-2026-23321: mptcp: pm: in-kernel: always mark signal+subflow endp as used (bsc#1260505). * CVE-2026-23340: net: sched: avoid qdisc_reset_all_tx_gt() vs dequeue race for lockless qdiscs (bsc#1260523). * CVE-2026-23346: mm/ioremap: define generic_ioremap_prot() and generic_iounmap() (bsc#1260529). * CVE-2026-23351: netfilter: nft_set_pipapo: split gc into unlink and reclaim phase (bsc#1260526). * CVE-2026-23368: net: phy: register phy led_triggers during probe to avoid AB-BA deadlock (bsc#1260530). * CVE-2026-23374: blktrace: fix __this_cpu_read/write in preemptible context (bsc#1260811). * CVE-2026-23378: net/sched: act_ife: Fix metalist update behavior (bsc#1260546). * CVE-2026-23391: netfilter: xt_CT: drop pending enqueued packets on template removal (bsc#1260566). * CVE-2026-23392: netfilter: nf_tables: release flowtable after rcu grace period on error (bsc#1260531). * CVE-2026-23393: bridge: cfm: Fix race condition in peer_mep deletion (bsc#1260522). * CVE-2026-23397: nfnetlink_osf: validate individual option lengths in fingerprints (bsc#1260728). * CVE-2026-23399: nf_tables: nft_dynset: fix possible stateful expression memleak in error path (bsc#1261020). * CVE-2026-23440: net/mlx5e: Fix race condition during IPSec ESN update (bsc#1261641). * CVE-2026-23441: net/mlx5e: Prevent concurrent access to IPSec ASO context (bsc#1261768). * CVE-2026-23442: ipv6: add NULL checks for idev in SRv6 paths (bsc#1261581). * CVE-2026-23449: net/sched: teql: Fix double-free in teql_master_xmit (bsc#1261779). * CVE-2026-23450: net/smc: fix NULL dereference and UAF in smc_tcp_syn_recv_sock() (bsc#1261584). * CVE-2026-23455: netfilter: nf_conntrack_h323: check for zero length in DecodeQ931() (bsc#1261687). * CVE-2026-23456: netfilter: nf_conntrack_h323: fix OOB read in decode_int() CONS case (bsc#1261703). * CVE-2026-23457: netfilter: nf_conntrack_sip: fix Content-Length u32 truncation in sip_help_tcp() (bsc#1261686). * CVE-2026-23458: netfilter: ctnetlink: fix use-after-free in ctnetlink_dump_exp_ct() (bsc#1261781). * CVE-2026-23461: Bluetooth: L2CAP: Fix use-after-free in l2cap_unregister_user (bsc#1261707). * CVE-2026-23462: Bluetooth: HIDP: Fix possible UAF (bsc#1261710). * CVE-2026-23468: drm/amdgpu: Limit BO list entry count to prevent resource exhaustion (bsc#1261692). * CVE-2026-23472: serial: core: fix infinite loop in handle_tx() for PORT_UNKNOWN (bsc#1261636). * CVE-2026-23473: io_uring/poll: fix multishot recv missing EOF on wakeup race (bsc#1261694). * CVE-2026-31400: sunrpc: fix cache_request leak in cache_release (bsc#1261645). * CVE-2026-31402: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache (bsc#1261638). * CVE-2026-31403: NFSD: Hold net reference for the lifetime of /proc/fs/nfs/exports fd (bsc#1261796). * CVE-2026-31404: xfs: avoid dereferencing log items after push callbacks (bsc#1261628). * CVE-2026-31407: netfilter: conntrack: add missing netlink policy validations (bsc#1261632). * CVE-2026-31411: net: atm: fix crash due to unvalidated vcc pointer in sigd_send() (bsc#1261752). * CVE-2026-31415: ipv6: avoid overflows in ip6_datagram_send_ctl() (bsc#1262099). * CVE-2026-31416: netfilter: nfnetlink_log: account for netlink header size (bsc#1262100). * CVE-2026-31420: bridge: mrp: reject zero test interval to avoid OOM panic (bsc#1262055). * CVE-2026-31421: net/sched: cls_fw: fix NULL pointer dereference on shared blocks (bsc#1262061). * CVE-2026-31422: net/sched: cls_flow: fix NULL pointer dereference on shared blocks (bsc#1262054). * CVE-2026-31423: net/sched: sch_hfsc: fix divide-by-zero in rtsc_min() (bsc#1262063). * CVE-2026-31424: netfilter: x_tables: restrict xt_check_match/xt_check_target extensions for NFPROTO_ARP (bsc#1262053). * CVE-2026-31425: rds: ib: reject FRMR registration before IB connection is established (bsc#1262074). * CVE-2026-31427: netfilter: nf_conntrack_sip: fix use of uninitialized rtp_addr in process_sdp (bsc#1262086). * CVE-2026-31428: netfilter: nfnetlink_log: fix uninitialized padding leak in NFULA_PAYLOAD (bsc#1262087). * CVE-2026-31436: dmaengine: idxd: fix possible wrong descriptor completion in llist_abort_desc() (bsc#1262602). * CVE-2026-31449: ext4: validate p_idx bounds in ext4_ext_correct_indexes (bsc#1262616). * CVE-2026-31470: virt: tdx-guest: Fix handling of host controlled 'quote' buffer length (bsc#1262665). * CVE-2026-31488: drm/amd/display: Do not skip unrelated mode changes in DSC validation (bsc#1262746). * CVE-2026-31494: net: cadence: macb: Synchronize stats calculations (bsc#1262671). * CVE-2026-31496: netfilter: nf_conntrack_expect: skip expectations in other netns via proc (bsc#1262673). * CVE-2026-31504: net: fix fanout UAF in packet_release() via NETDEV_UP race (bsc#1263085). * CVE-2026-31505: iavf: fix out-of-bounds writes in iavf_get_ethtool_stats() (bsc#1263093). * CVE-2026-31507: net/smc: fix double-free of smc_spd_priv when tee() duplicates splice pipe buffer (bsc#1263095). * CVE-2026-31512: Bluetooth: L2CAP: Validate PDU length before reading SDU length in l2cap_ecred_data_rcv() (bsc#1262734). * CVE-2026-31515: af_key: validate families in pfkey_send_migrate() (bsc#1262752). * CVE-2026-31519: btrfs: set BTRFS_ROOT_ORPHAN_CLEANUP during subvol create (bsc#1263012). * CVE-2026-31525: bpf: Fix undefined behavior in interpreter sdiv/smod for INT_MIN (bsc#1262725). * CVE-2026-31528: perf: Make sure to use pmu_ctx->pmu for groups (bsc#1263001). * CVE-2026-31533: net/tls: fix use-after-free in -EBUSY error path of tls_do_encryption (bsc#1262758). * CVE-2026-31550: pmdomain: bcm: bcm2835-power: Increase ASB control timeout (bsc#1263104). * CVE-2026-31565: RDMA/irdma: Fix deadlock during netdev reset with active connections (bsc#1263064). * CVE-2026-31570: can: gw: fix OOB heap access in cgw_csum_crc8_rel() (bsc#1263065). * CVE-2026-31586: mm: blk-cgroup: fix use-after-free in cgwb_release_workfn() (bsc#1263176). * CVE-2026-31588: KVM: x86: Use scratch field in MMIO fragment to hold small write values (bsc#1263165). * CVE-2026-31602: ALSA: ctxfi: Limit PTP to a single page (bsc#1263723). * CVE-2026-31607: usbip: validate number_of_packets in usbip_pack_ret_submit() (bsc#1263600). * CVE-2026-31622: NFC: digital: Bounds check NFC-A cascade depth in SDD response handler (bsc#1263797). * CVE-2026-31649: net: stmmac: fix integer underflow in chain mode (bsc#1263582). * CVE-2026-31656: drm/i915/gt: fix refcount underflow in intel_engine_park_heartbeat (bsc#1263170). * CVE-2026-31662: tipc: fix bc_ackers underflow on duplicate GRP_ACK_MSG (bsc#1263131). * CVE-2026-31668: seg6: separate dst_cache for input and output paths in seg6 lwtunnel (bsc#1263140). * CVE-2026-31669: mptcp: fix slab-use-after-free in __inet_lookup_established (bsc#1263141). * CVE-2026-31675: net/sched: sch_netem: fix out-of-bounds access in packet corruption (bsc#1263556). * CVE-2026-31679: openvswitch: validate MPLS set/set_masked payload length (bsc#1263592). * CVE-2026-31681: netfilter: xt_multiport: validate range encoding in checkentry (bsc#1263593). * CVE-2026-31682: bridge: br_nd_send: linearize skb before parsing ND options (bsc#1263595). * CVE-2026-31684: net: sched: act_csum: validate nested VLAN headers (bsc#1263596). * CVE-2026-31685: netfilter: ip6t_eui64: reject invalid MAC header for all packets (bsc#1263668). * CVE-2026-31694: fuse: reject oversized dirents in page cache (bsc#1263901). * CVE-2026-31700: net/packet: fix TOCTOU race on mmap'd vnet_hdr in tpacket_snd() (bsc#1263882). * CVE-2026-31738: vxlan: validate ND option lengths in vxlan_na_create (bsc#1264059). * CVE-2026-31787: xen/privcmd: fix double free via VMA splitting (bsc#1262181). * CVE-2026-43009: bpf: Fix incorrect pruning due to atomic fetch precision tracking (bsc#1264014). * CVE-2026-43025: netfilter: ctnetlink: ignore explicit helper on new expectations (bsc#1263931). * CVE-2026-43027: netfilter: nf_conntrack_helper: pass helper to expect cleanup (bsc#1263933). * CVE-2026-43037: ip6_tunnel: clear skb2->cb in ip4ip6_err() (bsc#1263995). * CVE-2026-43038: ipv6: icmp: clear skb2->cb in ip6_err_gen_icmpv6_unreach() (bsc#1264097). * CVE-2026-43044: crypto: caam - fix DMA corruption on long hmac keys (bsc#1264087). * CVE-2026-43050: atm: lec: fix use-after-free in sock_def_readable() (bsc#1264082). * CVE-2026-43060: netfilter: nft_ct: drop pending enqueued packets on removal (bsc#1264183). * CVE-2026-43088: net: af_key: zero aligned sockaddr tail in PF_KEY exports (bsc#1264469). * CVE-2026-43110: wifi: brcmfmac: validate bsscfg indices in IF events (bsc#1264482). * CVE-2026-43120: RDMA/irdma: Fix double free related to rereg_user_mr. * CVE-2026-43126: ALSA: mixer: oss: Add card disconnect checkpoints (bsc#1264634). * CVE-2026-43190: netfilter: xt_tcpmss: check remaining length before reading optlen (bsc#1264848). * CVE-2026-43214: KVM: x86: Add SRCU protection for reading PDPTRs in __get_sregs2() (bsc#1264651). * CVE-2026-43265: KVM: x86: Ignore -EBUSY when checking nested events from vcpu_block() (bsc#1264427). * CVE-2026-43329: netfilter: flowtable: strictly check for maximum number of actions (bsc#1265085). * CVE-2026-43330: crypto: caam - fix overflow on long hmac keys (bsc#1264801). * CVE-2026-43334: Bluetooth: SMP: force responder MITM requirements before building the pairing response (bsc#1265090). * CVE-2026-43365: xfs: fix undersized l_iclog_roundoff values (bsc#1265119). * CVE-2026-43366: io_uring/kbuf: check if target buffer list is still legacy on recycle (bsc#1265116). * CVE-2026-43419: ceph: fix memory leaks in ceph_mdsc_build_path() (bsc#1264661). * CVE-2026-43437: ALSA: pcm: fix use-after-free on linked stream runtime in snd_pcm_drain() (bsc#1265126). * CVE-2026-43441: net: bonding: Fix nd_tbl NULL dereference when IPv6 is disabled (bsc#1264674). * CVE-2026-43494: net/rds: reset op_nents when zerocopy page pin fails (bsc#1265626). * CVE-2026-43503: net: skbuff: propagate shared-frag marker through frag- transfer helpers (bsc#1265960). The following non security issues were fixed: * accel/qaic: Add overflow check to remap_pfn_range during mmap (git-fixes). * ACPI: AGDI: fix missing newline in error message (git-fixes). * ACPI: CPPC: Fix related_cpus inconsistency during CPU hotplug (git-fixes). * ACPI: scan: Use acpi_dev_put() in object add error paths (git-fixes). * ACPI: video: force native backlight on HP OMEN 16 (8A44) (stable-fixes). * ALSA: 6fire: Fix input volume change detection (git-fixes). * ALSA: 6fire: fix use-after-free on disconnect (git-fixes). * ALSA: aoa: i2sbus: clear stale prepared state (git-fixes). * ALSA: aoa: i2sbus: fix OF node lifetime handling (git-fixes). * ALSA: aoa: Skip devices with no codecs in i2sbus_resume() (git-fixes). * ALSA: aoa: Use guard() for mutex locks (stable-fixes). * ALSA: asihpi: avoid write overflow check warning (stable-fixes). * ALSA: caiaq: Don't abort when no input device is available (git-fixes). * ALSA: caiaq: Fix control_put() result and cache rollback (git-fixes). * ALSA: caiaq: Fix potentially leftover ep1_in_urb at error path (git-fixes). * ALSA: caiaq: fix usb_dev refcount leak on probe failure (git-fixes). * ALSA: caiaq: Handle probe errors properly (git-fixes). * ALSA: caiaq: take a reference on the USB device in create_card() (git- fixes). * ALSA: control: Validate buf_len before strnlen() in snd_ctl_elem_init_enum_names() (git-fixes). * ALSA: core: Fix potential data race at fasync handling (git-fixes). * ALSA: core: Serialize deferred fasync state checks (git-fixes). * ALSA: core: Validate compress device numbers without dynamic minors (git- fixes). * ALSA: ctxfi: Add fallback to default RSR for S/PDIF (git-fixes). * ALSA: ctxfi: Fix missing SPDIFI1 index handling (stable-fixes). * ALSA: ctxfi: Limit PTP to a single page (git-fixes). * ALSA: firewire-tascam: Do not drop unread control events (git-fixes). * ALSA: fireworks: bound device-supplied status before string array lookup (git-fixes). * ALSA: hda/realtek - fixed speaker no sound update (git-fixes). * ALSA: hda/realtek: Add HP ENVY Laptop 13-ba0xxx quirk (stable-fixes). * ALSA: hda/realtek: Add mute LED quirk for HP Pavilion 15-eg0xxx (stable- fixes). * ALSA: hda/realtek: Add quirk for ASUS ROG Flow Z13-KJP GZ302EAC (stable- fixes). * ALSA: hda/realtek: add quirk for Framework F111:000F (stable-fixes). * ALSA: hda/realtek: Add quirk for Lenovo Yoga Pro 7 14IAH10 (stable-fixes). * ALSA: hda/realtek: fix code style (ERROR: else should follow close brace '}') (git-fixes). * ALSA: misc: Use guard() for spin locks (stable-fixes). * ALSA: scarlett2: Add missing sentinel initializer field (git-fixes). * ALSA: seq: Notify client and port info changes (stable-fixes). * ALSA: seq_oss: return full count for successful SEQ_FULLSIZE writes (stable- fixes). * ALSA: usb-audio: apply quirk for MOONDROP JU Jiu (stable-fixes). * ALSA: usb-audio: Avoid false E-MU sample-rate notifications (git-fixes). * ALSA: usb-audio: Avoid potential endless loop in convert_chmap_v3() (git- fixes). * ALSA: usb-audio: Evaluate packsize caps at the right place (git-fixes). * ALSA: usb-audio: Fix Audio Advantage Micro II SPDIF switch (git-fixes). * ALSA: usb-audio: Fix potential leak of pd at parsing UAC3 streams (git- fixes). * ALSA: usb-audio: Fix quirk flags for NeuralDSP Quad Cortex (stable-fixes). * ALSA: usb-audio: Fix UAC3 cluster descriptor size check (git-fixes). * ALSA: usb-audio: midi2: Restart output URBs on resume (git-fixes). * ALSA: usb-audio: stop parsing UAC2 rates at MAX_NR_RATES (git-fixes). * ASoC: amd: yc: Add DMI entry for HP Laptop 15-fc0xxx (stable-fixes). * ASoC: amd: yc: Add DMI quirk for ASUS EXPERTBOOK BM1403CDA (stable-fixes). * ASoC: amd: yc: Add DMI quirk for Thin A15 B7VF (stable-fixes). * ASoC: amd: yc: Add HP OMEN Gaming Laptop 16-ap0xxx product line in quirk table (stable-fixes). * ASoC: codecs: ab8500: Fix casting of private data (git-fixes). * ASoC: cs35l56: Destroy workqueue in probe error path (git-fixes). * ASoC: cs35l56: Don't use devres to unregister component (git-fixes). * ASoC: fsl_easrc: Change the type for iec958 channel status controls (git- fixes). * ASoC: fsl_easrc: Check the variable range in fsl_easrc_iec958_put_bits() (git-fixes). * ASoC: fsl_easrc: fix comment typo (git-fixes). * ASoC: fsl_easrc: Fix value type in fsl_easrc_iec958_get_bits() (git-fixes). * ASoC: fsl_micfil: Add access property for "VAD Detected" (git-fixes). * ASoC: fsl_micfil: Fix event generation in hwvad_put_enable() (git-fixes). * ASoC: fsl_micfil: Fix event generation in hwvad_put_init_mode() (git-fixes). * ASoC: fsl_micfil: Fix event generation in micfil_put_dc_remover_state() (git-fixes). * ASoC: fsl_micfil: Fix event generation in micfil_quality_set() (git-fixes). * ASoC: fsl_xcvr: Fix event generation for cached controls (git-fixes). * ASoC: fsl_xcvr: Fix event generation in fsl_xcvr_arc_mode_put() (git-fixes). * ASoC: fsl_xcvr: Fix event generation in fsl_xcvr_mode_put() (git-fixes). * ASoC: Intel: bytcr_wm5102: Fix MCLK leak on platform_clock_control error (git-fixes). * ASoC: qcom: q6apm-lpass-dai: Fix multiple graph opens (git-fixes). * ASoC: qcom: q6apm: move component registration to unmanaged version (git- fixes). * ASoC: qcom: q6apm: remove child devices when apm is removed (git-fixes). * ASoC: qcom: qdsp6: topology: check widget type before accessing data (git- fixes). * ASoC: soc-core: call missing INIT_LIST_HEAD() for card_aux_list (stable- fixes). * ASoC: SOF: compress: return the configured codec from get_params (git- fixes). * ASoC: SOF: Don't allow pointer operations on unconfigured streams (git- fixes). * ASoC: SOF: Intel: hda: Place check before dereference (git-fixes). * ASoC: SOF: topology: reject invalid vendor array size in token parser (stable-fixes). * ASoC: sti: Return errors from regmap_field_alloc() (git-fixes). * ASoC: sti: use managed regmap_field allocations (git-fixes). * ASoC: stm32_sai: fix incorrect BCLK polarity for DSP_A/B, LEFT_J (stable- fixes). * ata: ahci: force 32-bit DMA for JMicron JMB582/JMB585 (stable-fixes). * batman-adv: bla: only purge non-released claims (git-fixes). * batman-adv: bla: prevent use-after-free when deleting claims (git-fixes). * batman-adv: bla: put backbone reference on failed claim hash insert (git- fixes). * batman-adv: fix integer overflow on buff_pos (git-fixes). * batman-adv: hold claim backbone gateways by reference (git-fixes). * batman-adv: reject new tp_meter sessions during teardown (git-fixes). * batman-adv: reject oversized global TT response buffers (git-fixes). * batman-adv: stop caching unowned originator pointers in BAT IV (git-fixes). * Bluetooth: bnep: fix incorrect length parsing in bnep_rx_frame() extension handling (git-fixes). * Bluetooth: fix locking in hci_conn_request_evt() with HCI_PROTO_DEFER (git- fixes). * Bluetooth: hci_event: Fix OOB read and infinite loop in hci_le_create_big_complete_evt (git-fixes). * Bluetooth: hci_event: fix potential UAF in SSP passkey handlers (git-fixes). * Bluetooth: hci_ldisc: Clear HCI_UART_PROTO_INIT on error (git-fixes). * Bluetooth: HIDP: serialise l2cap_unregister_user via hidp_session_sem (git- fixes). * Bluetooth: ISO: Fix data-race on dst in iso_sock_connect() (git-fixes). * Bluetooth: l2cap: Add missing chan lock in l2cap_ecred_reconf_rsp (git- fixes). * Bluetooth: l2cap: fix MPS check in l2cap_ecred_reconf_req (git-fixes). * Bluetooth: L2CAP: Fix null-ptr-deref in l2cap_sock_new_connection_cb() (git- fixes). * Bluetooth: L2CAP: Fix null-ptr-deref in l2cap_sock_state_change_cb() (git- fixes). * Bluetooth: L2CAP: Fix printing wrong information if SDU length exceeds MTU (git-fixes). * Bluetooth: RFCOMM: pull credit byte with skb_pull_data() (git-fixes). * Bluetooth: SCO: check for codecs->num_codecs == 1 before assigning to sco_pi(sk)->codec (git-fixes). * Bluetooth: SCO: fix sleeping under spinlock in sco_conn_ready (git-fixes). * Bluetooth: SCO: hold sk properly in sco_conn_ready (git-fixes). * Bluetooth: virtio_bt: clamp rx length before skb_put (git-fixes). * Bluetooth: virtio_bt: validate rx pkt_type header length (git-fixes). * btrfs: do not skip logging new dentries when logging a new name (git-fixes). * btrfs: reject root items with drop_progress and zero drop_level (git-fixes). * btrfs: replace BUG() with error handling in __btrfs_balance() (git-fixes). * can: mcp251x: add error handling for power enable in open and resume (stable-fixes). * can: raw: fix ro->uniq use-after-free in raw_rcv() (git-fixes). * can: ucan: fix devres lifetime (git-fixes). * cdc-acm: new quirk for EPSON HMD (stable-fixes). * check-for-config-changes: Exclude CC_MS_EXTENSIONS. * check-for-config-changes: Exclude HAVE_CFI_ICALL_NORMALIZE_INTEGERS{,_RUSTC}. * checkpatch: add support for Assisted-by tag (stable-fixes). * comedi: dt2815: add hardware detection to prevent crash (stable-fixes). * crypto: algif_aead - Fix minimum RX size check for decryption (git-fixes). * crypto: arm64/aes - Fix 32-bit aes_mac_update() arg treated as 64-bit (git- fixes). * crypto: atmel-aes - Fix 3-page memory leak in atmel_aes_buff_cleanup (git- fixes). * crypto: atmel-ecc - Release client on allocation failure (git-fixes). * crypto: atmel-sha204a - Fix potential UAF and memory leak in remove path (git-fixes). * crypto: atmel-tdes - fix DMA sync direction (git-fixes). * crypto: authencesn - reject short ahash digests during instance creation (git-fixes). * crypto: ccp - copy IV using skcipher ivsize (git-fixes). * crypto: ccp: Don't attempt to copy CSR to userspace if PSP command failed (git-fixes). * crypto: ccp: Don't attempt to copy ID to userspace if PSP command failed (git-fixes). * crypto: ccp: Don't attempt to copy PDH cert to userspace if PSP command failed (git-fixes). * crypto: ccree - fix a memory leak in cc_mac_digest() (git-fixes). * crypto: hisilicon - Fix dma_unmap_single() direction (git-fixes). * crypto: jitterentropy - replace long-held spinlock with mutex (git-fixes). * crypto: pcrypt - Fix handling of MAY_BACKLOG requests (git-fixes). * crypto: qat - fix type mismatch in RAS sysfs show functions (git-fixes). * crypto: qat - use swab32 macro (git-fixes). * crypto: sa2ul - Fix AEAD fallback algorithm names (git-fixes). * crypto: simd - reject compat registrations without __ prefixes (git-fixes). * crypto: talitos - fix SEC1 32k ahash request limitation (git-fixes). * crypto: testmgr - Hide ENOENT errors (stable-fixes). * crypto: testmgr - Hide ENOENT errors better (git-fixes). * devres: fix missing node debug info in devm_krealloc() (git-fixes). * dm init: ensure device probing has finished in dm-mod.waitfor= (git-fixes). * dmaengine: dw-axi-dmac: Remove unnecessary return statement from void function (git-fixes). * dmaengine: mxs-dma: Fix missing return value from of_dma_controller_register() (git-fixes). * drm/amd/display: Add NULL check for integrated_info in clk_mgr_construct (git-fixes). * drm/amd/display: Allow DCE link encoder without AUX registers (git-fixes). * drm/amd/display: Avoid NULL dereference in dc_dmub_srv error paths (git- fixes). * drm/amd/display: Disable 10-bit truncation and dithering on DCE 6.x (git- fixes). * drm/amd/display: Read EDID from VBIOS embedded panel info (git-fixes). * drm/amd/pm/ci: Clear EnabledForActivity field for memory levels (git-fixes). * drm/amd/pm/ci: Disable MCLK DPM on problematic CI ASICs (git-fixes). * drm/amd/pm/ci: Fill DW8 fields from SMC (git-fixes). * drm/amd/pm/ci: Fix powertune defaults for Hawaii 0x67B0 (git-fixes). * drm/amd/pm/ci: Use highest MCLK on CI when MCLK DPM is disabled (git-fixes). * drm/amd/pm/smu7: Add SCLK cap for quirky Hawaii board (git-fixes). * drm/amd/pm/smu7: Fix SMU7 voltage dependency on display clock (git-fixes). * drm/amdgpu/gfx6: Support harvested SI chips with disabled TCCs (v2) (git- fixes). * drm/amdgpu/gfx9: drop unnecessary 64-bit fence flag check in KIQ (stable- fixes). * drm/amdgpu/gfx10: look at the right prop for gfx queue priority (git-fixes). * drm/amdgpu/gmc: Fix AMDGPU_GART_PLACEMENT_LOW to not overlap with VRAM (git- fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v2.0 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v2.5 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v3.0 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v4.0 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v4.0.3 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v4.0.5 ring (git-fixes). * drm/amdgpu/pm: add missing revision check for CI (git-fixes). * drm/amdgpu/pm: align Hawaii mclk workaround with radeon (git-fixes). * drm/amdgpu/sdma4: replace BUG_ON with WARN_ON in fence emission (git-fixes). * drm/amdgpu/vce: Prevent partial address patches (stable-fixes). * drm/amdgpu/vcn3: Avoid overflow on msg bound check (git-fixes). * drm/amdgpu/vcn3: Prevent OOB reads when parsing dec msg (stable-fixes). * drm/amdgpu/vcn4: Avoid overflow on msg bound check (git-fixes). * drm/amdgpu/vcn4: Prevent OOB reads when parsing dec msg (stable-fixes). * drm/amdgpu/vcn4: Prevent OOB reads when parsing IB (stable-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v2.0 enc/dec rings (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v2.5 enc/dec rings (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v3.0 enc/dec rings (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v4.0 enc ring (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v4.0.3 enc ring (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v4.0.5 enc ring (git-fixes). * drm/amdgpu: Add bounds checking to ib_{get,set}_value (stable-fixes). * drm/amdgpu: fix AMDGPU_INFO_READ_MMR_REG (git-fixes). * drm/amdgpu: fix zero-size GDS range init on RDNA4 (stable-fixes). * drm/amdgpu: zero-initialize GART table on allocation (stable-fixes). * drm/amdkfd: Add upper bound check for num_of_nodes (stable-fixes). * drm/amdkfd: Clear VRAM on allocation to prevent stale data exposure (stable- fixes). * drm/amdkfd: validate SVM ioctl nattr against buffer size (stable-fixes). * drm/arcpgu: fix device node leak (git-fixes). * drm/bridge: cadence: cdns-mhdp8546-core: Add mode_valid hook to drm_bridge_funcs (git-fixes). * drm/bridge: cadence: cdns-mhdp8546-core: Handle HDCP state in bridge atomic check (git-fixes). * drm/bridge: cadence: cdns-mhdp8546-core: Set the mhdp connector earlier in atomic_enable() (git-fixes). * drm/etnaviv: Fix armed job not being pushed to the DRM scheduler (git- fixes). * drm/fb-helper: Fix clipping when damage area spans a single scanline (git- fixes). * drm/gem: Fix inconsistent plane dimension calculation in drm_gem_fb_init_with_funcs() (git-fixes). * drm/gma500/oaktrail_hdmi: fix i2c adapter leak on setup (git-fixes). * drm/gma500/oaktrail_lvds: fix hang on init failure (git-fixes). * drm/gma500/oaktrail_lvds: fix i2c adapter leaks on init (git-fixes). * drm/i915/dp: Fix VSC dynamic range signaling for RGB formats (git-fixes). * drm/i915/gt: fix refcount underflow in intel_engine_park_heartbeat (git- fixes). * drm/i915/wm: Verify the correct plane DDB entry (git-fixes). * drm/i915: skip __i915_request_skip() for already signaled requests (git- fixes). * drm/komeda: fix integer overflow in AFBC framebuffer size check (git-fixes). * drm/msm/a6xx: Fix dumping A650+ debugbus blocks (git-fixes). * drm/msm/a6xx: Fix HLSQ register dumping (git-fixes). * drm/msm/a6xx: Use barriers while updating HFI Q headers (git-fixes). * drm/msm/dpu: fix mismatch between power and frequency (git-fixes). * drm/msm/dsi: add the missing parameter description (git-fixes). * drm/msm/dsi: fix bits_per_pclk (git-fixes). * drm/msm/dsi: fix hdisplay calculation for CMD mode panel (git-fixes). * drm/msm/dsi: rename MSM8998 DSI version from V2_2_0 to V2_0_0 (git-fixes). * drm/msm/shrinker: Fix can_block() logic (git-fixes). * drm/nouveau: fix u32 overflow in pushbuf reloc bounds check (git-fixes). * drm/panel: sharp-ls043t1le01: make use of prepare_prev_first (git-fixes). * drm/panel: simple: Correct G190EAN01 prepare timing (git-fixes). * drm/panfrost: Fix wait_bo ioctl leaking positive return from dma_resv_wait_timeout() (git-fixes). * drm/radeon: add missing revision check for CI (git-fixes). * drm/sun4i: backend: fix error pointer dereference (git-fixes). * drm/sun4i: Fix resource leaks (git-fixes). * drm/vc4: Fix a memory leak in hang state error path (git-fixes). * drm/vc4: Fix memory leak of BO array in hang state (git-fixes). * drm/vc4: platform_get_irq_byname() returns an int (stable-fixes). * drm/vc4: Protect madv read in vc4_gem_object_mmap() with madv_lock (git- fixes). * drm/vc4: Release runtime PM reference after binding V3D (git-fixes). * drm/vram: remove DRM_VRAM_MM_FILE_OPERATIONS from docs (git-fixes). * dt-bindings: net: Fix Tegra234 MGBE PTP clock (git-fixes). * efi/capsule-loader: fix incorrect sizeof in phys array reallocation (git- fixes). * efi: pstore: Drop efivar lock when efi_pstore_open() returns with an error (git-fixes). * ext4: fix fsync(2) for nojournal mode (git-fixes). * ext4: make recently_deleted() properly work with lazy itable initialization (git-fixes). * ext4: reject mount if bigalloc with s_first_data_block != 0 (git-fixes). * extcon: ptn5150: handle pending IRQ events during system resume (git-fixes). * fbdev: matroxfb: Mark variable with __maybe_unused to avoid W=1 build break (git-fixes). * fbdev: offb: fix PCI device reference leak on probe failure (git-fixes). * fbdev: tdfxfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO (stable-fixes). * fbdev: udlfb: add vm_ops to dlfb_ops_mmap to prevent use-after-free (stable- fixes). * fbdev: udlfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO (git-fixes). * firmware: dmi: Correct an indexing error in dmi.h (git-fixes). * gpio: tegra: fix irq_release_resources calling enable instead of disable (git-fixes). * gtp: disable BH before calling udp_tunnel_xmit_skb() (git-fixes). * HID: alps: fix NULL pointer dereference in alps_raw_event() (git-fixes). * HID: asus: do not abort probe when not necessary (git-fixes). * HID: asus: make asus_resume adhere to linux kernel coding standards (git- fixes). * HID: core: clamp report_size in s32ton() to avoid undefined shift (stable- fixes). * HID: multitouch: Check to ensure report responses match the request (stable- fixes). * HID: playstation: Clamp num_touch_reports (git-fixes). * HID: quirks: add HID_QUIRK_ALWAYS_POLL for 8BitDo Pro 3 (stable-fixes). * HID: roccat: fix use-after-free in roccat_report_event (stable-fixes). * HID: usbhid: fix deadlock in hid_post_reset() (git-fixes). * HID: wacom: fix out-of-bounds read in wacom_intuos_bt_irq (stable-fixes). * hv_sock: fix ARM64 support (git-fixes). * hwmon: (ads7871) Fix endianness bug in 16-bit register reads (git-fixes). * hwmon: (corsair-psu) Close HID device on probe errors (git-fixes). * hwmon: (lm63) Add locking to avoid TOCTOU (git-fixes). * hwmon: (ltc2992) Clamp threshold writes to hardware range (git-fixes). * hwmon: (ltc2992) Fix u32 overflow in power read path (git-fixes). * i2c: s3c24xx: check the size of the SMBUS message before using it (stable- fixes). * i2c: smbus: reject oversized block transfers in the common path (git-fixes). * i2c: stm32f7: reinit_completion() per transfer not per msg (git-fixes). * i2c: stub: Reject I2C block transfers with invalid length (git-fixes). * i3c: master: Fix error codes at send_ccc_cmd (git-fixes). * i3c: mipi-i3c-hci: fix IBI payload length calculation for final status (git- fixes). * ibmveth: Disable GSO for packets with small MSS (bsc#1265144). * ice: set max queues in alloc_etherdev_mqs() (git-fixes). * iio: adc: ad7768-1: fix one-shot mode data acquisition (git-fixes). * iio: adc: ti-adc161s626: use DMA-safe memory for spi_read() (git-fixes). * iio: adc: ti-ads7950: use iio_push_to_buffers_with_ts_unaligned() (git- fixes). * Input: i8042 - add TUXEDO InfinityBook Max 16 Gen10 AMD to i8042 quirk table (stable-fixes). * Input: uinput - fix circular locking dependency with ff-core (git-fixes). * Input: uinput - take event lock when submitting FF request "event" (stable- fixes). * Input: xpad - add support for BETOP BTP-KP50B/C controller's wireless mode (stable-fixes). * Input: xpad - add support for Razer Wolverine V3 Pro (stable-fixes). * ipmi: Add limits to event and receive message requests (git-fixes). * ipmi: Check event message buffer response for bad data (git-fixes). * ipmi: ssif_bmc: change log level to dbg in irq callback (git-fixes). * ipmi: ssif_bmc: fix message desynchronization after truncated response (git- fixes). * ipmi: ssif_bmc: fix missing check for copy_to_user() partial failure (git- fixes). * irqchip/irq-pic32-evic: Address warning related to wrong printf() formatter (git-fixes). * kdump, documentation: describe craskernel CMA reservation (jsc#PED-7249). * KVM: Reject wrapped offset in kvm_reset_dirty_gfn() (git-fixes). * KVM: SVM: Mark VMCB_NPT as dirty on nested VMRUN (git-fixes). * KVM: SVM: Mark VMCB_PERM_MAP as dirty on nested VMRUN (git-fixes). * KVM: x86/mmu: Retry fault before acquiring mmu_lock if mapping is changing (bsc#1253122). * KVM: x86/xen: Fix cleanup logic in emulation of Xen schedop poll hypercalls (git-fixes). * KVM: x86: check for nEPT/nNPT in slow flush hypercalls (git-fixes). * KVM: x86: Fix shadow paging use-after-free due to unexpected GFN (git- fixes). * KVM: x86: hyper-v: Validate all GVAs during PV TLB flush (git-fixes). * KVM: x86: Ignore cpuid faulting in SMM (git-fixes). * leds: lgm-sso: Remove duplicate assignments for priv->mmap (git-fixes). * lib/hexdump: print_hex_dump_bytes() calls print_hex_dump_debug() (git- fixes). * media: amphion: Fix race between m2m job_abort and device_run (git-fixes). * media: as102: fix to not free memory after the device is registered in as102_usb_probe() (git-fixes). * media: dib8000: avoid division by 0 in dib8000_set_dds() (git-fixes). * media: em28xx: fix use-after-free in em28xx_v4l2_open() (git-fixes). * media: hackrf: fix to not free memory after the device is registered in hackrf_probe() (git-fixes). * media: i2c: imx219: Check return value of devm_gpiod_get_optional() in imx219_probe() (git-fixes). * media: i2c: imx412: Assert reset GPIO during probe (git-fixes). * media: i2c: ov08d10: fix image vertical start setting (git-fixes). * media: i2c: ov8856: free control handler on error in ov8856_init_controls() (git-fixes). * media: mtk-jpeg: fix use-after-free in release path due to uncancelled work (git-fixes). * media: omap3isp: drop the use count of v4l2 pipeline (git-fixes). * media: pci: zoran: fix potential memory leak in zoran_probe() (git-fixes). * media: rc: streamzap: Error handling in probe (git-fixes). * media: rc: xbox_remote: heed DMA restrictions (git-fixes). * media: saa7164: add ioremap return checks and cleanups (git-fixes). * media: staging: imx: configure src_mux in csi_start (git-fixes). * media: staging: imx: request mbus_config in csi_start (git-fixes). * media: uvcvideo: Enable VB2_DMABUF for metadata stream (git-fixes). * media: videobuf2: Set vma_flags in vb2_dma_sg_mmap (git-fixes). * media: vidtv: fix nfeeds state corruption on start_streaming failure (git- fixes). * media: vidtv: fix NULL pointer dereference in vidtv_channel_pmt_match_sections (git-fixes). * media: vidtv: fix pass-by-value structs causing MSAN warnings (git-fixes). * memory: tegra30-emc: Fix dll_change check (git-fixes). * memory: tegra124-emc: Fix dll_change check (git-fixes). * mfd: mc13xxx-core: Fix memory leak in mc13xxx_add_subdevice_pdata() (git- fixes). * mkspec: Add signature to source list only when it exists. * mmc: sdhci-of-dwcmshc: Disable clock before DLL configuration (git-fixes). * mmc: vub300: fix NULL-deref on disconnect (git-fixes). * modpost: Amend ppc64 save/restfpr symnames for -Os build (bsc#1215199). * mtd: docg3: Convert to platform remove callback returning void (stable- fixes). * mtd: docg3: fix use-after-free in docg3_release() (git-fixes). * mtd: parsers: ofpart: call of_node_get() for dedicated subpartitions (git- fixes). * mtd: parsers: ofpart: call of_node_put() only in ofpart_fail path (git- fixes). * mtd: physmap_of_gemini: Fix disabled pinctrl state check (git-fixes). * mtd: rawnand: sunxi: fix sunxi_nfc_hw_ecc_read_extra_oob (git-fixes). * mtd: spi-nor: core: correct the op.dummy.nbytes when check read operations (git-fixes). * mtd: spi-nor: sst: Factor out common write operation to `sst_nor_write_data()` (stable-fixes). * mtd: spi-nor: sst: Fix SST write failure (git-fixes). * mtd: spi-nor: sst: Fix write enable before AAI sequence (git-fixes). * mtd: spi-nor: swp: check SR_TB flag when getting tb_mask (git-fixes). * net/rds: reset op_nents when zerocopy page pin fails (bsc#1265626). * net/sched: cls_fw: fix NULL dereference of "old" filters before change() (git-fixes). * net/sched: fix pedit partial COW leading to page cache corruption (bsc#1265421). * net: gro: don't merge zcopy skbs (git-fixes). * net: mana: Add MAC address to vPort logs and clarify error messages (git- fixes). * net: mana: check xdp_rxq registration before unreg in mana_destroy_rxq() (git-fixes). * net: mana: Don't overwrite port probe error with add_adev result (git- fixes). * net: mana: Fix crash from unvalidated SHM offset read from BAR0 during FLR (bsc#1265846). * net: mana: Fix EQ leak in mana_remove on NULL port (git-fixes). * net: mana: Fix RX skb truesize accounting (bsc#1248754). * net: mana: fix use-after-free in mana_hwc_destroy_channel() by reordering teardown (git-fixes). * net: mana: Guard mana_remove against double invocation (git-fixes). * net: mana: hardening: Validate adapter_mtu from MANA_QUERY_DEV_CONFIG (git- fixes). * net: mana: hardening: Validate doorbell ID from GDMA_REGISTER_DEVICE response (git-fixes). * net: mana: Init gf_stats_work before potential error paths in probe (git- fixes). * net: mana: Init link_change_work before potential error paths in probe (git- fixes). * net: mana: remove double CQ cleanup in mana_create_rxq error path (git- fixes). * net: mana: Set default number of queues to 16 (bsc#1261648). * net: mana: Skip WQ object destruction for uninitialized RXQ (git-fixes). * net: mana: Use at least SZ_4K in doorbell ID range check (git-fixes). * net: mana: Use pci_name() for debugfs directory naming (git-fixes). * net: phy: dp83869: fix setting CLK_O_SEL field (git-fixes). * net: stmmac: Fix PTP ref clock for Tegra234 (git-fixes). * net: usb: asix: ax88772: re-add usbnet_link_change() in phylink callbacks (git-fixes). * net: usb: cdc-phonet: fix skb frags[] overflow in rx_complete() (git-fixes). * net: usb: rtl8150: fix use-after-free in rtl8150_start_xmit() (git-fixes). * net: usb: rtl8150: free skb on usb_submit_urb() failure in xmit (git-fixes). * net: wan: fsl_ucc_hdlc: fix ucc_hdlc_remove (git-fixes). * net: wan: fsl_ucc_hdlc: fix uhdlc_memclean (git-fixes). * net: wan: fsl_ucc_hdlc: free tx_skbuff in uhdlc_memclean (git-fixes). * NFC: digital: Bounds check NFC-A cascade depth in SDD response handler (git- fixes). * nfc: llcp: add missing return after LLCP_CLOSED checks (git-fixes). * nfc: pn533: allocate rx skb before consuming bytes (git-fixes). * nfc: s3fwrn5: allocate rx skb before consuming bytes (git-fixes). * NFC: trf7970a: Ignore antenna noise when checking for RF field (git-fixes). * nvmet-tcp: propagate nvmet_tcp_build_pdu_iovec() errors to its callers (git- fixes). * ocfs2: fix possible deadlock between unlink and dio_end_io_write (bsc#1258718). * ocfs2: split transactions in dio completion to avoid credit exhaustion (bsc#1258718). * PCI/AER: Clear only error bits in PCIe Device Status (git-fixes). * PCI/AER: Stop ruling out unbound devices as error source (git-fixes). * PCI: dwc: Apply ECRC workaround to DesignWare 5.00a as well (git-fixes). * PCI: Enable AtomicOps only if Root Port supports them (git-fixes). * PCI: endpoint: pci-epf-ntb: Remove duplicate resource teardown (git-fixes). * PCI: hv: Set default NUMA node to 0 for devices without affinity info (git- fixes). * PCI: mediatek-gen3: Prevent leaking IRQ domains when IRQ not found (git- fixes). * PCI: tegra194: Allow system suspend when the Endpoint link is not up (git- fixes). * PCI: tegra194: Disable direct speed change for Endpoint mode (git-fixes). * PCI: tegra194: Disable LTSSM after transition to Detect on surprise link down (git-fixes). * PCI: tegra194: Disable PERST# IRQ only in Endpoint mode (git-fixes). * PCI: tegra194: Fix polling delay for L2 state (git-fixes). * PCI: tegra194: Increase LTSSM poll time on surprise link down (git-fixes). * PCI: tegra194: Set LTR message request before PCIe link up in Endpoint mode (git-fixes). * PCI: tegra194: Use devm_gpiod_get_optional() to parse "nvidia,refclk-select" (git-fixes). * PCI: tegra194: Use DWC IP core version (git-fixes). * pinctrl: abx500: Fix type of 'argument' variable (git-fixes). * pinctrl: Fix spelling problem (git-fixes). * pinctrl: intel: Fix the revision for new features (1kOhm PD, HW debouncer) (stable-fixes). * pinctrl: pic32: change all cases of bare 'unsigned' to 'unsigned int' (git- fixes). * pinctrl: pic32: use consistent spacing around '+' (git-fixes). * pinctrl: pinctrl-pic32: Fix resource leak (git-fixes). * platform/chrome: chromeos_tbmc: Drop wakeup source on remove (git-fixes). * platform/surface: surfacepro3_button: Drop wakeup source on remove (git- fixes). * platform/x86/amd: pmc: Add Thinkpad L14 Gen3 to quirk_s2idle_bug (stable- fixes). * platform/x86: dell-wmi-sysman: bound enumeration string aggregation (git- fixes). * platform/x86: dell_rbu: avoid uninit value usage in packet_size_write() (git-fixes). * platform/x86: hp-wmi: Ignore backlight and FnLock events (stable-fixes). * platform/x86: panasonic-laptop: Fix OPTD notifier registration and cleanup (git-fixes). * power: supply: axp288_charger: Do not cancel work before initializing it (git-fixes). * power: supply: max17042: avoid overflow when determining health (git-fixes). * powerpc/crash: fix backup region offset update to elfcorehdr (bsc#1259535). * RDMA/mana: Fix error unwind in mana_ib_create_qp_rss() (git-fixes). * RDMA/mana: Fix mana_destroy_wq_obj() cleanup in mana_ib_create_qp_rss() (git-fixes). * RDMA/mana: Remove user triggerable WARN_ON() in mana_ib_create_qp_rss() (git-fixes). * RDMA/mana: Validate rx_hash_key_len (git-fixes). * RDMA/mana_ib: cleanup the usage of mana_gd_send_request() (git-fixes). * RDMA/mana_ib: Disable RX steering on RSS QP destroy (git-fixes). * RDMA/mana_ib: Support memory windows (git-fixes). * regulator: act8945a: fix OF node reference imbalance (git-fixes). * regulator: bd9571mwv: fix OF node reference imbalance (git-fixes). * regulator: max77650: fix OF node reference imbalance (git-fixes). * regulator: mt6357: fix OF node reference imbalance (git-fixes). * remoteproc: xlnx: Only access buffer information if IPI is buffered (git- fixes). * Revert "ALSA: usb: Increase volume range that triggers a warning" (git- fixes). * rtc: abx80x: Disable alarm feature if no interrupt attached (git-fixes). * rtc: ntxec: fix OF node reference imbalance (git-fixes). * sched/balancing: Switch the 'DEFINE_SPINLOCK(balancing)' spinlock into an 'atomic_t sched_balance_running' flag (bsc#1253754). * sched/fair: Change likelyhood of nohz.nr_cpus (bsc#1234634 bsc#1258961). * sched/fair: Have SD_SERIALIZE affect newidle balancing (bsc#1253754). * sched/fair: Move checking for nohz cpus after time check (bsc#1234634 bsc#1258961). * sched/fair: Remove nohz.nr_cpus and use weight of cpumask instead (bsc#1234634 bsc#1258961). * sched/fair: Skip sched_balance_running cmpxchg when balance is not due (bsc#1253754). * scsi: storvsc: Handle PERSISTENT_RESERVE_IN truncation for Hyper-V vFC (git- fixes). * scsi: target: iscsi: validate CHAP_R length before base64 decode (bsc#1265449). * soc/tegra: cbb: Set ERD on resume for err interrupt (git-fixes). * soc: qcom: aoss: compare against normalized cooling state (git-fixes). * soc: qcom: llcc: fix v1 SB syndrome register offset (git-fixes). * sound: ua101: fix division by zero at probe (git-fixes). * soundwire: bus: demote UNATTACHED state warnings to dev_dbg() (git-fixes). * soundwire: cadence: Clear message complete before signaling waiting thread (git-fixes). * spi: at91-usart: fix controller deregistration (git-fixes). * spi: atmel: fix controller deregistration (git-fixes). * spi: cadence: fix controller deregistration (git-fixes). * spi: fix controller cleanup() documentation (git-fixes). * spi: fix misleading controller deregistration kernel-doc (git-fixes). * spi: fix misleading controller registration kernel-doc (git-fixes). * spi: fsl-qspi: Use reinit_completion() for repeated operations (git-fixes). * spi: hisi-kunpeng: prevent infinite while() loop in hisi_spi_flush_fifo (git-fixes). * spi: imx: fix runtime pm leak on probe deferral (git-fixes). * spi: imx: fix use-after-free on unbind (git-fixes). * spi: microchip-core-qspi: fix controller deregistration (git-fixes). * spi: microchip-core-qspi: Use helper function devm_clk_get_enabled() (stable-fixes). * spi: mpc52xx: fix use-after-free on unbind (git-fixes). * spi: mtk-nor: fix controller deregistration (git-fixes). * spi: mtk-snfi: unregister ECC engine on probe failure and remove() callback (git-fixes). * spi: omap2-mcspi: fix controller deregistration (git-fixes). * spi: orion: fix clock imbalance on registration failure (git-fixes). * spi: orion: fix runtime pm leak on unbind (git-fixes). * spi: rockchip: fix controller deregistration (git-fixes). * spi: rspi: fix controller deregistration (git-fixes). * spi: sh-hspi: fix controller deregistration (git-fixes). * spi: spi-ti-qspi: Convert to platform remove callback returning void (stable-fixes). * spi: sprd: fix controller deregistration (git-fixes). * spi: sun4i: fix controller deregistration (git-fixes). * spi: sun4i: switch to use modern name (stable-fixes). * spi: syncuacer: fix controller deregistration (git-fixes). * spi: synquacer: switch to use modern name (stable-fixes). * spi: uniphier: fix controller deregistration (git-fixes). * spi: uniphier: Simplify clock handling with devm_clk_get_enabled() (stable- fixes). * spi: uniphier: switch to use modern name (stable-fixes). * spi: zynq-qspi: switch to use modern name (stable-fixes). * spi: zynqmp-gqspi: fix controller deregistration (git-fixes). * staging: media: atomisp: Disallow all private IOCTLs (git-fixes). * staging: rtl8723bs: initialize le_tmp64 in rtw_BIP_verify() (git-fixes). * staging: sm750fb: fix division by zero in ps_to_hz() (git-fixes). * staging: vme_user: added bound check to geoid (stable-fixes). * staging: vme_user: fix root device leak on init failure (git-fixes). * thermal/drivers/spear: Fix error condition for reading st,thermal-flags (git-fixes). * thermal/drivers/sprd: Fix raw temperature clamping in sprd_thm_rawdata_to_temp (git-fixes). * thermal/drivers/sprd: Fix temperature clamping in sprd_thm_temp_to_rawdata (git-fixes). * tpm: avoid -Wunused-but-set-variable (git-fixes). * tpm: tpm_tis: add error logging for data transfer (git-fixes). * tpm: tpm_tis: stop transmit if retries are exhausted (git-fixes). * tty: tty_io: update timestamps on all device nodes (bsc#1262020). * USB: cdc-acm: Add quirks for Yoga Book 9 14IAH10 INGENIC touchscreen (stable-fixes). * usb: chipidea: core: allow ci_irq_handler() handle both ID and VBUS change (git-fixes). * usb: chipidea: otg: not wait vbus drop if use role_switch (git-fixes). * USB: core: add NO_LPM quirk for Razer Kiyo Pro webcam (stable-fixes). * usb: gadget: dummy_hcd: fix premature URB completion when ZLP follows partial transfer (stable-fixes). * usb: gadget: f_ncm: validate minimum block_len in ncm_unwrap_ntb() (git- fixes). * usb: gadget: f_phonet: fix skb frags[] overflow in pn_rx_complete() (stable- fixes). * usb: gadget: f_uac1_legacy: validate control request size (stable-fixes). * usb: gadget: renesas_usb3: validate endpoint index in standard request handlers (git-fixes). * USB: omap_udc: DMA: Don't enable burst 4 mode (git-fixes). * usb: port: add delay after usb_hub_set_port_power() (git-fixes). * usb: quirks: add DELAY_INIT quirk for another Silicon Motion flash drive (stable-fixes). * USB: serial: io_edgeport: add support for Blackbox IC135A (stable-fixes). * USB: serial: option: add MeiG Smart SRM825WN (stable-fixes). * USB: serial: option: add support for Rolling Wireless RW135R-GL (stable- fixes). * USB: serial: option: add Telit Cinterion FN990A MBIM composition (stable- fixes). * USB: serial: option: add Telit Cinterion LE910Cx compositions (stable- fixes). * usb: storage: Expand range of matched versions for VL817 quirks entry (stable-fixes). * usb: ulpi: fix memory leak on ulpi_register() error paths (git-fixes). * usb: usblp: fix heap leak in IEEE 1284 device ID via short response (stable- fixes). * usb: usblp: fix uninitialized heap leak via LPGETSTATUS ioctl (stable- fixes). * usb: xhci: Make usb_host_endpoint.hcpriv survive endpoint_disable() (git- fixes). * usbip: validate number_of_packets in usbip_pack_ret_submit() (git-fixes). * virt: tdx-guest: Fix handling of host controlled 'quote' buffer length (git- fixes). * virt: tdx-guest: Return error for GetQuote failures (git-fixes). * wifi: ath5k: do not access array OOB (git-fixes). * wifi: ath9k: Fix typo (git-fixes). * wifi: ath11k: Pass the correct value of each TID during a stop AMPDU session (git-fixes). * wifi: ath11k: skip status ring entry processing (stable-fixes). * wifi: ath11k: Use dma_alloc_noncoherent for rx_tid buffer allocation (stable-fixes). * wifi: b43: enforce bounds check on firmware key index in b43_rx() (git- fixes). * wifi: b43legacy: enforce bounds check on firmware key index in RX path (git- fixes). * wifi: brcmfmac: Fix error pointer dereference (git-fixes). * wifi: brcmfmac: validate bsscfg indices in IF events (stable-fixes). * wifi: brcmsmac: Fix dma_free_coherent() size (git-fixes). * wifi: cw1200: Revert "Fix locking in error paths" (git-fixes). * wifi: libertas: notify firmware load wait on disconnect (git-fixes). * wifi: mac80211: check ieee80211_rx_data_set_link return in pubsta MLO path (git-fixes). * wifi: mac80211: drop stray 'static' from fast-RX rx_result (git-fixes). * wifi: mac80211: remove station if connection prep fails (git-fixes). * wifi: mt76: mt792x: describe USB WFSYS reset with a descriptor (stable- fixes). * wifi: mt76: mt792x: fix mt7925u USB WFSYS reset handling (git-fixes). * wifi: mt76: mt7615: fix use_cts_prot support (git-fixes). * wifi: mt76: mt7915: fix use-after-free bugs in mt7915_mac_dump_work() (git- fixes). * wifi: mt76: mt7915: fix use_cts_prot support (git-fixes). * wifi: mt76: mt7921: fix a potential clc buffer length underflow (git-fixes). * wifi: mt76: mt7921: fix ROC abort flow interruption in mt7921_roc_work (git- fixes). * wifi: mt76: mt7921: Reset ampdu_state state in case of failure in mt76_connac2_tx_check_aggr() (git-fixes). * wifi: mt76: mt7925: fix incorrect length field in txpower command (git- fixes). * wifi: mt76: mt7996: fix FCS error flag check in RX descriptor (git-fixes). * wifi: mt76: mt7996: fix struct mt7996_mcu_uni_event (git-fixes). * wifi: mwifiex: Fix memory leak in mwifiex_11n_aggregate_pkt() (git-fixes). * wifi: nl80211: fix NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST usage (git- fixes). * wifi: nl80211: require admin perm on SET_PMK / DEL_PMK (git-fixes). * wifi: rsi: fix kthread lifetime race between self-exit and external-stop (git-fixes). * wifi: rt2x00usb: fix devres lifetime (git-fixes). * wifi: rtlwifi: pci: fix possible use-after-free caused by unfinished irq_prepare_bcn_tasklet (git-fixes). * wifi: rtw88: check for PCI upstream bridge existence (git-fixes). * wifi: rtw88: fix device leak on probe failure (git-fixes). * wifi: rtw89: phy: fix uninitialized variable access in rtw89_phy_cfo_set_crystal_cap() (git-fixes). * wifi: wl1251: validate packet IDs before indexing tx_frames (stable-fixes). * workqueue: Break up enum definitions and give names to the types (bsc#1260522). * workqueue: Clean up enum work_bits and related constants (bsc#1260522). * workqueue: Factor out work_grab_pending() from __cancel_work_sync() (bsc#1260522). * workqueue: Fix UBSAN 'subtraction overflow' error in shift_and_mask() (bsc#1260522). * workqueue: Implement disable/enable for (delayed) work items (bsc#1260522). * workqueue: Introduce work_cancel_flags (bsc#1260522). * workqueue: Make @flags handling consistent across set_work_data() and friends (bsc#1260522). * workqueue: Preserve OFFQ bits in cancel[_sync] paths (bsc#1260522). * workqueue: Rename __cancel_work_timer() to __cancel_timer_sync() (bsc#1260522). * workqueue: Reorganize flush and cancel[_sync] functions (bsc#1260522). * x86/boot/64: Clear most of CR4 in startup_64(), except PAE, MCE and LA57 (git-fixes). * x86/boot/sev: Avoid shared GHCB page for early memory acceptance (git- fixes). * x86/boot: Don't add the EFI stub to targets, again (git-fixes). * x86/boot: Fix page table access in 5-level to 4-level paging transition (git-fixes). * X.509: Fix out-of-bounds access when parsing extensions (git-fixes). * Xarray: do not return sibling entries from xas_find_marked() (bsc#1263815). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-kernel-437=1 ## Package List: * SUSE Linux Micro 6.0 (noarch) * kernel-source-rt-6.4.0-47.1 * kernel-devel-rt-6.4.0-47.1 * SUSE Linux Micro 6.0 (nosrc x86_64) * kernel-rt-6.4.0-47.1 * SUSE Linux Micro 6.0 (x86_64) * kernel-rt-debuginfo-6.4.0-47.1 * kernel-rt-debugsource-6.4.0-47.1 * kernel-rt-livepatch-6.4.0-47.1 ## References: * https://www.suse.com/security/cve/CVE-2023-20585.html * https://www.suse.com/security/cve/CVE-2025-40219.html * https://www.suse.com/security/cve/CVE-2025-71183.html * https://www.suse.com/security/cve/CVE-2025-71238.html * https://www.suse.com/security/cve/CVE-2026-23168.html * https://www.suse.com/security/cve/CVE-2026-23209.html * https://www.suse.com/security/cve/CVE-2026-23236.html * https://www.suse.com/security/cve/CVE-2026-23237.html * https://www.suse.com/security/cve/CVE-2026-23239.html * https://www.suse.com/security/cve/CVE-2026-23240.html * https://www.suse.com/security/cve/CVE-2026-23245.html * https://www.suse.com/security/cve/CVE-2026-23246.html * https://www.suse.com/security/cve/CVE-2026-23253.html * https://www.suse.com/security/cve/CVE-2026-23260.html * https://www.suse.com/security/cve/CVE-2026-23264.html * https://www.suse.com/security/cve/CVE-2026-23266.html * https://www.suse.com/security/cve/CVE-2026-23268.html * https://www.suse.com/security/cve/CVE-2026-23269.html * https://www.suse.com/security/cve/CVE-2026-23271.html * https://www.suse.com/security/cve/CVE-2026-23273.html * https://www.suse.com/security/cve/CVE-2026-23276.html * https://www.suse.com/security/cve/CVE-2026-23279.html * https://www.suse.com/security/cve/CVE-2026-23290.html * https://www.suse.com/security/cve/CVE-2026-23291.html * https://www.suse.com/security/cve/CVE-2026-23298.html * https://www.suse.com/security/cve/CVE-2026-23300.html * https://www.suse.com/security/cve/CVE-2026-23306.html * https://www.suse.com/security/cve/CVE-2026-23307.html * https://www.suse.com/security/cve/CVE-2026-23308.html * https://www.suse.com/security/cve/CVE-2026-23312.html * https://www.suse.com/security/cve/CVE-2026-23313.html * https://www.suse.com/security/cve/CVE-2026-23315.html * https://www.suse.com/security/cve/CVE-2026-23318.html * https://www.suse.com/security/cve/CVE-2026-23321.html * https://www.suse.com/security/cve/CVE-2026-23324.html * https://www.suse.com/security/cve/CVE-2026-23325.html * https://www.suse.com/security/cve/CVE-2026-23336.html * https://www.suse.com/security/cve/CVE-2026-23339.html * https://www.suse.com/security/cve/CVE-2026-23340.html * https://www.suse.com/security/cve/CVE-2026-23346.html * https://www.suse.com/security/cve/CVE-2026-23351.html * https://www.suse.com/security/cve/CVE-2026-23357.html * https://www.suse.com/security/cve/CVE-2026-23362.html * https://www.suse.com/security/cve/CVE-2026-23363.html * https://www.suse.com/security/cve/CVE-2026-23365.html * https://www.suse.com/security/cve/CVE-2026-23367.html * https://www.suse.com/security/cve/CVE-2026-23368.html * https://www.suse.com/security/cve/CVE-2026-23370.html * https://www.suse.com/security/cve/CVE-2026-23372.html * https://www.suse.com/security/cve/CVE-2026-23373.html * https://www.suse.com/security/cve/CVE-2026-23374.html * https://www.suse.com/security/cve/CVE-2026-23378.html * https://www.suse.com/security/cve/CVE-2026-23382.html * https://www.suse.com/security/cve/CVE-2026-23391.html * https://www.suse.com/security/cve/CVE-2026-23392.html * https://www.suse.com/security/cve/CVE-2026-23393.html * https://www.suse.com/security/cve/CVE-2026-23396.html * https://www.suse.com/security/cve/CVE-2026-23397.html * https://www.suse.com/security/cve/CVE-2026-23399.html * https://www.suse.com/security/cve/CVE-2026-23403.html * https://www.suse.com/security/cve/CVE-2026-23404.html * https://www.suse.com/security/cve/CVE-2026-23405.html * https://www.suse.com/security/cve/CVE-2026-23406.html * https://www.suse.com/security/cve/CVE-2026-23407.html * https://www.suse.com/security/cve/CVE-2026-23408.html * https://www.suse.com/security/cve/CVE-2026-23409.html * https://www.suse.com/security/cve/CVE-2026-23410.html * https://www.suse.com/security/cve/CVE-2026-23411.html * https://www.suse.com/security/cve/CVE-2026-23420.html * https://www.suse.com/security/cve/CVE-2026-23426.html * https://www.suse.com/security/cve/CVE-2026-23434.html * https://www.suse.com/security/cve/CVE-2026-23440.html * https://www.suse.com/security/cve/CVE-2026-23441.html * https://www.suse.com/security/cve/CVE-2026-23442.html * https://www.suse.com/security/cve/CVE-2026-23443.html * https://www.suse.com/security/cve/CVE-2026-23446.html * https://www.suse.com/security/cve/CVE-2026-23447.html * https://www.suse.com/security/cve/CVE-2026-23448.html * https://www.suse.com/security/cve/CVE-2026-23449.html * https://www.suse.com/security/cve/CVE-2026-23450.html * https://www.suse.com/security/cve/CVE-2026-23452.html * https://www.suse.com/security/cve/CVE-2026-23455.html * https://www.suse.com/security/cve/CVE-2026-23456.html * https://www.suse.com/security/cve/CVE-2026-23457.html * https://www.suse.com/security/cve/CVE-2026-23458.html * https://www.suse.com/security/cve/CVE-2026-23460.html * https://www.suse.com/security/cve/CVE-2026-23461.html * https://www.suse.com/security/cve/CVE-2026-23462.html * https://www.suse.com/security/cve/CVE-2026-23463.html * https://www.suse.com/security/cve/CVE-2026-23465.html * https://www.suse.com/security/cve/CVE-2026-23468.html * https://www.suse.com/security/cve/CVE-2026-23472.html * https://www.suse.com/security/cve/CVE-2026-23473.html * https://www.suse.com/security/cve/CVE-2026-23474.html * https://www.suse.com/security/cve/CVE-2026-23475.html * https://www.suse.com/security/cve/CVE-2026-31389.html * https://www.suse.com/security/cve/CVE-2026-31393.html * https://www.suse.com/security/cve/CVE-2026-31400.html * https://www.suse.com/security/cve/CVE-2026-31402.html * https://www.suse.com/security/cve/CVE-2026-31403.html * https://www.suse.com/security/cve/CVE-2026-31404.html * https://www.suse.com/security/cve/CVE-2026-31405.html * https://www.suse.com/security/cve/CVE-2026-31407.html * https://www.suse.com/security/cve/CVE-2026-31408.html * https://www.suse.com/security/cve/CVE-2026-31411.html * https://www.suse.com/security/cve/CVE-2026-31412.html * https://www.suse.com/security/cve/CVE-2026-31415.html * https://www.suse.com/security/cve/CVE-2026-31416.html * https://www.suse.com/security/cve/CVE-2026-31417.html * https://www.suse.com/security/cve/CVE-2026-31420.html * https://www.suse.com/security/cve/CVE-2026-31421.html * https://www.suse.com/security/cve/CVE-2026-31422.html * https://www.suse.com/security/cve/CVE-2026-31423.html * https://www.suse.com/security/cve/CVE-2026-31424.html * https://www.suse.com/security/cve/CVE-2026-31425.html * https://www.suse.com/security/cve/CVE-2026-31426.html * https://www.suse.com/security/cve/CVE-2026-31427.html * https://www.suse.com/security/cve/CVE-2026-31428.html * https://www.suse.com/security/cve/CVE-2026-31436.html * https://www.suse.com/security/cve/CVE-2026-31449.html * https://www.suse.com/security/cve/CVE-2026-31470.html * https://www.suse.com/security/cve/CVE-2026-31488.html * https://www.suse.com/security/cve/CVE-2026-31494.html * https://www.suse.com/security/cve/CVE-2026-31496.html * https://www.suse.com/security/cve/CVE-2026-31504.html * https://www.suse.com/security/cve/CVE-2026-31505.html * https://www.suse.com/security/cve/CVE-2026-31507.html * https://www.suse.com/security/cve/CVE-2026-31512.html * https://www.suse.com/security/cve/CVE-2026-31515.html * https://www.suse.com/security/cve/CVE-2026-31519.html * https://www.suse.com/security/cve/CVE-2026-31525.html * https://www.suse.com/security/cve/CVE-2026-31528.html * https://www.suse.com/security/cve/CVE-2026-31533.html * https://www.suse.com/security/cve/CVE-2026-31550.html * https://www.suse.com/security/cve/CVE-2026-31565.html * https://www.suse.com/security/cve/CVE-2026-31570.html * https://www.suse.com/security/cve/CVE-2026-31586.html * https://www.suse.com/security/cve/CVE-2026-31588.html * https://www.suse.com/security/cve/CVE-2026-31602.html * https://www.suse.com/security/cve/CVE-2026-31607.html * https://www.suse.com/security/cve/CVE-2026-31622.html * https://www.suse.com/security/cve/CVE-2026-31649.html * https://www.suse.com/security/cve/CVE-2026-31656.html * https://www.suse.com/security/cve/CVE-2026-31662.html * https://www.suse.com/security/cve/CVE-2026-31668.html * https://www.suse.com/security/cve/CVE-2026-31669.html * https://www.suse.com/security/cve/CVE-2026-31675.html * https://www.suse.com/security/cve/CVE-2026-31679.html * https://www.suse.com/security/cve/CVE-2026-31681.html * https://www.suse.com/security/cve/CVE-2026-31682.html * https://www.suse.com/security/cve/CVE-2026-31684.html * https://www.suse.com/security/cve/CVE-2026-31685.html * https://www.suse.com/security/cve/CVE-2026-31694.html * https://www.suse.com/security/cve/CVE-2026-31700.html * https://www.suse.com/security/cve/CVE-2026-31738.html * https://www.suse.com/security/cve/CVE-2026-31787.html * https://www.suse.com/security/cve/CVE-2026-43009.html * https://www.suse.com/security/cve/CVE-2026-43025.html * https://www.suse.com/security/cve/CVE-2026-43027.html * https://www.suse.com/security/cve/CVE-2026-43037.html * https://www.suse.com/security/cve/CVE-2026-43038.html * https://www.suse.com/security/cve/CVE-2026-43044.html * https://www.suse.com/security/cve/CVE-2026-43050.html * https://www.suse.com/security/cve/CVE-2026-43060.html * https://www.suse.com/security/cve/CVE-2026-43088.html * https://www.suse.com/security/cve/CVE-2026-43110.html * https://www.suse.com/security/cve/CVE-2026-43120.html * https://www.suse.com/security/cve/CVE-2026-43126.html * https://www.suse.com/security/cve/CVE-2026-43190.html * https://www.suse.com/security/cve/CVE-2026-43214.html * https://www.suse.com/security/cve/CVE-2026-43265.html * https://www.suse.com/security/cve/CVE-2026-43329.html * https://www.suse.com/security/cve/CVE-2026-43330.html * https://www.suse.com/security/cve/CVE-2026-43334.html * https://www.suse.com/security/cve/CVE-2026-43365.html * https://www.suse.com/security/cve/CVE-2026-43366.html * https://www.suse.com/security/cve/CVE-2026-43419.html * https://www.suse.com/security/cve/CVE-2026-43437.html * https://www.suse.com/security/cve/CVE-2026-43441.html * https://www.suse.com/security/cve/CVE-2026-43494.html * https://www.suse.com/security/cve/CVE-2026-43503.html * https://bugzilla.suse.com/show_bug.cgi?id=1215199 * https://bugzilla.suse.com/show_bug.cgi?id=1234634 * https://bugzilla.suse.com/show_bug.cgi?id=1243603 * https://bugzilla.suse.com/show_bug.cgi?id=1248754 * https://bugzilla.suse.com/show_bug.cgi?id=1253122 * https://bugzilla.suse.com/show_bug.cgi?id=1253754 * https://bugzilla.suse.com/show_bug.cgi?id=1254518 * https://bugzilla.suse.com/show_bug.cgi?id=1256863 * https://bugzilla.suse.com/show_bug.cgi?id=1257631 * https://bugzilla.suse.com/show_bug.cgi?id=1258518 * https://bugzilla.suse.com/show_bug.cgi?id=1258718 * https://bugzilla.suse.com/show_bug.cgi?id=1258826 * https://bugzilla.suse.com/show_bug.cgi?id=1258849 * https://bugzilla.suse.com/show_bug.cgi?id=1258850 * https://bugzilla.suse.com/show_bug.cgi?id=1258854 * https://bugzilla.suse.com/show_bug.cgi?id=1258855 * https://bugzilla.suse.com/show_bug.cgi?id=1258856 * https://bugzilla.suse.com/show_bug.cgi?id=1258857 * https://bugzilla.suse.com/show_bug.cgi?id=1258961 * https://bugzilla.suse.com/show_bug.cgi?id=1259186 * https://bugzilla.suse.com/show_bug.cgi?id=1259199 * https://bugzilla.suse.com/show_bug.cgi?id=1259222 * https://bugzilla.suse.com/show_bug.cgi?id=1259484 * https://bugzilla.suse.com/show_bug.cgi?id=1259485 * https://bugzilla.suse.com/show_bug.cgi?id=1259535 * https://bugzilla.suse.com/show_bug.cgi?id=1259799 * https://bugzilla.suse.com/show_bug.cgi?id=1259806 * https://bugzilla.suse.com/show_bug.cgi?id=1259857 * https://bugzilla.suse.com/show_bug.cgi?id=1259868 * https://bugzilla.suse.com/show_bug.cgi?id=1259869 * https://bugzilla.suse.com/show_bug.cgi?id=1259873 * https://bugzilla.suse.com/show_bug.cgi?id=1259878 * https://bugzilla.suse.com/show_bug.cgi?id=1260010 * https://bugzilla.suse.com/show_bug.cgi?id=1260012 * https://bugzilla.suse.com/show_bug.cgi?id=1260018 * https://bugzilla.suse.com/show_bug.cgi?id=1260468 * https://bugzilla.suse.com/show_bug.cgi?id=1260483 * https://bugzilla.suse.com/show_bug.cgi?id=1260484 * https://bugzilla.suse.com/show_bug.cgi?id=1260485 * https://bugzilla.suse.com/show_bug.cgi?id=1260489 * https://bugzilla.suse.com/show_bug.cgi?id=1260501 * https://bugzilla.suse.com/show_bug.cgi?id=1260504 * https://bugzilla.suse.com/show_bug.cgi?id=1260505 * https://bugzilla.suse.com/show_bug.cgi?id=1260507 * https://bugzilla.suse.com/show_bug.cgi?id=1260522 * https://bugzilla.suse.com/show_bug.cgi?id=1260523 * https://bugzilla.suse.com/show_bug.cgi?id=1260526 * https://bugzilla.suse.com/show_bug.cgi?id=1260528 * https://bugzilla.suse.com/show_bug.cgi?id=1260529 * https://bugzilla.suse.com/show_bug.cgi?id=1260530 * https://bugzilla.suse.com/show_bug.cgi?id=1260531 * https://bugzilla.suse.com/show_bug.cgi?id=1260532 * https://bugzilla.suse.com/show_bug.cgi?id=1260533 * https://bugzilla.suse.com/show_bug.cgi?id=1260536 * https://bugzilla.suse.com/show_bug.cgi?id=1260537 * https://bugzilla.suse.com/show_bug.cgi?id=1260538 * https://bugzilla.suse.com/show_bug.cgi?id=1260541 * https://bugzilla.suse.com/show_bug.cgi?id=1260546 * https://bugzilla.suse.com/show_bug.cgi?id=1260549 * https://bugzilla.suse.com/show_bug.cgi?id=1260551 * https://bugzilla.suse.com/show_bug.cgi?id=1260552 * https://bugzilla.suse.com/show_bug.cgi?id=1260553 * https://bugzilla.suse.com/show_bug.cgi?id=1260555 * https://bugzilla.suse.com/show_bug.cgi?id=1260561 * https://bugzilla.suse.com/show_bug.cgi?id=1260566 * https://bugzilla.suse.com/show_bug.cgi?id=1260572 * https://bugzilla.suse.com/show_bug.cgi?id=1260581 * https://bugzilla.suse.com/show_bug.cgi?id=1260728 * https://bugzilla.suse.com/show_bug.cgi?id=1260729 * https://bugzilla.suse.com/show_bug.cgi?id=1260731 * https://bugzilla.suse.com/show_bug.cgi?id=1260800 * https://bugzilla.suse.com/show_bug.cgi?id=1260811 * https://bugzilla.suse.com/show_bug.cgi?id=1261020 * https://bugzilla.suse.com/show_bug.cgi?id=1261287 * https://bugzilla.suse.com/show_bug.cgi?id=1261295 * https://bugzilla.suse.com/show_bug.cgi?id=1261348 * https://bugzilla.suse.com/show_bug.cgi?id=1261503 * https://bugzilla.suse.com/show_bug.cgi?id=1261504 * https://bugzilla.suse.com/show_bug.cgi?id=1261581 * https://bugzilla.suse.com/show_bug.cgi?id=1261582 * https://bugzilla.suse.com/show_bug.cgi?id=1261584 * https://bugzilla.suse.com/show_bug.cgi?id=1261601 * https://bugzilla.suse.com/show_bug.cgi?id=1261602 * https://bugzilla.suse.com/show_bug.cgi?id=1261618 * https://bugzilla.suse.com/show_bug.cgi?id=1261628 * https://bugzilla.suse.com/show_bug.cgi?id=1261632 * https://bugzilla.suse.com/show_bug.cgi?id=1261636 * https://bugzilla.suse.com/show_bug.cgi?id=1261638 * https://bugzilla.suse.com/show_bug.cgi?id=1261641 * https://bugzilla.suse.com/show_bug.cgi?id=1261644 * https://bugzilla.suse.com/show_bug.cgi?id=1261645 * https://bugzilla.suse.com/show_bug.cgi?id=1261648 * https://bugzilla.suse.com/show_bug.cgi?id=1261679 * https://bugzilla.suse.com/show_bug.cgi?id=1261685 * https://bugzilla.suse.com/show_bug.cgi?id=1261686 * https://bugzilla.suse.com/show_bug.cgi?id=1261687 * https://bugzilla.suse.com/show_bug.cgi?id=1261692 * https://bugzilla.suse.com/show_bug.cgi?id=1261694 * https://bugzilla.suse.com/show_bug.cgi?id=1261700 * https://bugzilla.suse.com/show_bug.cgi?id=1261703 * https://bugzilla.suse.com/show_bug.cgi?id=1261707 * https://bugzilla.suse.com/show_bug.cgi?id=1261710 * https://bugzilla.suse.com/show_bug.cgi?id=1261713 * https://bugzilla.suse.com/show_bug.cgi?id=1261719 * https://bugzilla.suse.com/show_bug.cgi?id=1261750 * https://bugzilla.suse.com/show_bug.cgi?id=1261751 * https://bugzilla.suse.com/show_bug.cgi?id=1261752 * https://bugzilla.suse.com/show_bug.cgi?id=1261768 * https://bugzilla.suse.com/show_bug.cgi?id=1261778 * https://bugzilla.suse.com/show_bug.cgi?id=1261779 * https://bugzilla.suse.com/show_bug.cgi?id=1261781 * https://bugzilla.suse.com/show_bug.cgi?id=1261789 * https://bugzilla.suse.com/show_bug.cgi?id=1261796 * https://bugzilla.suse.com/show_bug.cgi?id=1261797 * https://bugzilla.suse.com/show_bug.cgi?id=1261896 * https://bugzilla.suse.com/show_bug.cgi?id=1262020 * https://bugzilla.suse.com/show_bug.cgi?id=1262053 * https://bugzilla.suse.com/show_bug.cgi?id=1262054 * https://bugzilla.suse.com/show_bug.cgi?id=1262055 * https://bugzilla.suse.com/show_bug.cgi?id=1262061 * https://bugzilla.suse.com/show_bug.cgi?id=1262063 * https://bugzilla.suse.com/show_bug.cgi?id=1262074 * https://bugzilla.suse.com/show_bug.cgi?id=1262078 * https://bugzilla.suse.com/show_bug.cgi?id=1262086 * https://bugzilla.suse.com/show_bug.cgi?id=1262087 * https://bugzilla.suse.com/show_bug.cgi?id=1262099 * https://bugzilla.suse.com/show_bug.cgi?id=1262100 * https://bugzilla.suse.com/show_bug.cgi?id=1262101 * https://bugzilla.suse.com/show_bug.cgi?id=1262179 * https://bugzilla.suse.com/show_bug.cgi?id=1262181 * https://bugzilla.suse.com/show_bug.cgi?id=1262602 * https://bugzilla.suse.com/show_bug.cgi?id=1262616 * https://bugzilla.suse.com/show_bug.cgi?id=1262665 * https://bugzilla.suse.com/show_bug.cgi?id=1262671 * https://bugzilla.suse.com/show_bug.cgi?id=1262673 * https://bugzilla.suse.com/show_bug.cgi?id=1262725 * https://bugzilla.suse.com/show_bug.cgi?id=1262731 * https://bugzilla.suse.com/show_bug.cgi?id=1262734 * https://bugzilla.suse.com/show_bug.cgi?id=1262746 * https://bugzilla.suse.com/show_bug.cgi?id=1262752 * https://bugzilla.suse.com/show_bug.cgi?id=1262758 * https://bugzilla.suse.com/show_bug.cgi?id=1263001 * https://bugzilla.suse.com/show_bug.cgi?id=1263012 * https://bugzilla.suse.com/show_bug.cgi?id=1263064 * https://bugzilla.suse.com/show_bug.cgi?id=1263065 * https://bugzilla.suse.com/show_bug.cgi?id=1263085 * https://bugzilla.suse.com/show_bug.cgi?id=1263093 * https://bugzilla.suse.com/show_bug.cgi?id=1263095 * https://bugzilla.suse.com/show_bug.cgi?id=1263104 * https://bugzilla.suse.com/show_bug.cgi?id=1263131 * https://bugzilla.suse.com/show_bug.cgi?id=1263140 * https://bugzilla.suse.com/show_bug.cgi?id=1263141 * https://bugzilla.suse.com/show_bug.cgi?id=1263149 * https://bugzilla.suse.com/show_bug.cgi?id=1263165 * https://bugzilla.suse.com/show_bug.cgi?id=1263170 * https://bugzilla.suse.com/show_bug.cgi?id=1263176 * https://bugzilla.suse.com/show_bug.cgi?id=1263556 * https://bugzilla.suse.com/show_bug.cgi?id=1263582 * https://bugzilla.suse.com/show_bug.cgi?id=1263592 * https://bugzilla.suse.com/show_bug.cgi?id=1263593 * https://bugzilla.suse.com/show_bug.cgi?id=1263595 * https://bugzilla.suse.com/show_bug.cgi?id=1263596 * https://bugzilla.suse.com/show_bug.cgi?id=1263600 * https://bugzilla.suse.com/show_bug.cgi?id=1263668 * https://bugzilla.suse.com/show_bug.cgi?id=1263723 * https://bugzilla.suse.com/show_bug.cgi?id=1263797 * https://bugzilla.suse.com/show_bug.cgi?id=1263815 * https://bugzilla.suse.com/show_bug.cgi?id=1263882 * https://bugzilla.suse.com/show_bug.cgi?id=1263901 * https://bugzilla.suse.com/show_bug.cgi?id=1263931 * https://bugzilla.suse.com/show_bug.cgi?id=1263933 * https://bugzilla.suse.com/show_bug.cgi?id=1263995 * https://bugzilla.suse.com/show_bug.cgi?id=1264014 * https://bugzilla.suse.com/show_bug.cgi?id=1264059 * https://bugzilla.suse.com/show_bug.cgi?id=1264082 * https://bugzilla.suse.com/show_bug.cgi?id=1264087 * https://bugzilla.suse.com/show_bug.cgi?id=1264097 * https://bugzilla.suse.com/show_bug.cgi?id=1264183 * https://bugzilla.suse.com/show_bug.cgi?id=1264427 * https://bugzilla.suse.com/show_bug.cgi?id=1264469 * https://bugzilla.suse.com/show_bug.cgi?id=1264482 * https://bugzilla.suse.com/show_bug.cgi?id=1264634 * https://bugzilla.suse.com/show_bug.cgi?id=1264651 * https://bugzilla.suse.com/show_bug.cgi?id=1264661 * https://bugzilla.suse.com/show_bug.cgi?id=1264674 * https://bugzilla.suse.com/show_bug.cgi?id=1264801 * https://bugzilla.suse.com/show_bug.cgi?id=1264848 * https://bugzilla.suse.com/show_bug.cgi?id=1265085 * https://bugzilla.suse.com/show_bug.cgi?id=1265090 * https://bugzilla.suse.com/show_bug.cgi?id=1265116 * https://bugzilla.suse.com/show_bug.cgi?id=1265119 * https://bugzilla.suse.com/show_bug.cgi?id=1265126 * https://bugzilla.suse.com/show_bug.cgi?id=1265144 * https://bugzilla.suse.com/show_bug.cgi?id=1265308 * https://bugzilla.suse.com/show_bug.cgi?id=1265421 * https://bugzilla.suse.com/show_bug.cgi?id=1265449 * https://bugzilla.suse.com/show_bug.cgi?id=1265456 * https://bugzilla.suse.com/show_bug.cgi?id=1265626 * https://bugzilla.suse.com/show_bug.cgi?id=1265846 * https://bugzilla.suse.com/show_bug.cgi?id=1265960 * https://jira.suse.com/browse/PED-7249 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:50:03 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:50:03 -0000 Subject: SUSE-SU-2026:21915-1: important: Security update for helm Message-ID: <178041900354.42.11821387288076634592@b0da085613fb> # Security update for helm Announcement ID: SUSE-SU-2026:21915-1 Release Date: 2026-05-28T15:45:22Z Rating: important References: * bsc#1265428 * bsc#1265758 Cross-References: * CVE-2026-33814 * CVE-2026-41888 CVSS scores: * CVE-2026-33814 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-33814 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-33814 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-41888 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-41888 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L * CVE-2026-41888 ( NVD ): 6.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-41888 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L Affected Products: * SUSE Linux Micro 6.0 An update that solves two vulnerabilities can now be installed. ## Description: This update for helm fixes the following issues * CVE-2026-33814: golang.org/x/net/http2: infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE (bsc#1265758). * CVE-2026-41888: github.com/distribution/distribution/v3: tag deletion bypasses the storage.delete.enabled configuration (bsc#1265428). Changes for helm: * Update to version 3.21.0. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-734=1 ## Package List: * SUSE Linux Micro 6.0 (aarch64 s390x x86_64) * helm-3.21.0-1.1 * helm-debuginfo-3.21.0-1.1 * SUSE Linux Micro 6.0 (noarch) * helm-bash-completion-3.21.0-1.1 ## References: * https://www.suse.com/security/cve/CVE-2026-33814.html * https://www.suse.com/security/cve/CVE-2026-41888.html * https://bugzilla.suse.com/show_bug.cgi?id=1265428 * https://bugzilla.suse.com/show_bug.cgi?id=1265758 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:50:06 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:50:06 -0000 Subject: SUSE-SU-2026:21914-1: moderate: Security update for python-idna Message-ID: <178041900668.42.17598344894225170081@b0da085613fb> # Security update for python-idna Announcement ID: SUSE-SU-2026:21914-1 Release Date: 2026-05-28T15:43:54Z Rating: moderate References: * bsc#1265413 Cross-References: * CVE-2026-45409 CVSS scores: * CVE-2026-45409 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-45409 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N Affected Products: * SUSE Linux Micro 6.0 An update that solves one vulnerability can now be installed. ## Description: This update for python-idna fixes the following issue * CVE-2026-45409: specially crafted inputs to idna.encode() can bypass earlier security fix (bsc#1265413). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-733=1 ## Package List: * SUSE Linux Micro 6.0 (noarch) * python311-idna-3.4-9.1 ## References: * https://www.suse.com/security/cve/CVE-2026-45409.html * https://bugzilla.suse.com/show_bug.cgi?id=1265413 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:50:27 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:50:27 -0000 Subject: SUSE-SU-2026:21913-1: important: Security update for unbound Message-ID: <178041902759.42.8193011438487763637@b0da085613fb> # Security update for unbound Announcement ID: SUSE-SU-2026:21913-1 Release Date: 2026-05-28T15:43:53Z Rating: important References: * bsc#1265578 * bsc#1265580 * bsc#1265581 * bsc#1265582 * bsc#1265583 * bsc#1265584 * bsc#1265585 * bsc#1265586 * bsc#1265587 * bsc#1265588 * bsc#1265589 Cross-References: * CVE-2026-32792 * CVE-2026-33278 * CVE-2026-40622 * CVE-2026-41292 * CVE-2026-42534 * CVE-2026-42923 * CVE-2026-42944 * CVE-2026-42959 * CVE-2026-42960 * CVE-2026-44390 * CVE-2026-44608 CVSS scores: * CVE-2026-32792 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-32792 ( NVD ): 4.6 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Green * CVE-2026-32792 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-33278 ( SUSE ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-33278 ( NVD ): 9.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Red * CVE-2026-33278 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-40622 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2026-40622 ( NVD ): 6.6 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Amber * CVE-2026-40622 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2026-41292 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-41292 ( NVD ): 6.6 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Red * CVE-2026-41292 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42534 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42534 ( NVD ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Amber * CVE-2026-42534 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-42923 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42923 ( NVD ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Amber * CVE-2026-42923 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-42944 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-42944 ( NVD ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Red * CVE-2026-42944 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42959 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42959 ( NVD ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Red * CVE-2026-42959 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42960 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2026-42960 ( NVD ): 5.7 CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:H/SA:H/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Amber * CVE-2026-42960 ( NVD ): 10.0 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:H * CVE-2026-44390 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-44390 ( NVD ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Amber * CVE-2026-44390 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-44608 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-44608 ( NVD ): 4.6 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Amber * CVE-2026-44608 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Micro 6.0 An update that solves 11 vulnerabilities can now be installed. ## Description: This update for unbound fixes the following issues * CVE-2026-32792: Packet of death with DNSCrypt (bsc#1265583). * CVE-2026-33278: Possible remote code execution during DNSSEC validation (bsc#1265587). * CVE-2026-40622: "Ghost domain name" variant (bsc#1265581). * CVE-2026-41292: Parsing a long list of incoming EDNS options degrades performance (bsc#1265580). * CVE-2026-42534: Jostle logic bypass degrades resolution performance (bsc#1265585). * CVE-2026-42923: Degradation of service with unbounded NSEC3 hash calculations (bsc#1265589). * CVE-2026-42944: Heap overflow and crash with multiple nsid, cookie, padding EDNS options (bsc#1265578). * CVE-2026-42959: Crash during DNSSEC validation of malicious content (bsc#1265586). * CVE-2026-42960: Possible cache poisoning attack while following delegation (bsc#1265588). * CVE-2026-44390: Unbounded name compression in certain cases causes degradation of service (bsc#1265584). * CVE-2026-44608: Use after free and crash in RPZ code (bsc#1265582). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-732=1 ## Package List: * SUSE Linux Micro 6.0 (aarch64 s390x x86_64) * libunbound8-1.22.0-3.1 * unbound-anchor-1.22.0-3.1 * unbound-debugsource-1.22.0-3.1 * unbound-anchor-debuginfo-1.22.0-3.1 * libunbound8-debuginfo-1.22.0-3.1 ## References: * https://www.suse.com/security/cve/CVE-2026-32792.html * https://www.suse.com/security/cve/CVE-2026-33278.html * https://www.suse.com/security/cve/CVE-2026-40622.html * https://www.suse.com/security/cve/CVE-2026-41292.html * https://www.suse.com/security/cve/CVE-2026-42534.html * https://www.suse.com/security/cve/CVE-2026-42923.html * https://www.suse.com/security/cve/CVE-2026-42944.html * https://www.suse.com/security/cve/CVE-2026-42959.html * https://www.suse.com/security/cve/CVE-2026-42960.html * https://www.suse.com/security/cve/CVE-2026-44390.html * https://www.suse.com/security/cve/CVE-2026-44608.html * https://bugzilla.suse.com/show_bug.cgi?id=1265578 * https://bugzilla.suse.com/show_bug.cgi?id=1265580 * https://bugzilla.suse.com/show_bug.cgi?id=1265581 * https://bugzilla.suse.com/show_bug.cgi?id=1265582 * https://bugzilla.suse.com/show_bug.cgi?id=1265583 * https://bugzilla.suse.com/show_bug.cgi?id=1265584 * https://bugzilla.suse.com/show_bug.cgi?id=1265585 * https://bugzilla.suse.com/show_bug.cgi?id=1265586 * https://bugzilla.suse.com/show_bug.cgi?id=1265587 * https://bugzilla.suse.com/show_bug.cgi?id=1265588 * https://bugzilla.suse.com/show_bug.cgi?id=1265589 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:50:41 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:50:41 -0000 Subject: SUSE-SU-2026:21912-1: important: Security update for qemu Message-ID: <178041904192.42.11233988734797930247@b0da085613fb> # Security update for qemu Announcement ID: SUSE-SU-2026:21912-1 Release Date: 2026-05-28T15:31:35Z Rating: important References: * bsc#1255400 * bsc#1256484 * bsc#1258509 * bsc#1259079 * bsc#1259080 * bsc#1262089 Cross-References: * CVE-2025-14876 * CVE-2026-0665 * CVE-2026-2243 * CVE-2026-3195 * CVE-2026-3196 * CVE-2026-3842 CVSS scores: * CVE-2025-14876 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-14876 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-14876 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-0665 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-0665 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-0665 ( NVD ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H * CVE-2026-2243 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-2243 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L * CVE-2026-2243 ( NVD ): 5.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L * CVE-2026-3195 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:H/SI:H/SA:H * CVE-2026-3195 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-3196 ( SUSE ): 8.2 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H * CVE-2026-3196 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H * CVE-2026-3842 ( SUSE ): 5.1 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-3842 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L Affected Products: * SUSE Linux Micro 6.0 An update that solves six vulnerabilities can now be installed. ## Description: This update for qemu fixes the following issues * CVE-2025-14876: qemu-kvm: Unbounded allocation in virtio-crypto (bsc#1255400). * CVE-2026-0665: out-of-bounds heap access can lead to a denial of service or potential memory corruption (bsc#1256484). * CVE-2026-2243: incorrect bounds check leads to heap out-of-bounds read and a 12-byte information leak when processing specially crafted VMDK files (bsc#1258509). * CVE-2026-3195: heap buffer overflow when reading input audio in the virtio- snd device input callback due to insufficient checks in `virtio_snd_pcm_in_cb` (bsc#1259080). * CVE-2026-3196: integer overflow in the virtio-snd device via PCM_INFO requests from the guest leads to unbounded memory allocation and host denial-of-service (bsc#1259079). * CVE-2026-3842: hyperv/syndbg: missing mapped-length guard after cpu_physical_memory_map causes host OOB write (bsc#1262089). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-731=1 ## Package List: * SUSE Linux Micro 6.0 (aarch64 s390x x86_64) * qemu-hw-usb-redirect-8.2.10-3.1 * qemu-ksm-8.2.10-3.1 * qemu-hw-display-qxl-8.2.10-3.1 * qemu-debuginfo-8.2.10-3.1 * qemu-hw-display-virtio-gpu-debuginfo-8.2.10-3.1 * qemu-ui-opengl-debuginfo-8.2.10-3.1 * qemu-hw-display-virtio-gpu-pci-debuginfo-8.2.10-3.1 * qemu-hw-usb-host-8.2.10-3.1 * qemu-guest-agent-8.2.10-3.1 * qemu-block-rbd-debuginfo-8.2.10-3.1 * qemu-ui-spice-core-8.2.10-3.1 * qemu-block-curl-debuginfo-8.2.10-3.1 * qemu-hw-usb-redirect-debuginfo-8.2.10-3.1 * qemu-debugsource-8.2.10-3.1 * qemu-hw-display-virtio-gpu-pci-8.2.10-3.1 * qemu-hw-display-qxl-debuginfo-8.2.10-3.1 * qemu-guest-agent-debuginfo-8.2.10-3.1 * qemu-block-iscsi-8.2.10-3.1 * qemu-tools-8.2.10-3.1 * qemu-hw-display-virtio-vga-debuginfo-8.2.10-3.1 * qemu-audio-spice-debuginfo-8.2.10-3.1 * qemu-block-curl-8.2.10-3.1 * qemu-pr-helper-8.2.10-3.1 * qemu-block-rbd-8.2.10-3.1 * qemu-block-ssh-debuginfo-8.2.10-3.1 * qemu-chardev-spice-8.2.10-3.1 * qemu-chardev-spice-debuginfo-8.2.10-3.1 * qemu-audio-spice-8.2.10-3.1 * qemu-img-8.2.10-3.1 * qemu-hw-display-virtio-gpu-8.2.10-3.1 * qemu-ui-spice-core-debuginfo-8.2.10-3.1 * qemu-img-debuginfo-8.2.10-3.1 * qemu-hw-usb-host-debuginfo-8.2.10-3.1 * qemu-hw-display-virtio-vga-8.2.10-3.1 * qemu-ui-opengl-8.2.10-3.1 * qemu-8.2.10-3.1 * qemu-tools-debuginfo-8.2.10-3.1 * qemu-block-iscsi-debuginfo-8.2.10-3.1 * qemu-pr-helper-debuginfo-8.2.10-3.1 * qemu-block-ssh-8.2.10-3.1 * SUSE Linux Micro 6.0 (aarch64) * qemu-arm-8.2.10-3.1 * qemu-arm-debuginfo-8.2.10-3.1 * SUSE Linux Micro 6.0 (x86_64) * qemu-accel-tcg-x86-debuginfo-8.2.10-3.1 * qemu-x86-debuginfo-8.2.10-3.1 * qemu-accel-tcg-x86-8.2.10-3.1 * qemu-x86-8.2.10-3.1 * SUSE Linux Micro 6.0 (noarch) * qemu-ipxe-8.2.10-3.1 * qemu-lang-8.2.10-3.1 * qemu-seabios-8.2.101.16.3_3_ga95067eb-3.1 * qemu-vgabios-8.2.101.16.3_3_ga95067eb-3.1 * SUSE Linux Micro 6.0 (s390x) * qemu-s390x-debuginfo-8.2.10-3.1 * qemu-s390x-8.2.10-3.1 ## References: * https://www.suse.com/security/cve/CVE-2025-14876.html * https://www.suse.com/security/cve/CVE-2026-0665.html * https://www.suse.com/security/cve/CVE-2026-2243.html * https://www.suse.com/security/cve/CVE-2026-3195.html * https://www.suse.com/security/cve/CVE-2026-3196.html * https://www.suse.com/security/cve/CVE-2026-3842.html * https://bugzilla.suse.com/show_bug.cgi?id=1255400 * https://bugzilla.suse.com/show_bug.cgi?id=1256484 * https://bugzilla.suse.com/show_bug.cgi?id=1258509 * https://bugzilla.suse.com/show_bug.cgi?id=1259079 * https://bugzilla.suse.com/show_bug.cgi?id=1259080 * https://bugzilla.suse.com/show_bug.cgi?id=1262089 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:50:46 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:50:46 -0000 Subject: SUSE-RU-2026:21911-1: moderate: Recommended update for open-vm-tools Message-ID: <178041904667.42.17359430353476978527@b0da085613fb> # Recommended update for open-vm-tools Announcement ID: SUSE-RU-2026:21911-1 Release Date: 2026-05-27T15:08:00Z Rating: moderate References: * bsc#1257312 * bsc#1265304 Affected Products: * SUSE Linux Micro 6.0 An update that has two fixes can now be installed. ## Description: This update for open-vm-tools fixes the following issues: * update to 13.1.0 release based on build 25218885 (bsc#1265304): * Support for GNOME Toolkit version 4 * New release of the Salt-Minion integration script * Fallback to ignore systemd inhibitors during guest poweroff / reboot * Fix: vmware-vgauth-smoketest: no VGAuthLib.vmsg file * Fix: Inline comment breaks "disable_vmware_customization" check * For a more complete description of what is new in this release: https://github.com/vmware/open-vm-tools/blob/stable-13.1.0/ReleaseNotes.md#whatsnew https://github.com/vmware/open-vm-tools/blob/stable-13.1.0/ReleaseNotes.md#resolved-issues * Fix build with glibc 2.43 (bsc#1257312) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-730=1 ## Package List: * SUSE Linux Micro 6.0 (x86_64) * open-vm-tools-13.1.0-1.1 * libvmtools0-debuginfo-13.1.0-1.1 * libvmtools0-13.1.0-1.1 * open-vm-tools-debuginfo-13.1.0-1.1 * open-vm-tools-debugsource-13.1.0-1.1 ## References: * https://bugzilla.suse.com/show_bug.cgi?id=1257312 * https://bugzilla.suse.com/show_bug.cgi?id=1265304 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:50:57 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:50:57 -0000 Subject: SUSE-SU-2026:21910-1: important: Security update for the Linux Kernel RT (Live Patch 7 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041905718.42.1289774642684149376@b0da085613fb> # Security update for the Linux Kernel RT (Live Patch 7 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21910-1 Release Date: 2026-06-01T09:32:33Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.1 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-30.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-kernel-454=1 ## Package List: * SUSE Linux Micro 6.1 (x86_64) * kernel-livepatch-6_4_0-30-rt-debuginfo-19-1.3 * kernel-livepatch-MICRO-6-0-RT_Update_7-debugsource-19-1.3 * kernel-livepatch-6_4_0-30-rt-19-1.3 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:51:03 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:51:03 -0000 Subject: SUSE-SU-2026:21909-1: important: Security update for the Linux Kernel RT (Live Patch 19 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041906338.42.15063570674206323427@b0da085613fb> # Security update for the Linux Kernel RT (Live Patch 19 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21909-1 Release Date: 2026-06-01T09:26:53Z Rating: important References: * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.1 An update that solves three vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-41.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-kernel-449=1 ## Package List: * SUSE Linux Micro 6.1 (x86_64) * kernel-livepatch-6_4_0-41-rt-4-1.1 * kernel-livepatch-MICRO-6-0-RT_Update_19-debugsource-4-1.1 * kernel-livepatch-6_4_0-41-rt-debuginfo-4-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:51:12 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:51:12 -0000 Subject: SUSE-SU-2026:21908-1: important: Security update for the Linux Kernel RT (Live Patch 18 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041907241.42.17776856535712395127@b0da085613fb> # Security update for the Linux Kernel RT (Live Patch 18 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21908-1 Release Date: 2026-06-01T09:26:52Z Rating: important References: * bsc#1259798 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.1 An update that solves five vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-40.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-kernel-448=1 ## Package List: * SUSE Linux Micro 6.1 (x86_64) * kernel-livepatch-MICRO-6-0-RT_Update_18-debugsource-5-1.1 * kernel-livepatch-6_4_0-40-rt-5-1.1 * kernel-livepatch-6_4_0-40-rt-debuginfo-5-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:51:22 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:51:22 -0000 Subject: SUSE-SU-2026:21907-1: important: Security update for the Linux Kernel RT (Live Patch 15 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041908283.42.6224152479980370182@b0da085613fb> # Security update for the Linux Kernel RT (Live Patch 15 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21907-1 Release Date: 2026-06-01T09:26:52Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.1 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-39.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-kernel-447=1 ## Package List: * SUSE Linux Micro 6.1 (x86_64) * kernel-livepatch-6_4_0-39-rt-6-1.1 * kernel-livepatch-6_4_0-39-rt-debuginfo-6-1.1 * kernel-livepatch-MICRO-6-0-RT_Update_15-debugsource-6-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:51:33 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:51:33 -0000 Subject: SUSE-SU-2026:21906-1: important: Security update for the Linux Kernel RT (Live Patch 14 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041909322.42.16922696007543144412@b0da085613fb> # Security update for the Linux Kernel RT (Live Patch 14 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21906-1 Release Date: 2026-06-01T09:26:52Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.1 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-38.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-kernel-446=1 ## Package List: * SUSE Linux Micro 6.1 (x86_64) * kernel-livepatch-MICRO-6-0-RT_Update_14-debugsource-7-1.1 * kernel-livepatch-6_4_0-38-rt-7-1.1 * kernel-livepatch-6_4_0-38-rt-debuginfo-7-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:51:45 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:51:45 -0000 Subject: SUSE-SU-2026:21905-1: important: Security update for the Linux Kernel RT (Live Patch 13 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041910500.42.673543312055264105@b0da085613fb> # Security update for the Linux Kernel RT (Live Patch 13 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21905-1 Release Date: 2026-06-01T09:26:52Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.1 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-37.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-kernel-445=1 ## Package List: * SUSE Linux Micro 6.1 (x86_64) * kernel-livepatch-MICRO-6-0-RT_Update_13-debugsource-7-1.1 * kernel-livepatch-6_4_0-37-rt-debuginfo-7-1.1 * kernel-livepatch-6_4_0-37-rt-7-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:51:55 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:51:55 -0000 Subject: SUSE-SU-2026:21904-1: important: Security update for the Linux Kernel RT (Live Patch 12 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041911561.42.3288995862073336406@b0da085613fb> # Security update for the Linux Kernel RT (Live Patch 12 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21904-1 Release Date: 2026-06-01T09:26:52Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.1 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-36.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-kernel-444=1 ## Package List: * SUSE Linux Micro 6.1 (x86_64) * kernel-livepatch-6_4_0-36-rt-debuginfo-11-1.1 * kernel-livepatch-6_4_0-36-rt-11-1.1 * kernel-livepatch-MICRO-6-0-RT_Update_12-debugsource-11-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:52:07 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:52:07 -0000 Subject: SUSE-SU-2026:21903-1: important: Security update for the Linux Kernel RT (Live Patch 11 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041912777.42.3765943414803552328@b0da085613fb> # Security update for the Linux Kernel RT (Live Patch 11 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21903-1 Release Date: 2026-06-01T09:26:52Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.1 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-32.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-kernel-443=1 ## Package List: * SUSE Linux Micro 6.1 (x86_64) * kernel-livepatch-6_4_0-35-rt-debuginfo-12-1.1 * kernel-livepatch-MICRO-6-0-RT_Update_11-debugsource-12-1.1 * kernel-livepatch-6_4_0-35-rt-12-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:52:19 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:52:19 -0000 Subject: SUSE-SU-2026:21902-1: important: Security update for the Linux Kernel RT (Live Patch 10 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041913933.42.2191998086461674433@b0da085613fb> # Security update for the Linux Kernel RT (Live Patch 10 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21902-1 Release Date: 2026-06-01T09:26:51Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.1 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-34.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-kernel-442=1 ## Package List: * SUSE Linux Micro 6.1 (x86_64) * kernel-livepatch-6_4_0-34-rt-debuginfo-16-1.1 * kernel-livepatch-6_4_0-34-rt-16-1.1 * kernel-livepatch-MICRO-6-0-RT_Update_10-debugsource-16-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:52:31 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:52:31 -0000 Subject: SUSE-SU-2026:21901-1: important: Security update for the Linux Kernel RT (Live Patch 9 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041915187.42.9401791095526936068@b0da085613fb> # Security update for the Linux Kernel RT (Live Patch 9 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21901-1 Release Date: 2026-06-01T09:26:51Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.1 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-33.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-kernel-441=1 ## Package List: * SUSE Linux Micro 6.1 (x86_64) * kernel-livepatch-6_4_0-33-rt-16-1.2 * kernel-livepatch-6_4_0-33-rt-debuginfo-16-1.2 * kernel-livepatch-MICRO-6-0-RT_Update_9-debugsource-16-1.2 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:52:42 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:52:42 -0000 Subject: SUSE-SU-2026:21900-1: important: Security update for the Linux Kernel RT (Live Patch 8 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041916270.42.11958002292591195669@b0da085613fb> # Security update for the Linux Kernel RT (Live Patch 8 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21900-1 Release Date: 2026-06-01T09:26:51Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.1 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-31.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-kernel-440=1 ## Package List: * SUSE Linux Micro 6.1 (x86_64) * kernel-livepatch-6_4_0-31-rt-debuginfo-18-1.2 * kernel-livepatch-MICRO-6-0-RT_Update_8-debugsource-18-1.2 * kernel-livepatch-6_4_0-31-rt-18-1.2 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:52:44 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:52:44 -0000 Subject: SUSE-SU-2026:21899-1: important: Security update for kernel-livepatch-MICRO-6-0-RT_Update_24 Message-ID: <178041916407.42.13078373527061543160@b0da085613fb> # Security update for kernel-livepatch-MICRO-6-0-RT_Update_24 Announcement ID: SUSE-SU-2026:21899-1 Release Date: 2026-05-29T16:12:43Z Rating: important References: Affected Products: * SUSE Linux Micro 6.1 An update that can now be installed. ## Description: This update for kernel-livepatch-MICRO-6-0-RT_Update_24 fixes the following issues: * New livepatch SLE Micro 6.0/6.1 kernel update 24 ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-kernel-438=1 ## Package List: * SUSE Linux Micro 6.1 (x86_64) * kernel-livepatch-MICRO-6-0-RT_Update_24-debugsource-1-1.1 * kernel-livepatch-6_4_0-47-rt-debuginfo-1-1.1 * kernel-livepatch-6_4_0-47-rt-1-1.1 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:52:48 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:52:48 -0000 Subject: SUSE-RU-2026:21898-1: moderate: Recommended update for open-vm-tools Message-ID: <178041916840.42.18039570574768171085@b0da085613fb> # Recommended update for open-vm-tools Announcement ID: SUSE-RU-2026:21898-1 Release Date: 2026-05-28T09:15:56Z Rating: moderate References: * bsc#1257312 * bsc#1265304 Affected Products: * SUSE Linux Micro 6.1 An update that has two fixes can now be installed. ## Description: This update for open-vm-tools fixes the following issues: * Update to 13.1.0 release based on build 25218885 (bsc#1265304): * Support for GNOME Toolkit version 4 * New release of the Salt-Minion integration script * Fallback to ignore systemd inhibitors during guest poweroff / reboot * Fix: vmware-vgauth-smoketest: no VGAuthLib.vmsg file * Fix: Inline comment breaks "disable_vmware_customization" check * For a more complete description of what is new in this release: https://github.com/vmware/open-vm-tools/blob/stable-13.1.0/ReleaseNotes.md#whatsnew https://github.com/vmware/open-vm-tools/blob/stable-13.1.0/ReleaseNotes.md#resolved-issues * Fix build with glibc 2.43 (bsc#1257312) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-550=1 ## Package List: * SUSE Linux Micro 6.1 (x86_64) * open-vm-tools-debuginfo-13.1.0-slfo.1.1_1.1 * open-vm-tools-13.1.0-slfo.1.1_1.1 * libvmtools0-13.1.0-slfo.1.1_1.1 * libvmtools0-debuginfo-13.1.0-slfo.1.1_1.1 * open-vm-tools-debugsource-13.1.0-slfo.1.1_1.1 ## References: * https://bugzilla.suse.com/show_bug.cgi?id=1257312 * https://bugzilla.suse.com/show_bug.cgi?id=1265304 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:52:55 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:52:55 -0000 Subject: SUSE-SU-2026:21897-1: moderate: Security update for ucode-intel Message-ID: <178041917533.42.3115820383473151269@b0da085613fb> # Security update for ucode-intel Announcement ID: SUSE-SU-2026:21897-1 Release Date: 2026-05-22T09:37:17Z Rating: moderate References: * bsc#1230400 * bsc#1249138 * bsc#1253319 * bsc#1265189 Cross-References: * CVE-2025-35979 CVSS scores: * CVE-2025-35979 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2025-35979 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2025-35979 ( NVD ): 6.8 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X Affected Products: * SUSE Linux Micro 6.1 An update that solves one vulnerability and has three fixes can now be installed. ## Description: This update for ucode-intel fixes the following issues Security issue: * CVE-2025-35979: data leaks fixed in 20260512 release (bsc#1265189). Non security issues: * TW 20250826 Kernel 6.16.3 tainted with value of 4 after reboot. (bsc#1249138). * Intel CPU Microcode was updated to the 20260512 release (bsc#1265189) ### New Platforms | Processor | Stepping | F-M-S/PI | Old Ver | New Ver | Products |:---------------|:---------|:------------|:---------|:---------|:--------- | PTL 404 | A1 | 06-cc-03/90 | | 0000011b | Intel Core Ultra Processor (Series 3) | PTL-H 484/12Xe | A0/B0 | 06-cc-02/90 | | 0000011b | Intel Core Ultra Processor (Series 3) ### Updated Platforms | ARL-H | A1 | 06-c5-02/82 | 0000011b | 00000121 | Core Ultra Processor (Series 2) | ARL-S/HX (8P) | B0 | 06-c6-02/82 | 0000011b | 00000121 | Core Ultra Processor (Series 2) | EMR- SP | A1 | 06-cf-02/87 | 210002d3 | 210002e0 | Xeon Scalable Gen5 | GNR-AP/SP | Bx/Hx/Lx | 06-ad-01/95 | 01000405 | 01000423 | Xeon 6900/6700/6500 Series Processors with P-Cores | GNR-D | B0/B1 | 06-ae-01/97 | 01000303 | 01000307 | Xeon 6700P-B/6500P-B Series SoC with P-Cores | GNR-SP R1S | Bx/Hx/Lx | 06-ad-01/20 | 0a000133 | 0a000142 | Xeon 6700/6500-Series Processors with P-Cores | LNL | B0 | 06-bd-01/80 | 00000125 | 00000126 | Core Ultra 200 V Series Processor | SPR-SP | E4/S2 | 06-8f-07/87 | 2b000661 | 2b000670 | Xeon Scalable Gen4 | SPR-SP | E5/S3 | 06-8f-08/87 | 2b000661 | 2b000670 | Xeon Scalable Gen4 | SRF-AP/SP | C0 | 06-af-03/01 | 03000382 | 030003a3 | Xeon 6900/6700-Series Processors with E-Cores ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-545=1 ## Package List: * SUSE Linux Micro 6.1 (x86_64) * ucode-intel-20260512-slfo.1.1_1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-35979.html * https://bugzilla.suse.com/show_bug.cgi?id=1230400 * https://bugzilla.suse.com/show_bug.cgi?id=1249138 * https://bugzilla.suse.com/show_bug.cgi?id=1253319 * https://bugzilla.suse.com/show_bug.cgi?id=1265189 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:53:05 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:53:05 -0000 Subject: SUSE-SU-2026:21896-1: important: Security update for the Linux Kernel (Live Patch 12 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041918573.42.12005169312304541756@b0da085613fb> # Security update for the Linux Kernel (Live Patch 12 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21896-1 Release Date: 2026-06-01T09:27:23Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.1 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-35.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-kernel-453=1 ## Package List: * SUSE Linux Micro 6.1 (s390x x86_64) * kernel-livepatch-MICRO-6-0_Update_12-debugsource-11-1.1 * kernel-livepatch-6_4_0-35-default-debuginfo-11-1.1 * kernel-livepatch-6_4_0-35-default-11-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:53:12 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:53:12 -0000 Subject: SUSE-SU-2026:21895-1: important: Security update for the Linux Kernel (Live Patch 18 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041919233.42.3799149748056986184@b0da085613fb> # Security update for the Linux Kernel (Live Patch 18 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21895-1 Release Date: 2026-06-01T09:26:24Z Rating: important References: * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.1 An update that solves three vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-41.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-kernel-461=1 ## Package List: * SUSE Linux Micro 6.1 (s390x x86_64) * kernel-livepatch-6_4_0-41-default-debuginfo-4-1.1 * kernel-livepatch-MICRO-6-0_Update_18-debugsource-4-1.1 * kernel-livepatch-6_4_0-41-default-4-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:53:29 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:53:29 -0000 Subject: SUSE-SU-2026:21894-1: important: Security update for the Linux Kernel (Live Patch 17 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041920944.42.16250713722254275655@b0da085613fb> # Security update for the Linux Kernel (Live Patch 17 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21894-1 Release Date: 2026-06-01T09:26:24Z Rating: important References: * bsc#1259798 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.1 An update that solves five vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-40.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-kernel-460=1 ## Package List: * SUSE Linux Micro 6.1 (s390x x86_64) * kernel-livepatch-MICRO-6-0_Update_17-debugsource-5-1.1 * kernel-livepatch-6_4_0-40-default-debuginfo-5-1.1 * kernel-livepatch-6_4_0-40-default-5-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:53:40 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:53:40 -0000 Subject: SUSE-SU-2026:21893-1: important: Security update for the Linux Kernel (Live Patch 16 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041922014.42.6031675828657284073@b0da085613fb> # Security update for the Linux Kernel (Live Patch 16 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21893-1 Release Date: 2026-06-01T09:26:24Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.1 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-39.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-kernel-459=1 ## Package List: * SUSE Linux Micro 6.1 (s390x x86_64) * kernel-livepatch-6_4_0-39-default-6-1.1 * kernel-livepatch-6_4_0-39-default-debuginfo-6-1.1 * kernel-livepatch-MICRO-6-0_Update_16-debugsource-6-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:53:50 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:53:50 -0000 Subject: SUSE-SU-2026:21892-1: important: Security update for the Linux Kernel (Live Patch 14 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041923054.42.2229041525398982098@b0da085613fb> # Security update for the Linux Kernel (Live Patch 14 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21892-1 Release Date: 2026-06-01T09:26:24Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.1 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-38.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-kernel-458=1 ## Package List: * SUSE Linux Micro 6.1 (s390x x86_64) * kernel-livepatch-6_4_0-38-default-debuginfo-7-1.2 * kernel-livepatch-6_4_0-38-default-7-1.2 * kernel-livepatch-MICRO-6-0_Update_14-debugsource-7-1.2 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:54:01 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:54:01 -0000 Subject: SUSE-SU-2026:21891-1: important: Security update for the Linux Kernel (Live Patch 13 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041924143.42.9746006222037557885@b0da085613fb> # Security update for the Linux Kernel (Live Patch 13 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21891-1 Release Date: 2026-06-01T09:26:24Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.1 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-36.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-kernel-457=1 ## Package List: * SUSE Linux Micro 6.1 (s390x x86_64) * kernel-livepatch-MICRO-6-0_Update_13-debugsource-9-1.1 * kernel-livepatch-6_4_0-36-default-debuginfo-9-1.1 * kernel-livepatch-6_4_0-36-default-9-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:54:12 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:54:12 -0000 Subject: SUSE-SU-2026:21890-1: important: Security update for the Linux Kernel (Live Patch 11 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041925260.42.10246222836831153747@b0da085613fb> # Security update for the Linux Kernel (Live Patch 11 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21890-1 Release Date: 2026-06-01T09:26:24Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.1 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-34.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-kernel-452=1 ## Package List: * SUSE Linux Micro 6.1 (s390x x86_64) * kernel-livepatch-6_4_0-34-default-debuginfo-11-1.1 * kernel-livepatch-MICRO-6-0_Update_11-debugsource-11-1.1 * kernel-livepatch-6_4_0-34-default-11-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:54:23 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:54:23 -0000 Subject: SUSE-SU-2026:21889-1: important: Security update for the Linux Kernel (Live Patch 10 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041926347.42.5401773208515137061@b0da085613fb> # Security update for the Linux Kernel (Live Patch 10 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21889-1 Release Date: 2026-06-01T09:26:24Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.1 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-32.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-kernel-451=1 ## Package List: * SUSE Linux Micro 6.1 (s390x x86_64) * kernel-livepatch-MICRO-6-0_Update_10-debugsource-12-1.1 * kernel-livepatch-6_4_0-32-default-debuginfo-12-1.1 * kernel-livepatch-6_4_0-32-default-12-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:54:33 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:54:33 -0000 Subject: SUSE-SU-2026:21888-1: important: Security update for the Linux Kernel (Live Patch 9 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041927366.42.13883015506684534279@b0da085613fb> # Security update for the Linux Kernel (Live Patch 9 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21888-1 Release Date: 2026-06-01T09:26:24Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.1 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-31.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-kernel-456=1 ## Package List: * SUSE Linux Micro 6.1 (s390x x86_64) * kernel-livepatch-6_4_0-31-default-18-1.2 * kernel-livepatch-MICRO-6-0_Update_9-debugsource-18-1.2 * kernel-livepatch-6_4_0-31-default-debuginfo-18-1.2 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:54:48 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:54:48 -0000 Subject: SUSE-SU-2026:21887-1: important: Security update for the Linux Kernel (Live Patch 8 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041928804.42.15401743743194922186@b0da085613fb> # Security update for the Linux Kernel (Live Patch 8 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21887-1 Release Date: 2026-06-01T09:26:24Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.1 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-30.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-kernel-455=1 ## Package List: * SUSE Linux Micro 6.1 (s390x x86_64) * kernel-livepatch-6_4_0-30-default-18-1.2 * kernel-livepatch-6_4_0-30-default-debuginfo-18-1.2 * kernel-livepatch-MICRO-6-0_Update_8-debugsource-18-1.2 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:54:58 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:54:58 -0000 Subject: SUSE-SU-2026:21886-1: important: Security update for the Linux Kernel (Live Patch 7 for SUSE Linux Enterprise Micro 6.0) Message-ID: <178041929864.42.4984343659320566942@b0da085613fb> # Security update for the Linux Kernel (Live Patch 7 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:21886-1 Release Date: 2026-06-01T09:26:24Z Rating: important References: * bsc#1259798 * bsc#1260563 * bsc#1260908 * bsc#1264096 * bsc#1265224 * bsc#1265384 Cross-References: * CVE-2025-54518 * CVE-2026-23243 * CVE-2026-23274 * CVE-2026-23317 * CVE-2026-46300 * CVE-2026-46333 CVSS scores: * CVE-2025-54518 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-54518 ( NVD ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23243 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23317 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Micro 6.1 An update that solves six vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-29.1 fixes various security issues The following security issues were fixed: * CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096). * CVE-2026-23243: RDMA/umad: Reject negative data_len in ib_umad_write (bsc#1259798). * CVE-2026-23274: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels (bsc#1260908). * CVE-2026-23317: drm/vmwgfx: Return the correct value in vmw_translate_ptr functions (bsc#1260563). * CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit (bsc#1265224). * CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-kernel-450=1 ## Package List: * SUSE Linux Micro 6.1 (s390x x86_64) * kernel-livepatch-MICRO-6-0_Update_7-debugsource-19-1.2 * kernel-livepatch-6_4_0-29-default-debuginfo-19-1.2 * kernel-livepatch-6_4_0-29-default-19-1.2 ## References: * https://www.suse.com/security/cve/CVE-2025-54518.html * https://www.suse.com/security/cve/CVE-2026-23243.html * https://www.suse.com/security/cve/CVE-2026-23274.html * https://www.suse.com/security/cve/CVE-2026-23317.html * https://www.suse.com/security/cve/CVE-2026-46300.html * https://www.suse.com/security/cve/CVE-2026-46333.html * https://bugzilla.suse.com/show_bug.cgi?id=1259798 * https://bugzilla.suse.com/show_bug.cgi?id=1260563 * https://bugzilla.suse.com/show_bug.cgi?id=1260908 * https://bugzilla.suse.com/show_bug.cgi?id=1264096 * https://bugzilla.suse.com/show_bug.cgi?id=1265224 * https://bugzilla.suse.com/show_bug.cgi?id=1265384 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:55:00 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:55:00 -0000 Subject: SUSE-SU-2026:21885-1: important: Security update for kernel-livepatch-MICRO-6-0_Update_23 Message-ID: <178041930004.42.35680699318991695@b0da085613fb> # Security update for kernel-livepatch-MICRO-6-0_Update_23 Announcement ID: SUSE-SU-2026:21885-1 Release Date: 2026-05-29T16:13:04Z Rating: important References: Affected Products: * SUSE Linux Micro 6.1 An update that can now be installed. ## Description: This update for kernel-livepatch-MICRO-6-0_Update_23 fixes the following issues: * New livepatch SLE Micro 6.0/6.1 kernel update 23 ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-kernel-436=1 ## Package List: * SUSE Linux Micro 6.1 (s390x x86_64) * kernel-livepatch-6_4_0-46-default-1-1.1 * kernel-livepatch-6_4_0-46-default-debuginfo-1-1.1 * kernel-livepatch-MICRO-6-0_Update_23-debugsource-1-1.1 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:55:14 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:55:14 -0000 Subject: SUSE-RU-2026:21884-1: important: Recommended update for powerpc-utils Message-ID: <178041931489.42.9948668089938759106@b0da085613fb> # Recommended update for powerpc-utils Announcement ID: SUSE-RU-2026:21884-1 Release Date: 2026-06-01T10:08:15Z Rating: important References: * bsc#1236480 * bsc#1246126 * bsc#1249152 * bsc#1252108 * bsc#1263891 * bsc#1265903 * jsc#PED-14516 * jsc#PED-14528 * jsc#PED-264 * jsc#PED-9914 * jsc#PED-9917 Affected Products: * SUSE Linux Micro 6.1 An update that contains five features and has six fixes can now be installed. ## Description: This update for powerpc-utils fixes the following issues: * NUMA aware CPU hotplug (bsc#1263891): * drmgr: Update cpuless_lmb_count NUMA counter * drmgr: Remove only available LMBs from CPU less NUMA * drmgr: Move numa_topology-code to common numa.c * drmgr: Move read lmb size property code to common_ofd * drmgr: Add get_next_cpu to identify the removable CPU * drmgr: Allocate CPU bitmap for each NUMA node * drmgr: Add NUMA configuration update for CPU remove * drmgr: Add NUMA based CPU removal * drmgr: Allow signals mentioned in new sigset_t * drmgr: Add timeout signal handling for NUMA memory RE (bsc#1265903) * drmgr: Do not remove LMBs when the timer expires * Update to version 1.3.14 (jsc#PED-14528): * Unified version number across tools * Add Resource group monitoring support to lparstat (jsc#PED-14516) * lparstat: print 'Maximum System Processors' * lsslot: don't report an error for an empty PHB list * Fix build across codestreams * Also start smt_off service after networking (bsc#1249152) * Fix psize reporting on a CPU pool (bsc#1252108) * drmgr/pci: Return 0 for success from do_replace() (jsc#PED-9914) * Drop sysvinit service use (bsc#1236480 jsc#PED-264) * Update to version 1.3.13 (jsc#PED-9917): * multipath - drmgr support (jsc#PED-9914) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-555=1 ## Package List: * SUSE Linux Micro 6.1 (ppc64le) * powerpc-utils-1.3.14-slfo.1.1_1.1 * powerpc-utils-debuginfo-1.3.14-slfo.1.1_1.1 * powerpc-utils-debugsource-1.3.14-slfo.1.1_1.1 ## References: * https://bugzilla.suse.com/show_bug.cgi?id=1236480 * https://bugzilla.suse.com/show_bug.cgi?id=1246126 * https://bugzilla.suse.com/show_bug.cgi?id=1249152 * https://bugzilla.suse.com/show_bug.cgi?id=1252108 * https://bugzilla.suse.com/show_bug.cgi?id=1263891 * https://bugzilla.suse.com/show_bug.cgi?id=1265903 * https://jira.suse.com/browse/PED-14516 * https://jira.suse.com/browse/PED-14528 * https://jira.suse.com/browse/PED-264 * https://jira.suse.com/browse/PED-9914 * https://jira.suse.com/browse/PED-9917 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:55:24 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:55:24 -0000 Subject: SUSE-SU-2026:21883-1: important: Security update for qemu Message-ID: <178041932493.42.1916804552753185842@b0da085613fb> # Security update for qemu Announcement ID: SUSE-SU-2026:21883-1 Release Date: 2026-06-01T13:50:04Z Rating: important References: * bsc#1255400 * bsc#1256484 * bsc#1258509 * bsc#1259079 * bsc#1259080 * bsc#1262089 Cross-References: * CVE-2025-14876 * CVE-2026-0665 * CVE-2026-2243 * CVE-2026-3195 * CVE-2026-3196 * CVE-2026-3842 CVSS scores: * CVE-2025-14876 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-14876 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-14876 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-0665 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-0665 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-0665 ( NVD ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H * CVE-2026-2243 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-2243 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L * CVE-2026-2243 ( NVD ): 5.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L * CVE-2026-3195 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:H/SI:H/SA:H * CVE-2026-3195 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-3196 ( SUSE ): 8.2 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H * CVE-2026-3196 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H * CVE-2026-3842 ( SUSE ): 5.1 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-3842 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L Affected Products: * SUSE Linux Micro 6.1 An update that solves six vulnerabilities can now be installed. ## Description: This update for qemu fixes the following issues * CVE-2025-14876: qemu-kvm: Unbounded allocation in virtio-crypto (bsc#1255400). * CVE-2026-0665: out-of-bounds heap access can lead to a denial of service or potential memory corruption (bsc#1256484). * CVE-2026-2243: incorrect bounds check leads to heap out-of-bounds read and a 12-byte information leak when processing specially crafted VMDK files (bsc#1258509). * CVE-2026-3195: heap buffer overflow when reading input audio in the virtio- snd device input callback due to insufficient checks in `virtio_snd_pcm_in_cb` (bsc#1259080). * CVE-2026-3196: integer overflow in the virtio-snd device via PCM_INFO requests from the guest leads to unbounded memory allocation and host denial-of-service (bsc#1259079). * CVE-2026-3842: hyperv/syndbg: missing mapped-length guard after cpu_physical_memory_map causes host OOB write (bsc#1262089). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-558=1 ## Package List: * SUSE Linux Micro 6.1 (aarch64 ppc64le s390x x86_64) * qemu-img-8.2.10-slfo.1.1_5.1 * qemu-block-nfs-8.2.10-slfo.1.1_5.1 * qemu-8.2.10-slfo.1.1_5.1 * qemu-hw-display-virtio-gpu-pci-debuginfo-8.2.10-slfo.1.1_5.1 * qemu-spice-8.2.10-slfo.1.1_5.1 * qemu-block-nfs-debuginfo-8.2.10-slfo.1.1_5.1 * qemu-chardev-spice-debuginfo-8.2.10-slfo.1.1_5.1 * qemu-audio-spice-debuginfo-8.2.10-slfo.1.1_5.1 * qemu-hw-display-qxl-debuginfo-8.2.10-slfo.1.1_5.1 * qemu-hw-display-virtio-gpu-debuginfo-8.2.10-slfo.1.1_5.1 * qemu-guest-agent-debuginfo-8.2.10-slfo.1.1_5.1 * qemu-block-rbd-8.2.10-slfo.1.1_5.1 * qemu-hw-usb-host-debuginfo-8.2.10-slfo.1.1_5.1 * qemu-hw-display-virtio-vga-debuginfo-8.2.10-slfo.1.1_5.1 * qemu-block-iscsi-8.2.10-slfo.1.1_5.1 * qemu-ui-opengl-debuginfo-8.2.10-slfo.1.1_5.1 * qemu-block-ssh-debuginfo-8.2.10-slfo.1.1_5.1 * qemu-tools-8.2.10-slfo.1.1_5.1 * qemu-hw-usb-host-8.2.10-slfo.1.1_5.1 * qemu-block-ssh-8.2.10-slfo.1.1_5.1 * qemu-chardev-spice-8.2.10-slfo.1.1_5.1 * qemu-guest-agent-8.2.10-slfo.1.1_5.1 * qemu-ui-spice-core-debuginfo-8.2.10-slfo.1.1_5.1 * qemu-hw-display-virtio-vga-8.2.10-slfo.1.1_5.1 * qemu-block-curl-8.2.10-slfo.1.1_5.1 * qemu-hw-display-virtio-gpu-pci-8.2.10-slfo.1.1_5.1 * qemu-pr-helper-debuginfo-8.2.10-slfo.1.1_5.1 * qemu-hw-usb-redirect-debuginfo-8.2.10-slfo.1.1_5.1 * qemu-hw-display-virtio-gpu-8.2.10-slfo.1.1_5.1 * qemu-block-curl-debuginfo-8.2.10-slfo.1.1_5.1 * qemu-headless-8.2.10-slfo.1.1_5.1 * qemu-block-rbd-debuginfo-8.2.10-slfo.1.1_5.1 * qemu-tools-debuginfo-8.2.10-slfo.1.1_5.1 * qemu-debuginfo-8.2.10-slfo.1.1_5.1 * qemu-ksm-8.2.10-slfo.1.1_5.1 * qemu-hw-display-qxl-8.2.10-slfo.1.1_5.1 * qemu-img-debuginfo-8.2.10-slfo.1.1_5.1 * qemu-hw-usb-redirect-8.2.10-slfo.1.1_5.1 * qemu-ui-opengl-8.2.10-slfo.1.1_5.1 * qemu-debugsource-8.2.10-slfo.1.1_5.1 * qemu-block-iscsi-debuginfo-8.2.10-slfo.1.1_5.1 * qemu-pr-helper-8.2.10-slfo.1.1_5.1 * qemu-ui-spice-core-8.2.10-slfo.1.1_5.1 * qemu-audio-spice-8.2.10-slfo.1.1_5.1 * SUSE Linux Micro 6.1 (noarch) * qemu-SLOF-8.2.10-slfo.1.1_5.1 * qemu-lang-8.2.10-slfo.1.1_5.1 * qemu-vgabios-8.2.101.16.3_3_ga95067eb-slfo.1.1_5.1 * qemu-ipxe-8.2.10-slfo.1.1_5.1 * qemu-seabios-8.2.101.16.3_3_ga95067eb-slfo.1.1_5.1 * SUSE Linux Micro 6.1 (aarch64) * qemu-arm-8.2.10-slfo.1.1_5.1 * qemu-arm-debuginfo-8.2.10-slfo.1.1_5.1 * SUSE Linux Micro 6.1 (s390x) * qemu-s390x-debuginfo-8.2.10-slfo.1.1_5.1 * qemu-s390x-8.2.10-slfo.1.1_5.1 * SUSE Linux Micro 6.1 (x86_64) * qemu-accel-tcg-x86-debuginfo-8.2.10-slfo.1.1_5.1 * qemu-x86-debuginfo-8.2.10-slfo.1.1_5.1 * qemu-accel-tcg-x86-8.2.10-slfo.1.1_5.1 * qemu-x86-8.2.10-slfo.1.1_5.1 * SUSE Linux Micro 6.1 (ppc64le) * qemu-ppc-8.2.10-slfo.1.1_5.1 * qemu-ppc-debuginfo-8.2.10-slfo.1.1_5.1 ## References: * https://www.suse.com/security/cve/CVE-2025-14876.html * https://www.suse.com/security/cve/CVE-2026-0665.html * https://www.suse.com/security/cve/CVE-2026-2243.html * https://www.suse.com/security/cve/CVE-2026-3195.html * https://www.suse.com/security/cve/CVE-2026-3196.html * https://www.suse.com/security/cve/CVE-2026-3842.html * https://bugzilla.suse.com/show_bug.cgi?id=1255400 * https://bugzilla.suse.com/show_bug.cgi?id=1256484 * https://bugzilla.suse.com/show_bug.cgi?id=1258509 * https://bugzilla.suse.com/show_bug.cgi?id=1259079 * https://bugzilla.suse.com/show_bug.cgi?id=1259080 * https://bugzilla.suse.com/show_bug.cgi?id=1262089 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:55:33 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:55:33 -0000 Subject: SUSE-SU-2026:21882-1: critical: Security update for nvidia-open-driver-G06-signed Message-ID: <178041933366.42.18177729115000285819@b0da085613fb> # Security update for nvidia-open-driver-G06-signed Announcement ID: SUSE-SU-2026:21882-1 Release Date: 2026-06-01T12:57:24Z Rating: critical References: * bsc#1212841 * bsc#1259719 * bsc#1259740 * bsc#1262749 * bsc#1263834 * jsc#PED-15826 Cross-References: * CVE-2025-33221 * CVE-2026-24182 * CVE-2026-24187 * CVE-2026-24192 * CVE-2026-24194 * CVE-2026-24195 * CVE-2026-24196 * CVE-2026-24197 * CVE-2026-24198 * CVE-2026-24199 CVSS scores: * CVE-2025-33221 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-24182 ( NVD ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H * CVE-2026-24187 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-24192 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-24194 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-24195 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H * CVE-2026-24196 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-24197 ( NVD ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H * CVE-2026-24198 ( NVD ): 5.6 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H * CVE-2026-24199 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Micro 6.1 An update that solves 10 vulnerabilities and contains one feature can now be installed. ## Description: This update for nvidia-open-driver-G06-signed fixes the following issues: * Get rid of "'naked' return found in MITIGATION_RETHUNK build" objtool warnings (bsc#1212841, bsc#1263834) * update CUDA variant to 580.159.03 * update non-CUDA variant to 580.159.03 (bsc#1262749) * Fixes CVEs: CVE-2025-33221, CVE-2026-24187, CVE-2026-24182, CVE-2026-24192, CVE-2026-24194, CVE-2026-24195, CVE-2026-24196, CVE-2026-24197, CVE-2026-24198, CVE-2026-24199 * add 'Provides: open-driver-non-cuda-variant = %version' for non-CUDA variant to be able to distinguish between both variants; to be used by nvidia-open- driver-G06-signed-kmp-meta for TW ... (bsc#1259740) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-kernel-462=1 ## Package List: * SUSE Linux Micro 6.1 (aarch64 x86_64) * nvidia-open-driver-G06-signed-cuda-debugsource-580.159.03-1.1 * nvidia-open-driver-G06-signed-cuda-kmp-default-580.159.03_k6.4.0_46-1.1 * nvidia-open-driver-G06-signed-kmp-default-580.159.03_k6.4.0_46-1.1 * nvidia-open-driver-G06-signed-cuda-kmp-default-debuginfo-580.159.03_k6.4.0_46-1.1 * nvidia-open-driver-G06-signed-debugsource-580.159.03-1.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-580.159.03_k6.4.0_46-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-33221.html * https://www.suse.com/security/cve/CVE-2026-24182.html * https://www.suse.com/security/cve/CVE-2026-24187.html * https://www.suse.com/security/cve/CVE-2026-24192.html * https://www.suse.com/security/cve/CVE-2026-24194.html * https://www.suse.com/security/cve/CVE-2026-24195.html * https://www.suse.com/security/cve/CVE-2026-24196.html * https://www.suse.com/security/cve/CVE-2026-24197.html * https://www.suse.com/security/cve/CVE-2026-24198.html * https://www.suse.com/security/cve/CVE-2026-24199.html * https://bugzilla.suse.com/show_bug.cgi?id=1212841 * https://bugzilla.suse.com/show_bug.cgi?id=1259719 * https://bugzilla.suse.com/show_bug.cgi?id=1259740 * https://bugzilla.suse.com/show_bug.cgi?id=1262749 * https://bugzilla.suse.com/show_bug.cgi?id=1263834 * https://jira.suse.com/browse/PED-15826 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:55:42 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:55:42 -0000 Subject: SUSE-SU-2026:21881-1: important: Security update for helm Message-ID: <178041934209.42.7220604648784395627@b0da085613fb> # Security update for helm Announcement ID: SUSE-SU-2026:21881-1 Release Date: 2026-06-01T10:45:04Z Rating: important References: * bsc#1265428 * bsc#1265758 Cross-References: * CVE-2026-33814 * CVE-2026-41888 CVSS scores: * CVE-2026-33814 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-33814 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-33814 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-41888 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-41888 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L * CVE-2026-41888 ( NVD ): 6.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-41888 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L Affected Products: * SUSE Linux Micro 6.1 An update that solves two vulnerabilities can now be installed. ## Description: This update for helm fixes the following issues * CVE-2026-33814: golang.org/x/net/http2: infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE (bsc#1265758). * CVE-2026-41888: github.com/distribution/distribution/v3: tag deletion bypasses the storage.delete.enabled configuration (bsc#1265428). Changes for helm: * Update to version 3.21.0. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-554=1 ## Package List: * SUSE Linux Micro 6.1 (aarch64 ppc64le s390x x86_64) * helm-3.21.0-slfo.1.1_1.1 * helm-debuginfo-3.21.0-slfo.1.1_1.1 * SUSE Linux Micro 6.1 (noarch) * helm-bash-completion-3.21.0-slfo.1.1_1.1 ## References: * https://www.suse.com/security/cve/CVE-2026-33814.html * https://www.suse.com/security/cve/CVE-2026-41888.html * https://bugzilla.suse.com/show_bug.cgi?id=1265428 * https://bugzilla.suse.com/show_bug.cgi?id=1265758 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:55:52 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:55:52 -0000 Subject: SUSE-SU-2026:21880-1: important: Security update for vim Message-ID: <178041935231.42.8618128465908907309@b0da085613fb> # Security update for vim Announcement ID: SUSE-SU-2026:21880-1 Release Date: 2026-06-01T10:45:03Z Rating: important References: * bsc#1262395 * bsc#1264706 * bsc#1264707 * bsc#1264708 * bsc#1265349 * bsc#1265360 Cross-References: * CVE-2026-42307 * CVE-2026-43961 * CVE-2026-44656 * CVE-2026-45130 * CVE-2026-46483 CVSS scores: * CVE-2026-42307 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N * CVE-2026-43961 ( SUSE ): 5.4 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43961 ( SUSE ): 4.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L * CVE-2026-44656 ( SUSE ): 4.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-44656 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N * CVE-2026-44656 ( NVD ): 4.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-44656 ( NVD ): 5.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L * CVE-2026-45130 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H * CVE-2026-45130 ( NVD ): 6.6 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H * CVE-2026-45130 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-46483 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46483 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-46483 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-46483 ( NVD ): 3.6 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N Affected Products: * SUSE Linux Micro 6.1 An update that solves five vulnerabilities and has one fix can now be installed. ## Description: This update for vim fixes the following issues * CVE-2026-42307: Prior to version 9.2.0383, an OS command injection vulnerability exists in the netrw standard plugin bundled with Vim (bsc#1264706). * CVE-2026-43961: Vimscript Code Injection in netrw NetrwMarkFile() via crafted filename (bsc#1265349). * CVE-2026-44656: Prior to version 9.2.0435, an OS command injection vulnerability exists in Vim's: find command-line completion (bsc#1264707). * CVE-2026-45130: Prior to version 9.2.0450, a heap buffer overflow exists in read_compound() in src/spellfile.c when loading a crafted spell file (.spl) with UTF-8 encoding active (bsc#1264708). * CVE-2026-46483: command injection via `tar#Vimuntar()` in `runtime/autoload/tar.vim` when decompressing `.tgz` archives on Unix-like systems (bsc#1265360). Changes for vim: * Update to v9.2.0530. * Fix for incorrectly detecting scientific parameter files as bitbake recipies. (bsc#1262395) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-557=1 ## Package List: * SUSE Linux Micro 6.1 (aarch64 ppc64le s390x x86_64) * vim-debugsource-9.2.0530-slfo.1.1_1.1 * vim-small-9.2.0530-slfo.1.1_1.1 * vim-small-debuginfo-9.2.0530-slfo.1.1_1.1 * SUSE Linux Micro 6.1 (noarch) * vim-data-common-9.2.0530-slfo.1.1_1.1 ## References: * https://www.suse.com/security/cve/CVE-2026-42307.html * https://www.suse.com/security/cve/CVE-2026-43961.html * https://www.suse.com/security/cve/CVE-2026-44656.html * https://www.suse.com/security/cve/CVE-2026-45130.html * https://www.suse.com/security/cve/CVE-2026-46483.html * https://bugzilla.suse.com/show_bug.cgi?id=1262395 * https://bugzilla.suse.com/show_bug.cgi?id=1264706 * https://bugzilla.suse.com/show_bug.cgi?id=1264707 * https://bugzilla.suse.com/show_bug.cgi?id=1264708 * https://bugzilla.suse.com/show_bug.cgi?id=1265349 * https://bugzilla.suse.com/show_bug.cgi?id=1265360 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:55:55 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:55:55 -0000 Subject: SUSE-SU-2026:21879-1: important: Security update for libsoup Message-ID: <178041935528.42.6071827894683350881@b0da085613fb> # Security update for libsoup Announcement ID: SUSE-SU-2026:21879-1 Release Date: 2026-06-01T10:09:20Z Rating: important References: * bsc#1259767 Cross-References: * CVE-2026-4271 CVSS scores: * CVE-2026-4271 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-4271 ( SUSE ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-4271 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-4271 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Micro 6.1 An update that solves one vulnerability can now be installed. ## Description: This update for libsoup fixes the following issue * CVE-2026-4271: use-after-free in the HTTP/2 server when user signal handlers disconnect connections during callback execution (bsc#1259767). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-556=1 ## Package List: * SUSE Linux Micro 6.1 (aarch64 ppc64le s390x x86_64) * libsoup-debugsource-3.4.4-slfo.1.1_9.1 * libsoup-3_0-0-debuginfo-3.4.4-slfo.1.1_9.1 * libsoup-3_0-0-3.4.4-slfo.1.1_9.1 ## References: * https://www.suse.com/security/cve/CVE-2026-4271.html * https://bugzilla.suse.com/show_bug.cgi?id=1259767 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 16:56:01 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 16:56:01 -0000 Subject: SUSE-SU-2026:21878-1: critical: Security update for nvidia-open-driver-G07-signed Message-ID: <178041936102.42.13430935687355609503@b0da085613fb> # Security update for nvidia-open-driver-G07-signed Announcement ID: SUSE-SU-2026:21878-1 Release Date: 2026-06-01T09:27:25Z Rating: critical References: * bsc#1212841 * bsc#1262574 * bsc#1263834 Cross-References: * CVE-2025-33221 * CVE-2026-24182 * CVE-2026-24187 * CVE-2026-24192 * CVE-2026-24194 * CVE-2026-24195 * CVE-2026-24196 * CVE-2026-24197 * CVE-2026-24198 * CVE-2026-24199 CVSS scores: * CVE-2025-33221 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-24182 ( NVD ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H * CVE-2026-24187 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-24192 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-24194 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-24195 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H * CVE-2026-24196 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-24197 ( NVD ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H * CVE-2026-24198 ( NVD ): 5.6 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H * CVE-2026-24199 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Micro 6.1 An update that solves 10 vulnerabilities can now be installed. ## Description: This update for nvidia-open-driver-G07-signed fixes the following issues: * update CUDA variant to 595.71.05 * update non-CUDA variant to 595.71.05 (bsc#1262574) * CVEs fixed: CVE-2025-33221, CVE-2026-24187, CVE-2026-24182, CVE-2026-24192, CVE-2026-24194, CVE-2026-24195, CVE-2026-24196, CVE-2026-24197, CVE-2026-24198, CVE-2026-24199 ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-kernel-439=1 ## Package List: * SUSE Linux Micro 6.1 (aarch64 x86_64) * nvidia-open-driver-G07-signed-kmp-default-595.71.05_k6.4.0_46-1.1 * nvidia-open-driver-G07-signed-cuda-debugsource-595.71.05-1.1 * nvidia-open-driver-G07-signed-cuda-kmp-default-debuginfo-595.71.05_k6.4.0_46-1.1 * nvidia-open-driver-G07-signed-cuda-kmp-default-595.71.05_k6.4.0_46-1.1 * nvidia-open-driver-G07-signed-kmp-default-debuginfo-595.71.05_k6.4.0_46-1.1 * nvidia-open-driver-G07-signed-debugsource-595.71.05-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-33221.html * https://www.suse.com/security/cve/CVE-2026-24182.html * https://www.suse.com/security/cve/CVE-2026-24187.html * https://www.suse.com/security/cve/CVE-2026-24192.html * https://www.suse.com/security/cve/CVE-2026-24194.html * https://www.suse.com/security/cve/CVE-2026-24195.html * https://www.suse.com/security/cve/CVE-2026-24196.html * https://www.suse.com/security/cve/CVE-2026-24197.html * https://www.suse.com/security/cve/CVE-2026-24198.html * https://www.suse.com/security/cve/CVE-2026-24199.html * https://bugzilla.suse.com/show_bug.cgi?id=1212841 * https://bugzilla.suse.com/show_bug.cgi?id=1262574 * https://bugzilla.suse.com/show_bug.cgi?id=1263834 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 17:00:53 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 17:00:53 -0000 Subject: SUSE-SU-2026:21877-1: important: Security update for the Linux Kernel Message-ID: <178041965337.42.13211112563775726404@b0da085613fb> # Security update for the Linux Kernel Announcement ID: SUSE-SU-2026:21877-1 Release Date: 2026-05-29T17:53:27Z Rating: important References: * bsc#1215199 * bsc#1234634 * bsc#1243603 * bsc#1248754 * bsc#1253122 * bsc#1253754 * bsc#1254518 * bsc#1256863 * bsc#1257631 * bsc#1258518 * bsc#1258718 * bsc#1258826 * bsc#1258849 * bsc#1258850 * bsc#1258854 * bsc#1258855 * bsc#1258856 * bsc#1258857 * bsc#1258961 * bsc#1259186 * bsc#1259199 * bsc#1259222 * bsc#1259484 * bsc#1259485 * bsc#1259535 * bsc#1259799 * bsc#1259806 * bsc#1259857 * bsc#1259868 * bsc#1259869 * bsc#1259873 * bsc#1259878 * bsc#1260010 * bsc#1260012 * bsc#1260018 * bsc#1260468 * bsc#1260483 * bsc#1260484 * bsc#1260485 * bsc#1260489 * bsc#1260501 * bsc#1260504 * bsc#1260505 * bsc#1260507 * bsc#1260522 * bsc#1260523 * bsc#1260526 * bsc#1260528 * bsc#1260529 * bsc#1260530 * bsc#1260531 * bsc#1260532 * bsc#1260533 * bsc#1260536 * bsc#1260537 * bsc#1260538 * bsc#1260541 * bsc#1260546 * bsc#1260549 * bsc#1260551 * bsc#1260552 * bsc#1260553 * bsc#1260555 * bsc#1260561 * bsc#1260566 * bsc#1260572 * bsc#1260581 * bsc#1260728 * bsc#1260729 * bsc#1260731 * bsc#1260800 * bsc#1260811 * bsc#1261020 * bsc#1261287 * bsc#1261295 * bsc#1261348 * bsc#1261503 * bsc#1261504 * bsc#1261581 * bsc#1261582 * bsc#1261584 * bsc#1261601 * bsc#1261602 * bsc#1261618 * bsc#1261628 * bsc#1261632 * bsc#1261636 * bsc#1261638 * bsc#1261641 * bsc#1261644 * bsc#1261645 * bsc#1261648 * bsc#1261679 * bsc#1261685 * bsc#1261686 * bsc#1261687 * bsc#1261692 * bsc#1261694 * bsc#1261700 * bsc#1261703 * bsc#1261707 * bsc#1261710 * bsc#1261713 * bsc#1261719 * bsc#1261750 * bsc#1261751 * bsc#1261752 * bsc#1261768 * bsc#1261778 * bsc#1261779 * bsc#1261781 * bsc#1261789 * bsc#1261796 * bsc#1261797 * bsc#1261896 * bsc#1262020 * bsc#1262053 * bsc#1262054 * bsc#1262055 * bsc#1262061 * bsc#1262063 * bsc#1262074 * bsc#1262078 * bsc#1262086 * bsc#1262087 * bsc#1262099 * bsc#1262100 * bsc#1262101 * bsc#1262179 * bsc#1262181 * bsc#1262602 * bsc#1262616 * bsc#1262665 * bsc#1262671 * bsc#1262673 * bsc#1262725 * bsc#1262731 * bsc#1262734 * bsc#1262746 * bsc#1262752 * bsc#1262758 * bsc#1263001 * bsc#1263012 * bsc#1263064 * bsc#1263065 * bsc#1263085 * bsc#1263093 * bsc#1263095 * bsc#1263104 * bsc#1263131 * bsc#1263140 * bsc#1263141 * bsc#1263149 * bsc#1263165 * bsc#1263170 * bsc#1263176 * bsc#1263556 * bsc#1263582 * bsc#1263592 * bsc#1263593 * bsc#1263595 * bsc#1263596 * bsc#1263600 * bsc#1263668 * bsc#1263723 * bsc#1263797 * bsc#1263815 * bsc#1263882 * bsc#1263901 * bsc#1263931 * bsc#1263933 * bsc#1263995 * bsc#1264014 * bsc#1264059 * bsc#1264082 * bsc#1264087 * bsc#1264097 * bsc#1264183 * bsc#1264427 * bsc#1264469 * bsc#1264482 * bsc#1264634 * bsc#1264651 * bsc#1264661 * bsc#1264674 * bsc#1264801 * bsc#1264848 * bsc#1265085 * bsc#1265090 * bsc#1265116 * bsc#1265119 * bsc#1265126 * bsc#1265144 * bsc#1265308 * bsc#1265421 * bsc#1265449 * bsc#1265456 * bsc#1265626 * bsc#1265846 * bsc#1265960 * jsc#PED-7249 Cross-References: * CVE-2023-2058 * CVE-2025-40219 * CVE-2025-71183 * CVE-2025-71238 * CVE-2026-23168 * CVE-2026-23209 * CVE-2026-23236 * CVE-2026-23237 * CVE-2026-23239 * CVE-2026-23240 * CVE-2026-23245 * CVE-2026-23246 * CVE-2026-23253 * CVE-2026-23260 * CVE-2026-23264 * CVE-2026-23266 * CVE-2026-23268 * CVE-2026-23269 * CVE-2026-23271 * CVE-2026-23273 * CVE-2026-23276 * CVE-2026-23279 * CVE-2026-23290 * CVE-2026-23291 * CVE-2026-23298 * CVE-2026-23300 * CVE-2026-23306 * CVE-2026-23307 * CVE-2026-23308 * CVE-2026-23312 * CVE-2026-23313 * CVE-2026-23315 * CVE-2026-23318 * CVE-2026-23321 * CVE-2026-23324 * CVE-2026-23325 * CVE-2026-23336 * CVE-2026-23339 * CVE-2026-23340 * CVE-2026-23346 * CVE-2026-23351 * CVE-2026-23357 * CVE-2026-23362 * CVE-2026-23363 * CVE-2026-23365 * CVE-2026-23367 * CVE-2026-23368 * CVE-2026-23370 * CVE-2026-23372 * CVE-2026-23373 * CVE-2026-23374 * CVE-2026-23378 * CVE-2026-23382 * CVE-2026-23391 * CVE-2026-23392 * CVE-2026-23393 * CVE-2026-23396 * CVE-2026-23397 * CVE-2026-23399 * CVE-2026-23403 * CVE-2026-23404 * CVE-2026-23405 * CVE-2026-23406 * CVE-2026-23407 * CVE-2026-23408 * CVE-2026-23409 * CVE-2026-23410 * CVE-2026-23411 * CVE-2026-23420 * CVE-2026-23426 * CVE-2026-23434 * CVE-2026-23440 * CVE-2026-23441 * CVE-2026-23442 * CVE-2026-23443 * CVE-2026-23446 * CVE-2026-23447 * CVE-2026-23448 * CVE-2026-23449 * CVE-2026-23450 * CVE-2026-23452 * CVE-2026-23455 * CVE-2026-23456 * CVE-2026-23457 * CVE-2026-23458 * CVE-2026-23460 * CVE-2026-23461 * CVE-2026-23462 * CVE-2026-23463 * CVE-2026-23465 * CVE-2026-23468 * CVE-2026-23472 * CVE-2026-23473 * CVE-2026-23474 * CVE-2026-23475 * CVE-2026-31389 * CVE-2026-31393 * CVE-2026-31400 * CVE-2026-31402 * CVE-2026-31403 * CVE-2026-31404 * CVE-2026-31405 * CVE-2026-31407 * CVE-2026-31408 * CVE-2026-31411 * CVE-2026-31412 * CVE-2026-31415 * CVE-2026-31416 * CVE-2026-31417 * CVE-2026-31420 * CVE-2026-31421 * CVE-2026-31422 * CVE-2026-31423 * CVE-2026-31424 * CVE-2026-31425 * CVE-2026-31426 * CVE-2026-31427 * CVE-2026-31428 * CVE-2026-31436 * CVE-2026-31449 * CVE-2026-31470 * CVE-2026-31488 * CVE-2026-31494 * CVE-2026-31496 * CVE-2026-31504 * CVE-2026-31505 * CVE-2026-31507 * CVE-2026-31512 * CVE-2026-31515 * CVE-2026-31519 * CVE-2026-31525 * CVE-2026-31528 * CVE-2026-31533 * CVE-2026-31550 * CVE-2026-31565 * CVE-2026-31570 * CVE-2026-31586 * CVE-2026-31588 * CVE-2026-31602 * CVE-2026-31607 * CVE-2026-31622 * CVE-2026-31649 * CVE-2026-31656 * CVE-2026-31662 * CVE-2026-31668 * CVE-2026-31669 * CVE-2026-31675 * CVE-2026-31679 * CVE-2026-31681 * CVE-2026-31682 * CVE-2026-31684 * CVE-2026-31685 * CVE-2026-31694 * CVE-2026-31700 * CVE-2026-31738 * CVE-2026-31787 * CVE-2026-43009 * CVE-2026-43025 * CVE-2026-43027 * CVE-2026-43037 * CVE-2026-43038 * CVE-2026-43044 * CVE-2026-43050 * CVE-2026-43060 * CVE-2026-43088 * CVE-2026-43110 * CVE-2026-43120 * CVE-2026-43126 * CVE-2026-43190 * CVE-2026-43214 * CVE-2026-43265 * CVE-2026-43329 * CVE-2026-43330 * CVE-2026-43334 * CVE-2026-43365 * CVE-2026-43366 * CVE-2026-43419 * CVE-2026-43437 * CVE-2026-43441 * CVE-2026-43494 * CVE-2026-43503 CVSS scores: * CVE-2023-2058 ( NVD ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N * CVE-2023-2058 ( NVD ): 2.4 CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N * CVE-2025-40219 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2025-40219 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2025-71183 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-71183 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-71238 ( SUSE ): 5.9 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-71238 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H * CVE-2025-71238 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23168 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23168 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23168 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23209 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23209 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23236 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23236 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23236 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23236 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H * CVE-2026-23237 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23237 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23237 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23239 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23239 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23239 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23240 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23240 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23240 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23245 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23245 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23245 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23246 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23246 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23253 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23253 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23260 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-23260 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-23260 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23264 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23264 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23264 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23266 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23266 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23266 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23268 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23268 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23268 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23269 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23269 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23269 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23271 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23271 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23271 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23273 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23273 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23273 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23276 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23276 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23279 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23279 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23279 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23290 ( SUSE ): 5.1 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23290 ( SUSE ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23290 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23291 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23291 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23298 ( SUSE ): 5.1 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23298 ( SUSE ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23298 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23300 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23300 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23300 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23306 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23306 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:H/A:H * CVE-2026-23306 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23307 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23307 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23308 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23308 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23312 ( SUSE ): 5.1 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23312 ( SUSE ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23312 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23313 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23313 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23315 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23315 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23318 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23318 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23321 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-23321 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-23321 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23324 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23324 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23324 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23325 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23325 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23336 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23336 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23339 ( SUSE ): 2.3 CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-23339 ( SUSE ): 3.1 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-23339 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23340 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23340 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23340 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23346 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23346 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23346 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23351 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23351 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23357 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23357 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23357 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23362 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23362 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23363 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23363 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23365 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23365 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23365 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23367 ( SUSE ): 5.3 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-23367 ( SUSE ): 6.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2026-23367 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23368 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23368 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23368 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23370 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23370 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23372 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23372 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23373 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23373 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23374 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23374 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23374 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23378 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23378 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-23378 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23378 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23382 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23382 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23382 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23391 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23391 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23392 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23392 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23392 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23393 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23393 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23393 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23396 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23396 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23396 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23397 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23397 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23397 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23399 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23399 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23399 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23403 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23403 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2026-23403 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23404 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23404 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23404 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23405 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23405 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23405 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23406 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23406 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23406 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23407 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23407 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23407 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23408 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23408 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23408 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23408 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23409 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23409 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-23409 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23410 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23410 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23410 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23410 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23411 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23420 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23420 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23420 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23426 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23426 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23426 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23434 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23434 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23434 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23434 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-23440 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23440 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23440 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23440 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23441 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23441 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23442 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23442 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23442 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23443 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23443 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23443 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23446 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23446 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23446 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23447 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23447 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23447 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23448 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23448 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23448 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23449 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23449 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23449 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23450 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23450 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23450 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23452 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23452 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23452 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23455 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23455 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23455 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23456 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-23456 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-23456 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23457 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23457 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23457 ( NVD ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-23458 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23458 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23458 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23460 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23460 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23460 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23461 ( SUSE ): 7.7 CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23461 ( SUSE ): 7.5 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23461 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23462 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23462 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23462 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23463 ( SUSE ): 0.0 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-23463 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N * CVE-2026-23463 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23465 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:L/SC:N/SI:N/SA:N * CVE-2026-23465 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2026-23465 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23468 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23468 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23468 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23472 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23472 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23472 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23473 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23473 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23474 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23474 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23474 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23475 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23475 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23475 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31389 ( SUSE ): 5.6 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31389 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31389 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31393 ( SUSE ): 5.3 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31393 ( SUSE ): 4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-31393 ( NVD ): 8.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31400 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31400 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31400 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31402 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31402 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-31402 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31403 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31403 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31403 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31404 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31404 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31404 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31405 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31405 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31405 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31407 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31407 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N * CVE-2026-31407 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31408 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31408 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31408 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31411 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31411 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31411 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31412 ( SUSE ): 7.0 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31412 ( SUSE ): 6.8 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31412 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31415 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31415 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31415 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31416 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-31416 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-31416 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31417 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31417 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31417 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31420 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31420 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31420 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31421 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31421 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31421 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31422 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31422 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31422 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31423 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31423 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31423 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31424 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31424 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31424 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31425 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31425 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31425 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31426 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31426 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2026-31426 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31427 ( SUSE ): 2.0 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-31427 ( SUSE ): 4.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2026-31427 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31428 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31428 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2026-31428 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31436 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31436 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31436 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31449 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31449 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31449 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-31470 ( SUSE ): 6.0 CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:H/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31470 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H * CVE-2026-31470 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31488 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31488 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31488 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31494 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-31494 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N * CVE-2026-31494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31496 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31496 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-31496 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31504 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31504 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31504 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31505 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31505 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31505 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31507 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31507 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31507 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31512 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31512 ( SUSE ): 7.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-31512 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31515 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31515 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31515 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31519 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31519 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31519 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31525 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31525 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31525 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31528 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31528 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31528 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31533 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31533 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31533 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31550 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31550 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31550 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31565 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31565 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31565 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31570 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:H/SI:N/SA:N * CVE-2026-31570 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31570 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31586 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31586 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31586 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31588 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31588 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31588 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-31602 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31602 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31602 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31607 ( SUSE ): 7.0 CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31607 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H * CVE-2026-31607 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31622 ( SUSE ): 8.7 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31622 ( SUSE ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31622 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31649 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31649 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31649 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31656 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31656 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31656 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31662 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31662 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31662 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31668 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-31668 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2026-31668 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31669 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31669 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31669 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31675 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31675 ( SUSE ): 5.6 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H * CVE-2026-31675 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31679 ( SUSE ): 8.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31679 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31679 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31681 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31681 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N * CVE-2026-31681 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31682 ( SUSE ): 5.3 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31682 ( SUSE ): 4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-31682 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31684 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-31684 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L * CVE-2026-31684 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31685 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31685 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31685 ( NVD ): 9.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H * CVE-2026-31694 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31694 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31694 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31700 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31700 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31700 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31738 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31738 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31738 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31787 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31787 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31787 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43009 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43009 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43025 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43025 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H * CVE-2026-43027 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43027 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43037 ( SUSE ): 7.7 CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43037 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43037 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43038 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43038 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43044 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43044 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43044 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43050 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43050 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43050 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43060 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43060 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43088 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-43088 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-43110 ( SUSE ): 7.7 CVSS:4.0/AV:A/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43110 ( SUSE ): 7.5 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43110 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43120 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43120 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-43120 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43120 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43126 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43126 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43126 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43190 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43190 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-43190 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-43214 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43214 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43214 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43265 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43265 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43265 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43329 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43329 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43329 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43330 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43330 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43330 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43334 ( SUSE ): 8.6 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-43334 ( SUSE ): 8.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-43334 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43365 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-43365 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-43365 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-43366 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43366 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43366 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43419 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-43419 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-43437 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43437 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43437 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43441 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43441 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43494 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43494 ( SUSE ): 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43503 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43503 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-43503 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H Affected Products: * SUSE Linux Micro 6.1 An update that solves 181 vulnerabilities, contains one feature and has 19 fixes can now be installed. ## Description: The SUSE Linux Enterprise Micro 6.0 and Micro 6.1 kernel was updated to fix various security issues The following security issues were fixed: * CVE-2023-2058: x86/CPU: Fix FPDSS on Zen1 (bsc#1243603). * CVE-2025-71183: btrfs: always detect conflicting inodes when logging inode refs (bsc#1257631). * CVE-2026-23168: flex_proportions: make fprop_new_period() hardirq safe (bsc#1258826). * CVE-2026-23239: espintcp: Fix race condition in espintcp_close() (bsc#1259485). * CVE-2026-23240: tls: Fix race condition in tls_sw_cancel_work_tx() (bsc#1259484). * CVE-2026-23245: net/sched: act_gate: snapshot parameters with RCU on replace (bsc#1259799). * CVE-2026-23271: perf: Fix __perf_event_overflow() vs perf_remove_from_context() race (bsc#1260018). * CVE-2026-23276: net: move dev_xmit_recursion() helpers to net/core/dev.h (bsc#1260012). * CVE-2026-23300: net: ipv6: fix panic when IPv4 route references loopback IPv6 nexthop (bsc#1260538). * CVE-2026-23306: scsi: pm8001: Fix use-after-free in pm8001_queue_command() (bsc#1260501). * CVE-2026-23313: i40e: Fix preempt count leak in napi poll tracepoint (bsc#1260555). * CVE-2026-23321: mptcp: pm: in-kernel: always mark signal+subflow endp as used (bsc#1260505). * CVE-2026-23340: net: sched: avoid qdisc_reset_all_tx_gt() vs dequeue race for lockless qdiscs (bsc#1260523). * CVE-2026-23346: mm/ioremap: define generic_ioremap_prot() and generic_iounmap() (bsc#1260529). * CVE-2026-23351: netfilter: nft_set_pipapo: split gc into unlink and reclaim phase (bsc#1260526). * CVE-2026-23368: net: phy: register phy led_triggers during probe to avoid AB-BA deadlock (bsc#1260530). * CVE-2026-23374: blktrace: fix __this_cpu_read/write in preemptible context (bsc#1260811). * CVE-2026-23378: net/sched: act_ife: Fix metalist update behavior (bsc#1260546). * CVE-2026-23391: netfilter: xt_CT: drop pending enqueued packets on template removal (bsc#1260566). * CVE-2026-23392: netfilter: nf_tables: release flowtable after rcu grace period on error (bsc#1260531). * CVE-2026-23393: bridge: cfm: Fix race condition in peer_mep deletion (bsc#1260522). * CVE-2026-23397: nfnetlink_osf: validate individual option lengths in fingerprints (bsc#1260728). * CVE-2026-23399: nf_tables: nft_dynset: fix possible stateful expression memleak in error path (bsc#1261020). * CVE-2026-23440: net/mlx5e: Fix race condition during IPSec ESN update (bsc#1261641). * CVE-2026-23441: net/mlx5e: Prevent concurrent access to IPSec ASO context (bsc#1261768). * CVE-2026-23442: ipv6: add NULL checks for idev in SRv6 paths (bsc#1261581). * CVE-2026-23449: net/sched: teql: Fix double-free in teql_master_xmit (bsc#1261779). * CVE-2026-23450: net/smc: fix NULL dereference and UAF in smc_tcp_syn_recv_sock() (bsc#1261584). * CVE-2026-23455: netfilter: nf_conntrack_h323: check for zero length in DecodeQ931() (bsc#1261687). * CVE-2026-23456: netfilter: nf_conntrack_h323: fix OOB read in decode_int() CONS case (bsc#1261703). * CVE-2026-23457: netfilter: nf_conntrack_sip: fix Content-Length u32 truncation in sip_help_tcp() (bsc#1261686). * CVE-2026-23458: netfilter: ctnetlink: fix use-after-free in ctnetlink_dump_exp_ct() (bsc#1261781). * CVE-2026-23461: Bluetooth: L2CAP: Fix use-after-free in l2cap_unregister_user (bsc#1261707). * CVE-2026-23462: Bluetooth: HIDP: Fix possible UAF (bsc#1261710). * CVE-2026-23468: drm/amdgpu: Limit BO list entry count to prevent resource exhaustion (bsc#1261692). * CVE-2026-23472: serial: core: fix infinite loop in handle_tx() for PORT_UNKNOWN (bsc#1261636). * CVE-2026-23473: io_uring/poll: fix multishot recv missing EOF on wakeup race (bsc#1261694). * CVE-2026-31400: sunrpc: fix cache_request leak in cache_release (bsc#1261645). * CVE-2026-31402: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache (bsc#1261638). * CVE-2026-31403: NFSD: Hold net reference for the lifetime of /proc/fs/nfs/exports fd (bsc#1261796). * CVE-2026-31404: xfs: avoid dereferencing log items after push callbacks (bsc#1261628). * CVE-2026-31407: netfilter: conntrack: add missing netlink policy validations (bsc#1261632). * CVE-2026-31411: net: atm: fix crash due to unvalidated vcc pointer in sigd_send() (bsc#1261752). * CVE-2026-31415: ipv6: avoid overflows in ip6_datagram_send_ctl() (bsc#1262099). * CVE-2026-31416: netfilter: nfnetlink_log: account for netlink header size (bsc#1262100). * CVE-2026-31420: bridge: mrp: reject zero test interval to avoid OOM panic (bsc#1262055). * CVE-2026-31421: net/sched: cls_fw: fix NULL pointer dereference on shared blocks (bsc#1262061). * CVE-2026-31422: net/sched: cls_flow: fix NULL pointer dereference on shared blocks (bsc#1262054). * CVE-2026-31423: net/sched: sch_hfsc: fix divide-by-zero in rtsc_min() (bsc#1262063). * CVE-2026-31424: netfilter: x_tables: restrict xt_check_match/xt_check_target extensions for NFPROTO_ARP (bsc#1262053). * CVE-2026-31425: rds: ib: reject FRMR registration before IB connection is established (bsc#1262074). * CVE-2026-31427: netfilter: nf_conntrack_sip: fix use of uninitialized rtp_addr in process_sdp (bsc#1262086). * CVE-2026-31428: netfilter: nfnetlink_log: fix uninitialized padding leak in NFULA_PAYLOAD (bsc#1262087). * CVE-2026-31436: dmaengine: idxd: fix possible wrong descriptor completion in llist_abort_desc() (bsc#1262602). * CVE-2026-31449: ext4: validate p_idx bounds in ext4_ext_correct_indexes (bsc#1262616). * CVE-2026-31470: virt: tdx-guest: Fix handling of host controlled 'quote' buffer length (bsc#1262665). * CVE-2026-31488: drm/amd/display: Do not skip unrelated mode changes in DSC validation (bsc#1262746). * CVE-2026-31494: net: cadence: macb: Synchronize stats calculations (bsc#1262671). * CVE-2026-31496: netfilter: nf_conntrack_expect: skip expectations in other netns via proc (bsc#1262673). * CVE-2026-31504: net: fix fanout UAF in packet_release() via NETDEV_UP race (bsc#1263085). * CVE-2026-31505: iavf: fix out-of-bounds writes in iavf_get_ethtool_stats() (bsc#1263093). * CVE-2026-31507: net/smc: fix double-free of smc_spd_priv when tee() duplicates splice pipe buffer (bsc#1263095). * CVE-2026-31512: Bluetooth: L2CAP: Validate PDU length before reading SDU length in l2cap_ecred_data_rcv() (bsc#1262734). * CVE-2026-31515: af_key: validate families in pfkey_send_migrate() (bsc#1262752). * CVE-2026-31519: btrfs: set BTRFS_ROOT_ORPHAN_CLEANUP during subvol create (bsc#1263012). * CVE-2026-31525: bpf: Fix undefined behavior in interpreter sdiv/smod for INT_MIN (bsc#1262725). * CVE-2026-31528: perf: Make sure to use pmu_ctx->pmu for groups (bsc#1263001). * CVE-2026-31533: net/tls: fix use-after-free in -EBUSY error path of tls_do_encryption (bsc#1262758). * CVE-2026-31550: pmdomain: bcm: bcm2835-power: Increase ASB control timeout (bsc#1263104). * CVE-2026-31565: RDMA/irdma: Fix deadlock during netdev reset with active connections (bsc#1263064). * CVE-2026-31570: can: gw: fix OOB heap access in cgw_csum_crc8_rel() (bsc#1263065). * CVE-2026-31586: mm: blk-cgroup: fix use-after-free in cgwb_release_workfn() (bsc#1263176). * CVE-2026-31588: KVM: x86: Use scratch field in MMIO fragment to hold small write values (bsc#1263165). * CVE-2026-31602: ALSA: ctxfi: Limit PTP to a single page (bsc#1263723). * CVE-2026-31607: usbip: validate number_of_packets in usbip_pack_ret_submit() (bsc#1263600). * CVE-2026-31622: NFC: digital: Bounds check NFC-A cascade depth in SDD response handler (bsc#1263797). * CVE-2026-31649: net: stmmac: fix integer underflow in chain mode (bsc#1263582). * CVE-2026-31656: drm/i915/gt: fix refcount underflow in intel_engine_park_heartbeat (bsc#1263170). * CVE-2026-31662: tipc: fix bc_ackers underflow on duplicate GRP_ACK_MSG (bsc#1263131). * CVE-2026-31668: seg6: separate dst_cache for input and output paths in seg6 lwtunnel (bsc#1263140). * CVE-2026-31669: mptcp: fix slab-use-after-free in __inet_lookup_established (bsc#1263141). * CVE-2026-31675: net/sched: sch_netem: fix out-of-bounds access in packet corruption (bsc#1263556). * CVE-2026-31679: openvswitch: validate MPLS set/set_masked payload length (bsc#1263592). * CVE-2026-31681: netfilter: xt_multiport: validate range encoding in checkentry (bsc#1263593). * CVE-2026-31682: bridge: br_nd_send: linearize skb before parsing ND options (bsc#1263595). * CVE-2026-31684: net: sched: act_csum: validate nested VLAN headers (bsc#1263596). * CVE-2026-31685: netfilter: ip6t_eui64: reject invalid MAC header for all packets (bsc#1263668). * CVE-2026-31694: fuse: reject oversized dirents in page cache (bsc#1263901). * CVE-2026-31700: net/packet: fix TOCTOU race on mmap'd vnet_hdr in tpacket_snd() (bsc#1263882). * CVE-2026-31738: vxlan: validate ND option lengths in vxlan_na_create (bsc#1264059). * CVE-2026-31787: xen/privcmd: fix double free via VMA splitting (bsc#1262181). * CVE-2026-43009: bpf: Fix incorrect pruning due to atomic fetch precision tracking (bsc#1264014). * CVE-2026-43025: netfilter: ctnetlink: ignore explicit helper on new expectations (bsc#1263931). * CVE-2026-43027: netfilter: nf_conntrack_helper: pass helper to expect cleanup (bsc#1263933). * CVE-2026-43037: ip6_tunnel: clear skb2->cb in ip4ip6_err() (bsc#1263995). * CVE-2026-43038: ipv6: icmp: clear skb2->cb in ip6_err_gen_icmpv6_unreach() (bsc#1264097). * CVE-2026-43044: crypto: caam - fix DMA corruption on long hmac keys (bsc#1264087). * CVE-2026-43050: atm: lec: fix use-after-free in sock_def_readable() (bsc#1264082). * CVE-2026-43060: netfilter: nft_ct: drop pending enqueued packets on removal (bsc#1264183). * CVE-2026-43088: net: af_key: zero aligned sockaddr tail in PF_KEY exports (bsc#1264469). * CVE-2026-43110: wifi: brcmfmac: validate bsscfg indices in IF events (bsc#1264482). * CVE-2026-43120: RDMA/irdma: Fix double free related to rereg_user_mr. * CVE-2026-43126: ALSA: mixer: oss: Add card disconnect checkpoints (bsc#1264634). * CVE-2026-43190: netfilter: xt_tcpmss: check remaining length before reading optlen (bsc#1264848). * CVE-2026-43214: KVM: x86: Add SRCU protection for reading PDPTRs in __get_sregs2() (bsc#1264651). * CVE-2026-43265: KVM: x86: Ignore -EBUSY when checking nested events from vcpu_block() (bsc#1264427). * CVE-2026-43329: netfilter: flowtable: strictly check for maximum number of actions (bsc#1265085). * CVE-2026-43330: crypto: caam - fix overflow on long hmac keys (bsc#1264801). * CVE-2026-43334: Bluetooth: SMP: force responder MITM requirements before building the pairing response (bsc#1265090). * CVE-2026-43365: xfs: fix undersized l_iclog_roundoff values (bsc#1265119). * CVE-2026-43366: io_uring/kbuf: check if target buffer list is still legacy on recycle (bsc#1265116). * CVE-2026-43419: ceph: fix memory leaks in ceph_mdsc_build_path() (bsc#1264661). * CVE-2026-43437: ALSA: pcm: fix use-after-free on linked stream runtime in snd_pcm_drain() (bsc#1265126). * CVE-2026-43441: net: bonding: Fix nd_tbl NULL dereference when IPv6 is disabled (bsc#1264674). * CVE-2026-43494: net/rds: reset op_nents when zerocopy page pin fails (bsc#1265626). * CVE-2026-43503: net: skbuff: propagate shared-frag marker through frag- transfer helpers (bsc#1265960). The following non security issues were fixed: * accel/qaic: Add overflow check to remap_pfn_range during mmap (git-fixes). * ACPI: AGDI: fix missing newline in error message (git-fixes). * ACPI: CPPC: Fix related_cpus inconsistency during CPU hotplug (git-fixes). * ACPI: scan: Use acpi_dev_put() in object add error paths (git-fixes). * ACPI: video: force native backlight on HP OMEN 16 (8A44) (stable-fixes). * ALSA: 6fire: Fix input volume change detection (git-fixes). * ALSA: 6fire: fix use-after-free on disconnect (git-fixes). * ALSA: aoa: i2sbus: clear stale prepared state (git-fixes). * ALSA: aoa: i2sbus: fix OF node lifetime handling (git-fixes). * ALSA: aoa: Skip devices with no codecs in i2sbus_resume() (git-fixes). * ALSA: aoa: Use guard() for mutex locks (stable-fixes). * ALSA: asihpi: avoid write overflow check warning (stable-fixes). * ALSA: caiaq: Don't abort when no input device is available (git-fixes). * ALSA: caiaq: Fix control_put() result and cache rollback (git-fixes). * ALSA: caiaq: Fix potentially leftover ep1_in_urb at error path (git-fixes). * ALSA: caiaq: fix usb_dev refcount leak on probe failure (git-fixes). * ALSA: caiaq: Handle probe errors properly (git-fixes). * ALSA: caiaq: take a reference on the USB device in create_card() (git- fixes). * ALSA: control: Validate buf_len before strnlen() in snd_ctl_elem_init_enum_names() (git-fixes). * ALSA: core: Fix potential data race at fasync handling (git-fixes). * ALSA: core: Serialize deferred fasync state checks (git-fixes). * ALSA: core: Validate compress device numbers without dynamic minors (git- fixes). * ALSA: ctxfi: Add fallback to default RSR for S/PDIF (git-fixes). * ALSA: ctxfi: Fix missing SPDIFI1 index handling (stable-fixes). * ALSA: ctxfi: Limit PTP to a single page (git-fixes). * ALSA: firewire-tascam: Do not drop unread control events (git-fixes). * ALSA: fireworks: bound device-supplied status before string array lookup (git-fixes). * ALSA: hda/realtek - fixed speaker no sound update (git-fixes). * ALSA: hda/realtek: Add HP ENVY Laptop 13-ba0xxx quirk (stable-fixes). * ALSA: hda/realtek: Add mute LED quirk for HP Pavilion 15-eg0xxx (stable- fixes). * ALSA: hda/realtek: Add quirk for ASUS ROG Flow Z13-KJP GZ302EAC (stable- fixes). * ALSA: hda/realtek: add quirk for Framework F111:000F (stable-fixes). * ALSA: hda/realtek: Add quirk for Lenovo Yoga Pro 7 14IAH10 (stable-fixes). * ALSA: hda/realtek: fix code style (ERROR: else should follow close brace '}') (git-fixes). * ALSA: misc: Use guard() for spin locks (stable-fixes). * ALSA: scarlett2: Add missing sentinel initializer field (git-fixes). * ALSA: seq: Notify client and port info changes (stable-fixes). * ALSA: seq_oss: return full count for successful SEQ_FULLSIZE writes (stable- fixes). * ALSA: usb-audio: apply quirk for MOONDROP JU Jiu (stable-fixes). * ALSA: usb-audio: Avoid false E-MU sample-rate notifications (git-fixes). * ALSA: usb-audio: Avoid potential endless loop in convert_chmap_v3() (git- fixes). * ALSA: usb-audio: Evaluate packsize caps at the right place (git-fixes). * ALSA: usb-audio: Fix Audio Advantage Micro II SPDIF switch (git-fixes). * ALSA: usb-audio: Fix potential leak of pd at parsing UAC3 streams (git- fixes). * ALSA: usb-audio: Fix quirk flags for NeuralDSP Quad Cortex (stable-fixes). * ALSA: usb-audio: Fix UAC3 cluster descriptor size check (git-fixes). * ALSA: usb-audio: midi2: Restart output URBs on resume (git-fixes). * ALSA: usb-audio: stop parsing UAC2 rates at MAX_NR_RATES (git-fixes). * ASoC: amd: yc: Add DMI entry for HP Laptop 15-fc0xxx (stable-fixes). * ASoC: amd: yc: Add DMI quirk for ASUS EXPERTBOOK BM1403CDA (stable-fixes). * ASoC: amd: yc: Add DMI quirk for Thin A15 B7VF (stable-fixes). * ASoC: amd: yc: Add HP OMEN Gaming Laptop 16-ap0xxx product line in quirk table (stable-fixes). * ASoC: codecs: ab8500: Fix casting of private data (git-fixes). * ASoC: cs35l56: Destroy workqueue in probe error path (git-fixes). * ASoC: cs35l56: Don't use devres to unregister component (git-fixes). * ASoC: fsl_easrc: Change the type for iec958 channel status controls (git- fixes). * ASoC: fsl_easrc: Check the variable range in fsl_easrc_iec958_put_bits() (git-fixes). * ASoC: fsl_easrc: fix comment typo (git-fixes). * ASoC: fsl_easrc: Fix value type in fsl_easrc_iec958_get_bits() (git-fixes). * ASoC: fsl_micfil: Add access property for "VAD Detected" (git-fixes). * ASoC: fsl_micfil: Fix event generation in hwvad_put_enable() (git-fixes). * ASoC: fsl_micfil: Fix event generation in hwvad_put_init_mode() (git-fixes). * ASoC: fsl_micfil: Fix event generation in micfil_put_dc_remover_state() (git-fixes). * ASoC: fsl_micfil: Fix event generation in micfil_quality_set() (git-fixes). * ASoC: fsl_xcvr: Fix event generation for cached controls (git-fixes). * ASoC: fsl_xcvr: Fix event generation in fsl_xcvr_arc_mode_put() (git-fixes). * ASoC: fsl_xcvr: Fix event generation in fsl_xcvr_mode_put() (git-fixes). * ASoC: Intel: bytcr_wm5102: Fix MCLK leak on platform_clock_control error (git-fixes). * ASoC: qcom: q6apm-lpass-dai: Fix multiple graph opens (git-fixes). * ASoC: qcom: q6apm: move component registration to unmanaged version (git- fixes). * ASoC: qcom: q6apm: remove child devices when apm is removed (git-fixes). * ASoC: qcom: qdsp6: topology: check widget type before accessing data (git- fixes). * ASoC: soc-core: call missing INIT_LIST_HEAD() for card_aux_list (stable- fixes). * ASoC: SOF: compress: return the configured codec from get_params (git- fixes). * ASoC: SOF: Don't allow pointer operations on unconfigured streams (git- fixes). * ASoC: SOF: Intel: hda: Place check before dereference (git-fixes). * ASoC: SOF: topology: reject invalid vendor array size in token parser (stable-fixes). * ASoC: sti: Return errors from regmap_field_alloc() (git-fixes). * ASoC: sti: use managed regmap_field allocations (git-fixes). * ASoC: stm32_sai: fix incorrect BCLK polarity for DSP_A/B, LEFT_J (stable- fixes). * ata: ahci: force 32-bit DMA for JMicron JMB582/JMB585 (stable-fixes). * batman-adv: bla: only purge non-released claims (git-fixes). * batman-adv: bla: prevent use-after-free when deleting claims (git-fixes). * batman-adv: bla: put backbone reference on failed claim hash insert (git- fixes). * batman-adv: fix integer overflow on buff_pos (git-fixes). * batman-adv: hold claim backbone gateways by reference (git-fixes). * batman-adv: reject new tp_meter sessions during teardown (git-fixes). * batman-adv: reject oversized global TT response buffers (git-fixes). * batman-adv: stop caching unowned originator pointers in BAT IV (git-fixes). * Bluetooth: bnep: fix incorrect length parsing in bnep_rx_frame() extension handling (git-fixes). * Bluetooth: fix locking in hci_conn_request_evt() with HCI_PROTO_DEFER (git- fixes). * Bluetooth: hci_event: Fix OOB read and infinite loop in hci_le_create_big_complete_evt (git-fixes). * Bluetooth: hci_event: fix potential UAF in SSP passkey handlers (git-fixes). * Bluetooth: hci_ldisc: Clear HCI_UART_PROTO_INIT on error (git-fixes). * Bluetooth: HIDP: serialise l2cap_unregister_user via hidp_session_sem (git- fixes). * Bluetooth: ISO: Fix data-race on dst in iso_sock_connect() (git-fixes). * Bluetooth: l2cap: Add missing chan lock in l2cap_ecred_reconf_rsp (git- fixes). * Bluetooth: l2cap: fix MPS check in l2cap_ecred_reconf_req (git-fixes). * Bluetooth: L2CAP: Fix null-ptr-deref in l2cap_sock_new_connection_cb() (git- fixes). * Bluetooth: L2CAP: Fix null-ptr-deref in l2cap_sock_state_change_cb() (git- fixes). * Bluetooth: L2CAP: Fix printing wrong information if SDU length exceeds MTU (git-fixes). * Bluetooth: RFCOMM: pull credit byte with skb_pull_data() (git-fixes). * Bluetooth: SCO: check for codecs->num_codecs == 1 before assigning to sco_pi(sk)->codec (git-fixes). * Bluetooth: SCO: fix sleeping under spinlock in sco_conn_ready (git-fixes). * Bluetooth: SCO: hold sk properly in sco_conn_ready (git-fixes). * Bluetooth: virtio_bt: clamp rx length before skb_put (git-fixes). * Bluetooth: virtio_bt: validate rx pkt_type header length (git-fixes). * btrfs: do not skip logging new dentries when logging a new name (git-fixes). * btrfs: reject root items with drop_progress and zero drop_level (git-fixes). * btrfs: replace BUG() with error handling in __btrfs_balance() (git-fixes). * can: mcp251x: add error handling for power enable in open and resume (stable-fixes). * can: raw: fix ro->uniq use-after-free in raw_rcv() (git-fixes). * can: ucan: fix devres lifetime (git-fixes). * cdc-acm: new quirk for EPSON HMD (stable-fixes). * check-for-config-changes: Exclude CC_MS_EXTENSIONS. * check-for-config-changes: Exclude HAVE_CFI_ICALL_NORMALIZE_INTEGERS{,_RUSTC}. * checkpatch: add support for Assisted-by tag (stable-fixes). * comedi: dt2815: add hardware detection to prevent crash (stable-fixes). * crypto: algif_aead - Fix minimum RX size check for decryption (git-fixes). * crypto: arm64/aes - Fix 32-bit aes_mac_update() arg treated as 64-bit (git- fixes). * crypto: atmel-aes - Fix 3-page memory leak in atmel_aes_buff_cleanup (git- fixes). * crypto: atmel-ecc - Release client on allocation failure (git-fixes). * crypto: atmel-sha204a - Fix potential UAF and memory leak in remove path (git-fixes). * crypto: atmel-tdes - fix DMA sync direction (git-fixes). * crypto: authencesn - reject short ahash digests during instance creation (git-fixes). * crypto: ccp - copy IV using skcipher ivsize (git-fixes). * crypto: ccp: Don't attempt to copy CSR to userspace if PSP command failed (git-fixes). * crypto: ccp: Don't attempt to copy ID to userspace if PSP command failed (git-fixes). * crypto: ccp: Don't attempt to copy PDH cert to userspace if PSP command failed (git-fixes). * crypto: ccree - fix a memory leak in cc_mac_digest() (git-fixes). * crypto: hisilicon - Fix dma_unmap_single() direction (git-fixes). * crypto: jitterentropy - replace long-held spinlock with mutex (git-fixes). * crypto: pcrypt - Fix handling of MAY_BACKLOG requests (git-fixes). * crypto: qat - fix type mismatch in RAS sysfs show functions (git-fixes). * crypto: qat - use swab32 macro (git-fixes). * crypto: sa2ul - Fix AEAD fallback algorithm names (git-fixes). * crypto: simd - reject compat registrations without __ prefixes (git-fixes). * crypto: talitos - fix SEC1 32k ahash request limitation (git-fixes). * crypto: testmgr - Hide ENOENT errors (stable-fixes). * crypto: testmgr - Hide ENOENT errors better (git-fixes). * devres: fix missing node debug info in devm_krealloc() (git-fixes). * dm init: ensure device probing has finished in dm-mod.waitfor= (git-fixes). * dmaengine: dw-axi-dmac: Remove unnecessary return statement from void function (git-fixes). * dmaengine: mxs-dma: Fix missing return value from of_dma_controller_register() (git-fixes). * drm/amd/display: Add NULL check for integrated_info in clk_mgr_construct (git-fixes). * drm/amd/display: Allow DCE link encoder without AUX registers (git-fixes). * drm/amd/display: Avoid NULL dereference in dc_dmub_srv error paths (git- fixes). * drm/amd/display: Disable 10-bit truncation and dithering on DCE 6.x (git- fixes). * drm/amd/display: Read EDID from VBIOS embedded panel info (git-fixes). * drm/amd/pm/ci: Clear EnabledForActivity field for memory levels (git-fixes). * drm/amd/pm/ci: Disable MCLK DPM on problematic CI ASICs (git-fixes). * drm/amd/pm/ci: Fill DW8 fields from SMC (git-fixes). * drm/amd/pm/ci: Fix powertune defaults for Hawaii 0x67B0 (git-fixes). * drm/amd/pm/ci: Use highest MCLK on CI when MCLK DPM is disabled (git-fixes). * drm/amd/pm/smu7: Add SCLK cap for quirky Hawaii board (git-fixes). * drm/amd/pm/smu7: Fix SMU7 voltage dependency on display clock (git-fixes). * drm/amdgpu/gfx6: Support harvested SI chips with disabled TCCs (v2) (git- fixes). * drm/amdgpu/gfx9: drop unnecessary 64-bit fence flag check in KIQ (stable- fixes). * drm/amdgpu/gfx10: look at the right prop for gfx queue priority (git-fixes). * drm/amdgpu/gmc: Fix AMDGPU_GART_PLACEMENT_LOW to not overlap with VRAM (git- fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v2.0 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v2.5 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v3.0 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v4.0 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v4.0.3 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v4.0.5 ring (git-fixes). * drm/amdgpu/pm: add missing revision check for CI (git-fixes). * drm/amdgpu/pm: align Hawaii mclk workaround with radeon (git-fixes). * drm/amdgpu/sdma4: replace BUG_ON with WARN_ON in fence emission (git-fixes). * drm/amdgpu/vce: Prevent partial address patches (stable-fixes). * drm/amdgpu/vcn3: Avoid overflow on msg bound check (git-fixes). * drm/amdgpu/vcn3: Prevent OOB reads when parsing dec msg (stable-fixes). * drm/amdgpu/vcn4: Avoid overflow on msg bound check (git-fixes). * drm/amdgpu/vcn4: Prevent OOB reads when parsing dec msg (stable-fixes). * drm/amdgpu/vcn4: Prevent OOB reads when parsing IB (stable-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v2.0 enc/dec rings (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v2.5 enc/dec rings (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v3.0 enc/dec rings (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v4.0 enc ring (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v4.0.3 enc ring (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v4.0.5 enc ring (git-fixes). * drm/amdgpu: Add bounds checking to ib_{get,set}_value (stable-fixes). * drm/amdgpu: fix AMDGPU_INFO_READ_MMR_REG (git-fixes). * drm/amdgpu: fix zero-size GDS range init on RDNA4 (stable-fixes). * drm/amdgpu: zero-initialize GART table on allocation (stable-fixes). * drm/amdkfd: Add upper bound check for num_of_nodes (stable-fixes). * drm/amdkfd: Clear VRAM on allocation to prevent stale data exposure (stable- fixes). * drm/amdkfd: validate SVM ioctl nattr against buffer size (stable-fixes). * drm/arcpgu: fix device node leak (git-fixes). * drm/bridge: cadence: cdns-mhdp8546-core: Add mode_valid hook to drm_bridge_funcs (git-fixes). * drm/bridge: cadence: cdns-mhdp8546-core: Handle HDCP state in bridge atomic check (git-fixes). * drm/bridge: cadence: cdns-mhdp8546-core: Set the mhdp connector earlier in atomic_enable() (git-fixes). * drm/etnaviv: Fix armed job not being pushed to the DRM scheduler (git- fixes). * drm/fb-helper: Fix clipping when damage area spans a single scanline (git- fixes). * drm/gem: Fix inconsistent plane dimension calculation in drm_gem_fb_init_with_funcs() (git-fixes). * drm/gma500/oaktrail_hdmi: fix i2c adapter leak on setup (git-fixes). * drm/gma500/oaktrail_lvds: fix hang on init failure (git-fixes). * drm/gma500/oaktrail_lvds: fix i2c adapter leaks on init (git-fixes). * drm/i915/dp: Fix VSC dynamic range signaling for RGB formats (git-fixes). * drm/i915/gt: fix refcount underflow in intel_engine_park_heartbeat (git- fixes). * drm/i915/wm: Verify the correct plane DDB entry (git-fixes). * drm/i915: skip __i915_request_skip() for already signaled requests (git- fixes). * drm/komeda: fix integer overflow in AFBC framebuffer size check (git-fixes). * drm/msm/a6xx: Fix dumping A650+ debugbus blocks (git-fixes). * drm/msm/a6xx: Fix HLSQ register dumping (git-fixes). * drm/msm/a6xx: Use barriers while updating HFI Q headers (git-fixes). * drm/msm/dpu: fix mismatch between power and frequency (git-fixes). * drm/msm/dsi: add the missing parameter description (git-fixes). * drm/msm/dsi: fix bits_per_pclk (git-fixes). * drm/msm/dsi: fix hdisplay calculation for CMD mode panel (git-fixes). * drm/msm/dsi: rename MSM8998 DSI version from V2_2_0 to V2_0_0 (git-fixes). * drm/msm/shrinker: Fix can_block() logic (git-fixes). * drm/nouveau: fix u32 overflow in pushbuf reloc bounds check (git-fixes). * drm/panel: sharp-ls043t1le01: make use of prepare_prev_first (git-fixes). * drm/panel: simple: Correct G190EAN01 prepare timing (git-fixes). * drm/panfrost: Fix wait_bo ioctl leaking positive return from dma_resv_wait_timeout() (git-fixes). * drm/radeon: add missing revision check for CI (git-fixes). * drm/sun4i: backend: fix error pointer dereference (git-fixes). * drm/sun4i: Fix resource leaks (git-fixes). * drm/vc4: Fix a memory leak in hang state error path (git-fixes). * drm/vc4: Fix memory leak of BO array in hang state (git-fixes). * drm/vc4: platform_get_irq_byname() returns an int (stable-fixes). * drm/vc4: Protect madv read in vc4_gem_object_mmap() with madv_lock (git- fixes). * drm/vc4: Release runtime PM reference after binding V3D (git-fixes). * drm/vram: remove DRM_VRAM_MM_FILE_OPERATIONS from docs (git-fixes). * dt-bindings: net: Fix Tegra234 MGBE PTP clock (git-fixes). * efi/capsule-loader: fix incorrect sizeof in phys array reallocation (git- fixes). * efi: pstore: Drop efivar lock when efi_pstore_open() returns with an error (git-fixes). * ext4: fix fsync(2) for nojournal mode (git-fixes). * ext4: make recently_deleted() properly work with lazy itable initialization (git-fixes). * ext4: reject mount if bigalloc with s_first_data_block != 0 (git-fixes). * extcon: ptn5150: handle pending IRQ events during system resume (git-fixes). * fbdev: matroxfb: Mark variable with __maybe_unused to avoid W=1 build break (git-fixes). * fbdev: offb: fix PCI device reference leak on probe failure (git-fixes). * fbdev: tdfxfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO (stable-fixes). * fbdev: udlfb: add vm_ops to dlfb_ops_mmap to prevent use-after-free (stable- fixes). * fbdev: udlfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO (git-fixes). * firmware: dmi: Correct an indexing error in dmi.h (git-fixes). * gpio: tegra: fix irq_release_resources calling enable instead of disable (git-fixes). * gtp: disable BH before calling udp_tunnel_xmit_skb() (git-fixes). * HID: alps: fix NULL pointer dereference in alps_raw_event() (git-fixes). * HID: asus: do not abort probe when not necessary (git-fixes). * HID: asus: make asus_resume adhere to linux kernel coding standards (git- fixes). * HID: core: clamp report_size in s32ton() to avoid undefined shift (stable- fixes). * HID: multitouch: Check to ensure report responses match the request (stable- fixes). * HID: playstation: Clamp num_touch_reports (git-fixes). * HID: quirks: add HID_QUIRK_ALWAYS_POLL for 8BitDo Pro 3 (stable-fixes). * HID: roccat: fix use-after-free in roccat_report_event (stable-fixes). * HID: usbhid: fix deadlock in hid_post_reset() (git-fixes). * HID: wacom: fix out-of-bounds read in wacom_intuos_bt_irq (stable-fixes). * hv_sock: fix ARM64 support (git-fixes). * hwmon: (ads7871) Fix endianness bug in 16-bit register reads (git-fixes). * hwmon: (corsair-psu) Close HID device on probe errors (git-fixes). * hwmon: (lm63) Add locking to avoid TOCTOU (git-fixes). * hwmon: (ltc2992) Clamp threshold writes to hardware range (git-fixes). * hwmon: (ltc2992) Fix u32 overflow in power read path (git-fixes). * i2c: s3c24xx: check the size of the SMBUS message before using it (stable- fixes). * i2c: smbus: reject oversized block transfers in the common path (git-fixes). * i2c: stm32f7: reinit_completion() per transfer not per msg (git-fixes). * i2c: stub: Reject I2C block transfers with invalid length (git-fixes). * i3c: master: Fix error codes at send_ccc_cmd (git-fixes). * i3c: mipi-i3c-hci: fix IBI payload length calculation for final status (git- fixes). * ibmveth: Disable GSO for packets with small MSS (bsc#1265144). * ice: set max queues in alloc_etherdev_mqs() (git-fixes). * iio: adc: ad7768-1: fix one-shot mode data acquisition (git-fixes). * iio: adc: ti-adc161s626: use DMA-safe memory for spi_read() (git-fixes). * iio: adc: ti-ads7950: use iio_push_to_buffers_with_ts_unaligned() (git- fixes). * Input: i8042 - add TUXEDO InfinityBook Max 16 Gen10 AMD to i8042 quirk table (stable-fixes). * Input: uinput - fix circular locking dependency with ff-core (git-fixes). * Input: uinput - take event lock when submitting FF request "event" (stable- fixes). * Input: xpad - add support for BETOP BTP-KP50B/C controller's wireless mode (stable-fixes). * Input: xpad - add support for Razer Wolverine V3 Pro (stable-fixes). * ipmi: Add limits to event and receive message requests (git-fixes). * ipmi: Check event message buffer response for bad data (git-fixes). * ipmi: ssif_bmc: change log level to dbg in irq callback (git-fixes). * ipmi: ssif_bmc: fix message desynchronization after truncated response (git- fixes). * ipmi: ssif_bmc: fix missing check for copy_to_user() partial failure (git- fixes). * irqchip/irq-pic32-evic: Address warning related to wrong printf() formatter (git-fixes). * kdump, documentation: describe craskernel CMA reservation (jsc#PED-7249). * KVM: Reject wrapped offset in kvm_reset_dirty_gfn() (git-fixes). * KVM: SVM: Mark VMCB_NPT as dirty on nested VMRUN (git-fixes). * KVM: SVM: Mark VMCB_PERM_MAP as dirty on nested VMRUN (git-fixes). * KVM: x86/mmu: Retry fault before acquiring mmu_lock if mapping is changing (bsc#1253122). * KVM: x86/xen: Fix cleanup logic in emulation of Xen schedop poll hypercalls (git-fixes). * KVM: x86: check for nEPT/nNPT in slow flush hypercalls (git-fixes). * KVM: x86: Fix shadow paging use-after-free due to unexpected GFN (git- fixes). * KVM: x86: hyper-v: Validate all GVAs during PV TLB flush (git-fixes). * KVM: x86: Ignore cpuid faulting in SMM (git-fixes). * leds: lgm-sso: Remove duplicate assignments for priv->mmap (git-fixes). * lib/hexdump: print_hex_dump_bytes() calls print_hex_dump_debug() (git- fixes). * media: amphion: Fix race between m2m job_abort and device_run (git-fixes). * media: as102: fix to not free memory after the device is registered in as102_usb_probe() (git-fixes). * media: dib8000: avoid division by 0 in dib8000_set_dds() (git-fixes). * media: em28xx: fix use-after-free in em28xx_v4l2_open() (git-fixes). * media: hackrf: fix to not free memory after the device is registered in hackrf_probe() (git-fixes). * media: i2c: imx219: Check return value of devm_gpiod_get_optional() in imx219_probe() (git-fixes). * media: i2c: imx412: Assert reset GPIO during probe (git-fixes). * media: i2c: ov08d10: fix image vertical start setting (git-fixes). * media: i2c: ov8856: free control handler on error in ov8856_init_controls() (git-fixes). * media: mtk-jpeg: fix use-after-free in release path due to uncancelled work (git-fixes). * media: omap3isp: drop the use count of v4l2 pipeline (git-fixes). * media: pci: zoran: fix potential memory leak in zoran_probe() (git-fixes). * media: rc: streamzap: Error handling in probe (git-fixes). * media: rc: xbox_remote: heed DMA restrictions (git-fixes). * media: saa7164: add ioremap return checks and cleanups (git-fixes). * media: staging: imx: configure src_mux in csi_start (git-fixes). * media: staging: imx: request mbus_config in csi_start (git-fixes). * media: uvcvideo: Enable VB2_DMABUF for metadata stream (git-fixes). * media: videobuf2: Set vma_flags in vb2_dma_sg_mmap (git-fixes). * media: vidtv: fix nfeeds state corruption on start_streaming failure (git- fixes). * media: vidtv: fix NULL pointer dereference in vidtv_channel_pmt_match_sections (git-fixes). * media: vidtv: fix pass-by-value structs causing MSAN warnings (git-fixes). * memory: tegra30-emc: Fix dll_change check (git-fixes). * memory: tegra124-emc: Fix dll_change check (git-fixes). * mfd: mc13xxx-core: Fix memory leak in mc13xxx_add_subdevice_pdata() (git- fixes). * mkspec: Add signature to source list only when it exists. * mmc: sdhci-of-dwcmshc: Disable clock before DLL configuration (git-fixes). * mmc: vub300: fix NULL-deref on disconnect (git-fixes). * modpost: Amend ppc64 save/restfpr symnames for -Os build (bsc#1215199). * mtd: docg3: Convert to platform remove callback returning void (stable- fixes). * mtd: docg3: fix use-after-free in docg3_release() (git-fixes). * mtd: parsers: ofpart: call of_node_get() for dedicated subpartitions (git- fixes). * mtd: parsers: ofpart: call of_node_put() only in ofpart_fail path (git- fixes). * mtd: physmap_of_gemini: Fix disabled pinctrl state check (git-fixes). * mtd: rawnand: sunxi: fix sunxi_nfc_hw_ecc_read_extra_oob (git-fixes). * mtd: spi-nor: core: correct the op.dummy.nbytes when check read operations (git-fixes). * mtd: spi-nor: sst: Factor out common write operation to `sst_nor_write_data()` (stable-fixes). * mtd: spi-nor: sst: Fix SST write failure (git-fixes). * mtd: spi-nor: sst: Fix write enable before AAI sequence (git-fixes). * mtd: spi-nor: swp: check SR_TB flag when getting tb_mask (git-fixes). * net/rds: reset op_nents when zerocopy page pin fails (bsc#1265626). * net/sched: cls_fw: fix NULL dereference of "old" filters before change() (git-fixes). * net/sched: fix pedit partial COW leading to page cache corruption (bsc#1265421). * net: gro: don't merge zcopy skbs (git-fixes). * net: mana: Add MAC address to vPort logs and clarify error messages (git- fixes). * net: mana: check xdp_rxq registration before unreg in mana_destroy_rxq() (git-fixes). * net: mana: Don't overwrite port probe error with add_adev result (git- fixes). * net: mana: Fix crash from unvalidated SHM offset read from BAR0 during FLR (bsc#1265846). * net: mana: Fix EQ leak in mana_remove on NULL port (git-fixes). * net: mana: Fix RX skb truesize accounting (bsc#1248754). * net: mana: fix use-after-free in mana_hwc_destroy_channel() by reordering teardown (git-fixes). * net: mana: Guard mana_remove against double invocation (git-fixes). * net: mana: hardening: Validate adapter_mtu from MANA_QUERY_DEV_CONFIG (git- fixes). * net: mana: hardening: Validate doorbell ID from GDMA_REGISTER_DEVICE response (git-fixes). * net: mana: Init gf_stats_work before potential error paths in probe (git- fixes). * net: mana: Init link_change_work before potential error paths in probe (git- fixes). * net: mana: remove double CQ cleanup in mana_create_rxq error path (git- fixes). * net: mana: Set default number of queues to 16 (bsc#1261648). * net: mana: Skip WQ object destruction for uninitialized RXQ (git-fixes). * net: mana: Use at least SZ_4K in doorbell ID range check (git-fixes). * net: mana: Use pci_name() for debugfs directory naming (git-fixes). * net: phy: dp83869: fix setting CLK_O_SEL field (git-fixes). * net: stmmac: Fix PTP ref clock for Tegra234 (git-fixes). * net: usb: asix: ax88772: re-add usbnet_link_change() in phylink callbacks (git-fixes). * net: usb: cdc-phonet: fix skb frags[] overflow in rx_complete() (git-fixes). * net: usb: rtl8150: fix use-after-free in rtl8150_start_xmit() (git-fixes). * net: usb: rtl8150: free skb on usb_submit_urb() failure in xmit (git-fixes). * net: wan: fsl_ucc_hdlc: fix ucc_hdlc_remove (git-fixes). * net: wan: fsl_ucc_hdlc: fix uhdlc_memclean (git-fixes). * net: wan: fsl_ucc_hdlc: free tx_skbuff in uhdlc_memclean (git-fixes). * NFC: digital: Bounds check NFC-A cascade depth in SDD response handler (git- fixes). * nfc: llcp: add missing return after LLCP_CLOSED checks (git-fixes). * nfc: pn533: allocate rx skb before consuming bytes (git-fixes). * nfc: s3fwrn5: allocate rx skb before consuming bytes (git-fixes). * NFC: trf7970a: Ignore antenna noise when checking for RF field (git-fixes). * nvmet-tcp: propagate nvmet_tcp_build_pdu_iovec() errors to its callers (git- fixes). * ocfs2: fix possible deadlock between unlink and dio_end_io_write (bsc#1258718). * ocfs2: split transactions in dio completion to avoid credit exhaustion (bsc#1258718). * PCI/AER: Clear only error bits in PCIe Device Status (git-fixes). * PCI/AER: Stop ruling out unbound devices as error source (git-fixes). * PCI: dwc: Apply ECRC workaround to DesignWare 5.00a as well (git-fixes). * PCI: Enable AtomicOps only if Root Port supports them (git-fixes). * PCI: endpoint: pci-epf-ntb: Remove duplicate resource teardown (git-fixes). * PCI: hv: Set default NUMA node to 0 for devices without affinity info (git- fixes). * PCI: mediatek-gen3: Prevent leaking IRQ domains when IRQ not found (git- fixes). * PCI: tegra194: Allow system suspend when the Endpoint link is not up (git- fixes). * PCI: tegra194: Disable direct speed change for Endpoint mode (git-fixes). * PCI: tegra194: Disable LTSSM after transition to Detect on surprise link down (git-fixes). * PCI: tegra194: Disable PERST# IRQ only in Endpoint mode (git-fixes). * PCI: tegra194: Fix polling delay for L2 state (git-fixes). * PCI: tegra194: Increase LTSSM poll time on surprise link down (git-fixes). * PCI: tegra194: Set LTR message request before PCIe link up in Endpoint mode (git-fixes). * PCI: tegra194: Use devm_gpiod_get_optional() to parse "nvidia,refclk-select" (git-fixes). * PCI: tegra194: Use DWC IP core version (git-fixes). * pinctrl: abx500: Fix type of 'argument' variable (git-fixes). * pinctrl: Fix spelling problem (git-fixes). * pinctrl: intel: Fix the revision for new features (1kOhm PD, HW debouncer) (stable-fixes). * pinctrl: pic32: change all cases of bare 'unsigned' to 'unsigned int' (git- fixes). * pinctrl: pic32: use consistent spacing around '+' (git-fixes). * pinctrl: pinctrl-pic32: Fix resource leak (git-fixes). * platform/chrome: chromeos_tbmc: Drop wakeup source on remove (git-fixes). * platform/surface: surfacepro3_button: Drop wakeup source on remove (git- fixes). * platform/x86/amd: pmc: Add Thinkpad L14 Gen3 to quirk_s2idle_bug (stable- fixes). * platform/x86: dell-wmi-sysman: bound enumeration string aggregation (git- fixes). * platform/x86: dell_rbu: avoid uninit value usage in packet_size_write() (git-fixes). * platform/x86: hp-wmi: Ignore backlight and FnLock events (stable-fixes). * platform/x86: panasonic-laptop: Fix OPTD notifier registration and cleanup (git-fixes). * power: supply: axp288_charger: Do not cancel work before initializing it (git-fixes). * power: supply: max17042: avoid overflow when determining health (git-fixes). * powerpc/crash: fix backup region offset update to elfcorehdr (bsc#1259535). * RDMA/mana: Fix error unwind in mana_ib_create_qp_rss() (git-fixes). * RDMA/mana: Fix mana_destroy_wq_obj() cleanup in mana_ib_create_qp_rss() (git-fixes). * RDMA/mana: Remove user triggerable WARN_ON() in mana_ib_create_qp_rss() (git-fixes). * RDMA/mana: Validate rx_hash_key_len (git-fixes). * RDMA/mana_ib: cleanup the usage of mana_gd_send_request() (git-fixes). * RDMA/mana_ib: Disable RX steering on RSS QP destroy (git-fixes). * RDMA/mana_ib: Support memory windows (git-fixes). * regulator: act8945a: fix OF node reference imbalance (git-fixes). * regulator: bd9571mwv: fix OF node reference imbalance (git-fixes). * regulator: max77650: fix OF node reference imbalance (git-fixes). * regulator: mt6357: fix OF node reference imbalance (git-fixes). * remoteproc: xlnx: Only access buffer information if IPI is buffered (git- fixes). * Revert "ALSA: usb: Increase volume range that triggers a warning" (git- fixes). * rtc: abx80x: Disable alarm feature if no interrupt attached (git-fixes). * rtc: ntxec: fix OF node reference imbalance (git-fixes). * sched/balancing: Switch the 'DEFINE_SPINLOCK(balancing)' spinlock into an 'atomic_t sched_balance_running' flag (bsc#1253754). * sched/fair: Change likelyhood of nohz.nr_cpus (bsc#1234634 bsc#1258961). * sched/fair: Have SD_SERIALIZE affect newidle balancing (bsc#1253754). * sched/fair: Move checking for nohz cpus after time check (bsc#1234634 bsc#1258961). * sched/fair: Remove nohz.nr_cpus and use weight of cpumask instead (bsc#1234634 bsc#1258961). * sched/fair: Skip sched_balance_running cmpxchg when balance is not due (bsc#1253754). * scsi: storvsc: Handle PERSISTENT_RESERVE_IN truncation for Hyper-V vFC (git- fixes). * scsi: target: iscsi: validate CHAP_R length before base64 decode (bsc#1265449). * soc/tegra: cbb: Set ERD on resume for err interrupt (git-fixes). * soc: qcom: aoss: compare against normalized cooling state (git-fixes). * soc: qcom: llcc: fix v1 SB syndrome register offset (git-fixes). * sound: ua101: fix division by zero at probe (git-fixes). * soundwire: bus: demote UNATTACHED state warnings to dev_dbg() (git-fixes). * soundwire: cadence: Clear message complete before signaling waiting thread (git-fixes). * spi: at91-usart: fix controller deregistration (git-fixes). * spi: atmel: fix controller deregistration (git-fixes). * spi: cadence: fix controller deregistration (git-fixes). * spi: fix controller cleanup() documentation (git-fixes). * spi: fix misleading controller deregistration kernel-doc (git-fixes). * spi: fix misleading controller registration kernel-doc (git-fixes). * spi: fsl-qspi: Use reinit_completion() for repeated operations (git-fixes). * spi: hisi-kunpeng: prevent infinite while() loop in hisi_spi_flush_fifo (git-fixes). * spi: imx: fix runtime pm leak on probe deferral (git-fixes). * spi: imx: fix use-after-free on unbind (git-fixes). * spi: microchip-core-qspi: fix controller deregistration (git-fixes). * spi: microchip-core-qspi: Use helper function devm_clk_get_enabled() (stable-fixes). * spi: mpc52xx: fix use-after-free on unbind (git-fixes). * spi: mtk-nor: fix controller deregistration (git-fixes). * spi: mtk-snfi: unregister ECC engine on probe failure and remove() callback (git-fixes). * spi: omap2-mcspi: fix controller deregistration (git-fixes). * spi: orion: fix clock imbalance on registration failure (git-fixes). * spi: orion: fix runtime pm leak on unbind (git-fixes). * spi: rockchip: fix controller deregistration (git-fixes). * spi: rspi: fix controller deregistration (git-fixes). * spi: sh-hspi: fix controller deregistration (git-fixes). * spi: spi-ti-qspi: Convert to platform remove callback returning void (stable-fixes). * spi: sprd: fix controller deregistration (git-fixes). * spi: sun4i: fix controller deregistration (git-fixes). * spi: sun4i: switch to use modern name (stable-fixes). * spi: syncuacer: fix controller deregistration (git-fixes). * spi: synquacer: switch to use modern name (stable-fixes). * spi: uniphier: fix controller deregistration (git-fixes). * spi: uniphier: Simplify clock handling with devm_clk_get_enabled() (stable- fixes). * spi: uniphier: switch to use modern name (stable-fixes). * spi: zynq-qspi: switch to use modern name (stable-fixes). * spi: zynqmp-gqspi: fix controller deregistration (git-fixes). * staging: media: atomisp: Disallow all private IOCTLs (git-fixes). * staging: rtl8723bs: initialize le_tmp64 in rtw_BIP_verify() (git-fixes). * staging: sm750fb: fix division by zero in ps_to_hz() (git-fixes). * staging: vme_user: added bound check to geoid (stable-fixes). * staging: vme_user: fix root device leak on init failure (git-fixes). * thermal/drivers/spear: Fix error condition for reading st,thermal-flags (git-fixes). * thermal/drivers/sprd: Fix raw temperature clamping in sprd_thm_rawdata_to_temp (git-fixes). * thermal/drivers/sprd: Fix temperature clamping in sprd_thm_temp_to_rawdata (git-fixes). * tpm: avoid -Wunused-but-set-variable (git-fixes). * tpm: tpm_tis: add error logging for data transfer (git-fixes). * tpm: tpm_tis: stop transmit if retries are exhausted (git-fixes). * tty: tty_io: update timestamps on all device nodes (bsc#1262020). * USB: cdc-acm: Add quirks for Yoga Book 9 14IAH10 INGENIC touchscreen (stable-fixes). * usb: chipidea: core: allow ci_irq_handler() handle both ID and VBUS change (git-fixes). * usb: chipidea: otg: not wait vbus drop if use role_switch (git-fixes). * USB: core: add NO_LPM quirk for Razer Kiyo Pro webcam (stable-fixes). * usb: gadget: dummy_hcd: fix premature URB completion when ZLP follows partial transfer (stable-fixes). * usb: gadget: f_ncm: validate minimum block_len in ncm_unwrap_ntb() (git- fixes). * usb: gadget: f_phonet: fix skb frags[] overflow in pn_rx_complete() (stable- fixes). * usb: gadget: f_uac1_legacy: validate control request size (stable-fixes). * usb: gadget: renesas_usb3: validate endpoint index in standard request handlers (git-fixes). * USB: omap_udc: DMA: Don't enable burst 4 mode (git-fixes). * usb: port: add delay after usb_hub_set_port_power() (git-fixes). * usb: quirks: add DELAY_INIT quirk for another Silicon Motion flash drive (stable-fixes). * USB: serial: io_edgeport: add support for Blackbox IC135A (stable-fixes). * USB: serial: option: add MeiG Smart SRM825WN (stable-fixes). * USB: serial: option: add support for Rolling Wireless RW135R-GL (stable- fixes). * USB: serial: option: add Telit Cinterion FN990A MBIM composition (stable- fixes). * USB: serial: option: add Telit Cinterion LE910Cx compositions (stable- fixes). * usb: storage: Expand range of matched versions for VL817 quirks entry (stable-fixes). * usb: ulpi: fix memory leak on ulpi_register() error paths (git-fixes). * usb: usblp: fix heap leak in IEEE 1284 device ID via short response (stable- fixes). * usb: usblp: fix uninitialized heap leak via LPGETSTATUS ioctl (stable- fixes). * usb: xhci: Make usb_host_endpoint.hcpriv survive endpoint_disable() (git- fixes). * usbip: validate number_of_packets in usbip_pack_ret_submit() (git-fixes). * virt: tdx-guest: Fix handling of host controlled 'quote' buffer length (git- fixes). * virt: tdx-guest: Return error for GetQuote failures (git-fixes). * wifi: ath5k: do not access array OOB (git-fixes). * wifi: ath9k: Fix typo (git-fixes). * wifi: ath11k: Pass the correct value of each TID during a stop AMPDU session (git-fixes). * wifi: ath11k: skip status ring entry processing (stable-fixes). * wifi: ath11k: Use dma_alloc_noncoherent for rx_tid buffer allocation (stable-fixes). * wifi: b43: enforce bounds check on firmware key index in b43_rx() (git- fixes). * wifi: b43legacy: enforce bounds check on firmware key index in RX path (git- fixes). * wifi: brcmfmac: Fix error pointer dereference (git-fixes). * wifi: brcmfmac: validate bsscfg indices in IF events (stable-fixes). * wifi: brcmsmac: Fix dma_free_coherent() size (git-fixes). * wifi: cw1200: Revert "Fix locking in error paths" (git-fixes). * wifi: libertas: notify firmware load wait on disconnect (git-fixes). * wifi: mac80211: check ieee80211_rx_data_set_link return in pubsta MLO path (git-fixes). * wifi: mac80211: drop stray 'static' from fast-RX rx_result (git-fixes). * wifi: mac80211: remove station if connection prep fails (git-fixes). * wifi: mt76: mt792x: describe USB WFSYS reset with a descriptor (stable- fixes). * wifi: mt76: mt792x: fix mt7925u USB WFSYS reset handling (git-fixes). * wifi: mt76: mt7615: fix use_cts_prot support (git-fixes). * wifi: mt76: mt7915: fix use-after-free bugs in mt7915_mac_dump_work() (git- fixes). * wifi: mt76: mt7915: fix use_cts_prot support (git-fixes). * wifi: mt76: mt7921: fix a potential clc buffer length underflow (git-fixes). * wifi: mt76: mt7921: fix ROC abort flow interruption in mt7921_roc_work (git- fixes). * wifi: mt76: mt7921: Reset ampdu_state state in case of failure in mt76_connac2_tx_check_aggr() (git-fixes). * wifi: mt76: mt7925: fix incorrect length field in txpower command (git- fixes). * wifi: mt76: mt7996: fix FCS error flag check in RX descriptor (git-fixes). * wifi: mt76: mt7996: fix struct mt7996_mcu_uni_event (git-fixes). * wifi: mwifiex: Fix memory leak in mwifiex_11n_aggregate_pkt() (git-fixes). * wifi: nl80211: fix NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST usage (git- fixes). * wifi: nl80211: require admin perm on SET_PMK / DEL_PMK (git-fixes). * wifi: rsi: fix kthread lifetime race between self-exit and external-stop (git-fixes). * wifi: rt2x00usb: fix devres lifetime (git-fixes). * wifi: rtlwifi: pci: fix possible use-after-free caused by unfinished irq_prepare_bcn_tasklet (git-fixes). * wifi: rtw88: check for PCI upstream bridge existence (git-fixes). * wifi: rtw88: fix device leak on probe failure (git-fixes). * wifi: rtw89: phy: fix uninitialized variable access in rtw89_phy_cfo_set_crystal_cap() (git-fixes). * wifi: wl1251: validate packet IDs before indexing tx_frames (stable-fixes). * workqueue: Break up enum definitions and give names to the types (bsc#1260522). * workqueue: Clean up enum work_bits and related constants (bsc#1260522). * workqueue: Factor out work_grab_pending() from __cancel_work_sync() (bsc#1260522). * workqueue: Fix UBSAN 'subtraction overflow' error in shift_and_mask() (bsc#1260522). * workqueue: Implement disable/enable for (delayed) work items (bsc#1260522). * workqueue: Introduce work_cancel_flags (bsc#1260522). * workqueue: Make @flags handling consistent across set_work_data() and friends (bsc#1260522). * workqueue: Preserve OFFQ bits in cancel[_sync] paths (bsc#1260522). * workqueue: Rename __cancel_work_timer() to __cancel_timer_sync() (bsc#1260522). * workqueue: Reorganize flush and cancel[_sync] functions (bsc#1260522). * x86/boot/64: Clear most of CR4 in startup_64(), except PAE, MCE and LA57 (git-fixes). * x86/boot/sev: Avoid shared GHCB page for early memory acceptance (git- fixes). * x86/boot: Don't add the EFI stub to targets, again (git-fixes). * x86/boot: Fix page table access in 5-level to 4-level paging transition (git-fixes). * X.509: Fix out-of-bounds access when parsing extensions (git-fixes). * Xarray: do not return sibling entries from xas_find_marked() (bsc#1263815). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-kernel-435=1 ## Package List: * SUSE Linux Micro 6.1 (aarch64 ppc64le x86_64) * kernel-default-base-6.4.0-46.1.21.23 * SUSE Linux Micro 6.1 (noarch) * kernel-macros-6.4.0-46.1 * kernel-devel-6.4.0-46.1 * kernel-source-6.4.0-46.1 * SUSE Linux Micro 6.1 (aarch64 ppc64le s390x x86_64 nosrc) * kernel-default-6.4.0-46.1 * SUSE Linux Micro 6.1 (aarch64 ppc64le s390x x86_64) * kernel-default-devel-6.4.0-46.1 * kernel-default-debuginfo-6.4.0-46.1 * kernel-default-debugsource-6.4.0-46.1 * SUSE Linux Micro 6.1 (ppc64le x86_64) * kernel-default-devel-debuginfo-6.4.0-46.1 * SUSE Linux Micro 6.1 (s390x x86_64) * kernel-default-livepatch-6.4.0-46.1 * SUSE Linux Micro 6.1 (nosrc x86_64) * kernel-kvmsmall-6.4.0-46.1 * SUSE Linux Micro 6.1 (x86_64) * kernel-kvmsmall-debugsource-6.4.0-46.1 * kernel-kvmsmall-debuginfo-6.4.0-46.1 ## References: * https://www.suse.com/security/cve/CVE-2023-2058.html * https://www.suse.com/security/cve/CVE-2025-40219.html * https://www.suse.com/security/cve/CVE-2025-71183.html * https://www.suse.com/security/cve/CVE-2025-71238.html * https://www.suse.com/security/cve/CVE-2026-23168.html * https://www.suse.com/security/cve/CVE-2026-23209.html * https://www.suse.com/security/cve/CVE-2026-23236.html * https://www.suse.com/security/cve/CVE-2026-23237.html * https://www.suse.com/security/cve/CVE-2026-23239.html * https://www.suse.com/security/cve/CVE-2026-23240.html * https://www.suse.com/security/cve/CVE-2026-23245.html * https://www.suse.com/security/cve/CVE-2026-23246.html * https://www.suse.com/security/cve/CVE-2026-23253.html * https://www.suse.com/security/cve/CVE-2026-23260.html * https://www.suse.com/security/cve/CVE-2026-23264.html * https://www.suse.com/security/cve/CVE-2026-23266.html * https://www.suse.com/security/cve/CVE-2026-23268.html * https://www.suse.com/security/cve/CVE-2026-23269.html * https://www.suse.com/security/cve/CVE-2026-23271.html * https://www.suse.com/security/cve/CVE-2026-23273.html * https://www.suse.com/security/cve/CVE-2026-23276.html * https://www.suse.com/security/cve/CVE-2026-23279.html * https://www.suse.com/security/cve/CVE-2026-23290.html * https://www.suse.com/security/cve/CVE-2026-23291.html * https://www.suse.com/security/cve/CVE-2026-23298.html * https://www.suse.com/security/cve/CVE-2026-23300.html * https://www.suse.com/security/cve/CVE-2026-23306.html * https://www.suse.com/security/cve/CVE-2026-23307.html * https://www.suse.com/security/cve/CVE-2026-23308.html * https://www.suse.com/security/cve/CVE-2026-23312.html * https://www.suse.com/security/cve/CVE-2026-23313.html * https://www.suse.com/security/cve/CVE-2026-23315.html * https://www.suse.com/security/cve/CVE-2026-23318.html * https://www.suse.com/security/cve/CVE-2026-23321.html * https://www.suse.com/security/cve/CVE-2026-23324.html * https://www.suse.com/security/cve/CVE-2026-23325.html * https://www.suse.com/security/cve/CVE-2026-23336.html * https://www.suse.com/security/cve/CVE-2026-23339.html * https://www.suse.com/security/cve/CVE-2026-23340.html * https://www.suse.com/security/cve/CVE-2026-23346.html * https://www.suse.com/security/cve/CVE-2026-23351.html * https://www.suse.com/security/cve/CVE-2026-23357.html * https://www.suse.com/security/cve/CVE-2026-23362.html * https://www.suse.com/security/cve/CVE-2026-23363.html * https://www.suse.com/security/cve/CVE-2026-23365.html * https://www.suse.com/security/cve/CVE-2026-23367.html * https://www.suse.com/security/cve/CVE-2026-23368.html * https://www.suse.com/security/cve/CVE-2026-23370.html * https://www.suse.com/security/cve/CVE-2026-23372.html * https://www.suse.com/security/cve/CVE-2026-23373.html * https://www.suse.com/security/cve/CVE-2026-23374.html * https://www.suse.com/security/cve/CVE-2026-23378.html * https://www.suse.com/security/cve/CVE-2026-23382.html * https://www.suse.com/security/cve/CVE-2026-23391.html * https://www.suse.com/security/cve/CVE-2026-23392.html * https://www.suse.com/security/cve/CVE-2026-23393.html * https://www.suse.com/security/cve/CVE-2026-23396.html * https://www.suse.com/security/cve/CVE-2026-23397.html * https://www.suse.com/security/cve/CVE-2026-23399.html * https://www.suse.com/security/cve/CVE-2026-23403.html * https://www.suse.com/security/cve/CVE-2026-23404.html * https://www.suse.com/security/cve/CVE-2026-23405.html * https://www.suse.com/security/cve/CVE-2026-23406.html * https://www.suse.com/security/cve/CVE-2026-23407.html * https://www.suse.com/security/cve/CVE-2026-23408.html * https://www.suse.com/security/cve/CVE-2026-23409.html * https://www.suse.com/security/cve/CVE-2026-23410.html * https://www.suse.com/security/cve/CVE-2026-23411.html * https://www.suse.com/security/cve/CVE-2026-23420.html * https://www.suse.com/security/cve/CVE-2026-23426.html * https://www.suse.com/security/cve/CVE-2026-23434.html * https://www.suse.com/security/cve/CVE-2026-23440.html * https://www.suse.com/security/cve/CVE-2026-23441.html * https://www.suse.com/security/cve/CVE-2026-23442.html * https://www.suse.com/security/cve/CVE-2026-23443.html * https://www.suse.com/security/cve/CVE-2026-23446.html * https://www.suse.com/security/cve/CVE-2026-23447.html * https://www.suse.com/security/cve/CVE-2026-23448.html * https://www.suse.com/security/cve/CVE-2026-23449.html * https://www.suse.com/security/cve/CVE-2026-23450.html * https://www.suse.com/security/cve/CVE-2026-23452.html * https://www.suse.com/security/cve/CVE-2026-23455.html * https://www.suse.com/security/cve/CVE-2026-23456.html * https://www.suse.com/security/cve/CVE-2026-23457.html * https://www.suse.com/security/cve/CVE-2026-23458.html * https://www.suse.com/security/cve/CVE-2026-23460.html * https://www.suse.com/security/cve/CVE-2026-23461.html * https://www.suse.com/security/cve/CVE-2026-23462.html * https://www.suse.com/security/cve/CVE-2026-23463.html * https://www.suse.com/security/cve/CVE-2026-23465.html * https://www.suse.com/security/cve/CVE-2026-23468.html * https://www.suse.com/security/cve/CVE-2026-23472.html * https://www.suse.com/security/cve/CVE-2026-23473.html * https://www.suse.com/security/cve/CVE-2026-23474.html * https://www.suse.com/security/cve/CVE-2026-23475.html * https://www.suse.com/security/cve/CVE-2026-31389.html * https://www.suse.com/security/cve/CVE-2026-31393.html * https://www.suse.com/security/cve/CVE-2026-31400.html * https://www.suse.com/security/cve/CVE-2026-31402.html * https://www.suse.com/security/cve/CVE-2026-31403.html * https://www.suse.com/security/cve/CVE-2026-31404.html * https://www.suse.com/security/cve/CVE-2026-31405.html * https://www.suse.com/security/cve/CVE-2026-31407.html * https://www.suse.com/security/cve/CVE-2026-31408.html * https://www.suse.com/security/cve/CVE-2026-31411.html * https://www.suse.com/security/cve/CVE-2026-31412.html * https://www.suse.com/security/cve/CVE-2026-31415.html * https://www.suse.com/security/cve/CVE-2026-31416.html * https://www.suse.com/security/cve/CVE-2026-31417.html * https://www.suse.com/security/cve/CVE-2026-31420.html * https://www.suse.com/security/cve/CVE-2026-31421.html * https://www.suse.com/security/cve/CVE-2026-31422.html * https://www.suse.com/security/cve/CVE-2026-31423.html * https://www.suse.com/security/cve/CVE-2026-31424.html * https://www.suse.com/security/cve/CVE-2026-31425.html * https://www.suse.com/security/cve/CVE-2026-31426.html * https://www.suse.com/security/cve/CVE-2026-31427.html * https://www.suse.com/security/cve/CVE-2026-31428.html * https://www.suse.com/security/cve/CVE-2026-31436.html * https://www.suse.com/security/cve/CVE-2026-31449.html * https://www.suse.com/security/cve/CVE-2026-31470.html * https://www.suse.com/security/cve/CVE-2026-31488.html * https://www.suse.com/security/cve/CVE-2026-31494.html * https://www.suse.com/security/cve/CVE-2026-31496.html * https://www.suse.com/security/cve/CVE-2026-31504.html * https://www.suse.com/security/cve/CVE-2026-31505.html * https://www.suse.com/security/cve/CVE-2026-31507.html * https://www.suse.com/security/cve/CVE-2026-31512.html * https://www.suse.com/security/cve/CVE-2026-31515.html * https://www.suse.com/security/cve/CVE-2026-31519.html * https://www.suse.com/security/cve/CVE-2026-31525.html * https://www.suse.com/security/cve/CVE-2026-31528.html * https://www.suse.com/security/cve/CVE-2026-31533.html * https://www.suse.com/security/cve/CVE-2026-31550.html * https://www.suse.com/security/cve/CVE-2026-31565.html * https://www.suse.com/security/cve/CVE-2026-31570.html * https://www.suse.com/security/cve/CVE-2026-31586.html * https://www.suse.com/security/cve/CVE-2026-31588.html * https://www.suse.com/security/cve/CVE-2026-31602.html * https://www.suse.com/security/cve/CVE-2026-31607.html * https://www.suse.com/security/cve/CVE-2026-31622.html * https://www.suse.com/security/cve/CVE-2026-31649.html * https://www.suse.com/security/cve/CVE-2026-31656.html * https://www.suse.com/security/cve/CVE-2026-31662.html * https://www.suse.com/security/cve/CVE-2026-31668.html * https://www.suse.com/security/cve/CVE-2026-31669.html * https://www.suse.com/security/cve/CVE-2026-31675.html * https://www.suse.com/security/cve/CVE-2026-31679.html * https://www.suse.com/security/cve/CVE-2026-31681.html * https://www.suse.com/security/cve/CVE-2026-31682.html * https://www.suse.com/security/cve/CVE-2026-31684.html * https://www.suse.com/security/cve/CVE-2026-31685.html * https://www.suse.com/security/cve/CVE-2026-31694.html * https://www.suse.com/security/cve/CVE-2026-31700.html * https://www.suse.com/security/cve/CVE-2026-31738.html * https://www.suse.com/security/cve/CVE-2026-31787.html * https://www.suse.com/security/cve/CVE-2026-43009.html * https://www.suse.com/security/cve/CVE-2026-43025.html * https://www.suse.com/security/cve/CVE-2026-43027.html * https://www.suse.com/security/cve/CVE-2026-43037.html * https://www.suse.com/security/cve/CVE-2026-43038.html * https://www.suse.com/security/cve/CVE-2026-43044.html * https://www.suse.com/security/cve/CVE-2026-43050.html * https://www.suse.com/security/cve/CVE-2026-43060.html * https://www.suse.com/security/cve/CVE-2026-43088.html * https://www.suse.com/security/cve/CVE-2026-43110.html * https://www.suse.com/security/cve/CVE-2026-43120.html * https://www.suse.com/security/cve/CVE-2026-43126.html * https://www.suse.com/security/cve/CVE-2026-43190.html * https://www.suse.com/security/cve/CVE-2026-43214.html * https://www.suse.com/security/cve/CVE-2026-43265.html * https://www.suse.com/security/cve/CVE-2026-43329.html * https://www.suse.com/security/cve/CVE-2026-43330.html * https://www.suse.com/security/cve/CVE-2026-43334.html * https://www.suse.com/security/cve/CVE-2026-43365.html * https://www.suse.com/security/cve/CVE-2026-43366.html * https://www.suse.com/security/cve/CVE-2026-43419.html * https://www.suse.com/security/cve/CVE-2026-43437.html * https://www.suse.com/security/cve/CVE-2026-43441.html * https://www.suse.com/security/cve/CVE-2026-43494.html * https://www.suse.com/security/cve/CVE-2026-43503.html * https://bugzilla.suse.com/show_bug.cgi?id=1215199 * https://bugzilla.suse.com/show_bug.cgi?id=1234634 * https://bugzilla.suse.com/show_bug.cgi?id=1243603 * https://bugzilla.suse.com/show_bug.cgi?id=1248754 * https://bugzilla.suse.com/show_bug.cgi?id=1253122 * https://bugzilla.suse.com/show_bug.cgi?id=1253754 * https://bugzilla.suse.com/show_bug.cgi?id=1254518 * https://bugzilla.suse.com/show_bug.cgi?id=1256863 * https://bugzilla.suse.com/show_bug.cgi?id=1257631 * https://bugzilla.suse.com/show_bug.cgi?id=1258518 * https://bugzilla.suse.com/show_bug.cgi?id=1258718 * https://bugzilla.suse.com/show_bug.cgi?id=1258826 * https://bugzilla.suse.com/show_bug.cgi?id=1258849 * https://bugzilla.suse.com/show_bug.cgi?id=1258850 * https://bugzilla.suse.com/show_bug.cgi?id=1258854 * https://bugzilla.suse.com/show_bug.cgi?id=1258855 * https://bugzilla.suse.com/show_bug.cgi?id=1258856 * https://bugzilla.suse.com/show_bug.cgi?id=1258857 * https://bugzilla.suse.com/show_bug.cgi?id=1258961 * https://bugzilla.suse.com/show_bug.cgi?id=1259186 * https://bugzilla.suse.com/show_bug.cgi?id=1259199 * https://bugzilla.suse.com/show_bug.cgi?id=1259222 * https://bugzilla.suse.com/show_bug.cgi?id=1259484 * https://bugzilla.suse.com/show_bug.cgi?id=1259485 * https://bugzilla.suse.com/show_bug.cgi?id=1259535 * https://bugzilla.suse.com/show_bug.cgi?id=1259799 * https://bugzilla.suse.com/show_bug.cgi?id=1259806 * https://bugzilla.suse.com/show_bug.cgi?id=1259857 * https://bugzilla.suse.com/show_bug.cgi?id=1259868 * https://bugzilla.suse.com/show_bug.cgi?id=1259869 * https://bugzilla.suse.com/show_bug.cgi?id=1259873 * https://bugzilla.suse.com/show_bug.cgi?id=1259878 * https://bugzilla.suse.com/show_bug.cgi?id=1260010 * https://bugzilla.suse.com/show_bug.cgi?id=1260012 * https://bugzilla.suse.com/show_bug.cgi?id=1260018 * https://bugzilla.suse.com/show_bug.cgi?id=1260468 * https://bugzilla.suse.com/show_bug.cgi?id=1260483 * https://bugzilla.suse.com/show_bug.cgi?id=1260484 * https://bugzilla.suse.com/show_bug.cgi?id=1260485 * https://bugzilla.suse.com/show_bug.cgi?id=1260489 * https://bugzilla.suse.com/show_bug.cgi?id=1260501 * https://bugzilla.suse.com/show_bug.cgi?id=1260504 * https://bugzilla.suse.com/show_bug.cgi?id=1260505 * https://bugzilla.suse.com/show_bug.cgi?id=1260507 * https://bugzilla.suse.com/show_bug.cgi?id=1260522 * https://bugzilla.suse.com/show_bug.cgi?id=1260523 * https://bugzilla.suse.com/show_bug.cgi?id=1260526 * https://bugzilla.suse.com/show_bug.cgi?id=1260528 * https://bugzilla.suse.com/show_bug.cgi?id=1260529 * https://bugzilla.suse.com/show_bug.cgi?id=1260530 * https://bugzilla.suse.com/show_bug.cgi?id=1260531 * https://bugzilla.suse.com/show_bug.cgi?id=1260532 * https://bugzilla.suse.com/show_bug.cgi?id=1260533 * https://bugzilla.suse.com/show_bug.cgi?id=1260536 * https://bugzilla.suse.com/show_bug.cgi?id=1260537 * https://bugzilla.suse.com/show_bug.cgi?id=1260538 * https://bugzilla.suse.com/show_bug.cgi?id=1260541 * https://bugzilla.suse.com/show_bug.cgi?id=1260546 * https://bugzilla.suse.com/show_bug.cgi?id=1260549 * https://bugzilla.suse.com/show_bug.cgi?id=1260551 * https://bugzilla.suse.com/show_bug.cgi?id=1260552 * https://bugzilla.suse.com/show_bug.cgi?id=1260553 * https://bugzilla.suse.com/show_bug.cgi?id=1260555 * https://bugzilla.suse.com/show_bug.cgi?id=1260561 * https://bugzilla.suse.com/show_bug.cgi?id=1260566 * https://bugzilla.suse.com/show_bug.cgi?id=1260572 * https://bugzilla.suse.com/show_bug.cgi?id=1260581 * https://bugzilla.suse.com/show_bug.cgi?id=1260728 * https://bugzilla.suse.com/show_bug.cgi?id=1260729 * https://bugzilla.suse.com/show_bug.cgi?id=1260731 * https://bugzilla.suse.com/show_bug.cgi?id=1260800 * https://bugzilla.suse.com/show_bug.cgi?id=1260811 * https://bugzilla.suse.com/show_bug.cgi?id=1261020 * https://bugzilla.suse.com/show_bug.cgi?id=1261287 * https://bugzilla.suse.com/show_bug.cgi?id=1261295 * https://bugzilla.suse.com/show_bug.cgi?id=1261348 * https://bugzilla.suse.com/show_bug.cgi?id=1261503 * https://bugzilla.suse.com/show_bug.cgi?id=1261504 * https://bugzilla.suse.com/show_bug.cgi?id=1261581 * https://bugzilla.suse.com/show_bug.cgi?id=1261582 * https://bugzilla.suse.com/show_bug.cgi?id=1261584 * https://bugzilla.suse.com/show_bug.cgi?id=1261601 * https://bugzilla.suse.com/show_bug.cgi?id=1261602 * https://bugzilla.suse.com/show_bug.cgi?id=1261618 * https://bugzilla.suse.com/show_bug.cgi?id=1261628 * https://bugzilla.suse.com/show_bug.cgi?id=1261632 * https://bugzilla.suse.com/show_bug.cgi?id=1261636 * https://bugzilla.suse.com/show_bug.cgi?id=1261638 * https://bugzilla.suse.com/show_bug.cgi?id=1261641 * https://bugzilla.suse.com/show_bug.cgi?id=1261644 * https://bugzilla.suse.com/show_bug.cgi?id=1261645 * https://bugzilla.suse.com/show_bug.cgi?id=1261648 * https://bugzilla.suse.com/show_bug.cgi?id=1261679 * https://bugzilla.suse.com/show_bug.cgi?id=1261685 * https://bugzilla.suse.com/show_bug.cgi?id=1261686 * https://bugzilla.suse.com/show_bug.cgi?id=1261687 * https://bugzilla.suse.com/show_bug.cgi?id=1261692 * https://bugzilla.suse.com/show_bug.cgi?id=1261694 * https://bugzilla.suse.com/show_bug.cgi?id=1261700 * https://bugzilla.suse.com/show_bug.cgi?id=1261703 * https://bugzilla.suse.com/show_bug.cgi?id=1261707 * https://bugzilla.suse.com/show_bug.cgi?id=1261710 * https://bugzilla.suse.com/show_bug.cgi?id=1261713 * https://bugzilla.suse.com/show_bug.cgi?id=1261719 * https://bugzilla.suse.com/show_bug.cgi?id=1261750 * https://bugzilla.suse.com/show_bug.cgi?id=1261751 * https://bugzilla.suse.com/show_bug.cgi?id=1261752 * https://bugzilla.suse.com/show_bug.cgi?id=1261768 * https://bugzilla.suse.com/show_bug.cgi?id=1261778 * https://bugzilla.suse.com/show_bug.cgi?id=1261779 * https://bugzilla.suse.com/show_bug.cgi?id=1261781 * https://bugzilla.suse.com/show_bug.cgi?id=1261789 * https://bugzilla.suse.com/show_bug.cgi?id=1261796 * https://bugzilla.suse.com/show_bug.cgi?id=1261797 * https://bugzilla.suse.com/show_bug.cgi?id=1261896 * https://bugzilla.suse.com/show_bug.cgi?id=1262020 * https://bugzilla.suse.com/show_bug.cgi?id=1262053 * https://bugzilla.suse.com/show_bug.cgi?id=1262054 * https://bugzilla.suse.com/show_bug.cgi?id=1262055 * https://bugzilla.suse.com/show_bug.cgi?id=1262061 * https://bugzilla.suse.com/show_bug.cgi?id=1262063 * https://bugzilla.suse.com/show_bug.cgi?id=1262074 * https://bugzilla.suse.com/show_bug.cgi?id=1262078 * https://bugzilla.suse.com/show_bug.cgi?id=1262086 * https://bugzilla.suse.com/show_bug.cgi?id=1262087 * https://bugzilla.suse.com/show_bug.cgi?id=1262099 * https://bugzilla.suse.com/show_bug.cgi?id=1262100 * https://bugzilla.suse.com/show_bug.cgi?id=1262101 * https://bugzilla.suse.com/show_bug.cgi?id=1262179 * https://bugzilla.suse.com/show_bug.cgi?id=1262181 * https://bugzilla.suse.com/show_bug.cgi?id=1262602 * https://bugzilla.suse.com/show_bug.cgi?id=1262616 * https://bugzilla.suse.com/show_bug.cgi?id=1262665 * https://bugzilla.suse.com/show_bug.cgi?id=1262671 * https://bugzilla.suse.com/show_bug.cgi?id=1262673 * https://bugzilla.suse.com/show_bug.cgi?id=1262725 * https://bugzilla.suse.com/show_bug.cgi?id=1262731 * https://bugzilla.suse.com/show_bug.cgi?id=1262734 * https://bugzilla.suse.com/show_bug.cgi?id=1262746 * https://bugzilla.suse.com/show_bug.cgi?id=1262752 * https://bugzilla.suse.com/show_bug.cgi?id=1262758 * https://bugzilla.suse.com/show_bug.cgi?id=1263001 * https://bugzilla.suse.com/show_bug.cgi?id=1263012 * https://bugzilla.suse.com/show_bug.cgi?id=1263064 * https://bugzilla.suse.com/show_bug.cgi?id=1263065 * https://bugzilla.suse.com/show_bug.cgi?id=1263085 * https://bugzilla.suse.com/show_bug.cgi?id=1263093 * https://bugzilla.suse.com/show_bug.cgi?id=1263095 * https://bugzilla.suse.com/show_bug.cgi?id=1263104 * https://bugzilla.suse.com/show_bug.cgi?id=1263131 * https://bugzilla.suse.com/show_bug.cgi?id=1263140 * https://bugzilla.suse.com/show_bug.cgi?id=1263141 * https://bugzilla.suse.com/show_bug.cgi?id=1263149 * https://bugzilla.suse.com/show_bug.cgi?id=1263165 * https://bugzilla.suse.com/show_bug.cgi?id=1263170 * https://bugzilla.suse.com/show_bug.cgi?id=1263176 * https://bugzilla.suse.com/show_bug.cgi?id=1263556 * https://bugzilla.suse.com/show_bug.cgi?id=1263582 * https://bugzilla.suse.com/show_bug.cgi?id=1263592 * https://bugzilla.suse.com/show_bug.cgi?id=1263593 * https://bugzilla.suse.com/show_bug.cgi?id=1263595 * https://bugzilla.suse.com/show_bug.cgi?id=1263596 * https://bugzilla.suse.com/show_bug.cgi?id=1263600 * https://bugzilla.suse.com/show_bug.cgi?id=1263668 * https://bugzilla.suse.com/show_bug.cgi?id=1263723 * https://bugzilla.suse.com/show_bug.cgi?id=1263797 * https://bugzilla.suse.com/show_bug.cgi?id=1263815 * https://bugzilla.suse.com/show_bug.cgi?id=1263882 * https://bugzilla.suse.com/show_bug.cgi?id=1263901 * https://bugzilla.suse.com/show_bug.cgi?id=1263931 * https://bugzilla.suse.com/show_bug.cgi?id=1263933 * https://bugzilla.suse.com/show_bug.cgi?id=1263995 * https://bugzilla.suse.com/show_bug.cgi?id=1264014 * https://bugzilla.suse.com/show_bug.cgi?id=1264059 * https://bugzilla.suse.com/show_bug.cgi?id=1264082 * https://bugzilla.suse.com/show_bug.cgi?id=1264087 * https://bugzilla.suse.com/show_bug.cgi?id=1264097 * https://bugzilla.suse.com/show_bug.cgi?id=1264183 * https://bugzilla.suse.com/show_bug.cgi?id=1264427 * https://bugzilla.suse.com/show_bug.cgi?id=1264469 * https://bugzilla.suse.com/show_bug.cgi?id=1264482 * https://bugzilla.suse.com/show_bug.cgi?id=1264634 * https://bugzilla.suse.com/show_bug.cgi?id=1264651 * https://bugzilla.suse.com/show_bug.cgi?id=1264661 * https://bugzilla.suse.com/show_bug.cgi?id=1264674 * https://bugzilla.suse.com/show_bug.cgi?id=1264801 * https://bugzilla.suse.com/show_bug.cgi?id=1264848 * https://bugzilla.suse.com/show_bug.cgi?id=1265085 * https://bugzilla.suse.com/show_bug.cgi?id=1265090 * https://bugzilla.suse.com/show_bug.cgi?id=1265116 * https://bugzilla.suse.com/show_bug.cgi?id=1265119 * https://bugzilla.suse.com/show_bug.cgi?id=1265126 * https://bugzilla.suse.com/show_bug.cgi?id=1265144 * https://bugzilla.suse.com/show_bug.cgi?id=1265308 * https://bugzilla.suse.com/show_bug.cgi?id=1265421 * https://bugzilla.suse.com/show_bug.cgi?id=1265449 * https://bugzilla.suse.com/show_bug.cgi?id=1265456 * https://bugzilla.suse.com/show_bug.cgi?id=1265626 * https://bugzilla.suse.com/show_bug.cgi?id=1265846 * https://bugzilla.suse.com/show_bug.cgi?id=1265960 * https://jira.suse.com/browse/PED-7249 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 17:05:47 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 17:05:47 -0000 Subject: SUSE-SU-2026:21876-1: important: Security update for the Linux Kernel Message-ID: <178041994710.42.10973354874798598876@b0da085613fb> # Security update for the Linux Kernel Announcement ID: SUSE-SU-2026:21876-1 Release Date: 2026-05-29T17:37:36Z Rating: important References: * bsc#1215199 * bsc#1234634 * bsc#1243603 * bsc#1248754 * bsc#1253122 * bsc#1253754 * bsc#1254518 * bsc#1256863 * bsc#1257631 * bsc#1258518 * bsc#1258718 * bsc#1258826 * bsc#1258849 * bsc#1258850 * bsc#1258854 * bsc#1258855 * bsc#1258856 * bsc#1258857 * bsc#1258961 * bsc#1259186 * bsc#1259199 * bsc#1259222 * bsc#1259484 * bsc#1259485 * bsc#1259535 * bsc#1259799 * bsc#1259806 * bsc#1259857 * bsc#1259868 * bsc#1259869 * bsc#1259873 * bsc#1259878 * bsc#1260010 * bsc#1260012 * bsc#1260018 * bsc#1260468 * bsc#1260483 * bsc#1260484 * bsc#1260485 * bsc#1260489 * bsc#1260501 * bsc#1260504 * bsc#1260505 * bsc#1260507 * bsc#1260522 * bsc#1260523 * bsc#1260526 * bsc#1260528 * bsc#1260529 * bsc#1260530 * bsc#1260531 * bsc#1260532 * bsc#1260533 * bsc#1260536 * bsc#1260537 * bsc#1260538 * bsc#1260541 * bsc#1260546 * bsc#1260549 * bsc#1260551 * bsc#1260552 * bsc#1260553 * bsc#1260555 * bsc#1260561 * bsc#1260566 * bsc#1260572 * bsc#1260581 * bsc#1260728 * bsc#1260729 * bsc#1260731 * bsc#1260800 * bsc#1260811 * bsc#1261020 * bsc#1261287 * bsc#1261295 * bsc#1261348 * bsc#1261503 * bsc#1261504 * bsc#1261581 * bsc#1261582 * bsc#1261584 * bsc#1261601 * bsc#1261602 * bsc#1261618 * bsc#1261628 * bsc#1261632 * bsc#1261636 * bsc#1261638 * bsc#1261641 * bsc#1261644 * bsc#1261645 * bsc#1261648 * bsc#1261679 * bsc#1261685 * bsc#1261686 * bsc#1261687 * bsc#1261692 * bsc#1261694 * bsc#1261700 * bsc#1261703 * bsc#1261707 * bsc#1261710 * bsc#1261713 * bsc#1261719 * bsc#1261750 * bsc#1261751 * bsc#1261752 * bsc#1261768 * bsc#1261778 * bsc#1261779 * bsc#1261781 * bsc#1261789 * bsc#1261796 * bsc#1261797 * bsc#1261896 * bsc#1262020 * bsc#1262053 * bsc#1262054 * bsc#1262055 * bsc#1262061 * bsc#1262063 * bsc#1262074 * bsc#1262078 * bsc#1262086 * bsc#1262087 * bsc#1262099 * bsc#1262100 * bsc#1262101 * bsc#1262179 * bsc#1262181 * bsc#1262602 * bsc#1262616 * bsc#1262665 * bsc#1262671 * bsc#1262673 * bsc#1262725 * bsc#1262731 * bsc#1262734 * bsc#1262746 * bsc#1262752 * bsc#1262758 * bsc#1263001 * bsc#1263012 * bsc#1263064 * bsc#1263065 * bsc#1263085 * bsc#1263093 * bsc#1263095 * bsc#1263104 * bsc#1263131 * bsc#1263140 * bsc#1263141 * bsc#1263149 * bsc#1263165 * bsc#1263170 * bsc#1263176 * bsc#1263556 * bsc#1263582 * bsc#1263592 * bsc#1263593 * bsc#1263595 * bsc#1263596 * bsc#1263600 * bsc#1263668 * bsc#1263723 * bsc#1263797 * bsc#1263815 * bsc#1263882 * bsc#1263901 * bsc#1263931 * bsc#1263933 * bsc#1263995 * bsc#1264014 * bsc#1264059 * bsc#1264082 * bsc#1264087 * bsc#1264097 * bsc#1264183 * bsc#1264427 * bsc#1264469 * bsc#1264482 * bsc#1264634 * bsc#1264651 * bsc#1264661 * bsc#1264674 * bsc#1264801 * bsc#1264848 * bsc#1265085 * bsc#1265090 * bsc#1265116 * bsc#1265119 * bsc#1265126 * bsc#1265144 * bsc#1265308 * bsc#1265421 * bsc#1265449 * bsc#1265456 * bsc#1265626 * bsc#1265846 * bsc#1265960 * jsc#PED-7249 Cross-References: * CVE-2023-20585 * CVE-2025-40219 * CVE-2025-71183 * CVE-2025-71238 * CVE-2026-23168 * CVE-2026-23209 * CVE-2026-23236 * CVE-2026-23237 * CVE-2026-23239 * CVE-2026-23240 * CVE-2026-23245 * CVE-2026-23246 * CVE-2026-23253 * CVE-2026-23260 * CVE-2026-23264 * CVE-2026-23266 * CVE-2026-23268 * CVE-2026-23269 * CVE-2026-23271 * CVE-2026-23273 * CVE-2026-23276 * CVE-2026-23279 * CVE-2026-23290 * CVE-2026-23291 * CVE-2026-23298 * CVE-2026-23300 * CVE-2026-23306 * CVE-2026-23307 * CVE-2026-23308 * CVE-2026-23312 * CVE-2026-23313 * CVE-2026-23315 * CVE-2026-23318 * CVE-2026-23321 * CVE-2026-23324 * CVE-2026-23325 * CVE-2026-23336 * CVE-2026-23339 * CVE-2026-23340 * CVE-2026-23346 * CVE-2026-23351 * CVE-2026-23357 * CVE-2026-23362 * CVE-2026-23363 * CVE-2026-23365 * CVE-2026-23367 * CVE-2026-23368 * CVE-2026-23370 * CVE-2026-23372 * CVE-2026-23373 * CVE-2026-23374 * CVE-2026-23378 * CVE-2026-23382 * CVE-2026-23391 * CVE-2026-23392 * CVE-2026-23393 * CVE-2026-23396 * CVE-2026-23397 * CVE-2026-23399 * CVE-2026-23403 * CVE-2026-23404 * CVE-2026-23405 * CVE-2026-23406 * CVE-2026-23407 * CVE-2026-23408 * CVE-2026-23409 * CVE-2026-23410 * CVE-2026-23411 * CVE-2026-23420 * CVE-2026-23426 * CVE-2026-23434 * CVE-2026-23440 * CVE-2026-23441 * CVE-2026-23442 * CVE-2026-23443 * CVE-2026-23446 * CVE-2026-23447 * CVE-2026-23448 * CVE-2026-23449 * CVE-2026-23450 * CVE-2026-23452 * CVE-2026-23455 * CVE-2026-23456 * CVE-2026-23457 * CVE-2026-23458 * CVE-2026-23460 * CVE-2026-23461 * CVE-2026-23462 * CVE-2026-23463 * CVE-2026-23465 * CVE-2026-23468 * CVE-2026-23472 * CVE-2026-23473 * CVE-2026-23474 * CVE-2026-23475 * CVE-2026-31389 * CVE-2026-31393 * CVE-2026-31400 * CVE-2026-31402 * CVE-2026-31403 * CVE-2026-31404 * CVE-2026-31405 * CVE-2026-31407 * CVE-2026-31408 * CVE-2026-31411 * CVE-2026-31412 * CVE-2026-31415 * CVE-2026-31416 * CVE-2026-31417 * CVE-2026-31420 * CVE-2026-31421 * CVE-2026-31422 * CVE-2026-31423 * CVE-2026-31424 * CVE-2026-31425 * CVE-2026-31426 * CVE-2026-31427 * CVE-2026-31428 * CVE-2026-31436 * CVE-2026-31449 * CVE-2026-31470 * CVE-2026-31488 * CVE-2026-31494 * CVE-2026-31496 * CVE-2026-31504 * CVE-2026-31505 * CVE-2026-31507 * CVE-2026-31512 * CVE-2026-31515 * CVE-2026-31519 * CVE-2026-31525 * CVE-2026-31528 * CVE-2026-31533 * CVE-2026-31550 * CVE-2026-31565 * CVE-2026-31570 * CVE-2026-31586 * CVE-2026-31588 * CVE-2026-31602 * CVE-2026-31607 * CVE-2026-31622 * CVE-2026-31649 * CVE-2026-31656 * CVE-2026-31662 * CVE-2026-31668 * CVE-2026-31669 * CVE-2026-31675 * CVE-2026-31679 * CVE-2026-31681 * CVE-2026-31682 * CVE-2026-31684 * CVE-2026-31685 * CVE-2026-31694 * CVE-2026-31700 * CVE-2026-31738 * CVE-2026-31787 * CVE-2026-43009 * CVE-2026-43025 * CVE-2026-43027 * CVE-2026-43037 * CVE-2026-43038 * CVE-2026-43044 * CVE-2026-43050 * CVE-2026-43060 * CVE-2026-43088 * CVE-2026-43110 * CVE-2026-43120 * CVE-2026-43126 * CVE-2026-43190 * CVE-2026-43214 * CVE-2026-43265 * CVE-2026-43329 * CVE-2026-43330 * CVE-2026-43334 * CVE-2026-43365 * CVE-2026-43366 * CVE-2026-43419 * CVE-2026-43437 * CVE-2026-43441 * CVE-2026-43494 * CVE-2026-43503 CVSS scores: * CVE-2023-20585 ( SUSE ): 5.6 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2023-20585 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:N * CVE-2023-20585 ( NVD ): 5.6 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2025-40219 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2025-40219 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2025-71183 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-71183 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-71238 ( SUSE ): 5.9 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-71238 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H * CVE-2025-71238 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23168 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23168 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23168 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23209 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23209 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23236 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23236 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23236 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H * CVE-2026-23236 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23237 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23237 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23237 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23239 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23239 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23239 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23240 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23240 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23240 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23245 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23245 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23245 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23246 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23246 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23253 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23253 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23260 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-23260 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-23260 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23264 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23264 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23264 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23266 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23266 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23266 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23268 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23268 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23268 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23269 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23269 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23269 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23271 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23271 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23271 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23273 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23273 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23273 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23276 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23276 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23279 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23279 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23279 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23290 ( SUSE ): 5.1 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23290 ( SUSE ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23290 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23291 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23291 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23298 ( SUSE ): 5.1 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23298 ( SUSE ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23298 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23300 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23300 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23300 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23306 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23306 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:H/A:H * CVE-2026-23306 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23307 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23307 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23308 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23308 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23312 ( SUSE ): 5.1 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23312 ( SUSE ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23312 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23313 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23313 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23315 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23315 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23318 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23318 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23321 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-23321 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-23321 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23324 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23324 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23324 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23325 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23325 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23336 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23336 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23339 ( SUSE ): 2.3 CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-23339 ( SUSE ): 3.1 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-23339 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23340 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23340 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23340 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23346 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23346 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23346 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23351 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23351 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23357 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23357 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23357 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23362 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23362 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23363 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23363 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23365 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23365 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23365 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23367 ( SUSE ): 5.3 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-23367 ( SUSE ): 6.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2026-23367 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23368 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23368 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23368 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23370 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23370 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23372 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23372 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23373 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23373 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23374 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23374 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23374 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23378 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23378 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-23378 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23378 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23382 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23382 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23382 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23391 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23391 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23392 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23392 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23392 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23393 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23393 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23393 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23396 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23396 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23396 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23397 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23397 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23397 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23399 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23399 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23399 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23403 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23403 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2026-23403 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23404 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23404 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23404 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23405 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23405 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23405 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23406 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23406 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23406 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23407 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23407 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23407 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23408 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23408 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23408 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23408 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23409 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23409 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-23409 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23410 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23410 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23410 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23410 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23411 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23420 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23420 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23420 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23426 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23426 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23426 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23434 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23434 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23434 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23434 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-23440 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23440 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23440 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23440 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23441 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23441 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23442 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23442 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23442 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23443 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23443 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23443 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23446 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23446 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23446 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23447 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23447 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23447 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23448 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23448 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23448 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23449 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23449 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23449 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23450 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23450 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23450 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23452 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23452 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23452 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23455 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23455 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23455 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23456 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-23456 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-23456 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23457 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23457 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23457 ( NVD ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-23458 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23458 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23458 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23460 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23460 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23460 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23461 ( SUSE ): 7.7 CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23461 ( SUSE ): 7.5 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23461 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23462 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23462 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23462 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23463 ( SUSE ): 0.0 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-23463 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N * CVE-2026-23463 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23465 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:L/SC:N/SI:N/SA:N * CVE-2026-23465 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2026-23465 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23468 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23468 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23468 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23472 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23472 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23472 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23473 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23473 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23474 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23474 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23474 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23475 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23475 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23475 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31389 ( SUSE ): 5.6 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31389 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31389 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31393 ( SUSE ): 5.3 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31393 ( SUSE ): 4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-31393 ( NVD ): 8.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31400 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31400 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31400 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31402 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31402 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-31402 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31403 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31403 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31403 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31404 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31404 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31404 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31405 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31405 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31405 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31407 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31407 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N * CVE-2026-31407 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31408 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31408 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31408 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31411 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31411 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31411 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31412 ( SUSE ): 7.0 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31412 ( SUSE ): 6.8 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31412 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31415 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31415 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31415 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31416 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-31416 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-31416 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31417 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31417 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31417 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31420 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31420 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31420 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31421 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31421 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31421 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31422 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31422 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31422 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31423 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31423 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31423 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31424 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31424 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31424 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31425 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31425 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31425 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31426 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31426 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2026-31426 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31427 ( SUSE ): 2.0 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-31427 ( SUSE ): 4.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2026-31427 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31428 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31428 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2026-31428 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31436 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31436 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31436 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31449 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31449 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31449 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-31470 ( SUSE ): 6.0 CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:H/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31470 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H * CVE-2026-31470 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31488 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31488 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31488 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31494 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-31494 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N * CVE-2026-31494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31496 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31496 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-31496 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31504 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31504 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31504 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31505 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31505 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31505 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31507 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31507 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31507 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31512 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31512 ( SUSE ): 7.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-31512 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31515 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31515 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31515 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31519 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31519 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31519 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31525 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31525 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31525 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31528 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31528 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31528 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31533 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31533 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31533 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31550 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31550 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31550 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31565 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31565 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31565 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31570 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:H/SI:N/SA:N * CVE-2026-31570 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31570 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31586 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31586 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31586 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31588 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31588 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31588 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-31602 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31602 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31602 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31607 ( SUSE ): 7.0 CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31607 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H * CVE-2026-31607 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31622 ( SUSE ): 8.7 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31622 ( SUSE ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31622 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31649 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31649 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31649 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31656 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31656 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31656 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31662 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31662 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31662 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31668 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-31668 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2026-31668 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31669 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31669 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31669 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31675 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31675 ( SUSE ): 5.6 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H * CVE-2026-31675 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31679 ( SUSE ): 8.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31679 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31679 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31681 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31681 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N * CVE-2026-31681 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31682 ( SUSE ): 5.3 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31682 ( SUSE ): 4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-31682 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31684 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-31684 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L * CVE-2026-31684 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31685 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31685 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31685 ( NVD ): 9.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H * CVE-2026-31694 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31694 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31694 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31700 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31700 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31700 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31738 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31738 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31738 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31787 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31787 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31787 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43009 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43009 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43025 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43025 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H * CVE-2026-43027 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43027 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43037 ( SUSE ): 7.7 CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43037 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43037 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43038 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43038 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43044 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43044 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43044 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43050 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43050 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43050 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43060 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43060 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43088 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-43088 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-43110 ( SUSE ): 7.7 CVSS:4.0/AV:A/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43110 ( SUSE ): 7.5 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43110 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43120 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43120 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-43120 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43120 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43126 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43126 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43126 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43190 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43190 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-43190 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-43214 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43214 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43214 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43265 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43265 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43265 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43329 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43329 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43329 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43330 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43330 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43330 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43334 ( SUSE ): 8.6 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-43334 ( SUSE ): 8.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-43334 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43365 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-43365 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-43365 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-43366 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43366 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43366 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43419 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-43419 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-43437 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43437 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43437 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43441 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43441 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43494 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43494 ( SUSE ): 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43503 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43503 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-43503 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H Affected Products: * SUSE Linux Micro 6.1 An update that solves 181 vulnerabilities, contains one feature and has 19 fixes can now be installed. ## Description: The SUSE Linux Enterprise Micro 6.0 and Micro 6.1 RT kernel was updated to fix various security issues The following security issues were fixed: * CVE-2023-20585: x86/CPU: Fix FPDSS on Zen1 (bsc#1243603). * CVE-2025-71183: btrfs: always detect conflicting inodes when logging inode refs (bsc#1257631). * CVE-2026-23168: flex_proportions: make fprop_new_period() hardirq safe (bsc#1258826). * CVE-2026-23239: espintcp: Fix race condition in espintcp_close() (bsc#1259485). * CVE-2026-23240: tls: Fix race condition in tls_sw_cancel_work_tx() (bsc#1259484). * CVE-2026-23245: net/sched: act_gate: snapshot parameters with RCU on replace (bsc#1259799). * CVE-2026-23271: perf: Fix __perf_event_overflow() vs perf_remove_from_context() race (bsc#1260018). * CVE-2026-23276: net: move dev_xmit_recursion() helpers to net/core/dev.h (bsc#1260012). * CVE-2026-23300: net: ipv6: fix panic when IPv4 route references loopback IPv6 nexthop (bsc#1260538). * CVE-2026-23306: scsi: pm8001: Fix use-after-free in pm8001_queue_command() (bsc#1260501). * CVE-2026-23313: i40e: Fix preempt count leak in napi poll tracepoint (bsc#1260555). * CVE-2026-23321: mptcp: pm: in-kernel: always mark signal+subflow endp as used (bsc#1260505). * CVE-2026-23340: net: sched: avoid qdisc_reset_all_tx_gt() vs dequeue race for lockless qdiscs (bsc#1260523). * CVE-2026-23346: mm/ioremap: define generic_ioremap_prot() and generic_iounmap() (bsc#1260529). * CVE-2026-23351: netfilter: nft_set_pipapo: split gc into unlink and reclaim phase (bsc#1260526). * CVE-2026-23368: net: phy: register phy led_triggers during probe to avoid AB-BA deadlock (bsc#1260530). * CVE-2026-23374: blktrace: fix __this_cpu_read/write in preemptible context (bsc#1260811). * CVE-2026-23378: net/sched: act_ife: Fix metalist update behavior (bsc#1260546). * CVE-2026-23391: netfilter: xt_CT: drop pending enqueued packets on template removal (bsc#1260566). * CVE-2026-23392: netfilter: nf_tables: release flowtable after rcu grace period on error (bsc#1260531). * CVE-2026-23393: bridge: cfm: Fix race condition in peer_mep deletion (bsc#1260522). * CVE-2026-23397: nfnetlink_osf: validate individual option lengths in fingerprints (bsc#1260728). * CVE-2026-23399: nf_tables: nft_dynset: fix possible stateful expression memleak in error path (bsc#1261020). * CVE-2026-23440: net/mlx5e: Fix race condition during IPSec ESN update (bsc#1261641). * CVE-2026-23441: net/mlx5e: Prevent concurrent access to IPSec ASO context (bsc#1261768). * CVE-2026-23442: ipv6: add NULL checks for idev in SRv6 paths (bsc#1261581). * CVE-2026-23449: net/sched: teql: Fix double-free in teql_master_xmit (bsc#1261779). * CVE-2026-23450: net/smc: fix NULL dereference and UAF in smc_tcp_syn_recv_sock() (bsc#1261584). * CVE-2026-23455: netfilter: nf_conntrack_h323: check for zero length in DecodeQ931() (bsc#1261687). * CVE-2026-23456: netfilter: nf_conntrack_h323: fix OOB read in decode_int() CONS case (bsc#1261703). * CVE-2026-23457: netfilter: nf_conntrack_sip: fix Content-Length u32 truncation in sip_help_tcp() (bsc#1261686). * CVE-2026-23458: netfilter: ctnetlink: fix use-after-free in ctnetlink_dump_exp_ct() (bsc#1261781). * CVE-2026-23461: Bluetooth: L2CAP: Fix use-after-free in l2cap_unregister_user (bsc#1261707). * CVE-2026-23462: Bluetooth: HIDP: Fix possible UAF (bsc#1261710). * CVE-2026-23468: drm/amdgpu: Limit BO list entry count to prevent resource exhaustion (bsc#1261692). * CVE-2026-23472: serial: core: fix infinite loop in handle_tx() for PORT_UNKNOWN (bsc#1261636). * CVE-2026-23473: io_uring/poll: fix multishot recv missing EOF on wakeup race (bsc#1261694). * CVE-2026-31400: sunrpc: fix cache_request leak in cache_release (bsc#1261645). * CVE-2026-31402: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache (bsc#1261638). * CVE-2026-31403: NFSD: Hold net reference for the lifetime of /proc/fs/nfs/exports fd (bsc#1261796). * CVE-2026-31404: xfs: avoid dereferencing log items after push callbacks (bsc#1261628). * CVE-2026-31407: netfilter: conntrack: add missing netlink policy validations (bsc#1261632). * CVE-2026-31411: net: atm: fix crash due to unvalidated vcc pointer in sigd_send() (bsc#1261752). * CVE-2026-31415: ipv6: avoid overflows in ip6_datagram_send_ctl() (bsc#1262099). * CVE-2026-31416: netfilter: nfnetlink_log: account for netlink header size (bsc#1262100). * CVE-2026-31420: bridge: mrp: reject zero test interval to avoid OOM panic (bsc#1262055). * CVE-2026-31421: net/sched: cls_fw: fix NULL pointer dereference on shared blocks (bsc#1262061). * CVE-2026-31422: net/sched: cls_flow: fix NULL pointer dereference on shared blocks (bsc#1262054). * CVE-2026-31423: net/sched: sch_hfsc: fix divide-by-zero in rtsc_min() (bsc#1262063). * CVE-2026-31424: netfilter: x_tables: restrict xt_check_match/xt_check_target extensions for NFPROTO_ARP (bsc#1262053). * CVE-2026-31425: rds: ib: reject FRMR registration before IB connection is established (bsc#1262074). * CVE-2026-31427: netfilter: nf_conntrack_sip: fix use of uninitialized rtp_addr in process_sdp (bsc#1262086). * CVE-2026-31428: netfilter: nfnetlink_log: fix uninitialized padding leak in NFULA_PAYLOAD (bsc#1262087). * CVE-2026-31436: dmaengine: idxd: fix possible wrong descriptor completion in llist_abort_desc() (bsc#1262602). * CVE-2026-31449: ext4: validate p_idx bounds in ext4_ext_correct_indexes (bsc#1262616). * CVE-2026-31470: virt: tdx-guest: Fix handling of host controlled 'quote' buffer length (bsc#1262665). * CVE-2026-31488: drm/amd/display: Do not skip unrelated mode changes in DSC validation (bsc#1262746). * CVE-2026-31494: net: cadence: macb: Synchronize stats calculations (bsc#1262671). * CVE-2026-31496: netfilter: nf_conntrack_expect: skip expectations in other netns via proc (bsc#1262673). * CVE-2026-31504: net: fix fanout UAF in packet_release() via NETDEV_UP race (bsc#1263085). * CVE-2026-31505: iavf: fix out-of-bounds writes in iavf_get_ethtool_stats() (bsc#1263093). * CVE-2026-31507: net/smc: fix double-free of smc_spd_priv when tee() duplicates splice pipe buffer (bsc#1263095). * CVE-2026-31512: Bluetooth: L2CAP: Validate PDU length before reading SDU length in l2cap_ecred_data_rcv() (bsc#1262734). * CVE-2026-31515: af_key: validate families in pfkey_send_migrate() (bsc#1262752). * CVE-2026-31519: btrfs: set BTRFS_ROOT_ORPHAN_CLEANUP during subvol create (bsc#1263012). * CVE-2026-31525: bpf: Fix undefined behavior in interpreter sdiv/smod for INT_MIN (bsc#1262725). * CVE-2026-31528: perf: Make sure to use pmu_ctx->pmu for groups (bsc#1263001). * CVE-2026-31533: net/tls: fix use-after-free in -EBUSY error path of tls_do_encryption (bsc#1262758). * CVE-2026-31550: pmdomain: bcm: bcm2835-power: Increase ASB control timeout (bsc#1263104). * CVE-2026-31565: RDMA/irdma: Fix deadlock during netdev reset with active connections (bsc#1263064). * CVE-2026-31570: can: gw: fix OOB heap access in cgw_csum_crc8_rel() (bsc#1263065). * CVE-2026-31586: mm: blk-cgroup: fix use-after-free in cgwb_release_workfn() (bsc#1263176). * CVE-2026-31588: KVM: x86: Use scratch field in MMIO fragment to hold small write values (bsc#1263165). * CVE-2026-31602: ALSA: ctxfi: Limit PTP to a single page (bsc#1263723). * CVE-2026-31607: usbip: validate number_of_packets in usbip_pack_ret_submit() (bsc#1263600). * CVE-2026-31622: NFC: digital: Bounds check NFC-A cascade depth in SDD response handler (bsc#1263797). * CVE-2026-31649: net: stmmac: fix integer underflow in chain mode (bsc#1263582). * CVE-2026-31656: drm/i915/gt: fix refcount underflow in intel_engine_park_heartbeat (bsc#1263170). * CVE-2026-31662: tipc: fix bc_ackers underflow on duplicate GRP_ACK_MSG (bsc#1263131). * CVE-2026-31668: seg6: separate dst_cache for input and output paths in seg6 lwtunnel (bsc#1263140). * CVE-2026-31669: mptcp: fix slab-use-after-free in __inet_lookup_established (bsc#1263141). * CVE-2026-31675: net/sched: sch_netem: fix out-of-bounds access in packet corruption (bsc#1263556). * CVE-2026-31679: openvswitch: validate MPLS set/set_masked payload length (bsc#1263592). * CVE-2026-31681: netfilter: xt_multiport: validate range encoding in checkentry (bsc#1263593). * CVE-2026-31682: bridge: br_nd_send: linearize skb before parsing ND options (bsc#1263595). * CVE-2026-31684: net: sched: act_csum: validate nested VLAN headers (bsc#1263596). * CVE-2026-31685: netfilter: ip6t_eui64: reject invalid MAC header for all packets (bsc#1263668). * CVE-2026-31694: fuse: reject oversized dirents in page cache (bsc#1263901). * CVE-2026-31700: net/packet: fix TOCTOU race on mmap'd vnet_hdr in tpacket_snd() (bsc#1263882). * CVE-2026-31738: vxlan: validate ND option lengths in vxlan_na_create (bsc#1264059). * CVE-2026-31787: xen/privcmd: fix double free via VMA splitting (bsc#1262181). * CVE-2026-43009: bpf: Fix incorrect pruning due to atomic fetch precision tracking (bsc#1264014). * CVE-2026-43025: netfilter: ctnetlink: ignore explicit helper on new expectations (bsc#1263931). * CVE-2026-43027: netfilter: nf_conntrack_helper: pass helper to expect cleanup (bsc#1263933). * CVE-2026-43037: ip6_tunnel: clear skb2->cb in ip4ip6_err() (bsc#1263995). * CVE-2026-43038: ipv6: icmp: clear skb2->cb in ip6_err_gen_icmpv6_unreach() (bsc#1264097). * CVE-2026-43044: crypto: caam - fix DMA corruption on long hmac keys (bsc#1264087). * CVE-2026-43050: atm: lec: fix use-after-free in sock_def_readable() (bsc#1264082). * CVE-2026-43060: netfilter: nft_ct: drop pending enqueued packets on removal (bsc#1264183). * CVE-2026-43088: net: af_key: zero aligned sockaddr tail in PF_KEY exports (bsc#1264469). * CVE-2026-43110: wifi: brcmfmac: validate bsscfg indices in IF events (bsc#1264482). * CVE-2026-43120: RDMA/irdma: Fix double free related to rereg_user_mr. * CVE-2026-43126: ALSA: mixer: oss: Add card disconnect checkpoints (bsc#1264634). * CVE-2026-43190: netfilter: xt_tcpmss: check remaining length before reading optlen (bsc#1264848). * CVE-2026-43214: KVM: x86: Add SRCU protection for reading PDPTRs in __get_sregs2() (bsc#1264651). * CVE-2026-43265: KVM: x86: Ignore -EBUSY when checking nested events from vcpu_block() (bsc#1264427). * CVE-2026-43329: netfilter: flowtable: strictly check for maximum number of actions (bsc#1265085). * CVE-2026-43330: crypto: caam - fix overflow on long hmac keys (bsc#1264801). * CVE-2026-43334: Bluetooth: SMP: force responder MITM requirements before building the pairing response (bsc#1265090). * CVE-2026-43365: xfs: fix undersized l_iclog_roundoff values (bsc#1265119). * CVE-2026-43366: io_uring/kbuf: check if target buffer list is still legacy on recycle (bsc#1265116). * CVE-2026-43419: ceph: fix memory leaks in ceph_mdsc_build_path() (bsc#1264661). * CVE-2026-43437: ALSA: pcm: fix use-after-free on linked stream runtime in snd_pcm_drain() (bsc#1265126). * CVE-2026-43441: net: bonding: Fix nd_tbl NULL dereference when IPv6 is disabled (bsc#1264674). * CVE-2026-43494: net/rds: reset op_nents when zerocopy page pin fails (bsc#1265626). * CVE-2026-43503: net: skbuff: propagate shared-frag marker through frag- transfer helpers (bsc#1265960). The following non security issues were fixed: * accel/qaic: Add overflow check to remap_pfn_range during mmap (git-fixes). * ACPI: AGDI: fix missing newline in error message (git-fixes). * ACPI: CPPC: Fix related_cpus inconsistency during CPU hotplug (git-fixes). * ACPI: scan: Use acpi_dev_put() in object add error paths (git-fixes). * ACPI: video: force native backlight on HP OMEN 16 (8A44) (stable-fixes). * ALSA: 6fire: Fix input volume change detection (git-fixes). * ALSA: 6fire: fix use-after-free on disconnect (git-fixes). * ALSA: aoa: i2sbus: clear stale prepared state (git-fixes). * ALSA: aoa: i2sbus: fix OF node lifetime handling (git-fixes). * ALSA: aoa: Skip devices with no codecs in i2sbus_resume() (git-fixes). * ALSA: aoa: Use guard() for mutex locks (stable-fixes). * ALSA: asihpi: avoid write overflow check warning (stable-fixes). * ALSA: caiaq: Don't abort when no input device is available (git-fixes). * ALSA: caiaq: Fix control_put() result and cache rollback (git-fixes). * ALSA: caiaq: Fix potentially leftover ep1_in_urb at error path (git-fixes). * ALSA: caiaq: fix usb_dev refcount leak on probe failure (git-fixes). * ALSA: caiaq: Handle probe errors properly (git-fixes). * ALSA: caiaq: take a reference on the USB device in create_card() (git- fixes). * ALSA: control: Validate buf_len before strnlen() in snd_ctl_elem_init_enum_names() (git-fixes). * ALSA: core: Fix potential data race at fasync handling (git-fixes). * ALSA: core: Serialize deferred fasync state checks (git-fixes). * ALSA: core: Validate compress device numbers without dynamic minors (git- fixes). * ALSA: ctxfi: Add fallback to default RSR for S/PDIF (git-fixes). * ALSA: ctxfi: Fix missing SPDIFI1 index handling (stable-fixes). * ALSA: ctxfi: Limit PTP to a single page (git-fixes). * ALSA: firewire-tascam: Do not drop unread control events (git-fixes). * ALSA: fireworks: bound device-supplied status before string array lookup (git-fixes). * ALSA: hda/realtek - fixed speaker no sound update (git-fixes). * ALSA: hda/realtek: Add HP ENVY Laptop 13-ba0xxx quirk (stable-fixes). * ALSA: hda/realtek: Add mute LED quirk for HP Pavilion 15-eg0xxx (stable- fixes). * ALSA: hda/realtek: Add quirk for ASUS ROG Flow Z13-KJP GZ302EAC (stable- fixes). * ALSA: hda/realtek: add quirk for Framework F111:000F (stable-fixes). * ALSA: hda/realtek: Add quirk for Lenovo Yoga Pro 7 14IAH10 (stable-fixes). * ALSA: hda/realtek: fix code style (ERROR: else should follow close brace '}') (git-fixes). * ALSA: misc: Use guard() for spin locks (stable-fixes). * ALSA: scarlett2: Add missing sentinel initializer field (git-fixes). * ALSA: seq: Notify client and port info changes (stable-fixes). * ALSA: seq_oss: return full count for successful SEQ_FULLSIZE writes (stable- fixes). * ALSA: usb-audio: apply quirk for MOONDROP JU Jiu (stable-fixes). * ALSA: usb-audio: Avoid false E-MU sample-rate notifications (git-fixes). * ALSA: usb-audio: Avoid potential endless loop in convert_chmap_v3() (git- fixes). * ALSA: usb-audio: Evaluate packsize caps at the right place (git-fixes). * ALSA: usb-audio: Fix Audio Advantage Micro II SPDIF switch (git-fixes). * ALSA: usb-audio: Fix potential leak of pd at parsing UAC3 streams (git- fixes). * ALSA: usb-audio: Fix quirk flags for NeuralDSP Quad Cortex (stable-fixes). * ALSA: usb-audio: Fix UAC3 cluster descriptor size check (git-fixes). * ALSA: usb-audio: midi2: Restart output URBs on resume (git-fixes). * ALSA: usb-audio: stop parsing UAC2 rates at MAX_NR_RATES (git-fixes). * ASoC: amd: yc: Add DMI entry for HP Laptop 15-fc0xxx (stable-fixes). * ASoC: amd: yc: Add DMI quirk for ASUS EXPERTBOOK BM1403CDA (stable-fixes). * ASoC: amd: yc: Add DMI quirk for Thin A15 B7VF (stable-fixes). * ASoC: amd: yc: Add HP OMEN Gaming Laptop 16-ap0xxx product line in quirk table (stable-fixes). * ASoC: codecs: ab8500: Fix casting of private data (git-fixes). * ASoC: cs35l56: Destroy workqueue in probe error path (git-fixes). * ASoC: cs35l56: Don't use devres to unregister component (git-fixes). * ASoC: fsl_easrc: Change the type for iec958 channel status controls (git- fixes). * ASoC: fsl_easrc: Check the variable range in fsl_easrc_iec958_put_bits() (git-fixes). * ASoC: fsl_easrc: fix comment typo (git-fixes). * ASoC: fsl_easrc: Fix value type in fsl_easrc_iec958_get_bits() (git-fixes). * ASoC: fsl_micfil: Add access property for "VAD Detected" (git-fixes). * ASoC: fsl_micfil: Fix event generation in hwvad_put_enable() (git-fixes). * ASoC: fsl_micfil: Fix event generation in hwvad_put_init_mode() (git-fixes). * ASoC: fsl_micfil: Fix event generation in micfil_put_dc_remover_state() (git-fixes). * ASoC: fsl_micfil: Fix event generation in micfil_quality_set() (git-fixes). * ASoC: fsl_xcvr: Fix event generation for cached controls (git-fixes). * ASoC: fsl_xcvr: Fix event generation in fsl_xcvr_arc_mode_put() (git-fixes). * ASoC: fsl_xcvr: Fix event generation in fsl_xcvr_mode_put() (git-fixes). * ASoC: Intel: bytcr_wm5102: Fix MCLK leak on platform_clock_control error (git-fixes). * ASoC: qcom: q6apm-lpass-dai: Fix multiple graph opens (git-fixes). * ASoC: qcom: q6apm: move component registration to unmanaged version (git- fixes). * ASoC: qcom: q6apm: remove child devices when apm is removed (git-fixes). * ASoC: qcom: qdsp6: topology: check widget type before accessing data (git- fixes). * ASoC: soc-core: call missing INIT_LIST_HEAD() for card_aux_list (stable- fixes). * ASoC: SOF: compress: return the configured codec from get_params (git- fixes). * ASoC: SOF: Don't allow pointer operations on unconfigured streams (git- fixes). * ASoC: SOF: Intel: hda: Place check before dereference (git-fixes). * ASoC: SOF: topology: reject invalid vendor array size in token parser (stable-fixes). * ASoC: sti: Return errors from regmap_field_alloc() (git-fixes). * ASoC: sti: use managed regmap_field allocations (git-fixes). * ASoC: stm32_sai: fix incorrect BCLK polarity for DSP_A/B, LEFT_J (stable- fixes). * ata: ahci: force 32-bit DMA for JMicron JMB582/JMB585 (stable-fixes). * batman-adv: bla: only purge non-released claims (git-fixes). * batman-adv: bla: prevent use-after-free when deleting claims (git-fixes). * batman-adv: bla: put backbone reference on failed claim hash insert (git- fixes). * batman-adv: fix integer overflow on buff_pos (git-fixes). * batman-adv: hold claim backbone gateways by reference (git-fixes). * batman-adv: reject new tp_meter sessions during teardown (git-fixes). * batman-adv: reject oversized global TT response buffers (git-fixes). * batman-adv: stop caching unowned originator pointers in BAT IV (git-fixes). * Bluetooth: bnep: fix incorrect length parsing in bnep_rx_frame() extension handling (git-fixes). * Bluetooth: fix locking in hci_conn_request_evt() with HCI_PROTO_DEFER (git- fixes). * Bluetooth: hci_event: Fix OOB read and infinite loop in hci_le_create_big_complete_evt (git-fixes). * Bluetooth: hci_event: fix potential UAF in SSP passkey handlers (git-fixes). * Bluetooth: hci_ldisc: Clear HCI_UART_PROTO_INIT on error (git-fixes). * Bluetooth: HIDP: serialise l2cap_unregister_user via hidp_session_sem (git- fixes). * Bluetooth: ISO: Fix data-race on dst in iso_sock_connect() (git-fixes). * Bluetooth: l2cap: Add missing chan lock in l2cap_ecred_reconf_rsp (git- fixes). * Bluetooth: l2cap: fix MPS check in l2cap_ecred_reconf_req (git-fixes). * Bluetooth: L2CAP: Fix null-ptr-deref in l2cap_sock_new_connection_cb() (git- fixes). * Bluetooth: L2CAP: Fix null-ptr-deref in l2cap_sock_state_change_cb() (git- fixes). * Bluetooth: L2CAP: Fix printing wrong information if SDU length exceeds MTU (git-fixes). * Bluetooth: RFCOMM: pull credit byte with skb_pull_data() (git-fixes). * Bluetooth: SCO: check for codecs->num_codecs == 1 before assigning to sco_pi(sk)->codec (git-fixes). * Bluetooth: SCO: fix sleeping under spinlock in sco_conn_ready (git-fixes). * Bluetooth: SCO: hold sk properly in sco_conn_ready (git-fixes). * Bluetooth: virtio_bt: clamp rx length before skb_put (git-fixes). * Bluetooth: virtio_bt: validate rx pkt_type header length (git-fixes). * btrfs: do not skip logging new dentries when logging a new name (git-fixes). * btrfs: reject root items with drop_progress and zero drop_level (git-fixes). * btrfs: replace BUG() with error handling in __btrfs_balance() (git-fixes). * can: mcp251x: add error handling for power enable in open and resume (stable-fixes). * can: raw: fix ro->uniq use-after-free in raw_rcv() (git-fixes). * can: ucan: fix devres lifetime (git-fixes). * cdc-acm: new quirk for EPSON HMD (stable-fixes). * check-for-config-changes: Exclude CC_MS_EXTENSIONS. * check-for-config-changes: Exclude HAVE_CFI_ICALL_NORMALIZE_INTEGERS{,_RUSTC}. * checkpatch: add support for Assisted-by tag (stable-fixes). * comedi: dt2815: add hardware detection to prevent crash (stable-fixes). * crypto: algif_aead - Fix minimum RX size check for decryption (git-fixes). * crypto: arm64/aes - Fix 32-bit aes_mac_update() arg treated as 64-bit (git- fixes). * crypto: atmel-aes - Fix 3-page memory leak in atmel_aes_buff_cleanup (git- fixes). * crypto: atmel-ecc - Release client on allocation failure (git-fixes). * crypto: atmel-sha204a - Fix potential UAF and memory leak in remove path (git-fixes). * crypto: atmel-tdes - fix DMA sync direction (git-fixes). * crypto: authencesn - reject short ahash digests during instance creation (git-fixes). * crypto: ccp - copy IV using skcipher ivsize (git-fixes). * crypto: ccp: Don't attempt to copy CSR to userspace if PSP command failed (git-fixes). * crypto: ccp: Don't attempt to copy ID to userspace if PSP command failed (git-fixes). * crypto: ccp: Don't attempt to copy PDH cert to userspace if PSP command failed (git-fixes). * crypto: ccree - fix a memory leak in cc_mac_digest() (git-fixes). * crypto: hisilicon - Fix dma_unmap_single() direction (git-fixes). * crypto: jitterentropy - replace long-held spinlock with mutex (git-fixes). * crypto: pcrypt - Fix handling of MAY_BACKLOG requests (git-fixes). * crypto: qat - fix type mismatch in RAS sysfs show functions (git-fixes). * crypto: qat - use swab32 macro (git-fixes). * crypto: sa2ul - Fix AEAD fallback algorithm names (git-fixes). * crypto: simd - reject compat registrations without __ prefixes (git-fixes). * crypto: talitos - fix SEC1 32k ahash request limitation (git-fixes). * crypto: testmgr - Hide ENOENT errors (stable-fixes). * crypto: testmgr - Hide ENOENT errors better (git-fixes). * devres: fix missing node debug info in devm_krealloc() (git-fixes). * dm init: ensure device probing has finished in dm-mod.waitfor= (git-fixes). * dmaengine: dw-axi-dmac: Remove unnecessary return statement from void function (git-fixes). * dmaengine: mxs-dma: Fix missing return value from of_dma_controller_register() (git-fixes). * drm/amd/display: Add NULL check for integrated_info in clk_mgr_construct (git-fixes). * drm/amd/display: Allow DCE link encoder without AUX registers (git-fixes). * drm/amd/display: Avoid NULL dereference in dc_dmub_srv error paths (git- fixes). * drm/amd/display: Disable 10-bit truncation and dithering on DCE 6.x (git- fixes). * drm/amd/display: Read EDID from VBIOS embedded panel info (git-fixes). * drm/amd/pm/ci: Clear EnabledForActivity field for memory levels (git-fixes). * drm/amd/pm/ci: Disable MCLK DPM on problematic CI ASICs (git-fixes). * drm/amd/pm/ci: Fill DW8 fields from SMC (git-fixes). * drm/amd/pm/ci: Fix powertune defaults for Hawaii 0x67B0 (git-fixes). * drm/amd/pm/ci: Use highest MCLK on CI when MCLK DPM is disabled (git-fixes). * drm/amd/pm/smu7: Add SCLK cap for quirky Hawaii board (git-fixes). * drm/amd/pm/smu7: Fix SMU7 voltage dependency on display clock (git-fixes). * drm/amdgpu/gfx6: Support harvested SI chips with disabled TCCs (v2) (git- fixes). * drm/amdgpu/gfx9: drop unnecessary 64-bit fence flag check in KIQ (stable- fixes). * drm/amdgpu/gfx10: look at the right prop for gfx queue priority (git-fixes). * drm/amdgpu/gmc: Fix AMDGPU_GART_PLACEMENT_LOW to not overlap with VRAM (git- fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v2.0 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v2.5 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v3.0 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v4.0 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v4.0.3 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v4.0.5 ring (git-fixes). * drm/amdgpu/pm: add missing revision check for CI (git-fixes). * drm/amdgpu/pm: align Hawaii mclk workaround with radeon (git-fixes). * drm/amdgpu/sdma4: replace BUG_ON with WARN_ON in fence emission (git-fixes). * drm/amdgpu/vce: Prevent partial address patches (stable-fixes). * drm/amdgpu/vcn3: Avoid overflow on msg bound check (git-fixes). * drm/amdgpu/vcn3: Prevent OOB reads when parsing dec msg (stable-fixes). * drm/amdgpu/vcn4: Avoid overflow on msg bound check (git-fixes). * drm/amdgpu/vcn4: Prevent OOB reads when parsing dec msg (stable-fixes). * drm/amdgpu/vcn4: Prevent OOB reads when parsing IB (stable-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v2.0 enc/dec rings (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v2.5 enc/dec rings (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v3.0 enc/dec rings (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v4.0 enc ring (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v4.0.3 enc ring (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v4.0.5 enc ring (git-fixes). * drm/amdgpu: Add bounds checking to ib_{get,set}_value (stable-fixes). * drm/amdgpu: fix AMDGPU_INFO_READ_MMR_REG (git-fixes). * drm/amdgpu: fix zero-size GDS range init on RDNA4 (stable-fixes). * drm/amdgpu: zero-initialize GART table on allocation (stable-fixes). * drm/amdkfd: Add upper bound check for num_of_nodes (stable-fixes). * drm/amdkfd: Clear VRAM on allocation to prevent stale data exposure (stable- fixes). * drm/amdkfd: validate SVM ioctl nattr against buffer size (stable-fixes). * drm/arcpgu: fix device node leak (git-fixes). * drm/bridge: cadence: cdns-mhdp8546-core: Add mode_valid hook to drm_bridge_funcs (git-fixes). * drm/bridge: cadence: cdns-mhdp8546-core: Handle HDCP state in bridge atomic check (git-fixes). * drm/bridge: cadence: cdns-mhdp8546-core: Set the mhdp connector earlier in atomic_enable() (git-fixes). * drm/etnaviv: Fix armed job not being pushed to the DRM scheduler (git- fixes). * drm/fb-helper: Fix clipping when damage area spans a single scanline (git- fixes). * drm/gem: Fix inconsistent plane dimension calculation in drm_gem_fb_init_with_funcs() (git-fixes). * drm/gma500/oaktrail_hdmi: fix i2c adapter leak on setup (git-fixes). * drm/gma500/oaktrail_lvds: fix hang on init failure (git-fixes). * drm/gma500/oaktrail_lvds: fix i2c adapter leaks on init (git-fixes). * drm/i915/dp: Fix VSC dynamic range signaling for RGB formats (git-fixes). * drm/i915/gt: fix refcount underflow in intel_engine_park_heartbeat (git- fixes). * drm/i915/wm: Verify the correct plane DDB entry (git-fixes). * drm/i915: skip __i915_request_skip() for already signaled requests (git- fixes). * drm/komeda: fix integer overflow in AFBC framebuffer size check (git-fixes). * drm/msm/a6xx: Fix dumping A650+ debugbus blocks (git-fixes). * drm/msm/a6xx: Fix HLSQ register dumping (git-fixes). * drm/msm/a6xx: Use barriers while updating HFI Q headers (git-fixes). * drm/msm/dpu: fix mismatch between power and frequency (git-fixes). * drm/msm/dsi: add the missing parameter description (git-fixes). * drm/msm/dsi: fix bits_per_pclk (git-fixes). * drm/msm/dsi: fix hdisplay calculation for CMD mode panel (git-fixes). * drm/msm/dsi: rename MSM8998 DSI version from V2_2_0 to V2_0_0 (git-fixes). * drm/msm/shrinker: Fix can_block() logic (git-fixes). * drm/nouveau: fix u32 overflow in pushbuf reloc bounds check (git-fixes). * drm/panel: sharp-ls043t1le01: make use of prepare_prev_first (git-fixes). * drm/panel: simple: Correct G190EAN01 prepare timing (git-fixes). * drm/panfrost: Fix wait_bo ioctl leaking positive return from dma_resv_wait_timeout() (git-fixes). * drm/radeon: add missing revision check for CI (git-fixes). * drm/sun4i: backend: fix error pointer dereference (git-fixes). * drm/sun4i: Fix resource leaks (git-fixes). * drm/vc4: Fix a memory leak in hang state error path (git-fixes). * drm/vc4: Fix memory leak of BO array in hang state (git-fixes). * drm/vc4: platform_get_irq_byname() returns an int (stable-fixes). * drm/vc4: Protect madv read in vc4_gem_object_mmap() with madv_lock (git- fixes). * drm/vc4: Release runtime PM reference after binding V3D (git-fixes). * drm/vram: remove DRM_VRAM_MM_FILE_OPERATIONS from docs (git-fixes). * dt-bindings: net: Fix Tegra234 MGBE PTP clock (git-fixes). * efi/capsule-loader: fix incorrect sizeof in phys array reallocation (git- fixes). * efi: pstore: Drop efivar lock when efi_pstore_open() returns with an error (git-fixes). * ext4: fix fsync(2) for nojournal mode (git-fixes). * ext4: make recently_deleted() properly work with lazy itable initialization (git-fixes). * ext4: reject mount if bigalloc with s_first_data_block != 0 (git-fixes). * extcon: ptn5150: handle pending IRQ events during system resume (git-fixes). * fbdev: matroxfb: Mark variable with __maybe_unused to avoid W=1 build break (git-fixes). * fbdev: offb: fix PCI device reference leak on probe failure (git-fixes). * fbdev: tdfxfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO (stable-fixes). * fbdev: udlfb: add vm_ops to dlfb_ops_mmap to prevent use-after-free (stable- fixes). * fbdev: udlfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO (git-fixes). * firmware: dmi: Correct an indexing error in dmi.h (git-fixes). * gpio: tegra: fix irq_release_resources calling enable instead of disable (git-fixes). * gtp: disable BH before calling udp_tunnel_xmit_skb() (git-fixes). * HID: alps: fix NULL pointer dereference in alps_raw_event() (git-fixes). * HID: asus: do not abort probe when not necessary (git-fixes). * HID: asus: make asus_resume adhere to linux kernel coding standards (git- fixes). * HID: core: clamp report_size in s32ton() to avoid undefined shift (stable- fixes). * HID: multitouch: Check to ensure report responses match the request (stable- fixes). * HID: playstation: Clamp num_touch_reports (git-fixes). * HID: quirks: add HID_QUIRK_ALWAYS_POLL for 8BitDo Pro 3 (stable-fixes). * HID: roccat: fix use-after-free in roccat_report_event (stable-fixes). * HID: usbhid: fix deadlock in hid_post_reset() (git-fixes). * HID: wacom: fix out-of-bounds read in wacom_intuos_bt_irq (stable-fixes). * hv_sock: fix ARM64 support (git-fixes). * hwmon: (ads7871) Fix endianness bug in 16-bit register reads (git-fixes). * hwmon: (corsair-psu) Close HID device on probe errors (git-fixes). * hwmon: (lm63) Add locking to avoid TOCTOU (git-fixes). * hwmon: (ltc2992) Clamp threshold writes to hardware range (git-fixes). * hwmon: (ltc2992) Fix u32 overflow in power read path (git-fixes). * i2c: s3c24xx: check the size of the SMBUS message before using it (stable- fixes). * i2c: smbus: reject oversized block transfers in the common path (git-fixes). * i2c: stm32f7: reinit_completion() per transfer not per msg (git-fixes). * i2c: stub: Reject I2C block transfers with invalid length (git-fixes). * i3c: master: Fix error codes at send_ccc_cmd (git-fixes). * i3c: mipi-i3c-hci: fix IBI payload length calculation for final status (git- fixes). * ibmveth: Disable GSO for packets with small MSS (bsc#1265144). * ice: set max queues in alloc_etherdev_mqs() (git-fixes). * iio: adc: ad7768-1: fix one-shot mode data acquisition (git-fixes). * iio: adc: ti-adc161s626: use DMA-safe memory for spi_read() (git-fixes). * iio: adc: ti-ads7950: use iio_push_to_buffers_with_ts_unaligned() (git- fixes). * Input: i8042 - add TUXEDO InfinityBook Max 16 Gen10 AMD to i8042 quirk table (stable-fixes). * Input: uinput - fix circular locking dependency with ff-core (git-fixes). * Input: uinput - take event lock when submitting FF request "event" (stable- fixes). * Input: xpad - add support for BETOP BTP-KP50B/C controller's wireless mode (stable-fixes). * Input: xpad - add support for Razer Wolverine V3 Pro (stable-fixes). * ipmi: Add limits to event and receive message requests (git-fixes). * ipmi: Check event message buffer response for bad data (git-fixes). * ipmi: ssif_bmc: change log level to dbg in irq callback (git-fixes). * ipmi: ssif_bmc: fix message desynchronization after truncated response (git- fixes). * ipmi: ssif_bmc: fix missing check for copy_to_user() partial failure (git- fixes). * irqchip/irq-pic32-evic: Address warning related to wrong printf() formatter (git-fixes). * kdump, documentation: describe craskernel CMA reservation (jsc#PED-7249). * KVM: Reject wrapped offset in kvm_reset_dirty_gfn() (git-fixes). * KVM: SVM: Mark VMCB_NPT as dirty on nested VMRUN (git-fixes). * KVM: SVM: Mark VMCB_PERM_MAP as dirty on nested VMRUN (git-fixes). * KVM: x86/mmu: Retry fault before acquiring mmu_lock if mapping is changing (bsc#1253122). * KVM: x86/xen: Fix cleanup logic in emulation of Xen schedop poll hypercalls (git-fixes). * KVM: x86: check for nEPT/nNPT in slow flush hypercalls (git-fixes). * KVM: x86: Fix shadow paging use-after-free due to unexpected GFN (git- fixes). * KVM: x86: hyper-v: Validate all GVAs during PV TLB flush (git-fixes). * KVM: x86: Ignore cpuid faulting in SMM (git-fixes). * leds: lgm-sso: Remove duplicate assignments for priv->mmap (git-fixes). * lib/hexdump: print_hex_dump_bytes() calls print_hex_dump_debug() (git- fixes). * media: amphion: Fix race between m2m job_abort and device_run (git-fixes). * media: as102: fix to not free memory after the device is registered in as102_usb_probe() (git-fixes). * media: dib8000: avoid division by 0 in dib8000_set_dds() (git-fixes). * media: em28xx: fix use-after-free in em28xx_v4l2_open() (git-fixes). * media: hackrf: fix to not free memory after the device is registered in hackrf_probe() (git-fixes). * media: i2c: imx219: Check return value of devm_gpiod_get_optional() in imx219_probe() (git-fixes). * media: i2c: imx412: Assert reset GPIO during probe (git-fixes). * media: i2c: ov08d10: fix image vertical start setting (git-fixes). * media: i2c: ov8856: free control handler on error in ov8856_init_controls() (git-fixes). * media: mtk-jpeg: fix use-after-free in release path due to uncancelled work (git-fixes). * media: omap3isp: drop the use count of v4l2 pipeline (git-fixes). * media: pci: zoran: fix potential memory leak in zoran_probe() (git-fixes). * media: rc: streamzap: Error handling in probe (git-fixes). * media: rc: xbox_remote: heed DMA restrictions (git-fixes). * media: saa7164: add ioremap return checks and cleanups (git-fixes). * media: staging: imx: configure src_mux in csi_start (git-fixes). * media: staging: imx: request mbus_config in csi_start (git-fixes). * media: uvcvideo: Enable VB2_DMABUF for metadata stream (git-fixes). * media: videobuf2: Set vma_flags in vb2_dma_sg_mmap (git-fixes). * media: vidtv: fix nfeeds state corruption on start_streaming failure (git- fixes). * media: vidtv: fix NULL pointer dereference in vidtv_channel_pmt_match_sections (git-fixes). * media: vidtv: fix pass-by-value structs causing MSAN warnings (git-fixes). * memory: tegra30-emc: Fix dll_change check (git-fixes). * memory: tegra124-emc: Fix dll_change check (git-fixes). * mfd: mc13xxx-core: Fix memory leak in mc13xxx_add_subdevice_pdata() (git- fixes). * mkspec: Add signature to source list only when it exists. * mmc: sdhci-of-dwcmshc: Disable clock before DLL configuration (git-fixes). * mmc: vub300: fix NULL-deref on disconnect (git-fixes). * modpost: Amend ppc64 save/restfpr symnames for -Os build (bsc#1215199). * mtd: docg3: Convert to platform remove callback returning void (stable- fixes). * mtd: docg3: fix use-after-free in docg3_release() (git-fixes). * mtd: parsers: ofpart: call of_node_get() for dedicated subpartitions (git- fixes). * mtd: parsers: ofpart: call of_node_put() only in ofpart_fail path (git- fixes). * mtd: physmap_of_gemini: Fix disabled pinctrl state check (git-fixes). * mtd: rawnand: sunxi: fix sunxi_nfc_hw_ecc_read_extra_oob (git-fixes). * mtd: spi-nor: core: correct the op.dummy.nbytes when check read operations (git-fixes). * mtd: spi-nor: sst: Factor out common write operation to `sst_nor_write_data()` (stable-fixes). * mtd: spi-nor: sst: Fix SST write failure (git-fixes). * mtd: spi-nor: sst: Fix write enable before AAI sequence (git-fixes). * mtd: spi-nor: swp: check SR_TB flag when getting tb_mask (git-fixes). * net/rds: reset op_nents when zerocopy page pin fails (bsc#1265626). * net/sched: cls_fw: fix NULL dereference of "old" filters before change() (git-fixes). * net/sched: fix pedit partial COW leading to page cache corruption (bsc#1265421). * net: gro: don't merge zcopy skbs (git-fixes). * net: mana: Add MAC address to vPort logs and clarify error messages (git- fixes). * net: mana: check xdp_rxq registration before unreg in mana_destroy_rxq() (git-fixes). * net: mana: Don't overwrite port probe error with add_adev result (git- fixes). * net: mana: Fix crash from unvalidated SHM offset read from BAR0 during FLR (bsc#1265846). * net: mana: Fix EQ leak in mana_remove on NULL port (git-fixes). * net: mana: Fix RX skb truesize accounting (bsc#1248754). * net: mana: fix use-after-free in mana_hwc_destroy_channel() by reordering teardown (git-fixes). * net: mana: Guard mana_remove against double invocation (git-fixes). * net: mana: hardening: Validate adapter_mtu from MANA_QUERY_DEV_CONFIG (git- fixes). * net: mana: hardening: Validate doorbell ID from GDMA_REGISTER_DEVICE response (git-fixes). * net: mana: Init gf_stats_work before potential error paths in probe (git- fixes). * net: mana: Init link_change_work before potential error paths in probe (git- fixes). * net: mana: remove double CQ cleanup in mana_create_rxq error path (git- fixes). * net: mana: Set default number of queues to 16 (bsc#1261648). * net: mana: Skip WQ object destruction for uninitialized RXQ (git-fixes). * net: mana: Use at least SZ_4K in doorbell ID range check (git-fixes). * net: mana: Use pci_name() for debugfs directory naming (git-fixes). * net: phy: dp83869: fix setting CLK_O_SEL field (git-fixes). * net: stmmac: Fix PTP ref clock for Tegra234 (git-fixes). * net: usb: asix: ax88772: re-add usbnet_link_change() in phylink callbacks (git-fixes). * net: usb: cdc-phonet: fix skb frags[] overflow in rx_complete() (git-fixes). * net: usb: rtl8150: fix use-after-free in rtl8150_start_xmit() (git-fixes). * net: usb: rtl8150: free skb on usb_submit_urb() failure in xmit (git-fixes). * net: wan: fsl_ucc_hdlc: fix ucc_hdlc_remove (git-fixes). * net: wan: fsl_ucc_hdlc: fix uhdlc_memclean (git-fixes). * net: wan: fsl_ucc_hdlc: free tx_skbuff in uhdlc_memclean (git-fixes). * NFC: digital: Bounds check NFC-A cascade depth in SDD response handler (git- fixes). * nfc: llcp: add missing return after LLCP_CLOSED checks (git-fixes). * nfc: pn533: allocate rx skb before consuming bytes (git-fixes). * nfc: s3fwrn5: allocate rx skb before consuming bytes (git-fixes). * NFC: trf7970a: Ignore antenna noise when checking for RF field (git-fixes). * nvmet-tcp: propagate nvmet_tcp_build_pdu_iovec() errors to its callers (git- fixes). * ocfs2: fix possible deadlock between unlink and dio_end_io_write (bsc#1258718). * ocfs2: split transactions in dio completion to avoid credit exhaustion (bsc#1258718). * PCI/AER: Clear only error bits in PCIe Device Status (git-fixes). * PCI/AER: Stop ruling out unbound devices as error source (git-fixes). * PCI: dwc: Apply ECRC workaround to DesignWare 5.00a as well (git-fixes). * PCI: Enable AtomicOps only if Root Port supports them (git-fixes). * PCI: endpoint: pci-epf-ntb: Remove duplicate resource teardown (git-fixes). * PCI: hv: Set default NUMA node to 0 for devices without affinity info (git- fixes). * PCI: mediatek-gen3: Prevent leaking IRQ domains when IRQ not found (git- fixes). * PCI: tegra194: Allow system suspend when the Endpoint link is not up (git- fixes). * PCI: tegra194: Disable direct speed change for Endpoint mode (git-fixes). * PCI: tegra194: Disable LTSSM after transition to Detect on surprise link down (git-fixes). * PCI: tegra194: Disable PERST# IRQ only in Endpoint mode (git-fixes). * PCI: tegra194: Fix polling delay for L2 state (git-fixes). * PCI: tegra194: Increase LTSSM poll time on surprise link down (git-fixes). * PCI: tegra194: Set LTR message request before PCIe link up in Endpoint mode (git-fixes). * PCI: tegra194: Use devm_gpiod_get_optional() to parse "nvidia,refclk-select" (git-fixes). * PCI: tegra194: Use DWC IP core version (git-fixes). * pinctrl: abx500: Fix type of 'argument' variable (git-fixes). * pinctrl: Fix spelling problem (git-fixes). * pinctrl: intel: Fix the revision for new features (1kOhm PD, HW debouncer) (stable-fixes). * pinctrl: pic32: change all cases of bare 'unsigned' to 'unsigned int' (git- fixes). * pinctrl: pic32: use consistent spacing around '+' (git-fixes). * pinctrl: pinctrl-pic32: Fix resource leak (git-fixes). * platform/chrome: chromeos_tbmc: Drop wakeup source on remove (git-fixes). * platform/surface: surfacepro3_button: Drop wakeup source on remove (git- fixes). * platform/x86/amd: pmc: Add Thinkpad L14 Gen3 to quirk_s2idle_bug (stable- fixes). * platform/x86: dell-wmi-sysman: bound enumeration string aggregation (git- fixes). * platform/x86: dell_rbu: avoid uninit value usage in packet_size_write() (git-fixes). * platform/x86: hp-wmi: Ignore backlight and FnLock events (stable-fixes). * platform/x86: panasonic-laptop: Fix OPTD notifier registration and cleanup (git-fixes). * power: supply: axp288_charger: Do not cancel work before initializing it (git-fixes). * power: supply: max17042: avoid overflow when determining health (git-fixes). * powerpc/crash: fix backup region offset update to elfcorehdr (bsc#1259535). * RDMA/mana: Fix error unwind in mana_ib_create_qp_rss() (git-fixes). * RDMA/mana: Fix mana_destroy_wq_obj() cleanup in mana_ib_create_qp_rss() (git-fixes). * RDMA/mana: Remove user triggerable WARN_ON() in mana_ib_create_qp_rss() (git-fixes). * RDMA/mana: Validate rx_hash_key_len (git-fixes). * RDMA/mana_ib: cleanup the usage of mana_gd_send_request() (git-fixes). * RDMA/mana_ib: Disable RX steering on RSS QP destroy (git-fixes). * RDMA/mana_ib: Support memory windows (git-fixes). * regulator: act8945a: fix OF node reference imbalance (git-fixes). * regulator: bd9571mwv: fix OF node reference imbalance (git-fixes). * regulator: max77650: fix OF node reference imbalance (git-fixes). * regulator: mt6357: fix OF node reference imbalance (git-fixes). * remoteproc: xlnx: Only access buffer information if IPI is buffered (git- fixes). * Revert "ALSA: usb: Increase volume range that triggers a warning" (git- fixes). * rtc: abx80x: Disable alarm feature if no interrupt attached (git-fixes). * rtc: ntxec: fix OF node reference imbalance (git-fixes). * sched/balancing: Switch the 'DEFINE_SPINLOCK(balancing)' spinlock into an 'atomic_t sched_balance_running' flag (bsc#1253754). * sched/fair: Change likelyhood of nohz.nr_cpus (bsc#1234634 bsc#1258961). * sched/fair: Have SD_SERIALIZE affect newidle balancing (bsc#1253754). * sched/fair: Move checking for nohz cpus after time check (bsc#1234634 bsc#1258961). * sched/fair: Remove nohz.nr_cpus and use weight of cpumask instead (bsc#1234634 bsc#1258961). * sched/fair: Skip sched_balance_running cmpxchg when balance is not due (bsc#1253754). * scsi: storvsc: Handle PERSISTENT_RESERVE_IN truncation for Hyper-V vFC (git- fixes). * scsi: target: iscsi: validate CHAP_R length before base64 decode (bsc#1265449). * soc/tegra: cbb: Set ERD on resume for err interrupt (git-fixes). * soc: qcom: aoss: compare against normalized cooling state (git-fixes). * soc: qcom: llcc: fix v1 SB syndrome register offset (git-fixes). * sound: ua101: fix division by zero at probe (git-fixes). * soundwire: bus: demote UNATTACHED state warnings to dev_dbg() (git-fixes). * soundwire: cadence: Clear message complete before signaling waiting thread (git-fixes). * spi: at91-usart: fix controller deregistration (git-fixes). * spi: atmel: fix controller deregistration (git-fixes). * spi: cadence: fix controller deregistration (git-fixes). * spi: fix controller cleanup() documentation (git-fixes). * spi: fix misleading controller deregistration kernel-doc (git-fixes). * spi: fix misleading controller registration kernel-doc (git-fixes). * spi: fsl-qspi: Use reinit_completion() for repeated operations (git-fixes). * spi: hisi-kunpeng: prevent infinite while() loop in hisi_spi_flush_fifo (git-fixes). * spi: imx: fix runtime pm leak on probe deferral (git-fixes). * spi: imx: fix use-after-free on unbind (git-fixes). * spi: microchip-core-qspi: fix controller deregistration (git-fixes). * spi: microchip-core-qspi: Use helper function devm_clk_get_enabled() (stable-fixes). * spi: mpc52xx: fix use-after-free on unbind (git-fixes). * spi: mtk-nor: fix controller deregistration (git-fixes). * spi: mtk-snfi: unregister ECC engine on probe failure and remove() callback (git-fixes). * spi: omap2-mcspi: fix controller deregistration (git-fixes). * spi: orion: fix clock imbalance on registration failure (git-fixes). * spi: orion: fix runtime pm leak on unbind (git-fixes). * spi: rockchip: fix controller deregistration (git-fixes). * spi: rspi: fix controller deregistration (git-fixes). * spi: sh-hspi: fix controller deregistration (git-fixes). * spi: spi-ti-qspi: Convert to platform remove callback returning void (stable-fixes). * spi: sprd: fix controller deregistration (git-fixes). * spi: sun4i: fix controller deregistration (git-fixes). * spi: sun4i: switch to use modern name (stable-fixes). * spi: syncuacer: fix controller deregistration (git-fixes). * spi: synquacer: switch to use modern name (stable-fixes). * spi: uniphier: fix controller deregistration (git-fixes). * spi: uniphier: Simplify clock handling with devm_clk_get_enabled() (stable- fixes). * spi: uniphier: switch to use modern name (stable-fixes). * spi: zynq-qspi: switch to use modern name (stable-fixes). * spi: zynqmp-gqspi: fix controller deregistration (git-fixes). * staging: media: atomisp: Disallow all private IOCTLs (git-fixes). * staging: rtl8723bs: initialize le_tmp64 in rtw_BIP_verify() (git-fixes). * staging: sm750fb: fix division by zero in ps_to_hz() (git-fixes). * staging: vme_user: added bound check to geoid (stable-fixes). * staging: vme_user: fix root device leak on init failure (git-fixes). * thermal/drivers/spear: Fix error condition for reading st,thermal-flags (git-fixes). * thermal/drivers/sprd: Fix raw temperature clamping in sprd_thm_rawdata_to_temp (git-fixes). * thermal/drivers/sprd: Fix temperature clamping in sprd_thm_temp_to_rawdata (git-fixes). * tpm: avoid -Wunused-but-set-variable (git-fixes). * tpm: tpm_tis: add error logging for data transfer (git-fixes). * tpm: tpm_tis: stop transmit if retries are exhausted (git-fixes). * tty: tty_io: update timestamps on all device nodes (bsc#1262020). * USB: cdc-acm: Add quirks for Yoga Book 9 14IAH10 INGENIC touchscreen (stable-fixes). * usb: chipidea: core: allow ci_irq_handler() handle both ID and VBUS change (git-fixes). * usb: chipidea: otg: not wait vbus drop if use role_switch (git-fixes). * USB: core: add NO_LPM quirk for Razer Kiyo Pro webcam (stable-fixes). * usb: gadget: dummy_hcd: fix premature URB completion when ZLP follows partial transfer (stable-fixes). * usb: gadget: f_ncm: validate minimum block_len in ncm_unwrap_ntb() (git- fixes). * usb: gadget: f_phonet: fix skb frags[] overflow in pn_rx_complete() (stable- fixes). * usb: gadget: f_uac1_legacy: validate control request size (stable-fixes). * usb: gadget: renesas_usb3: validate endpoint index in standard request handlers (git-fixes). * USB: omap_udc: DMA: Don't enable burst 4 mode (git-fixes). * usb: port: add delay after usb_hub_set_port_power() (git-fixes). * usb: quirks: add DELAY_INIT quirk for another Silicon Motion flash drive (stable-fixes). * USB: serial: io_edgeport: add support for Blackbox IC135A (stable-fixes). * USB: serial: option: add MeiG Smart SRM825WN (stable-fixes). * USB: serial: option: add support for Rolling Wireless RW135R-GL (stable- fixes). * USB: serial: option: add Telit Cinterion FN990A MBIM composition (stable- fixes). * USB: serial: option: add Telit Cinterion LE910Cx compositions (stable- fixes). * usb: storage: Expand range of matched versions for VL817 quirks entry (stable-fixes). * usb: ulpi: fix memory leak on ulpi_register() error paths (git-fixes). * usb: usblp: fix heap leak in IEEE 1284 device ID via short response (stable- fixes). * usb: usblp: fix uninitialized heap leak via LPGETSTATUS ioctl (stable- fixes). * usb: xhci: Make usb_host_endpoint.hcpriv survive endpoint_disable() (git- fixes). * usbip: validate number_of_packets in usbip_pack_ret_submit() (git-fixes). * virt: tdx-guest: Fix handling of host controlled 'quote' buffer length (git- fixes). * virt: tdx-guest: Return error for GetQuote failures (git-fixes). * wifi: ath5k: do not access array OOB (git-fixes). * wifi: ath9k: Fix typo (git-fixes). * wifi: ath11k: Pass the correct value of each TID during a stop AMPDU session (git-fixes). * wifi: ath11k: skip status ring entry processing (stable-fixes). * wifi: ath11k: Use dma_alloc_noncoherent for rx_tid buffer allocation (stable-fixes). * wifi: b43: enforce bounds check on firmware key index in b43_rx() (git- fixes). * wifi: b43legacy: enforce bounds check on firmware key index in RX path (git- fixes). * wifi: brcmfmac: Fix error pointer dereference (git-fixes). * wifi: brcmfmac: validate bsscfg indices in IF events (stable-fixes). * wifi: brcmsmac: Fix dma_free_coherent() size (git-fixes). * wifi: cw1200: Revert "Fix locking in error paths" (git-fixes). * wifi: libertas: notify firmware load wait on disconnect (git-fixes). * wifi: mac80211: check ieee80211_rx_data_set_link return in pubsta MLO path (git-fixes). * wifi: mac80211: drop stray 'static' from fast-RX rx_result (git-fixes). * wifi: mac80211: remove station if connection prep fails (git-fixes). * wifi: mt76: mt792x: describe USB WFSYS reset with a descriptor (stable- fixes). * wifi: mt76: mt792x: fix mt7925u USB WFSYS reset handling (git-fixes). * wifi: mt76: mt7615: fix use_cts_prot support (git-fixes). * wifi: mt76: mt7915: fix use-after-free bugs in mt7915_mac_dump_work() (git- fixes). * wifi: mt76: mt7915: fix use_cts_prot support (git-fixes). * wifi: mt76: mt7921: fix a potential clc buffer length underflow (git-fixes). * wifi: mt76: mt7921: fix ROC abort flow interruption in mt7921_roc_work (git- fixes). * wifi: mt76: mt7921: Reset ampdu_state state in case of failure in mt76_connac2_tx_check_aggr() (git-fixes). * wifi: mt76: mt7925: fix incorrect length field in txpower command (git- fixes). * wifi: mt76: mt7996: fix FCS error flag check in RX descriptor (git-fixes). * wifi: mt76: mt7996: fix struct mt7996_mcu_uni_event (git-fixes). * wifi: mwifiex: Fix memory leak in mwifiex_11n_aggregate_pkt() (git-fixes). * wifi: nl80211: fix NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST usage (git- fixes). * wifi: nl80211: require admin perm on SET_PMK / DEL_PMK (git-fixes). * wifi: rsi: fix kthread lifetime race between self-exit and external-stop (git-fixes). * wifi: rt2x00usb: fix devres lifetime (git-fixes). * wifi: rtlwifi: pci: fix possible use-after-free caused by unfinished irq_prepare_bcn_tasklet (git-fixes). * wifi: rtw88: check for PCI upstream bridge existence (git-fixes). * wifi: rtw88: fix device leak on probe failure (git-fixes). * wifi: rtw89: phy: fix uninitialized variable access in rtw89_phy_cfo_set_crystal_cap() (git-fixes). * wifi: wl1251: validate packet IDs before indexing tx_frames (stable-fixes). * workqueue: Break up enum definitions and give names to the types (bsc#1260522). * workqueue: Clean up enum work_bits and related constants (bsc#1260522). * workqueue: Factor out work_grab_pending() from __cancel_work_sync() (bsc#1260522). * workqueue: Fix UBSAN 'subtraction overflow' error in shift_and_mask() (bsc#1260522). * workqueue: Implement disable/enable for (delayed) work items (bsc#1260522). * workqueue: Introduce work_cancel_flags (bsc#1260522). * workqueue: Make @flags handling consistent across set_work_data() and friends (bsc#1260522). * workqueue: Preserve OFFQ bits in cancel[_sync] paths (bsc#1260522). * workqueue: Rename __cancel_work_timer() to __cancel_timer_sync() (bsc#1260522). * workqueue: Reorganize flush and cancel[_sync] functions (bsc#1260522). * x86/boot/64: Clear most of CR4 in startup_64(), except PAE, MCE and LA57 (git-fixes). * x86/boot/sev: Avoid shared GHCB page for early memory acceptance (git- fixes). * x86/boot: Don't add the EFI stub to targets, again (git-fixes). * x86/boot: Fix page table access in 5-level to 4-level paging transition (git-fixes). * X.509: Fix out-of-bounds access when parsing extensions (git-fixes). * Xarray: do not return sibling entries from xas_find_marked() (bsc#1263815). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-kernel-437=1 ## Package List: * SUSE Linux Micro 6.1 (noarch) * kernel-source-rt-6.4.0-47.1 * kernel-devel-rt-6.4.0-47.1 * SUSE Linux Micro 6.1 (aarch64 nosrc x86_64) * kernel-rt-6.4.0-47.1 * SUSE Linux Micro 6.1 (aarch64 x86_64) * kernel-rt-debuginfo-6.4.0-47.1 * kernel-rt-debugsource-6.4.0-47.1 * kernel-rt-devel-6.4.0-47.1 * SUSE Linux Micro 6.1 (x86_64) * kernel-rt-livepatch-6.4.0-47.1 * kernel-rt-devel-debuginfo-6.4.0-47.1 ## References: * https://www.suse.com/security/cve/CVE-2023-20585.html * https://www.suse.com/security/cve/CVE-2025-40219.html * https://www.suse.com/security/cve/CVE-2025-71183.html * https://www.suse.com/security/cve/CVE-2025-71238.html * https://www.suse.com/security/cve/CVE-2026-23168.html * https://www.suse.com/security/cve/CVE-2026-23209.html * https://www.suse.com/security/cve/CVE-2026-23236.html * https://www.suse.com/security/cve/CVE-2026-23237.html * https://www.suse.com/security/cve/CVE-2026-23239.html * https://www.suse.com/security/cve/CVE-2026-23240.html * https://www.suse.com/security/cve/CVE-2026-23245.html * https://www.suse.com/security/cve/CVE-2026-23246.html * https://www.suse.com/security/cve/CVE-2026-23253.html * https://www.suse.com/security/cve/CVE-2026-23260.html * https://www.suse.com/security/cve/CVE-2026-23264.html * https://www.suse.com/security/cve/CVE-2026-23266.html * https://www.suse.com/security/cve/CVE-2026-23268.html * https://www.suse.com/security/cve/CVE-2026-23269.html * https://www.suse.com/security/cve/CVE-2026-23271.html * https://www.suse.com/security/cve/CVE-2026-23273.html * https://www.suse.com/security/cve/CVE-2026-23276.html * https://www.suse.com/security/cve/CVE-2026-23279.html * https://www.suse.com/security/cve/CVE-2026-23290.html * https://www.suse.com/security/cve/CVE-2026-23291.html * https://www.suse.com/security/cve/CVE-2026-23298.html * https://www.suse.com/security/cve/CVE-2026-23300.html * https://www.suse.com/security/cve/CVE-2026-23306.html * https://www.suse.com/security/cve/CVE-2026-23307.html * https://www.suse.com/security/cve/CVE-2026-23308.html * https://www.suse.com/security/cve/CVE-2026-23312.html * https://www.suse.com/security/cve/CVE-2026-23313.html * https://www.suse.com/security/cve/CVE-2026-23315.html * https://www.suse.com/security/cve/CVE-2026-23318.html * https://www.suse.com/security/cve/CVE-2026-23321.html * https://www.suse.com/security/cve/CVE-2026-23324.html * https://www.suse.com/security/cve/CVE-2026-23325.html * https://www.suse.com/security/cve/CVE-2026-23336.html * https://www.suse.com/security/cve/CVE-2026-23339.html * https://www.suse.com/security/cve/CVE-2026-23340.html * https://www.suse.com/security/cve/CVE-2026-23346.html * https://www.suse.com/security/cve/CVE-2026-23351.html * https://www.suse.com/security/cve/CVE-2026-23357.html * https://www.suse.com/security/cve/CVE-2026-23362.html * https://www.suse.com/security/cve/CVE-2026-23363.html * https://www.suse.com/security/cve/CVE-2026-23365.html * https://www.suse.com/security/cve/CVE-2026-23367.html * https://www.suse.com/security/cve/CVE-2026-23368.html * https://www.suse.com/security/cve/CVE-2026-23370.html * https://www.suse.com/security/cve/CVE-2026-23372.html * https://www.suse.com/security/cve/CVE-2026-23373.html * https://www.suse.com/security/cve/CVE-2026-23374.html * https://www.suse.com/security/cve/CVE-2026-23378.html * https://www.suse.com/security/cve/CVE-2026-23382.html * https://www.suse.com/security/cve/CVE-2026-23391.html * https://www.suse.com/security/cve/CVE-2026-23392.html * https://www.suse.com/security/cve/CVE-2026-23393.html * https://www.suse.com/security/cve/CVE-2026-23396.html * https://www.suse.com/security/cve/CVE-2026-23397.html * https://www.suse.com/security/cve/CVE-2026-23399.html * https://www.suse.com/security/cve/CVE-2026-23403.html * https://www.suse.com/security/cve/CVE-2026-23404.html * https://www.suse.com/security/cve/CVE-2026-23405.html * https://www.suse.com/security/cve/CVE-2026-23406.html * https://www.suse.com/security/cve/CVE-2026-23407.html * https://www.suse.com/security/cve/CVE-2026-23408.html * https://www.suse.com/security/cve/CVE-2026-23409.html * https://www.suse.com/security/cve/CVE-2026-23410.html * https://www.suse.com/security/cve/CVE-2026-23411.html * https://www.suse.com/security/cve/CVE-2026-23420.html * https://www.suse.com/security/cve/CVE-2026-23426.html * https://www.suse.com/security/cve/CVE-2026-23434.html * https://www.suse.com/security/cve/CVE-2026-23440.html * https://www.suse.com/security/cve/CVE-2026-23441.html * https://www.suse.com/security/cve/CVE-2026-23442.html * https://www.suse.com/security/cve/CVE-2026-23443.html * https://www.suse.com/security/cve/CVE-2026-23446.html * https://www.suse.com/security/cve/CVE-2026-23447.html * https://www.suse.com/security/cve/CVE-2026-23448.html * https://www.suse.com/security/cve/CVE-2026-23449.html * https://www.suse.com/security/cve/CVE-2026-23450.html * https://www.suse.com/security/cve/CVE-2026-23452.html * https://www.suse.com/security/cve/CVE-2026-23455.html * https://www.suse.com/security/cve/CVE-2026-23456.html * https://www.suse.com/security/cve/CVE-2026-23457.html * https://www.suse.com/security/cve/CVE-2026-23458.html * https://www.suse.com/security/cve/CVE-2026-23460.html * https://www.suse.com/security/cve/CVE-2026-23461.html * https://www.suse.com/security/cve/CVE-2026-23462.html * https://www.suse.com/security/cve/CVE-2026-23463.html * https://www.suse.com/security/cve/CVE-2026-23465.html * https://www.suse.com/security/cve/CVE-2026-23468.html * https://www.suse.com/security/cve/CVE-2026-23472.html * https://www.suse.com/security/cve/CVE-2026-23473.html * https://www.suse.com/security/cve/CVE-2026-23474.html * https://www.suse.com/security/cve/CVE-2026-23475.html * https://www.suse.com/security/cve/CVE-2026-31389.html * https://www.suse.com/security/cve/CVE-2026-31393.html * https://www.suse.com/security/cve/CVE-2026-31400.html * https://www.suse.com/security/cve/CVE-2026-31402.html * https://www.suse.com/security/cve/CVE-2026-31403.html * https://www.suse.com/security/cve/CVE-2026-31404.html * https://www.suse.com/security/cve/CVE-2026-31405.html * https://www.suse.com/security/cve/CVE-2026-31407.html * https://www.suse.com/security/cve/CVE-2026-31408.html * https://www.suse.com/security/cve/CVE-2026-31411.html * https://www.suse.com/security/cve/CVE-2026-31412.html * https://www.suse.com/security/cve/CVE-2026-31415.html * https://www.suse.com/security/cve/CVE-2026-31416.html * https://www.suse.com/security/cve/CVE-2026-31417.html * https://www.suse.com/security/cve/CVE-2026-31420.html * https://www.suse.com/security/cve/CVE-2026-31421.html * https://www.suse.com/security/cve/CVE-2026-31422.html * https://www.suse.com/security/cve/CVE-2026-31423.html * https://www.suse.com/security/cve/CVE-2026-31424.html * https://www.suse.com/security/cve/CVE-2026-31425.html * https://www.suse.com/security/cve/CVE-2026-31426.html * https://www.suse.com/security/cve/CVE-2026-31427.html * https://www.suse.com/security/cve/CVE-2026-31428.html * https://www.suse.com/security/cve/CVE-2026-31436.html * https://www.suse.com/security/cve/CVE-2026-31449.html * https://www.suse.com/security/cve/CVE-2026-31470.html * https://www.suse.com/security/cve/CVE-2026-31488.html * https://www.suse.com/security/cve/CVE-2026-31494.html * https://www.suse.com/security/cve/CVE-2026-31496.html * https://www.suse.com/security/cve/CVE-2026-31504.html * https://www.suse.com/security/cve/CVE-2026-31505.html * https://www.suse.com/security/cve/CVE-2026-31507.html * https://www.suse.com/security/cve/CVE-2026-31512.html * https://www.suse.com/security/cve/CVE-2026-31515.html * https://www.suse.com/security/cve/CVE-2026-31519.html * https://www.suse.com/security/cve/CVE-2026-31525.html * https://www.suse.com/security/cve/CVE-2026-31528.html * https://www.suse.com/security/cve/CVE-2026-31533.html * https://www.suse.com/security/cve/CVE-2026-31550.html * https://www.suse.com/security/cve/CVE-2026-31565.html * https://www.suse.com/security/cve/CVE-2026-31570.html * https://www.suse.com/security/cve/CVE-2026-31586.html * https://www.suse.com/security/cve/CVE-2026-31588.html * https://www.suse.com/security/cve/CVE-2026-31602.html * https://www.suse.com/security/cve/CVE-2026-31607.html * https://www.suse.com/security/cve/CVE-2026-31622.html * https://www.suse.com/security/cve/CVE-2026-31649.html * https://www.suse.com/security/cve/CVE-2026-31656.html * https://www.suse.com/security/cve/CVE-2026-31662.html * https://www.suse.com/security/cve/CVE-2026-31668.html * https://www.suse.com/security/cve/CVE-2026-31669.html * https://www.suse.com/security/cve/CVE-2026-31675.html * https://www.suse.com/security/cve/CVE-2026-31679.html * https://www.suse.com/security/cve/CVE-2026-31681.html * https://www.suse.com/security/cve/CVE-2026-31682.html * https://www.suse.com/security/cve/CVE-2026-31684.html * https://www.suse.com/security/cve/CVE-2026-31685.html * https://www.suse.com/security/cve/CVE-2026-31694.html * https://www.suse.com/security/cve/CVE-2026-31700.html * https://www.suse.com/security/cve/CVE-2026-31738.html * https://www.suse.com/security/cve/CVE-2026-31787.html * https://www.suse.com/security/cve/CVE-2026-43009.html * https://www.suse.com/security/cve/CVE-2026-43025.html * https://www.suse.com/security/cve/CVE-2026-43027.html * https://www.suse.com/security/cve/CVE-2026-43037.html * https://www.suse.com/security/cve/CVE-2026-43038.html * https://www.suse.com/security/cve/CVE-2026-43044.html * https://www.suse.com/security/cve/CVE-2026-43050.html * https://www.suse.com/security/cve/CVE-2026-43060.html * https://www.suse.com/security/cve/CVE-2026-43088.html * https://www.suse.com/security/cve/CVE-2026-43110.html * https://www.suse.com/security/cve/CVE-2026-43120.html * https://www.suse.com/security/cve/CVE-2026-43126.html * https://www.suse.com/security/cve/CVE-2026-43190.html * https://www.suse.com/security/cve/CVE-2026-43214.html * https://www.suse.com/security/cve/CVE-2026-43265.html * https://www.suse.com/security/cve/CVE-2026-43329.html * https://www.suse.com/security/cve/CVE-2026-43330.html * https://www.suse.com/security/cve/CVE-2026-43334.html * https://www.suse.com/security/cve/CVE-2026-43365.html * https://www.suse.com/security/cve/CVE-2026-43366.html * https://www.suse.com/security/cve/CVE-2026-43419.html * https://www.suse.com/security/cve/CVE-2026-43437.html * https://www.suse.com/security/cve/CVE-2026-43441.html * https://www.suse.com/security/cve/CVE-2026-43494.html * https://www.suse.com/security/cve/CVE-2026-43503.html * https://bugzilla.suse.com/show_bug.cgi?id=1215199 * https://bugzilla.suse.com/show_bug.cgi?id=1234634 * https://bugzilla.suse.com/show_bug.cgi?id=1243603 * https://bugzilla.suse.com/show_bug.cgi?id=1248754 * https://bugzilla.suse.com/show_bug.cgi?id=1253122 * https://bugzilla.suse.com/show_bug.cgi?id=1253754 * https://bugzilla.suse.com/show_bug.cgi?id=1254518 * https://bugzilla.suse.com/show_bug.cgi?id=1256863 * https://bugzilla.suse.com/show_bug.cgi?id=1257631 * https://bugzilla.suse.com/show_bug.cgi?id=1258518 * https://bugzilla.suse.com/show_bug.cgi?id=1258718 * https://bugzilla.suse.com/show_bug.cgi?id=1258826 * https://bugzilla.suse.com/show_bug.cgi?id=1258849 * https://bugzilla.suse.com/show_bug.cgi?id=1258850 * https://bugzilla.suse.com/show_bug.cgi?id=1258854 * https://bugzilla.suse.com/show_bug.cgi?id=1258855 * https://bugzilla.suse.com/show_bug.cgi?id=1258856 * https://bugzilla.suse.com/show_bug.cgi?id=1258857 * https://bugzilla.suse.com/show_bug.cgi?id=1258961 * https://bugzilla.suse.com/show_bug.cgi?id=1259186 * https://bugzilla.suse.com/show_bug.cgi?id=1259199 * https://bugzilla.suse.com/show_bug.cgi?id=1259222 * https://bugzilla.suse.com/show_bug.cgi?id=1259484 * https://bugzilla.suse.com/show_bug.cgi?id=1259485 * https://bugzilla.suse.com/show_bug.cgi?id=1259535 * https://bugzilla.suse.com/show_bug.cgi?id=1259799 * https://bugzilla.suse.com/show_bug.cgi?id=1259806 * https://bugzilla.suse.com/show_bug.cgi?id=1259857 * https://bugzilla.suse.com/show_bug.cgi?id=1259868 * https://bugzilla.suse.com/show_bug.cgi?id=1259869 * https://bugzilla.suse.com/show_bug.cgi?id=1259873 * https://bugzilla.suse.com/show_bug.cgi?id=1259878 * https://bugzilla.suse.com/show_bug.cgi?id=1260010 * https://bugzilla.suse.com/show_bug.cgi?id=1260012 * https://bugzilla.suse.com/show_bug.cgi?id=1260018 * https://bugzilla.suse.com/show_bug.cgi?id=1260468 * https://bugzilla.suse.com/show_bug.cgi?id=1260483 * https://bugzilla.suse.com/show_bug.cgi?id=1260484 * https://bugzilla.suse.com/show_bug.cgi?id=1260485 * https://bugzilla.suse.com/show_bug.cgi?id=1260489 * https://bugzilla.suse.com/show_bug.cgi?id=1260501 * https://bugzilla.suse.com/show_bug.cgi?id=1260504 * https://bugzilla.suse.com/show_bug.cgi?id=1260505 * https://bugzilla.suse.com/show_bug.cgi?id=1260507 * https://bugzilla.suse.com/show_bug.cgi?id=1260522 * https://bugzilla.suse.com/show_bug.cgi?id=1260523 * https://bugzilla.suse.com/show_bug.cgi?id=1260526 * https://bugzilla.suse.com/show_bug.cgi?id=1260528 * https://bugzilla.suse.com/show_bug.cgi?id=1260529 * https://bugzilla.suse.com/show_bug.cgi?id=1260530 * https://bugzilla.suse.com/show_bug.cgi?id=1260531 * https://bugzilla.suse.com/show_bug.cgi?id=1260532 * https://bugzilla.suse.com/show_bug.cgi?id=1260533 * https://bugzilla.suse.com/show_bug.cgi?id=1260536 * https://bugzilla.suse.com/show_bug.cgi?id=1260537 * https://bugzilla.suse.com/show_bug.cgi?id=1260538 * https://bugzilla.suse.com/show_bug.cgi?id=1260541 * https://bugzilla.suse.com/show_bug.cgi?id=1260546 * https://bugzilla.suse.com/show_bug.cgi?id=1260549 * https://bugzilla.suse.com/show_bug.cgi?id=1260551 * https://bugzilla.suse.com/show_bug.cgi?id=1260552 * https://bugzilla.suse.com/show_bug.cgi?id=1260553 * https://bugzilla.suse.com/show_bug.cgi?id=1260555 * https://bugzilla.suse.com/show_bug.cgi?id=1260561 * https://bugzilla.suse.com/show_bug.cgi?id=1260566 * https://bugzilla.suse.com/show_bug.cgi?id=1260572 * https://bugzilla.suse.com/show_bug.cgi?id=1260581 * https://bugzilla.suse.com/show_bug.cgi?id=1260728 * https://bugzilla.suse.com/show_bug.cgi?id=1260729 * https://bugzilla.suse.com/show_bug.cgi?id=1260731 * https://bugzilla.suse.com/show_bug.cgi?id=1260800 * https://bugzilla.suse.com/show_bug.cgi?id=1260811 * https://bugzilla.suse.com/show_bug.cgi?id=1261020 * https://bugzilla.suse.com/show_bug.cgi?id=1261287 * https://bugzilla.suse.com/show_bug.cgi?id=1261295 * https://bugzilla.suse.com/show_bug.cgi?id=1261348 * https://bugzilla.suse.com/show_bug.cgi?id=1261503 * https://bugzilla.suse.com/show_bug.cgi?id=1261504 * https://bugzilla.suse.com/show_bug.cgi?id=1261581 * https://bugzilla.suse.com/show_bug.cgi?id=1261582 * https://bugzilla.suse.com/show_bug.cgi?id=1261584 * https://bugzilla.suse.com/show_bug.cgi?id=1261601 * https://bugzilla.suse.com/show_bug.cgi?id=1261602 * https://bugzilla.suse.com/show_bug.cgi?id=1261618 * https://bugzilla.suse.com/show_bug.cgi?id=1261628 * https://bugzilla.suse.com/show_bug.cgi?id=1261632 * https://bugzilla.suse.com/show_bug.cgi?id=1261636 * https://bugzilla.suse.com/show_bug.cgi?id=1261638 * https://bugzilla.suse.com/show_bug.cgi?id=1261641 * https://bugzilla.suse.com/show_bug.cgi?id=1261644 * https://bugzilla.suse.com/show_bug.cgi?id=1261645 * https://bugzilla.suse.com/show_bug.cgi?id=1261648 * https://bugzilla.suse.com/show_bug.cgi?id=1261679 * https://bugzilla.suse.com/show_bug.cgi?id=1261685 * https://bugzilla.suse.com/show_bug.cgi?id=1261686 * https://bugzilla.suse.com/show_bug.cgi?id=1261687 * https://bugzilla.suse.com/show_bug.cgi?id=1261692 * https://bugzilla.suse.com/show_bug.cgi?id=1261694 * https://bugzilla.suse.com/show_bug.cgi?id=1261700 * https://bugzilla.suse.com/show_bug.cgi?id=1261703 * https://bugzilla.suse.com/show_bug.cgi?id=1261707 * https://bugzilla.suse.com/show_bug.cgi?id=1261710 * https://bugzilla.suse.com/show_bug.cgi?id=1261713 * https://bugzilla.suse.com/show_bug.cgi?id=1261719 * https://bugzilla.suse.com/show_bug.cgi?id=1261750 * https://bugzilla.suse.com/show_bug.cgi?id=1261751 * https://bugzilla.suse.com/show_bug.cgi?id=1261752 * https://bugzilla.suse.com/show_bug.cgi?id=1261768 * https://bugzilla.suse.com/show_bug.cgi?id=1261778 * https://bugzilla.suse.com/show_bug.cgi?id=1261779 * https://bugzilla.suse.com/show_bug.cgi?id=1261781 * https://bugzilla.suse.com/show_bug.cgi?id=1261789 * https://bugzilla.suse.com/show_bug.cgi?id=1261796 * https://bugzilla.suse.com/show_bug.cgi?id=1261797 * https://bugzilla.suse.com/show_bug.cgi?id=1261896 * https://bugzilla.suse.com/show_bug.cgi?id=1262020 * https://bugzilla.suse.com/show_bug.cgi?id=1262053 * https://bugzilla.suse.com/show_bug.cgi?id=1262054 * https://bugzilla.suse.com/show_bug.cgi?id=1262055 * https://bugzilla.suse.com/show_bug.cgi?id=1262061 * https://bugzilla.suse.com/show_bug.cgi?id=1262063 * https://bugzilla.suse.com/show_bug.cgi?id=1262074 * https://bugzilla.suse.com/show_bug.cgi?id=1262078 * https://bugzilla.suse.com/show_bug.cgi?id=1262086 * https://bugzilla.suse.com/show_bug.cgi?id=1262087 * https://bugzilla.suse.com/show_bug.cgi?id=1262099 * https://bugzilla.suse.com/show_bug.cgi?id=1262100 * https://bugzilla.suse.com/show_bug.cgi?id=1262101 * https://bugzilla.suse.com/show_bug.cgi?id=1262179 * https://bugzilla.suse.com/show_bug.cgi?id=1262181 * https://bugzilla.suse.com/show_bug.cgi?id=1262602 * https://bugzilla.suse.com/show_bug.cgi?id=1262616 * https://bugzilla.suse.com/show_bug.cgi?id=1262665 * https://bugzilla.suse.com/show_bug.cgi?id=1262671 * https://bugzilla.suse.com/show_bug.cgi?id=1262673 * https://bugzilla.suse.com/show_bug.cgi?id=1262725 * https://bugzilla.suse.com/show_bug.cgi?id=1262731 * https://bugzilla.suse.com/show_bug.cgi?id=1262734 * https://bugzilla.suse.com/show_bug.cgi?id=1262746 * https://bugzilla.suse.com/show_bug.cgi?id=1262752 * https://bugzilla.suse.com/show_bug.cgi?id=1262758 * https://bugzilla.suse.com/show_bug.cgi?id=1263001 * https://bugzilla.suse.com/show_bug.cgi?id=1263012 * https://bugzilla.suse.com/show_bug.cgi?id=1263064 * https://bugzilla.suse.com/show_bug.cgi?id=1263065 * https://bugzilla.suse.com/show_bug.cgi?id=1263085 * https://bugzilla.suse.com/show_bug.cgi?id=1263093 * https://bugzilla.suse.com/show_bug.cgi?id=1263095 * https://bugzilla.suse.com/show_bug.cgi?id=1263104 * https://bugzilla.suse.com/show_bug.cgi?id=1263131 * https://bugzilla.suse.com/show_bug.cgi?id=1263140 * https://bugzilla.suse.com/show_bug.cgi?id=1263141 * https://bugzilla.suse.com/show_bug.cgi?id=1263149 * https://bugzilla.suse.com/show_bug.cgi?id=1263165 * https://bugzilla.suse.com/show_bug.cgi?id=1263170 * https://bugzilla.suse.com/show_bug.cgi?id=1263176 * https://bugzilla.suse.com/show_bug.cgi?id=1263556 * https://bugzilla.suse.com/show_bug.cgi?id=1263582 * https://bugzilla.suse.com/show_bug.cgi?id=1263592 * https://bugzilla.suse.com/show_bug.cgi?id=1263593 * https://bugzilla.suse.com/show_bug.cgi?id=1263595 * https://bugzilla.suse.com/show_bug.cgi?id=1263596 * https://bugzilla.suse.com/show_bug.cgi?id=1263600 * https://bugzilla.suse.com/show_bug.cgi?id=1263668 * https://bugzilla.suse.com/show_bug.cgi?id=1263723 * https://bugzilla.suse.com/show_bug.cgi?id=1263797 * https://bugzilla.suse.com/show_bug.cgi?id=1263815 * https://bugzilla.suse.com/show_bug.cgi?id=1263882 * https://bugzilla.suse.com/show_bug.cgi?id=1263901 * https://bugzilla.suse.com/show_bug.cgi?id=1263931 * https://bugzilla.suse.com/show_bug.cgi?id=1263933 * https://bugzilla.suse.com/show_bug.cgi?id=1263995 * https://bugzilla.suse.com/show_bug.cgi?id=1264014 * https://bugzilla.suse.com/show_bug.cgi?id=1264059 * https://bugzilla.suse.com/show_bug.cgi?id=1264082 * https://bugzilla.suse.com/show_bug.cgi?id=1264087 * https://bugzilla.suse.com/show_bug.cgi?id=1264097 * https://bugzilla.suse.com/show_bug.cgi?id=1264183 * https://bugzilla.suse.com/show_bug.cgi?id=1264427 * https://bugzilla.suse.com/show_bug.cgi?id=1264469 * https://bugzilla.suse.com/show_bug.cgi?id=1264482 * https://bugzilla.suse.com/show_bug.cgi?id=1264634 * https://bugzilla.suse.com/show_bug.cgi?id=1264651 * https://bugzilla.suse.com/show_bug.cgi?id=1264661 * https://bugzilla.suse.com/show_bug.cgi?id=1264674 * https://bugzilla.suse.com/show_bug.cgi?id=1264801 * https://bugzilla.suse.com/show_bug.cgi?id=1264848 * https://bugzilla.suse.com/show_bug.cgi?id=1265085 * https://bugzilla.suse.com/show_bug.cgi?id=1265090 * https://bugzilla.suse.com/show_bug.cgi?id=1265116 * https://bugzilla.suse.com/show_bug.cgi?id=1265119 * https://bugzilla.suse.com/show_bug.cgi?id=1265126 * https://bugzilla.suse.com/show_bug.cgi?id=1265144 * https://bugzilla.suse.com/show_bug.cgi?id=1265308 * https://bugzilla.suse.com/show_bug.cgi?id=1265421 * https://bugzilla.suse.com/show_bug.cgi?id=1265449 * https://bugzilla.suse.com/show_bug.cgi?id=1265456 * https://bugzilla.suse.com/show_bug.cgi?id=1265626 * https://bugzilla.suse.com/show_bug.cgi?id=1265846 * https://bugzilla.suse.com/show_bug.cgi?id=1265960 * https://jira.suse.com/browse/PED-7249 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 17:05:54 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 17:05:54 -0000 Subject: SUSE-SU-2026:21875-1: important: Security update for openssh Message-ID: <178041995485.42.15276471953749577957@b0da085613fb> # Security update for openssh Announcement ID: SUSE-SU-2026:21875-1 Release Date: 2026-05-28T15:02:37Z Rating: important References: * bsc#1261427 * bsc#1261430 * bsc#1264568 Cross-References: * CVE-2026-35385 * CVE-2026-35414 CVSS scores: * CVE-2026-35385 ( SUSE ): 7.5 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-35385 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-35385 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-35385 ( NVD ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-35414 ( SUSE ): 2.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-35414 ( SUSE ): 4.2 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N * CVE-2026-35414 ( NVD ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-35414 ( NVD ): 4.2 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N Affected Products: * SUSE Linux Micro 6.1 An update that solves two vulnerabilities and has one fix can now be installed. ## Description: This update for openssh fixes the following issues * CVE-2026-35385: a file downloaded by scp may be installed setuid or setgid (bsc#1261427). * CVE-2026-35414: mishandling of authorized_keys principals option (bsc#1261430). Changes for openssh: * Fix a potential issue when validating mac (bsc#1264568): ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-552=1 ## Package List: * SUSE Linux Micro 6.1 (aarch64 ppc64le s390x x86_64) * openssh-clients-9.6p1-slfo.1.1_5.1 * openssh-server-9.6p1-slfo.1.1_5.1 * openssh-debugsource-9.6p1-slfo.1.1_5.1 * openssh-common-debuginfo-9.6p1-slfo.1.1_5.1 * openssh-9.6p1-slfo.1.1_5.1 * openssh-common-9.6p1-slfo.1.1_5.1 * openssh-clients-debuginfo-9.6p1-slfo.1.1_5.1 * openssh-server-config-rootlogin-9.6p1-slfo.1.1_5.1 * openssh-server-debuginfo-9.6p1-slfo.1.1_5.1 * openssh-fips-9.6p1-slfo.1.1_5.1 * openssh-debuginfo-9.6p1-slfo.1.1_5.1 ## References: * https://www.suse.com/security/cve/CVE-2026-35385.html * https://www.suse.com/security/cve/CVE-2026-35414.html * https://bugzilla.suse.com/show_bug.cgi?id=1261427 * https://bugzilla.suse.com/show_bug.cgi?id=1261430 * https://bugzilla.suse.com/show_bug.cgi?id=1264568 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 17:06:12 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 17:06:12 -0000 Subject: SUSE-SU-2026:21874-1: important: Security update for unbound Message-ID: <178041997285.42.15686504180741968961@b0da085613fb> # Security update for unbound Announcement ID: SUSE-SU-2026:21874-1 Release Date: 2026-05-28T15:01:59Z Rating: important References: * bsc#1265578 * bsc#1265580 * bsc#1265581 * bsc#1265582 * bsc#1265583 * bsc#1265584 * bsc#1265585 * bsc#1265586 * bsc#1265587 * bsc#1265588 * bsc#1265589 Cross-References: * CVE-2026-32792 * CVE-2026-33278 * CVE-2026-40622 * CVE-2026-41292 * CVE-2026-42534 * CVE-2026-42923 * CVE-2026-42944 * CVE-2026-42959 * CVE-2026-42960 * CVE-2026-44390 * CVE-2026-44608 CVSS scores: * CVE-2026-32792 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-32792 ( NVD ): 4.6 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Green * CVE-2026-32792 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-33278 ( SUSE ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-33278 ( NVD ): 9.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Red * CVE-2026-33278 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-40622 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2026-40622 ( NVD ): 6.6 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Amber * CVE-2026-40622 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2026-41292 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-41292 ( NVD ): 6.6 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Red * CVE-2026-41292 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42534 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42534 ( NVD ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Amber * CVE-2026-42534 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-42923 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42923 ( NVD ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Amber * CVE-2026-42923 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-42944 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-42944 ( NVD ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Red * CVE-2026-42944 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42959 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42959 ( NVD ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Red * CVE-2026-42959 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42960 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2026-42960 ( NVD ): 5.7 CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:H/SA:H/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Amber * CVE-2026-42960 ( NVD ): 10.0 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:H * CVE-2026-44390 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-44390 ( NVD ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Amber * CVE-2026-44390 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-44608 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-44608 ( NVD ): 4.6 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Amber * CVE-2026-44608 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Micro 6.1 An update that solves 11 vulnerabilities can now be installed. ## Description: This update for unbound fixes the following issues * CVE-2026-32792: Packet of death with DNSCrypt (bsc#1265583). * CVE-2026-33278: Possible remote code execution during DNSSEC validation (bsc#1265587). * CVE-2026-40622: "Ghost domain name" variant (bsc#1265581). * CVE-2026-41292: Parsing a long list of incoming EDNS options degrades performance (bsc#1265580). * CVE-2026-42534: Jostle logic bypass degrades resolution performance (bsc#1265585). * CVE-2026-42923: Degradation of service with unbounded NSEC3 hash calculations (bsc#1265589). * CVE-2026-42944: Heap overflow and crash with multiple nsid, cookie, padding EDNS options (bsc#1265578). * CVE-2026-42959: Crash during DNSSEC validation of malicious content (bsc#1265586). * CVE-2026-42960: Possible cache poisoning attack while following delegation (bsc#1265588). * CVE-2026-44390: Unbounded name compression in certain cases causes degradation of service (bsc#1265584). * CVE-2026-44608: Use after free and crash in RPZ code (bsc#1265582). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-551=1 ## Package List: * SUSE Linux Micro 6.1 (aarch64 ppc64le s390x x86_64) * unbound-anchor-debuginfo-1.22.0-slfo.1.1_4.1 * libunbound8-1.22.0-slfo.1.1_4.1 * unbound-anchor-1.22.0-slfo.1.1_4.1 * libunbound8-debuginfo-1.22.0-slfo.1.1_4.1 * unbound-debugsource-1.22.0-slfo.1.1_4.1 ## References: * https://www.suse.com/security/cve/CVE-2026-32792.html * https://www.suse.com/security/cve/CVE-2026-33278.html * https://www.suse.com/security/cve/CVE-2026-40622.html * https://www.suse.com/security/cve/CVE-2026-41292.html * https://www.suse.com/security/cve/CVE-2026-42534.html * https://www.suse.com/security/cve/CVE-2026-42923.html * https://www.suse.com/security/cve/CVE-2026-42944.html * https://www.suse.com/security/cve/CVE-2026-42959.html * https://www.suse.com/security/cve/CVE-2026-42960.html * https://www.suse.com/security/cve/CVE-2026-44390.html * https://www.suse.com/security/cve/CVE-2026-44608.html * https://bugzilla.suse.com/show_bug.cgi?id=1265578 * https://bugzilla.suse.com/show_bug.cgi?id=1265580 * https://bugzilla.suse.com/show_bug.cgi?id=1265581 * https://bugzilla.suse.com/show_bug.cgi?id=1265582 * https://bugzilla.suse.com/show_bug.cgi?id=1265583 * https://bugzilla.suse.com/show_bug.cgi?id=1265584 * https://bugzilla.suse.com/show_bug.cgi?id=1265585 * https://bugzilla.suse.com/show_bug.cgi?id=1265586 * https://bugzilla.suse.com/show_bug.cgi?id=1265587 * https://bugzilla.suse.com/show_bug.cgi?id=1265588 * https://bugzilla.suse.com/show_bug.cgi?id=1265589 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 17:06:15 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 17:06:15 -0000 Subject: SUSE-SU-2026:21873-1: moderate: Security update for python-idna Message-ID: <178041997597.42.18432600579978436445@b0da085613fb> # Security update for python-idna Announcement ID: SUSE-SU-2026:21873-1 Release Date: 2026-05-28T15:00:00Z Rating: moderate References: * bsc#1265413 Cross-References: * CVE-2026-45409 CVSS scores: * CVE-2026-45409 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-45409 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N Affected Products: * SUSE Linux Micro 6.1 An update that solves one vulnerability can now be installed. ## Description: This update for python-idna fixes the following issue * CVE-2026-45409: specially crafted inputs to idna.encode() can bypass earlier security fix (bsc#1265413). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-553=1 ## Package List: * SUSE Linux Micro 6.1 (noarch) * python311-idna-3.7-slfo.1.1_2.1 ## References: * https://www.suse.com/security/cve/CVE-2026-45409.html * https://bugzilla.suse.com/show_bug.cgi?id=1265413 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 17:06:19 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 17:06:19 -0000 Subject: SUSE-SU-2026:21872-1: important: Security update for cockpit Message-ID: <178041997900.42.14553082423958367520@b0da085613fb> # Security update for cockpit Announcement ID: SUSE-SU-2026:21872-1 Release Date: 2026-05-26T11:48:27Z Rating: important References: * bsc#1265040 Cross-References: * CVE-2026-4802 CVSS scores: * CVE-2026-4802 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-4802 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-4802 ( NVD ): 8.0 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Micro 6.1 An update that solves one vulnerability can now be installed. ## Description: This update for cockpit fixes the following issue * CVE-2026-4802: remote command execution via unsanitized user-controlled parameters within crafted links in system logs UI (bsc#1265040). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-548=1 ## Package List: * SUSE Linux Micro 6.1 (aarch64 ppc64le s390x x86_64) * cockpit-debuginfo-322-slfo.1.1_4.1 * cockpit-ws-322-slfo.1.1_4.1 * cockpit-ws-debuginfo-322-slfo.1.1_4.1 * cockpit-debugsource-322-slfo.1.1_4.1 * cockpit-bridge-debuginfo-322-slfo.1.1_4.1 * cockpit-bridge-322-slfo.1.1_4.1 * cockpit-322-slfo.1.1_4.1 * SUSE Linux Micro 6.1 (noarch) * cockpit-networkmanager-322-slfo.1.1_4.1 * cockpit-selinux-322-slfo.1.1_4.1 * cockpit-storaged-322-slfo.1.1_4.1 * cockpit-system-322-slfo.1.1_4.1 ## References: * https://www.suse.com/security/cve/CVE-2026-4802.html * https://bugzilla.suse.com/show_bug.cgi?id=1265040 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 17:06:39 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 17:06:39 -0000 Subject: SUSE-SU-2026:21871-1: important: Security update for cups Message-ID: <178041999921.42.4912066457008682499@b0da085613fb> # Security update for cups Announcement ID: SUSE-SU-2026:21871-1 Release Date: 2026-05-26T11:42:40Z Rating: important References: * bsc#1261568 * bsc#1261569 * bsc#1261570 * bsc#1261571 * bsc#1261572 * bsc#1261742 * bsc#1261743 * bsc#1263116 Cross-References: * CVE-2026-27447 * CVE-2026-34978 * CVE-2026-34979 * CVE-2026-34980 * CVE-2026-34990 * CVE-2026-39314 * CVE-2026-39316 * CVE-2026-41079 CVSS scores: * CVE-2026-27447 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:L/A:N * CVE-2026-27447 ( NVD ): 6.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:N * CVE-2026-27447 ( NVD ): 4.8 CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:L/A:N * CVE-2026-34978 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L * CVE-2026-34978 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L * CVE-2026-34979 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-34979 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-34980 ( SUSE ): 6.4 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:L * CVE-2026-34980 ( NVD ): 6.1 CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:H/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-34980 ( NVD ): 7.5 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-34990 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-34990 ( NVD ): 5.0 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:L/VA:N/SC:H/SI:H/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-34990 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-39314 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-39314 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-39314 ( NVD ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-39314 ( NVD ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-39316 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-39316 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-39316 ( NVD ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-39316 ( NVD ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-41079 ( SUSE ): 5.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-41079 ( SUSE ): 3.5 CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-41079 ( NVD ): 4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-41079 ( NVD ): 5.4 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L Affected Products: * SUSE Linux Micro 6.1 An update that solves eight vulnerabilities can now be installed. ## Description: This update for cups fixes the following issues * CVE-2026-27447: Authorization bypass via case-insensitive group-member lookup (bsc#1261572). * CVE-2026-34978: Path traversal in RSS notify-recipient-uri enables file write outside CacheDir/rss (bsc#1261571). * CVE-2026-34979: Heap overflow in `get_options()` (bsc#1261570). * CVE-2026-34980: Shared PostScript queue lets anonymous Print-Job requests reach `lp` code execution over the network (bsc#1261569). * CVE-2026-34990: Local print admin token disclosure using temporary printers (bsc#1261568). * CVE-2026-39314: negative `job-password-supported` attribute can lead to a denial of service (bsc#1261743). * CVE-2026-39316: dangling subscription pointer can lead to a denial of service (bsc#1261742). * CVE-2026-41079: crafted SNMP response can lead to stack-based out-of-bounds read and sensitive memory disclosure (bsc#1263116). Changes for cups: * Version upgrade to 2.4.19 ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-549=1 ## Package List: * SUSE Linux Micro 6.1 (aarch64 ppc64le s390x x86_64) * cups-debugsource-2.4.19-slfo.1.1_1.1 * cups-config-2.4.19-slfo.1.1_1.1 * libcups2-2.4.19-slfo.1.1_1.1 * libcups2-debuginfo-2.4.19-slfo.1.1_1.1 ## References: * https://www.suse.com/security/cve/CVE-2026-27447.html * https://www.suse.com/security/cve/CVE-2026-34978.html * https://www.suse.com/security/cve/CVE-2026-34979.html * https://www.suse.com/security/cve/CVE-2026-34980.html * https://www.suse.com/security/cve/CVE-2026-34990.html * https://www.suse.com/security/cve/CVE-2026-39314.html * https://www.suse.com/security/cve/CVE-2026-39316.html * https://www.suse.com/security/cve/CVE-2026-41079.html * https://bugzilla.suse.com/show_bug.cgi?id=1261568 * https://bugzilla.suse.com/show_bug.cgi?id=1261569 * https://bugzilla.suse.com/show_bug.cgi?id=1261570 * https://bugzilla.suse.com/show_bug.cgi?id=1261571 * https://bugzilla.suse.com/show_bug.cgi?id=1261572 * https://bugzilla.suse.com/show_bug.cgi?id=1261742 * https://bugzilla.suse.com/show_bug.cgi?id=1261743 * https://bugzilla.suse.com/show_bug.cgi?id=1263116 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 17:06:42 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 17:06:42 -0000 Subject: SUSE-SU-2026:21870-1: important: Security update for google-osconfig-agent Message-ID: <178042000231.42.4219891938077032593@b0da085613fb> # Security update for google-osconfig-agent Announcement ID: SUSE-SU-2026:21870-1 Release Date: 2026-05-26T10:47:06Z Rating: important References: * bsc#1260264 Cross-References: * CVE-2026-33186 CVSS scores: * CVE-2026-33186 ( SUSE ): 8.6 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-33186 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-33186 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N Affected Products: * SUSE Linux Micro 6.1 An update that solves one vulnerability can now be installed. ## Description: This update for google-osconfig-agent fixes the following issue * CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2: path pseudo- header (bsc#1260264). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-547=1 ## Package List: * SUSE Linux Micro 6.1 (aarch64 ppc64le s390x x86_64) * google-osconfig-agent-20250416.02-slfo.1.1_3.1 ## References: * https://www.suse.com/security/cve/CVE-2026-33186.html * https://bugzilla.suse.com/show_bug.cgi?id=1260264 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 17:06:45 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 17:06:45 -0000 Subject: SUSE-RU-2026:21866-1: important: Recommended update for timezone Message-ID: <178042000531.42.17184282433125046804@b0da085613fb> # Recommended update for timezone Announcement ID: SUSE-RU-2026:21866-1 Release Date: 2026-05-22T06:27:51Z Rating: important References: * bsc#1264965 Affected Products: * SUSE Linux Micro 6.1 An update that has one fix can now be installed. ## Description: This update for timezone fixes the following issues: * Update to 2026b: * British Columbia moved to permanent -07 on 2026-03-09. (bsc#1264965) * Some more overflow bugs have been fixed in zic. * Update to 2026a: * Moldova has used EU transition times since 2022. * The "right" TZif files are no longer installed by default. * -DTZ_RUNTIME_LEAPS=0 disables runtime support for leap seconds. * TZif files are no longer limited to 50 bytes of abbreviations. * zic is no longer limited to 50 leap seconds. * Several integer overflow bugs have been fixed. * Update to 2025c: * Update Baja California DST rules in 1953, 1961-1975 * An unset TZ is no longer invalid when /etc/localtime is missing, and is abbreviated "UTC" not "-00". This reverts to 2024b behavior * tzset etc. are now more cautious about questionable TZ settings. * tzset etc. now treat ' ' like '_' in time zone abbreviations * tzfree now preserves errno, consistently with POSIX.1-2024 "free". * zic has new options inspired by FreeBSD. * multiple changes visible to developers * Use "REDO=posix_right" to keep installing "right" TZif files. * Update to 2025b: * New zone for Aysen Region in Chile (America/Coyhaique) which moves from -04/-03 to -03 * Update to 2025a: * Paraguay adopts permanent -03 starting spring 2024 * Improve pre-1991 data for the Philippines * Etc/Unknown is now reserved * Update to 2024b: * Improve historical data for Mexico, Mongolia, and Portugal. * System V names are now obsolescent. * The main data form now uses %z. * The code now conforms to RFC 8536 for early timestamps. * Support POSIX.1-2024, which removes asctime_r and ctime_r. * Assume POSIX.2-1992 or later for shell scripts. * SUPPORT_C89 now defaults to 1. * Fixes testsuite failures for other packages * update to 2024a: * Kazakhstan unifies on UTC+5. * Palestine springs forward a week later than previously predicted in 2024 and 2025. * Asia/Ho_Chi_Minh's 1955-07-01 transition occurred at 01:00 not 00:00. * From 1947 through 1949, Toronto's transitions occurred at 02:00 not 00:00. * In 1911 Miquelon adopted standard time on June 15, not May 15. * The FROM and TO columns of Rule lines can no longer be "minimum" or an abbreviation of "minimum", because TZif files do not support DST rules that extend into the indefinite past - although these rules were supported when TZif files had only 32-bit data, this stopped working when 64-bit TZif files were introduced in 1995. * localtime and related functions no longer mishandle some timestamps that occur about 400 years after a switch to a time zone with a DST schedule. * strftime %s now uses tm_gmtoff if available. * The strftime man page documents which struct tm members affect which conversion specs, and that tzset is called. * update to 2023d: * Ittoqqortoormiit, Greenland changes time zones on 2024-03-31. * Vostok, Antarctica changed time zones on 2023-12-18. * Casey, Antarctica changed time zones five times since 2020. * Code and data fixes for Palestine timestamps starting in 2072. * A new data file zonenow.tab for timestamps starting now. * Fix predictions for DST transitions in Palestine in 2072-2075, correcting a typo introduced in 2023a. * Vostok, Antarctica changed to +05 on 2023-12-18. It had been at +07 (not +06) for years. * Change data for Casey, Antarctica to agree with timeanddate.com, by adding five time zone changes since 2020. * Much of Greenland, represented by America/Nuuk, changed its standard time from -03 to -02 on 2023-03-25, not on 2023-10-28. * localtime.c no longer mishandles TZif files that contain a single transition into a DST regime. * tzselect no longer creates temporary files. * tzselect no longer mishandles the following: * Spaces and most other special characters in BUGEMAIL, PACKAGE, TZDIR, and VERSION. * TZ strings when using mawk 1.4.3, which mishandles regular expressions of the form /X{2,}/. * ISO 6709 coordinates when using an awk that lacks the GNU extension of newlines in -v option-arguments. * Non UTF-8 locales when using an iconv command that lacks the GNU //TRANSLIT extension. * zic no longer mishandles data for Palestine after the year 2075. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-543=1 ## Package List: * SUSE Linux Micro 6.1 (aarch64 ppc64le s390x x86_64) * timezone-debuginfo-2026b-slfo.1.1_1.1 * timezone-2026b-slfo.1.1_1.1 * timezone-debugsource-2026b-slfo.1.1_1.1 ## References: * https://bugzilla.suse.com/show_bug.cgi?id=1264965 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 17:11:45 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 17:11:45 -0000 Subject: SUSE-SU-2026:21868-1: important: Security update for the Linux Kernel Message-ID: <178042030591.42.14801013261248125725@b0da085613fb> # Security update for the Linux Kernel Announcement ID: SUSE-SU-2026:21868-1 Release Date: 2026-05-29T16:06:32Z Rating: important References: * bsc#1215199 * bsc#1234634 * bsc#1243603 * bsc#1248754 * bsc#1253122 * bsc#1253754 * bsc#1254518 * bsc#1256863 * bsc#1257631 * bsc#1258518 * bsc#1258718 * bsc#1258826 * bsc#1258849 * bsc#1258850 * bsc#1258854 * bsc#1258855 * bsc#1258856 * bsc#1258857 * bsc#1258961 * bsc#1259186 * bsc#1259199 * bsc#1259222 * bsc#1259484 * bsc#1259485 * bsc#1259535 * bsc#1259799 * bsc#1259806 * bsc#1259857 * bsc#1259868 * bsc#1259869 * bsc#1259873 * bsc#1259878 * bsc#1260010 * bsc#1260012 * bsc#1260018 * bsc#1260468 * bsc#1260483 * bsc#1260484 * bsc#1260485 * bsc#1260489 * bsc#1260501 * bsc#1260504 * bsc#1260505 * bsc#1260507 * bsc#1260522 * bsc#1260523 * bsc#1260526 * bsc#1260528 * bsc#1260529 * bsc#1260530 * bsc#1260531 * bsc#1260532 * bsc#1260533 * bsc#1260536 * bsc#1260537 * bsc#1260538 * bsc#1260541 * bsc#1260546 * bsc#1260549 * bsc#1260551 * bsc#1260552 * bsc#1260553 * bsc#1260555 * bsc#1260561 * bsc#1260566 * bsc#1260572 * bsc#1260581 * bsc#1260728 * bsc#1260729 * bsc#1260731 * bsc#1260800 * bsc#1260811 * bsc#1261020 * bsc#1261287 * bsc#1261295 * bsc#1261348 * bsc#1261503 * bsc#1261504 * bsc#1261581 * bsc#1261582 * bsc#1261584 * bsc#1261601 * bsc#1261602 * bsc#1261618 * bsc#1261628 * bsc#1261632 * bsc#1261636 * bsc#1261638 * bsc#1261641 * bsc#1261644 * bsc#1261645 * bsc#1261648 * bsc#1261679 * bsc#1261685 * bsc#1261686 * bsc#1261687 * bsc#1261692 * bsc#1261694 * bsc#1261700 * bsc#1261703 * bsc#1261707 * bsc#1261710 * bsc#1261713 * bsc#1261719 * bsc#1261750 * bsc#1261751 * bsc#1261752 * bsc#1261768 * bsc#1261778 * bsc#1261779 * bsc#1261781 * bsc#1261789 * bsc#1261796 * bsc#1261797 * bsc#1261896 * bsc#1262020 * bsc#1262053 * bsc#1262054 * bsc#1262055 * bsc#1262061 * bsc#1262063 * bsc#1262074 * bsc#1262078 * bsc#1262086 * bsc#1262087 * bsc#1262099 * bsc#1262100 * bsc#1262101 * bsc#1262179 * bsc#1262181 * bsc#1262602 * bsc#1262616 * bsc#1262665 * bsc#1262671 * bsc#1262673 * bsc#1262725 * bsc#1262731 * bsc#1262734 * bsc#1262746 * bsc#1262752 * bsc#1262758 * bsc#1263001 * bsc#1263012 * bsc#1263064 * bsc#1263065 * bsc#1263085 * bsc#1263093 * bsc#1263095 * bsc#1263104 * bsc#1263131 * bsc#1263140 * bsc#1263141 * bsc#1263149 * bsc#1263165 * bsc#1263170 * bsc#1263176 * bsc#1263556 * bsc#1263582 * bsc#1263592 * bsc#1263593 * bsc#1263595 * bsc#1263596 * bsc#1263600 * bsc#1263668 * bsc#1263723 * bsc#1263797 * bsc#1263815 * bsc#1263882 * bsc#1263901 * bsc#1263931 * bsc#1263933 * bsc#1263995 * bsc#1264014 * bsc#1264059 * bsc#1264082 * bsc#1264087 * bsc#1264097 * bsc#1264183 * bsc#1264427 * bsc#1264469 * bsc#1264482 * bsc#1264634 * bsc#1264651 * bsc#1264661 * bsc#1264674 * bsc#1264801 * bsc#1264848 * bsc#1265085 * bsc#1265090 * bsc#1265116 * bsc#1265119 * bsc#1265126 * bsc#1265144 * bsc#1265308 * bsc#1265421 * bsc#1265449 * bsc#1265456 * bsc#1265626 * bsc#1265846 * bsc#1265960 * jsc#PED-7249 Cross-References: * CVE-2023-20585 * CVE-2025-40219 * CVE-2025-71183 * CVE-2025-71238 * CVE-2026-23168 * CVE-2026-23209 * CVE-2026-23236 * CVE-2026-23237 * CVE-2026-23239 * CVE-2026-23240 * CVE-2026-23245 * CVE-2026-23246 * CVE-2026-23253 * CVE-2026-23260 * CVE-2026-23264 * CVE-2026-23266 * CVE-2026-23268 * CVE-2026-23269 * CVE-2026-23271 * CVE-2026-23273 * CVE-2026-23276 * CVE-2026-23279 * CVE-2026-23290 * CVE-2026-23291 * CVE-2026-23298 * CVE-2026-23300 * CVE-2026-23306 * CVE-2026-23307 * CVE-2026-23308 * CVE-2026-23312 * CVE-2026-23313 * CVE-2026-23315 * CVE-2026-23318 * CVE-2026-23321 * CVE-2026-23324 * CVE-2026-23325 * CVE-2026-23336 * CVE-2026-23339 * CVE-2026-23340 * CVE-2026-23346 * CVE-2026-23351 * CVE-2026-23357 * CVE-2026-23362 * CVE-2026-23363 * CVE-2026-23365 * CVE-2026-23367 * CVE-2026-23368 * CVE-2026-23370 * CVE-2026-23372 * CVE-2026-23373 * CVE-2026-23374 * CVE-2026-23378 * CVE-2026-23382 * CVE-2026-23391 * CVE-2026-23392 * CVE-2026-23393 * CVE-2026-23396 * CVE-2026-23397 * CVE-2026-23399 * CVE-2026-23403 * CVE-2026-23404 * CVE-2026-23405 * CVE-2026-23406 * CVE-2026-23407 * CVE-2026-23408 * CVE-2026-23409 * CVE-2026-23410 * CVE-2026-23411 * CVE-2026-23420 * CVE-2026-23426 * CVE-2026-23434 * CVE-2026-23440 * CVE-2026-23441 * CVE-2026-23442 * CVE-2026-23443 * CVE-2026-23446 * CVE-2026-23447 * CVE-2026-23448 * CVE-2026-23449 * CVE-2026-23450 * CVE-2026-23452 * CVE-2026-23455 * CVE-2026-23456 * CVE-2026-23457 * CVE-2026-23458 * CVE-2026-23460 * CVE-2026-23461 * CVE-2026-23462 * CVE-2026-23463 * CVE-2026-23465 * CVE-2026-23468 * CVE-2026-23472 * CVE-2026-23473 * CVE-2026-23474 * CVE-2026-23475 * CVE-2026-31389 * CVE-2026-31393 * CVE-2026-31400 * CVE-2026-31402 * CVE-2026-31403 * CVE-2026-31404 * CVE-2026-31405 * CVE-2026-31407 * CVE-2026-31408 * CVE-2026-31411 * CVE-2026-31412 * CVE-2026-31415 * CVE-2026-31416 * CVE-2026-31417 * CVE-2026-31420 * CVE-2026-31421 * CVE-2026-31422 * CVE-2026-31423 * CVE-2026-31424 * CVE-2026-31425 * CVE-2026-31426 * CVE-2026-31427 * CVE-2026-31428 * CVE-2026-31436 * CVE-2026-31449 * CVE-2026-31470 * CVE-2026-31488 * CVE-2026-31494 * CVE-2026-31496 * CVE-2026-31504 * CVE-2026-31505 * CVE-2026-31507 * CVE-2026-31512 * CVE-2026-31515 * CVE-2026-31519 * CVE-2026-31525 * CVE-2026-31528 * CVE-2026-31533 * CVE-2026-31550 * CVE-2026-31565 * CVE-2026-31570 * CVE-2026-31586 * CVE-2026-31588 * CVE-2026-31602 * CVE-2026-31607 * CVE-2026-31622 * CVE-2026-31649 * CVE-2026-31656 * CVE-2026-31662 * CVE-2026-31668 * CVE-2026-31669 * CVE-2026-31675 * CVE-2026-31679 * CVE-2026-31681 * CVE-2026-31682 * CVE-2026-31684 * CVE-2026-31685 * CVE-2026-31694 * CVE-2026-31700 * CVE-2026-31738 * CVE-2026-31787 * CVE-2026-43009 * CVE-2026-43025 * CVE-2026-43027 * CVE-2026-43037 * CVE-2026-43038 * CVE-2026-43044 * CVE-2026-43050 * CVE-2026-43060 * CVE-2026-43088 * CVE-2026-43110 * CVE-2026-43120 * CVE-2026-43126 * CVE-2026-43190 * CVE-2026-43214 * CVE-2026-43265 * CVE-2026-43329 * CVE-2026-43330 * CVE-2026-43334 * CVE-2026-43365 * CVE-2026-43366 * CVE-2026-43419 * CVE-2026-43437 * CVE-2026-43441 * CVE-2026-43494 * CVE-2026-43503 CVSS scores: * CVE-2023-20585 ( SUSE ): 5.6 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2023-20585 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:N * CVE-2023-20585 ( NVD ): 5.6 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2025-40219 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2025-40219 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2025-71183 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-71183 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-71238 ( SUSE ): 5.9 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-71238 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H * CVE-2025-71238 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23168 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23168 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23168 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23209 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23209 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23236 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23236 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23236 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H * CVE-2026-23236 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23237 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23237 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23237 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23239 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23239 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23239 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23240 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23240 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23240 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23245 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23245 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23245 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23246 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23246 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23253 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23253 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23260 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-23260 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-23260 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23264 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23264 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23264 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23266 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23266 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23266 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23268 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23268 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23268 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23269 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23269 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23269 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23271 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23271 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23271 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23273 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23273 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23273 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23276 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23276 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23279 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23279 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23279 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23290 ( SUSE ): 5.1 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23290 ( SUSE ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23290 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23291 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23291 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23298 ( SUSE ): 5.1 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23298 ( SUSE ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23298 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23300 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23300 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23300 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23306 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23306 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:H/A:H * CVE-2026-23306 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23307 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23307 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23308 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23308 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23312 ( SUSE ): 5.1 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23312 ( SUSE ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23312 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23313 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23313 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23315 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23315 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23318 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23318 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23321 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-23321 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-23321 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23324 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23324 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23324 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23325 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23325 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23336 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23336 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23339 ( SUSE ): 2.3 CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-23339 ( SUSE ): 3.1 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-23339 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23340 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23340 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23340 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23346 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23346 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23346 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23351 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23351 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23357 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23357 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23357 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23362 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23362 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23363 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23363 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23365 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23365 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23365 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23367 ( SUSE ): 5.3 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-23367 ( SUSE ): 6.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2026-23367 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23368 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23368 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23368 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23370 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23370 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23372 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23372 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23373 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23373 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23374 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23374 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23374 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23378 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23378 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-23378 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23378 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23382 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23382 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23382 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23391 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23391 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23392 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23392 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23392 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23393 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23393 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23393 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23396 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23396 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23396 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23397 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23397 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23397 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23399 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23399 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23399 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23403 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23403 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2026-23403 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23404 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23404 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23404 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23405 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23405 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23405 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23406 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23406 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23406 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23407 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23407 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23407 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23408 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23408 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23408 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23408 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23409 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23409 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-23409 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23410 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23410 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23410 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23410 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23411 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23420 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23420 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23420 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23426 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23426 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23426 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23434 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23434 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23434 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23434 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-23440 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23440 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23440 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23440 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23441 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23441 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23442 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23442 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23442 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23443 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23443 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23443 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23446 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23446 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23446 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23447 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23447 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23447 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23448 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23448 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23448 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23449 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23449 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23449 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23450 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23450 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23450 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23452 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23452 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23452 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23455 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23455 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23455 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23456 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-23456 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-23456 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23457 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23457 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23457 ( NVD ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-23458 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23458 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23458 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23460 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23460 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23460 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23461 ( SUSE ): 7.7 CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23461 ( SUSE ): 7.5 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23461 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23462 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23462 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23462 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23463 ( SUSE ): 0.0 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-23463 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N * CVE-2026-23463 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23465 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:L/SC:N/SI:N/SA:N * CVE-2026-23465 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2026-23465 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23468 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23468 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23468 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23472 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23472 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23472 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23473 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23473 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23474 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23474 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23474 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23475 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23475 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23475 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31389 ( SUSE ): 5.6 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31389 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31389 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31393 ( SUSE ): 5.3 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31393 ( SUSE ): 4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-31393 ( NVD ): 8.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31400 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31400 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31400 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31402 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31402 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-31402 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31403 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31403 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31403 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31404 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31404 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31404 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31405 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31405 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31405 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31407 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31407 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N * CVE-2026-31407 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31408 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31408 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31408 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31411 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31411 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31411 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31412 ( SUSE ): 7.0 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31412 ( SUSE ): 6.8 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31412 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31415 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31415 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31415 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31416 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-31416 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-31416 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31417 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31417 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31417 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31420 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31420 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31420 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31421 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31421 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31421 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31422 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31422 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31422 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31423 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31423 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31423 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31424 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31424 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31424 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31425 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31425 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31425 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31426 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31426 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2026-31426 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31427 ( SUSE ): 2.0 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-31427 ( SUSE ): 4.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2026-31427 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31428 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31428 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2026-31428 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31436 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31436 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31436 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31449 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31449 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31449 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-31470 ( SUSE ): 6.0 CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:H/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31470 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H * CVE-2026-31470 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31488 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31488 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31488 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31494 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-31494 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N * CVE-2026-31494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31496 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31496 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-31496 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31504 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31504 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31504 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31505 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31505 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31505 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31507 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31507 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31507 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31512 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31512 ( SUSE ): 7.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-31512 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31515 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31515 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31515 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31519 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31519 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31519 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31525 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31525 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31525 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31528 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31528 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31528 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31533 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31533 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31533 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31550 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31550 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31550 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31565 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31565 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31565 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31570 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:H/SI:N/SA:N * CVE-2026-31570 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31570 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31586 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31586 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31586 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31588 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31588 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31588 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-31602 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31602 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31602 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31607 ( SUSE ): 7.0 CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31607 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H * CVE-2026-31607 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31622 ( SUSE ): 8.7 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31622 ( SUSE ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31622 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31649 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31649 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31649 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31656 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31656 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31656 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31662 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31662 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31662 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31668 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-31668 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2026-31668 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31669 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31669 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31669 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31675 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31675 ( SUSE ): 5.6 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H * CVE-2026-31675 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31679 ( SUSE ): 8.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31679 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31679 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31681 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31681 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N * CVE-2026-31681 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31682 ( SUSE ): 5.3 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31682 ( SUSE ): 4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-31682 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31684 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-31684 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L * CVE-2026-31684 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31685 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31685 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31685 ( NVD ): 9.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H * CVE-2026-31694 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31694 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31694 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31700 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31700 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31700 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31738 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31738 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31738 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31787 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31787 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31787 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43009 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43009 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43025 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43025 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H * CVE-2026-43027 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43027 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43037 ( SUSE ): 7.7 CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43037 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43037 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43038 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43038 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43044 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43044 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43044 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43050 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43050 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43050 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43060 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43060 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43088 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-43088 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-43110 ( SUSE ): 7.7 CVSS:4.0/AV:A/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43110 ( SUSE ): 7.5 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43110 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43120 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43120 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-43120 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43120 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43126 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43126 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43126 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43190 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43190 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-43190 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-43214 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43214 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43214 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43265 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43265 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43265 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43329 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43329 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43329 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43330 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43330 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43330 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43334 ( SUSE ): 8.6 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-43334 ( SUSE ): 8.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-43334 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43365 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-43365 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-43365 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-43366 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43366 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43366 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43419 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-43419 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-43437 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43437 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43437 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43441 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43441 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43494 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43494 ( SUSE ): 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43503 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43503 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-43503 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H Affected Products: * SUSE Linux Micro 6.0 * SUSE Linux Micro Extras 6.0 An update that solves 181 vulnerabilities, contains one feature and has 19 fixes can now be installed. ## Description: The SUSE Linux Enterprise Micro 6.0 and Micro 6.1 RT kernel was updated to fix various security issues The following security issues were fixed: * CVE-2023-20585: x86/CPU: Fix FPDSS on Zen1 (bsc#1243603). * CVE-2025-71183: btrfs: always detect conflicting inodes when logging inode refs (bsc#1257631). * CVE-2026-23168: flex_proportions: make fprop_new_period() hardirq safe (bsc#1258826). * CVE-2026-23239: espintcp: Fix race condition in espintcp_close() (bsc#1259485). * CVE-2026-23240: tls: Fix race condition in tls_sw_cancel_work_tx() (bsc#1259484). * CVE-2026-23245: net/sched: act_gate: snapshot parameters with RCU on replace (bsc#1259799). * CVE-2026-23271: perf: Fix __perf_event_overflow() vs perf_remove_from_context() race (bsc#1260018). * CVE-2026-23276: net: move dev_xmit_recursion() helpers to net/core/dev.h (bsc#1260012). * CVE-2026-23300: net: ipv6: fix panic when IPv4 route references loopback IPv6 nexthop (bsc#1260538). * CVE-2026-23306: scsi: pm8001: Fix use-after-free in pm8001_queue_command() (bsc#1260501). * CVE-2026-23313: i40e: Fix preempt count leak in napi poll tracepoint (bsc#1260555). * CVE-2026-23321: mptcp: pm: in-kernel: always mark signal+subflow endp as used (bsc#1260505). * CVE-2026-23340: net: sched: avoid qdisc_reset_all_tx_gt() vs dequeue race for lockless qdiscs (bsc#1260523). * CVE-2026-23346: mm/ioremap: define generic_ioremap_prot() and generic_iounmap() (bsc#1260529). * CVE-2026-23351: netfilter: nft_set_pipapo: split gc into unlink and reclaim phase (bsc#1260526). * CVE-2026-23368: net: phy: register phy led_triggers during probe to avoid AB-BA deadlock (bsc#1260530). * CVE-2026-23374: blktrace: fix __this_cpu_read/write in preemptible context (bsc#1260811). * CVE-2026-23378: net/sched: act_ife: Fix metalist update behavior (bsc#1260546). * CVE-2026-23391: netfilter: xt_CT: drop pending enqueued packets on template removal (bsc#1260566). * CVE-2026-23392: netfilter: nf_tables: release flowtable after rcu grace period on error (bsc#1260531). * CVE-2026-23393: bridge: cfm: Fix race condition in peer_mep deletion (bsc#1260522). * CVE-2026-23397: nfnetlink_osf: validate individual option lengths in fingerprints (bsc#1260728). * CVE-2026-23399: nf_tables: nft_dynset: fix possible stateful expression memleak in error path (bsc#1261020). * CVE-2026-23440: net/mlx5e: Fix race condition during IPSec ESN update (bsc#1261641). * CVE-2026-23441: net/mlx5e: Prevent concurrent access to IPSec ASO context (bsc#1261768). * CVE-2026-23442: ipv6: add NULL checks for idev in SRv6 paths (bsc#1261581). * CVE-2026-23449: net/sched: teql: Fix double-free in teql_master_xmit (bsc#1261779). * CVE-2026-23450: net/smc: fix NULL dereference and UAF in smc_tcp_syn_recv_sock() (bsc#1261584). * CVE-2026-23455: netfilter: nf_conntrack_h323: check for zero length in DecodeQ931() (bsc#1261687). * CVE-2026-23456: netfilter: nf_conntrack_h323: fix OOB read in decode_int() CONS case (bsc#1261703). * CVE-2026-23457: netfilter: nf_conntrack_sip: fix Content-Length u32 truncation in sip_help_tcp() (bsc#1261686). * CVE-2026-23458: netfilter: ctnetlink: fix use-after-free in ctnetlink_dump_exp_ct() (bsc#1261781). * CVE-2026-23461: Bluetooth: L2CAP: Fix use-after-free in l2cap_unregister_user (bsc#1261707). * CVE-2026-23462: Bluetooth: HIDP: Fix possible UAF (bsc#1261710). * CVE-2026-23468: drm/amdgpu: Limit BO list entry count to prevent resource exhaustion (bsc#1261692). * CVE-2026-23472: serial: core: fix infinite loop in handle_tx() for PORT_UNKNOWN (bsc#1261636). * CVE-2026-23473: io_uring/poll: fix multishot recv missing EOF on wakeup race (bsc#1261694). * CVE-2026-31400: sunrpc: fix cache_request leak in cache_release (bsc#1261645). * CVE-2026-31402: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache (bsc#1261638). * CVE-2026-31403: NFSD: Hold net reference for the lifetime of /proc/fs/nfs/exports fd (bsc#1261796). * CVE-2026-31404: xfs: avoid dereferencing log items after push callbacks (bsc#1261628). * CVE-2026-31407: netfilter: conntrack: add missing netlink policy validations (bsc#1261632). * CVE-2026-31411: net: atm: fix crash due to unvalidated vcc pointer in sigd_send() (bsc#1261752). * CVE-2026-31415: ipv6: avoid overflows in ip6_datagram_send_ctl() (bsc#1262099). * CVE-2026-31416: netfilter: nfnetlink_log: account for netlink header size (bsc#1262100). * CVE-2026-31420: bridge: mrp: reject zero test interval to avoid OOM panic (bsc#1262055). * CVE-2026-31421: net/sched: cls_fw: fix NULL pointer dereference on shared blocks (bsc#1262061). * CVE-2026-31422: net/sched: cls_flow: fix NULL pointer dereference on shared blocks (bsc#1262054). * CVE-2026-31423: net/sched: sch_hfsc: fix divide-by-zero in rtsc_min() (bsc#1262063). * CVE-2026-31424: netfilter: x_tables: restrict xt_check_match/xt_check_target extensions for NFPROTO_ARP (bsc#1262053). * CVE-2026-31425: rds: ib: reject FRMR registration before IB connection is established (bsc#1262074). * CVE-2026-31427: netfilter: nf_conntrack_sip: fix use of uninitialized rtp_addr in process_sdp (bsc#1262086). * CVE-2026-31428: netfilter: nfnetlink_log: fix uninitialized padding leak in NFULA_PAYLOAD (bsc#1262087). * CVE-2026-31436: dmaengine: idxd: fix possible wrong descriptor completion in llist_abort_desc() (bsc#1262602). * CVE-2026-31449: ext4: validate p_idx bounds in ext4_ext_correct_indexes (bsc#1262616). * CVE-2026-31470: virt: tdx-guest: Fix handling of host controlled 'quote' buffer length (bsc#1262665). * CVE-2026-31488: drm/amd/display: Do not skip unrelated mode changes in DSC validation (bsc#1262746). * CVE-2026-31494: net: cadence: macb: Synchronize stats calculations (bsc#1262671). * CVE-2026-31496: netfilter: nf_conntrack_expect: skip expectations in other netns via proc (bsc#1262673). * CVE-2026-31504: net: fix fanout UAF in packet_release() via NETDEV_UP race (bsc#1263085). * CVE-2026-31505: iavf: fix out-of-bounds writes in iavf_get_ethtool_stats() (bsc#1263093). * CVE-2026-31507: net/smc: fix double-free of smc_spd_priv when tee() duplicates splice pipe buffer (bsc#1263095). * CVE-2026-31512: Bluetooth: L2CAP: Validate PDU length before reading SDU length in l2cap_ecred_data_rcv() (bsc#1262734). * CVE-2026-31515: af_key: validate families in pfkey_send_migrate() (bsc#1262752). * CVE-2026-31519: btrfs: set BTRFS_ROOT_ORPHAN_CLEANUP during subvol create (bsc#1263012). * CVE-2026-31525: bpf: Fix undefined behavior in interpreter sdiv/smod for INT_MIN (bsc#1262725). * CVE-2026-31528: perf: Make sure to use pmu_ctx->pmu for groups (bsc#1263001). * CVE-2026-31533: net/tls: fix use-after-free in -EBUSY error path of tls_do_encryption (bsc#1262758). * CVE-2026-31550: pmdomain: bcm: bcm2835-power: Increase ASB control timeout (bsc#1263104). * CVE-2026-31565: RDMA/irdma: Fix deadlock during netdev reset with active connections (bsc#1263064). * CVE-2026-31570: can: gw: fix OOB heap access in cgw_csum_crc8_rel() (bsc#1263065). * CVE-2026-31586: mm: blk-cgroup: fix use-after-free in cgwb_release_workfn() (bsc#1263176). * CVE-2026-31588: KVM: x86: Use scratch field in MMIO fragment to hold small write values (bsc#1263165). * CVE-2026-31602: ALSA: ctxfi: Limit PTP to a single page (bsc#1263723). * CVE-2026-31607: usbip: validate number_of_packets in usbip_pack_ret_submit() (bsc#1263600). * CVE-2026-31622: NFC: digital: Bounds check NFC-A cascade depth in SDD response handler (bsc#1263797). * CVE-2026-31649: net: stmmac: fix integer underflow in chain mode (bsc#1263582). * CVE-2026-31656: drm/i915/gt: fix refcount underflow in intel_engine_park_heartbeat (bsc#1263170). * CVE-2026-31662: tipc: fix bc_ackers underflow on duplicate GRP_ACK_MSG (bsc#1263131). * CVE-2026-31668: seg6: separate dst_cache for input and output paths in seg6 lwtunnel (bsc#1263140). * CVE-2026-31669: mptcp: fix slab-use-after-free in __inet_lookup_established (bsc#1263141). * CVE-2026-31675: net/sched: sch_netem: fix out-of-bounds access in packet corruption (bsc#1263556). * CVE-2026-31679: openvswitch: validate MPLS set/set_masked payload length (bsc#1263592). * CVE-2026-31681: netfilter: xt_multiport: validate range encoding in checkentry (bsc#1263593). * CVE-2026-31682: bridge: br_nd_send: linearize skb before parsing ND options (bsc#1263595). * CVE-2026-31684: net: sched: act_csum: validate nested VLAN headers (bsc#1263596). * CVE-2026-31685: netfilter: ip6t_eui64: reject invalid MAC header for all packets (bsc#1263668). * CVE-2026-31694: fuse: reject oversized dirents in page cache (bsc#1263901). * CVE-2026-31700: net/packet: fix TOCTOU race on mmap'd vnet_hdr in tpacket_snd() (bsc#1263882). * CVE-2026-31738: vxlan: validate ND option lengths in vxlan_na_create (bsc#1264059). * CVE-2026-31787: xen/privcmd: fix double free via VMA splitting (bsc#1262181). * CVE-2026-43009: bpf: Fix incorrect pruning due to atomic fetch precision tracking (bsc#1264014). * CVE-2026-43025: netfilter: ctnetlink: ignore explicit helper on new expectations (bsc#1263931). * CVE-2026-43027: netfilter: nf_conntrack_helper: pass helper to expect cleanup (bsc#1263933). * CVE-2026-43037: ip6_tunnel: clear skb2->cb in ip4ip6_err() (bsc#1263995). * CVE-2026-43038: ipv6: icmp: clear skb2->cb in ip6_err_gen_icmpv6_unreach() (bsc#1264097). * CVE-2026-43044: crypto: caam - fix DMA corruption on long hmac keys (bsc#1264087). * CVE-2026-43050: atm: lec: fix use-after-free in sock_def_readable() (bsc#1264082). * CVE-2026-43060: netfilter: nft_ct: drop pending enqueued packets on removal (bsc#1264183). * CVE-2026-43088: net: af_key: zero aligned sockaddr tail in PF_KEY exports (bsc#1264469). * CVE-2026-43110: wifi: brcmfmac: validate bsscfg indices in IF events (bsc#1264482). * CVE-2026-43120: RDMA/irdma: Fix double free related to rereg_user_mr. * CVE-2026-43126: ALSA: mixer: oss: Add card disconnect checkpoints (bsc#1264634). * CVE-2026-43190: netfilter: xt_tcpmss: check remaining length before reading optlen (bsc#1264848). * CVE-2026-43214: KVM: x86: Add SRCU protection for reading PDPTRs in __get_sregs2() (bsc#1264651). * CVE-2026-43265: KVM: x86: Ignore -EBUSY when checking nested events from vcpu_block() (bsc#1264427). * CVE-2026-43329: netfilter: flowtable: strictly check for maximum number of actions (bsc#1265085). * CVE-2026-43330: crypto: caam - fix overflow on long hmac keys (bsc#1264801). * CVE-2026-43334: Bluetooth: SMP: force responder MITM requirements before building the pairing response (bsc#1265090). * CVE-2026-43365: xfs: fix undersized l_iclog_roundoff values (bsc#1265119). * CVE-2026-43366: io_uring/kbuf: check if target buffer list is still legacy on recycle (bsc#1265116). * CVE-2026-43419: ceph: fix memory leaks in ceph_mdsc_build_path() (bsc#1264661). * CVE-2026-43437: ALSA: pcm: fix use-after-free on linked stream runtime in snd_pcm_drain() (bsc#1265126). * CVE-2026-43441: net: bonding: Fix nd_tbl NULL dereference when IPv6 is disabled (bsc#1264674). * CVE-2026-43494: net/rds: reset op_nents when zerocopy page pin fails (bsc#1265626). * CVE-2026-43503: net: skbuff: propagate shared-frag marker through frag- transfer helpers (bsc#1265960). The following non security issues were fixed: * accel/qaic: Add overflow check to remap_pfn_range during mmap (git-fixes). * ACPI: AGDI: fix missing newline in error message (git-fixes). * ACPI: CPPC: Fix related_cpus inconsistency during CPU hotplug (git-fixes). * ACPI: scan: Use acpi_dev_put() in object add error paths (git-fixes). * ACPI: video: force native backlight on HP OMEN 16 (8A44) (stable-fixes). * ALSA: 6fire: Fix input volume change detection (git-fixes). * ALSA: 6fire: fix use-after-free on disconnect (git-fixes). * ALSA: aoa: i2sbus: clear stale prepared state (git-fixes). * ALSA: aoa: i2sbus: fix OF node lifetime handling (git-fixes). * ALSA: aoa: Skip devices with no codecs in i2sbus_resume() (git-fixes). * ALSA: aoa: Use guard() for mutex locks (stable-fixes). * ALSA: asihpi: avoid write overflow check warning (stable-fixes). * ALSA: caiaq: Don't abort when no input device is available (git-fixes). * ALSA: caiaq: Fix control_put() result and cache rollback (git-fixes). * ALSA: caiaq: Fix potentially leftover ep1_in_urb at error path (git-fixes). * ALSA: caiaq: fix usb_dev refcount leak on probe failure (git-fixes). * ALSA: caiaq: Handle probe errors properly (git-fixes). * ALSA: caiaq: take a reference on the USB device in create_card() (git- fixes). * ALSA: control: Validate buf_len before strnlen() in snd_ctl_elem_init_enum_names() (git-fixes). * ALSA: core: Fix potential data race at fasync handling (git-fixes). * ALSA: core: Serialize deferred fasync state checks (git-fixes). * ALSA: core: Validate compress device numbers without dynamic minors (git- fixes). * ALSA: ctxfi: Add fallback to default RSR for S/PDIF (git-fixes). * ALSA: ctxfi: Fix missing SPDIFI1 index handling (stable-fixes). * ALSA: ctxfi: Limit PTP to a single page (git-fixes). * ALSA: firewire-tascam: Do not drop unread control events (git-fixes). * ALSA: fireworks: bound device-supplied status before string array lookup (git-fixes). * ALSA: hda/realtek - fixed speaker no sound update (git-fixes). * ALSA: hda/realtek: Add HP ENVY Laptop 13-ba0xxx quirk (stable-fixes). * ALSA: hda/realtek: Add mute LED quirk for HP Pavilion 15-eg0xxx (stable- fixes). * ALSA: hda/realtek: Add quirk for ASUS ROG Flow Z13-KJP GZ302EAC (stable- fixes). * ALSA: hda/realtek: add quirk for Framework F111:000F (stable-fixes). * ALSA: hda/realtek: Add quirk for Lenovo Yoga Pro 7 14IAH10 (stable-fixes). * ALSA: hda/realtek: fix code style (ERROR: else should follow close brace '}') (git-fixes). * ALSA: misc: Use guard() for spin locks (stable-fixes). * ALSA: scarlett2: Add missing sentinel initializer field (git-fixes). * ALSA: seq: Notify client and port info changes (stable-fixes). * ALSA: seq_oss: return full count for successful SEQ_FULLSIZE writes (stable- fixes). * ALSA: usb-audio: apply quirk for MOONDROP JU Jiu (stable-fixes). * ALSA: usb-audio: Avoid false E-MU sample-rate notifications (git-fixes). * ALSA: usb-audio: Avoid potential endless loop in convert_chmap_v3() (git- fixes). * ALSA: usb-audio: Evaluate packsize caps at the right place (git-fixes). * ALSA: usb-audio: Fix Audio Advantage Micro II SPDIF switch (git-fixes). * ALSA: usb-audio: Fix potential leak of pd at parsing UAC3 streams (git- fixes). * ALSA: usb-audio: Fix quirk flags for NeuralDSP Quad Cortex (stable-fixes). * ALSA: usb-audio: Fix UAC3 cluster descriptor size check (git-fixes). * ALSA: usb-audio: midi2: Restart output URBs on resume (git-fixes). * ALSA: usb-audio: stop parsing UAC2 rates at MAX_NR_RATES (git-fixes). * ASoC: amd: yc: Add DMI entry for HP Laptop 15-fc0xxx (stable-fixes). * ASoC: amd: yc: Add DMI quirk for ASUS EXPERTBOOK BM1403CDA (stable-fixes). * ASoC: amd: yc: Add DMI quirk for Thin A15 B7VF (stable-fixes). * ASoC: amd: yc: Add HP OMEN Gaming Laptop 16-ap0xxx product line in quirk table (stable-fixes). * ASoC: codecs: ab8500: Fix casting of private data (git-fixes). * ASoC: cs35l56: Destroy workqueue in probe error path (git-fixes). * ASoC: cs35l56: Don't use devres to unregister component (git-fixes). * ASoC: fsl_easrc: Change the type for iec958 channel status controls (git- fixes). * ASoC: fsl_easrc: Check the variable range in fsl_easrc_iec958_put_bits() (git-fixes). * ASoC: fsl_easrc: fix comment typo (git-fixes). * ASoC: fsl_easrc: Fix value type in fsl_easrc_iec958_get_bits() (git-fixes). * ASoC: fsl_micfil: Add access property for "VAD Detected" (git-fixes). * ASoC: fsl_micfil: Fix event generation in hwvad_put_enable() (git-fixes). * ASoC: fsl_micfil: Fix event generation in hwvad_put_init_mode() (git-fixes). * ASoC: fsl_micfil: Fix event generation in micfil_put_dc_remover_state() (git-fixes). * ASoC: fsl_micfil: Fix event generation in micfil_quality_set() (git-fixes). * ASoC: fsl_xcvr: Fix event generation for cached controls (git-fixes). * ASoC: fsl_xcvr: Fix event generation in fsl_xcvr_arc_mode_put() (git-fixes). * ASoC: fsl_xcvr: Fix event generation in fsl_xcvr_mode_put() (git-fixes). * ASoC: Intel: bytcr_wm5102: Fix MCLK leak on platform_clock_control error (git-fixes). * ASoC: qcom: q6apm-lpass-dai: Fix multiple graph opens (git-fixes). * ASoC: qcom: q6apm: move component registration to unmanaged version (git- fixes). * ASoC: qcom: q6apm: remove child devices when apm is removed (git-fixes). * ASoC: qcom: qdsp6: topology: check widget type before accessing data (git- fixes). * ASoC: soc-core: call missing INIT_LIST_HEAD() for card_aux_list (stable- fixes). * ASoC: SOF: compress: return the configured codec from get_params (git- fixes). * ASoC: SOF: Don't allow pointer operations on unconfigured streams (git- fixes). * ASoC: SOF: Intel: hda: Place check before dereference (git-fixes). * ASoC: SOF: topology: reject invalid vendor array size in token parser (stable-fixes). * ASoC: sti: Return errors from regmap_field_alloc() (git-fixes). * ASoC: sti: use managed regmap_field allocations (git-fixes). * ASoC: stm32_sai: fix incorrect BCLK polarity for DSP_A/B, LEFT_J (stable- fixes). * ata: ahci: force 32-bit DMA for JMicron JMB582/JMB585 (stable-fixes). * batman-adv: bla: only purge non-released claims (git-fixes). * batman-adv: bla: prevent use-after-free when deleting claims (git-fixes). * batman-adv: bla: put backbone reference on failed claim hash insert (git- fixes). * batman-adv: fix integer overflow on buff_pos (git-fixes). * batman-adv: hold claim backbone gateways by reference (git-fixes). * batman-adv: reject new tp_meter sessions during teardown (git-fixes). * batman-adv: reject oversized global TT response buffers (git-fixes). * batman-adv: stop caching unowned originator pointers in BAT IV (git-fixes). * Bluetooth: bnep: fix incorrect length parsing in bnep_rx_frame() extension handling (git-fixes). * Bluetooth: fix locking in hci_conn_request_evt() with HCI_PROTO_DEFER (git- fixes). * Bluetooth: hci_event: Fix OOB read and infinite loop in hci_le_create_big_complete_evt (git-fixes). * Bluetooth: hci_event: fix potential UAF in SSP passkey handlers (git-fixes). * Bluetooth: hci_ldisc: Clear HCI_UART_PROTO_INIT on error (git-fixes). * Bluetooth: HIDP: serialise l2cap_unregister_user via hidp_session_sem (git- fixes). * Bluetooth: ISO: Fix data-race on dst in iso_sock_connect() (git-fixes). * Bluetooth: l2cap: Add missing chan lock in l2cap_ecred_reconf_rsp (git- fixes). * Bluetooth: l2cap: fix MPS check in l2cap_ecred_reconf_req (git-fixes). * Bluetooth: L2CAP: Fix null-ptr-deref in l2cap_sock_new_connection_cb() (git- fixes). * Bluetooth: L2CAP: Fix null-ptr-deref in l2cap_sock_state_change_cb() (git- fixes). * Bluetooth: L2CAP: Fix printing wrong information if SDU length exceeds MTU (git-fixes). * Bluetooth: RFCOMM: pull credit byte with skb_pull_data() (git-fixes). * Bluetooth: SCO: check for codecs->num_codecs == 1 before assigning to sco_pi(sk)->codec (git-fixes). * Bluetooth: SCO: fix sleeping under spinlock in sco_conn_ready (git-fixes). * Bluetooth: SCO: hold sk properly in sco_conn_ready (git-fixes). * Bluetooth: virtio_bt: clamp rx length before skb_put (git-fixes). * Bluetooth: virtio_bt: validate rx pkt_type header length (git-fixes). * btrfs: do not skip logging new dentries when logging a new name (git-fixes). * btrfs: reject root items with drop_progress and zero drop_level (git-fixes). * btrfs: replace BUG() with error handling in __btrfs_balance() (git-fixes). * can: mcp251x: add error handling for power enable in open and resume (stable-fixes). * can: raw: fix ro->uniq use-after-free in raw_rcv() (git-fixes). * can: ucan: fix devres lifetime (git-fixes). * cdc-acm: new quirk for EPSON HMD (stable-fixes). * check-for-config-changes: Exclude CC_MS_EXTENSIONS. * check-for-config-changes: Exclude HAVE_CFI_ICALL_NORMALIZE_INTEGERS{,_RUSTC}. * checkpatch: add support for Assisted-by tag (stable-fixes). * comedi: dt2815: add hardware detection to prevent crash (stable-fixes). * crypto: algif_aead - Fix minimum RX size check for decryption (git-fixes). * crypto: arm64/aes - Fix 32-bit aes_mac_update() arg treated as 64-bit (git- fixes). * crypto: atmel-aes - Fix 3-page memory leak in atmel_aes_buff_cleanup (git- fixes). * crypto: atmel-ecc - Release client on allocation failure (git-fixes). * crypto: atmel-sha204a - Fix potential UAF and memory leak in remove path (git-fixes). * crypto: atmel-tdes - fix DMA sync direction (git-fixes). * crypto: authencesn - reject short ahash digests during instance creation (git-fixes). * crypto: ccp - copy IV using skcipher ivsize (git-fixes). * crypto: ccp: Don't attempt to copy CSR to userspace if PSP command failed (git-fixes). * crypto: ccp: Don't attempt to copy ID to userspace if PSP command failed (git-fixes). * crypto: ccp: Don't attempt to copy PDH cert to userspace if PSP command failed (git-fixes). * crypto: ccree - fix a memory leak in cc_mac_digest() (git-fixes). * crypto: hisilicon - Fix dma_unmap_single() direction (git-fixes). * crypto: jitterentropy - replace long-held spinlock with mutex (git-fixes). * crypto: pcrypt - Fix handling of MAY_BACKLOG requests (git-fixes). * crypto: qat - fix type mismatch in RAS sysfs show functions (git-fixes). * crypto: qat - use swab32 macro (git-fixes). * crypto: sa2ul - Fix AEAD fallback algorithm names (git-fixes). * crypto: simd - reject compat registrations without __ prefixes (git-fixes). * crypto: talitos - fix SEC1 32k ahash request limitation (git-fixes). * crypto: testmgr - Hide ENOENT errors (stable-fixes). * crypto: testmgr - Hide ENOENT errors better (git-fixes). * devres: fix missing node debug info in devm_krealloc() (git-fixes). * dm init: ensure device probing has finished in dm-mod.waitfor= (git-fixes). * dmaengine: dw-axi-dmac: Remove unnecessary return statement from void function (git-fixes). * dmaengine: mxs-dma: Fix missing return value from of_dma_controller_register() (git-fixes). * drm/amd/display: Add NULL check for integrated_info in clk_mgr_construct (git-fixes). * drm/amd/display: Allow DCE link encoder without AUX registers (git-fixes). * drm/amd/display: Avoid NULL dereference in dc_dmub_srv error paths (git- fixes). * drm/amd/display: Disable 10-bit truncation and dithering on DCE 6.x (git- fixes). * drm/amd/display: Read EDID from VBIOS embedded panel info (git-fixes). * drm/amd/pm/ci: Clear EnabledForActivity field for memory levels (git-fixes). * drm/amd/pm/ci: Disable MCLK DPM on problematic CI ASICs (git-fixes). * drm/amd/pm/ci: Fill DW8 fields from SMC (git-fixes). * drm/amd/pm/ci: Fix powertune defaults for Hawaii 0x67B0 (git-fixes). * drm/amd/pm/ci: Use highest MCLK on CI when MCLK DPM is disabled (git-fixes). * drm/amd/pm/smu7: Add SCLK cap for quirky Hawaii board (git-fixes). * drm/amd/pm/smu7: Fix SMU7 voltage dependency on display clock (git-fixes). * drm/amdgpu/gfx6: Support harvested SI chips with disabled TCCs (v2) (git- fixes). * drm/amdgpu/gfx9: drop unnecessary 64-bit fence flag check in KIQ (stable- fixes). * drm/amdgpu/gfx10: look at the right prop for gfx queue priority (git-fixes). * drm/amdgpu/gmc: Fix AMDGPU_GART_PLACEMENT_LOW to not overlap with VRAM (git- fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v2.0 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v2.5 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v3.0 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v4.0 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v4.0.3 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v4.0.5 ring (git-fixes). * drm/amdgpu/pm: add missing revision check for CI (git-fixes). * drm/amdgpu/pm: align Hawaii mclk workaround with radeon (git-fixes). * drm/amdgpu/sdma4: replace BUG_ON with WARN_ON in fence emission (git-fixes). * drm/amdgpu/vce: Prevent partial address patches (stable-fixes). * drm/amdgpu/vcn3: Avoid overflow on msg bound check (git-fixes). * drm/amdgpu/vcn3: Prevent OOB reads when parsing dec msg (stable-fixes). * drm/amdgpu/vcn4: Avoid overflow on msg bound check (git-fixes). * drm/amdgpu/vcn4: Prevent OOB reads when parsing dec msg (stable-fixes). * drm/amdgpu/vcn4: Prevent OOB reads when parsing IB (stable-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v2.0 enc/dec rings (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v2.5 enc/dec rings (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v3.0 enc/dec rings (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v4.0 enc ring (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v4.0.3 enc ring (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v4.0.5 enc ring (git-fixes). * drm/amdgpu: Add bounds checking to ib_{get,set}_value (stable-fixes). * drm/amdgpu: fix AMDGPU_INFO_READ_MMR_REG (git-fixes). * drm/amdgpu: fix zero-size GDS range init on RDNA4 (stable-fixes). * drm/amdgpu: zero-initialize GART table on allocation (stable-fixes). * drm/amdkfd: Add upper bound check for num_of_nodes (stable-fixes). * drm/amdkfd: Clear VRAM on allocation to prevent stale data exposure (stable- fixes). * drm/amdkfd: validate SVM ioctl nattr against buffer size (stable-fixes). * drm/arcpgu: fix device node leak (git-fixes). * drm/bridge: cadence: cdns-mhdp8546-core: Add mode_valid hook to drm_bridge_funcs (git-fixes). * drm/bridge: cadence: cdns-mhdp8546-core: Handle HDCP state in bridge atomic check (git-fixes). * drm/bridge: cadence: cdns-mhdp8546-core: Set the mhdp connector earlier in atomic_enable() (git-fixes). * drm/etnaviv: Fix armed job not being pushed to the DRM scheduler (git- fixes). * drm/fb-helper: Fix clipping when damage area spans a single scanline (git- fixes). * drm/gem: Fix inconsistent plane dimension calculation in drm_gem_fb_init_with_funcs() (git-fixes). * drm/gma500/oaktrail_hdmi: fix i2c adapter leak on setup (git-fixes). * drm/gma500/oaktrail_lvds: fix hang on init failure (git-fixes). * drm/gma500/oaktrail_lvds: fix i2c adapter leaks on init (git-fixes). * drm/i915/dp: Fix VSC dynamic range signaling for RGB formats (git-fixes). * drm/i915/gt: fix refcount underflow in intel_engine_park_heartbeat (git- fixes). * drm/i915/wm: Verify the correct plane DDB entry (git-fixes). * drm/i915: skip __i915_request_skip() for already signaled requests (git- fixes). * drm/komeda: fix integer overflow in AFBC framebuffer size check (git-fixes). * drm/msm/a6xx: Fix dumping A650+ debugbus blocks (git-fixes). * drm/msm/a6xx: Fix HLSQ register dumping (git-fixes). * drm/msm/a6xx: Use barriers while updating HFI Q headers (git-fixes). * drm/msm/dpu: fix mismatch between power and frequency (git-fixes). * drm/msm/dsi: add the missing parameter description (git-fixes). * drm/msm/dsi: fix bits_per_pclk (git-fixes). * drm/msm/dsi: fix hdisplay calculation for CMD mode panel (git-fixes). * drm/msm/dsi: rename MSM8998 DSI version from V2_2_0 to V2_0_0 (git-fixes). * drm/msm/shrinker: Fix can_block() logic (git-fixes). * drm/nouveau: fix u32 overflow in pushbuf reloc bounds check (git-fixes). * drm/panel: sharp-ls043t1le01: make use of prepare_prev_first (git-fixes). * drm/panel: simple: Correct G190EAN01 prepare timing (git-fixes). * drm/panfrost: Fix wait_bo ioctl leaking positive return from dma_resv_wait_timeout() (git-fixes). * drm/radeon: add missing revision check for CI (git-fixes). * drm/sun4i: backend: fix error pointer dereference (git-fixes). * drm/sun4i: Fix resource leaks (git-fixes). * drm/vc4: Fix a memory leak in hang state error path (git-fixes). * drm/vc4: Fix memory leak of BO array in hang state (git-fixes). * drm/vc4: platform_get_irq_byname() returns an int (stable-fixes). * drm/vc4: Protect madv read in vc4_gem_object_mmap() with madv_lock (git- fixes). * drm/vc4: Release runtime PM reference after binding V3D (git-fixes). * drm/vram: remove DRM_VRAM_MM_FILE_OPERATIONS from docs (git-fixes). * dt-bindings: net: Fix Tegra234 MGBE PTP clock (git-fixes). * efi/capsule-loader: fix incorrect sizeof in phys array reallocation (git- fixes). * efi: pstore: Drop efivar lock when efi_pstore_open() returns with an error (git-fixes). * ext4: fix fsync(2) for nojournal mode (git-fixes). * ext4: make recently_deleted() properly work with lazy itable initialization (git-fixes). * ext4: reject mount if bigalloc with s_first_data_block != 0 (git-fixes). * extcon: ptn5150: handle pending IRQ events during system resume (git-fixes). * fbdev: matroxfb: Mark variable with __maybe_unused to avoid W=1 build break (git-fixes). * fbdev: offb: fix PCI device reference leak on probe failure (git-fixes). * fbdev: tdfxfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO (stable-fixes). * fbdev: udlfb: add vm_ops to dlfb_ops_mmap to prevent use-after-free (stable- fixes). * fbdev: udlfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO (git-fixes). * firmware: dmi: Correct an indexing error in dmi.h (git-fixes). * gpio: tegra: fix irq_release_resources calling enable instead of disable (git-fixes). * gtp: disable BH before calling udp_tunnel_xmit_skb() (git-fixes). * HID: alps: fix NULL pointer dereference in alps_raw_event() (git-fixes). * HID: asus: do not abort probe when not necessary (git-fixes). * HID: asus: make asus_resume adhere to linux kernel coding standards (git- fixes). * HID: core: clamp report_size in s32ton() to avoid undefined shift (stable- fixes). * HID: multitouch: Check to ensure report responses match the request (stable- fixes). * HID: playstation: Clamp num_touch_reports (git-fixes). * HID: quirks: add HID_QUIRK_ALWAYS_POLL for 8BitDo Pro 3 (stable-fixes). * HID: roccat: fix use-after-free in roccat_report_event (stable-fixes). * HID: usbhid: fix deadlock in hid_post_reset() (git-fixes). * HID: wacom: fix out-of-bounds read in wacom_intuos_bt_irq (stable-fixes). * hv_sock: fix ARM64 support (git-fixes). * hwmon: (ads7871) Fix endianness bug in 16-bit register reads (git-fixes). * hwmon: (corsair-psu) Close HID device on probe errors (git-fixes). * hwmon: (lm63) Add locking to avoid TOCTOU (git-fixes). * hwmon: (ltc2992) Clamp threshold writes to hardware range (git-fixes). * hwmon: (ltc2992) Fix u32 overflow in power read path (git-fixes). * i2c: s3c24xx: check the size of the SMBUS message before using it (stable- fixes). * i2c: smbus: reject oversized block transfers in the common path (git-fixes). * i2c: stm32f7: reinit_completion() per transfer not per msg (git-fixes). * i2c: stub: Reject I2C block transfers with invalid length (git-fixes). * i3c: master: Fix error codes at send_ccc_cmd (git-fixes). * i3c: mipi-i3c-hci: fix IBI payload length calculation for final status (git- fixes). * ibmveth: Disable GSO for packets with small MSS (bsc#1265144). * ice: set max queues in alloc_etherdev_mqs() (git-fixes). * iio: adc: ad7768-1: fix one-shot mode data acquisition (git-fixes). * iio: adc: ti-adc161s626: use DMA-safe memory for spi_read() (git-fixes). * iio: adc: ti-ads7950: use iio_push_to_buffers_with_ts_unaligned() (git- fixes). * Input: i8042 - add TUXEDO InfinityBook Max 16 Gen10 AMD to i8042 quirk table (stable-fixes). * Input: uinput - fix circular locking dependency with ff-core (git-fixes). * Input: uinput - take event lock when submitting FF request "event" (stable- fixes). * Input: xpad - add support for BETOP BTP-KP50B/C controller's wireless mode (stable-fixes). * Input: xpad - add support for Razer Wolverine V3 Pro (stable-fixes). * ipmi: Add limits to event and receive message requests (git-fixes). * ipmi: Check event message buffer response for bad data (git-fixes). * ipmi: ssif_bmc: change log level to dbg in irq callback (git-fixes). * ipmi: ssif_bmc: fix message desynchronization after truncated response (git- fixes). * ipmi: ssif_bmc: fix missing check for copy_to_user() partial failure (git- fixes). * irqchip/irq-pic32-evic: Address warning related to wrong printf() formatter (git-fixes). * kdump, documentation: describe craskernel CMA reservation (jsc#PED-7249). * KVM: Reject wrapped offset in kvm_reset_dirty_gfn() (git-fixes). * KVM: SVM: Mark VMCB_NPT as dirty on nested VMRUN (git-fixes). * KVM: SVM: Mark VMCB_PERM_MAP as dirty on nested VMRUN (git-fixes). * KVM: x86/mmu: Retry fault before acquiring mmu_lock if mapping is changing (bsc#1253122). * KVM: x86/xen: Fix cleanup logic in emulation of Xen schedop poll hypercalls (git-fixes). * KVM: x86: check for nEPT/nNPT in slow flush hypercalls (git-fixes). * KVM: x86: Fix shadow paging use-after-free due to unexpected GFN (git- fixes). * KVM: x86: hyper-v: Validate all GVAs during PV TLB flush (git-fixes). * KVM: x86: Ignore cpuid faulting in SMM (git-fixes). * leds: lgm-sso: Remove duplicate assignments for priv->mmap (git-fixes). * lib/hexdump: print_hex_dump_bytes() calls print_hex_dump_debug() (git- fixes). * media: amphion: Fix race between m2m job_abort and device_run (git-fixes). * media: as102: fix to not free memory after the device is registered in as102_usb_probe() (git-fixes). * media: dib8000: avoid division by 0 in dib8000_set_dds() (git-fixes). * media: em28xx: fix use-after-free in em28xx_v4l2_open() (git-fixes). * media: hackrf: fix to not free memory after the device is registered in hackrf_probe() (git-fixes). * media: i2c: imx219: Check return value of devm_gpiod_get_optional() in imx219_probe() (git-fixes). * media: i2c: imx412: Assert reset GPIO during probe (git-fixes). * media: i2c: ov08d10: fix image vertical start setting (git-fixes). * media: i2c: ov8856: free control handler on error in ov8856_init_controls() (git-fixes). * media: mtk-jpeg: fix use-after-free in release path due to uncancelled work (git-fixes). * media: omap3isp: drop the use count of v4l2 pipeline (git-fixes). * media: pci: zoran: fix potential memory leak in zoran_probe() (git-fixes). * media: rc: streamzap: Error handling in probe (git-fixes). * media: rc: xbox_remote: heed DMA restrictions (git-fixes). * media: saa7164: add ioremap return checks and cleanups (git-fixes). * media: staging: imx: configure src_mux in csi_start (git-fixes). * media: staging: imx: request mbus_config in csi_start (git-fixes). * media: uvcvideo: Enable VB2_DMABUF for metadata stream (git-fixes). * media: videobuf2: Set vma_flags in vb2_dma_sg_mmap (git-fixes). * media: vidtv: fix nfeeds state corruption on start_streaming failure (git- fixes). * media: vidtv: fix NULL pointer dereference in vidtv_channel_pmt_match_sections (git-fixes). * media: vidtv: fix pass-by-value structs causing MSAN warnings (git-fixes). * memory: tegra30-emc: Fix dll_change check (git-fixes). * memory: tegra124-emc: Fix dll_change check (git-fixes). * mfd: mc13xxx-core: Fix memory leak in mc13xxx_add_subdevice_pdata() (git- fixes). * mkspec: Add signature to source list only when it exists. * mmc: sdhci-of-dwcmshc: Disable clock before DLL configuration (git-fixes). * mmc: vub300: fix NULL-deref on disconnect (git-fixes). * modpost: Amend ppc64 save/restfpr symnames for -Os build (bsc#1215199). * mtd: docg3: Convert to platform remove callback returning void (stable- fixes). * mtd: docg3: fix use-after-free in docg3_release() (git-fixes). * mtd: parsers: ofpart: call of_node_get() for dedicated subpartitions (git- fixes). * mtd: parsers: ofpart: call of_node_put() only in ofpart_fail path (git- fixes). * mtd: physmap_of_gemini: Fix disabled pinctrl state check (git-fixes). * mtd: rawnand: sunxi: fix sunxi_nfc_hw_ecc_read_extra_oob (git-fixes). * mtd: spi-nor: core: correct the op.dummy.nbytes when check read operations (git-fixes). * mtd: spi-nor: sst: Factor out common write operation to `sst_nor_write_data()` (stable-fixes). * mtd: spi-nor: sst: Fix SST write failure (git-fixes). * mtd: spi-nor: sst: Fix write enable before AAI sequence (git-fixes). * mtd: spi-nor: swp: check SR_TB flag when getting tb_mask (git-fixes). * net/rds: reset op_nents when zerocopy page pin fails (bsc#1265626). * net/sched: cls_fw: fix NULL dereference of "old" filters before change() (git-fixes). * net/sched: fix pedit partial COW leading to page cache corruption (bsc#1265421). * net: gro: don't merge zcopy skbs (git-fixes). * net: mana: Add MAC address to vPort logs and clarify error messages (git- fixes). * net: mana: check xdp_rxq registration before unreg in mana_destroy_rxq() (git-fixes). * net: mana: Don't overwrite port probe error with add_adev result (git- fixes). * net: mana: Fix crash from unvalidated SHM offset read from BAR0 during FLR (bsc#1265846). * net: mana: Fix EQ leak in mana_remove on NULL port (git-fixes). * net: mana: Fix RX skb truesize accounting (bsc#1248754). * net: mana: fix use-after-free in mana_hwc_destroy_channel() by reordering teardown (git-fixes). * net: mana: Guard mana_remove against double invocation (git-fixes). * net: mana: hardening: Validate adapter_mtu from MANA_QUERY_DEV_CONFIG (git- fixes). * net: mana: hardening: Validate doorbell ID from GDMA_REGISTER_DEVICE response (git-fixes). * net: mana: Init gf_stats_work before potential error paths in probe (git- fixes). * net: mana: Init link_change_work before potential error paths in probe (git- fixes). * net: mana: remove double CQ cleanup in mana_create_rxq error path (git- fixes). * net: mana: Set default number of queues to 16 (bsc#1261648). * net: mana: Skip WQ object destruction for uninitialized RXQ (git-fixes). * net: mana: Use at least SZ_4K in doorbell ID range check (git-fixes). * net: mana: Use pci_name() for debugfs directory naming (git-fixes). * net: phy: dp83869: fix setting CLK_O_SEL field (git-fixes). * net: stmmac: Fix PTP ref clock for Tegra234 (git-fixes). * net: usb: asix: ax88772: re-add usbnet_link_change() in phylink callbacks (git-fixes). * net: usb: cdc-phonet: fix skb frags[] overflow in rx_complete() (git-fixes). * net: usb: rtl8150: fix use-after-free in rtl8150_start_xmit() (git-fixes). * net: usb: rtl8150: free skb on usb_submit_urb() failure in xmit (git-fixes). * net: wan: fsl_ucc_hdlc: fix ucc_hdlc_remove (git-fixes). * net: wan: fsl_ucc_hdlc: fix uhdlc_memclean (git-fixes). * net: wan: fsl_ucc_hdlc: free tx_skbuff in uhdlc_memclean (git-fixes). * NFC: digital: Bounds check NFC-A cascade depth in SDD response handler (git- fixes). * nfc: llcp: add missing return after LLCP_CLOSED checks (git-fixes). * nfc: pn533: allocate rx skb before consuming bytes (git-fixes). * nfc: s3fwrn5: allocate rx skb before consuming bytes (git-fixes). * NFC: trf7970a: Ignore antenna noise when checking for RF field (git-fixes). * nvmet-tcp: propagate nvmet_tcp_build_pdu_iovec() errors to its callers (git- fixes). * ocfs2: fix possible deadlock between unlink and dio_end_io_write (bsc#1258718). * ocfs2: split transactions in dio completion to avoid credit exhaustion (bsc#1258718). * PCI/AER: Clear only error bits in PCIe Device Status (git-fixes). * PCI/AER: Stop ruling out unbound devices as error source (git-fixes). * PCI: dwc: Apply ECRC workaround to DesignWare 5.00a as well (git-fixes). * PCI: Enable AtomicOps only if Root Port supports them (git-fixes). * PCI: endpoint: pci-epf-ntb: Remove duplicate resource teardown (git-fixes). * PCI: hv: Set default NUMA node to 0 for devices without affinity info (git- fixes). * PCI: mediatek-gen3: Prevent leaking IRQ domains when IRQ not found (git- fixes). * PCI: tegra194: Allow system suspend when the Endpoint link is not up (git- fixes). * PCI: tegra194: Disable direct speed change for Endpoint mode (git-fixes). * PCI: tegra194: Disable LTSSM after transition to Detect on surprise link down (git-fixes). * PCI: tegra194: Disable PERST# IRQ only in Endpoint mode (git-fixes). * PCI: tegra194: Fix polling delay for L2 state (git-fixes). * PCI: tegra194: Increase LTSSM poll time on surprise link down (git-fixes). * PCI: tegra194: Set LTR message request before PCIe link up in Endpoint mode (git-fixes). * PCI: tegra194: Use devm_gpiod_get_optional() to parse "nvidia,refclk-select" (git-fixes). * PCI: tegra194: Use DWC IP core version (git-fixes). * pinctrl: abx500: Fix type of 'argument' variable (git-fixes). * pinctrl: Fix spelling problem (git-fixes). * pinctrl: intel: Fix the revision for new features (1kOhm PD, HW debouncer) (stable-fixes). * pinctrl: pic32: change all cases of bare 'unsigned' to 'unsigned int' (git- fixes). * pinctrl: pic32: use consistent spacing around '+' (git-fixes). * pinctrl: pinctrl-pic32: Fix resource leak (git-fixes). * platform/chrome: chromeos_tbmc: Drop wakeup source on remove (git-fixes). * platform/surface: surfacepro3_button: Drop wakeup source on remove (git- fixes). * platform/x86/amd: pmc: Add Thinkpad L14 Gen3 to quirk_s2idle_bug (stable- fixes). * platform/x86: dell-wmi-sysman: bound enumeration string aggregation (git- fixes). * platform/x86: dell_rbu: avoid uninit value usage in packet_size_write() (git-fixes). * platform/x86: hp-wmi: Ignore backlight and FnLock events (stable-fixes). * platform/x86: panasonic-laptop: Fix OPTD notifier registration and cleanup (git-fixes). * power: supply: axp288_charger: Do not cancel work before initializing it (git-fixes). * power: supply: max17042: avoid overflow when determining health (git-fixes). * powerpc/crash: fix backup region offset update to elfcorehdr (bsc#1259535). * RDMA/mana: Fix error unwind in mana_ib_create_qp_rss() (git-fixes). * RDMA/mana: Fix mana_destroy_wq_obj() cleanup in mana_ib_create_qp_rss() (git-fixes). * RDMA/mana: Remove user triggerable WARN_ON() in mana_ib_create_qp_rss() (git-fixes). * RDMA/mana: Validate rx_hash_key_len (git-fixes). * RDMA/mana_ib: cleanup the usage of mana_gd_send_request() (git-fixes). * RDMA/mana_ib: Disable RX steering on RSS QP destroy (git-fixes). * RDMA/mana_ib: Support memory windows (git-fixes). * regulator: act8945a: fix OF node reference imbalance (git-fixes). * regulator: bd9571mwv: fix OF node reference imbalance (git-fixes). * regulator: max77650: fix OF node reference imbalance (git-fixes). * regulator: mt6357: fix OF node reference imbalance (git-fixes). * remoteproc: xlnx: Only access buffer information if IPI is buffered (git- fixes). * Revert "ALSA: usb: Increase volume range that triggers a warning" (git- fixes). * rtc: abx80x: Disable alarm feature if no interrupt attached (git-fixes). * rtc: ntxec: fix OF node reference imbalance (git-fixes). * sched/balancing: Switch the 'DEFINE_SPINLOCK(balancing)' spinlock into an 'atomic_t sched_balance_running' flag (bsc#1253754). * sched/fair: Change likelyhood of nohz.nr_cpus (bsc#1234634 bsc#1258961). * sched/fair: Have SD_SERIALIZE affect newidle balancing (bsc#1253754). * sched/fair: Move checking for nohz cpus after time check (bsc#1234634 bsc#1258961). * sched/fair: Remove nohz.nr_cpus and use weight of cpumask instead (bsc#1234634 bsc#1258961). * sched/fair: Skip sched_balance_running cmpxchg when balance is not due (bsc#1253754). * scsi: storvsc: Handle PERSISTENT_RESERVE_IN truncation for Hyper-V vFC (git- fixes). * scsi: target: iscsi: validate CHAP_R length before base64 decode (bsc#1265449). * soc/tegra: cbb: Set ERD on resume for err interrupt (git-fixes). * soc: qcom: aoss: compare against normalized cooling state (git-fixes). * soc: qcom: llcc: fix v1 SB syndrome register offset (git-fixes). * sound: ua101: fix division by zero at probe (git-fixes). * soundwire: bus: demote UNATTACHED state warnings to dev_dbg() (git-fixes). * soundwire: cadence: Clear message complete before signaling waiting thread (git-fixes). * spi: at91-usart: fix controller deregistration (git-fixes). * spi: atmel: fix controller deregistration (git-fixes). * spi: cadence: fix controller deregistration (git-fixes). * spi: fix controller cleanup() documentation (git-fixes). * spi: fix misleading controller deregistration kernel-doc (git-fixes). * spi: fix misleading controller registration kernel-doc (git-fixes). * spi: fsl-qspi: Use reinit_completion() for repeated operations (git-fixes). * spi: hisi-kunpeng: prevent infinite while() loop in hisi_spi_flush_fifo (git-fixes). * spi: imx: fix runtime pm leak on probe deferral (git-fixes). * spi: imx: fix use-after-free on unbind (git-fixes). * spi: microchip-core-qspi: fix controller deregistration (git-fixes). * spi: microchip-core-qspi: Use helper function devm_clk_get_enabled() (stable-fixes). * spi: mpc52xx: fix use-after-free on unbind (git-fixes). * spi: mtk-nor: fix controller deregistration (git-fixes). * spi: mtk-snfi: unregister ECC engine on probe failure and remove() callback (git-fixes). * spi: omap2-mcspi: fix controller deregistration (git-fixes). * spi: orion: fix clock imbalance on registration failure (git-fixes). * spi: orion: fix runtime pm leak on unbind (git-fixes). * spi: rockchip: fix controller deregistration (git-fixes). * spi: rspi: fix controller deregistration (git-fixes). * spi: sh-hspi: fix controller deregistration (git-fixes). * spi: spi-ti-qspi: Convert to platform remove callback returning void (stable-fixes). * spi: sprd: fix controller deregistration (git-fixes). * spi: sun4i: fix controller deregistration (git-fixes). * spi: sun4i: switch to use modern name (stable-fixes). * spi: syncuacer: fix controller deregistration (git-fixes). * spi: synquacer: switch to use modern name (stable-fixes). * spi: uniphier: fix controller deregistration (git-fixes). * spi: uniphier: Simplify clock handling with devm_clk_get_enabled() (stable- fixes). * spi: uniphier: switch to use modern name (stable-fixes). * spi: zynq-qspi: switch to use modern name (stable-fixes). * spi: zynqmp-gqspi: fix controller deregistration (git-fixes). * staging: media: atomisp: Disallow all private IOCTLs (git-fixes). * staging: rtl8723bs: initialize le_tmp64 in rtw_BIP_verify() (git-fixes). * staging: sm750fb: fix division by zero in ps_to_hz() (git-fixes). * staging: vme_user: added bound check to geoid (stable-fixes). * staging: vme_user: fix root device leak on init failure (git-fixes). * thermal/drivers/spear: Fix error condition for reading st,thermal-flags (git-fixes). * thermal/drivers/sprd: Fix raw temperature clamping in sprd_thm_rawdata_to_temp (git-fixes). * thermal/drivers/sprd: Fix temperature clamping in sprd_thm_temp_to_rawdata (git-fixes). * tpm: avoid -Wunused-but-set-variable (git-fixes). * tpm: tpm_tis: add error logging for data transfer (git-fixes). * tpm: tpm_tis: stop transmit if retries are exhausted (git-fixes). * tty: tty_io: update timestamps on all device nodes (bsc#1262020). * USB: cdc-acm: Add quirks for Yoga Book 9 14IAH10 INGENIC touchscreen (stable-fixes). * usb: chipidea: core: allow ci_irq_handler() handle both ID and VBUS change (git-fixes). * usb: chipidea: otg: not wait vbus drop if use role_switch (git-fixes). * USB: core: add NO_LPM quirk for Razer Kiyo Pro webcam (stable-fixes). * usb: gadget: dummy_hcd: fix premature URB completion when ZLP follows partial transfer (stable-fixes). * usb: gadget: f_ncm: validate minimum block_len in ncm_unwrap_ntb() (git- fixes). * usb: gadget: f_phonet: fix skb frags[] overflow in pn_rx_complete() (stable- fixes). * usb: gadget: f_uac1_legacy: validate control request size (stable-fixes). * usb: gadget: renesas_usb3: validate endpoint index in standard request handlers (git-fixes). * USB: omap_udc: DMA: Don't enable burst 4 mode (git-fixes). * usb: port: add delay after usb_hub_set_port_power() (git-fixes). * usb: quirks: add DELAY_INIT quirk for another Silicon Motion flash drive (stable-fixes). * USB: serial: io_edgeport: add support for Blackbox IC135A (stable-fixes). * USB: serial: option: add MeiG Smart SRM825WN (stable-fixes). * USB: serial: option: add support for Rolling Wireless RW135R-GL (stable- fixes). * USB: serial: option: add Telit Cinterion FN990A MBIM composition (stable- fixes). * USB: serial: option: add Telit Cinterion LE910Cx compositions (stable- fixes). * usb: storage: Expand range of matched versions for VL817 quirks entry (stable-fixes). * usb: ulpi: fix memory leak on ulpi_register() error paths (git-fixes). * usb: usblp: fix heap leak in IEEE 1284 device ID via short response (stable- fixes). * usb: usblp: fix uninitialized heap leak via LPGETSTATUS ioctl (stable- fixes). * usb: xhci: Make usb_host_endpoint.hcpriv survive endpoint_disable() (git- fixes). * usbip: validate number_of_packets in usbip_pack_ret_submit() (git-fixes). * virt: tdx-guest: Fix handling of host controlled 'quote' buffer length (git- fixes). * virt: tdx-guest: Return error for GetQuote failures (git-fixes). * wifi: ath5k: do not access array OOB (git-fixes). * wifi: ath9k: Fix typo (git-fixes). * wifi: ath11k: Pass the correct value of each TID during a stop AMPDU session (git-fixes). * wifi: ath11k: skip status ring entry processing (stable-fixes). * wifi: ath11k: Use dma_alloc_noncoherent for rx_tid buffer allocation (stable-fixes). * wifi: b43: enforce bounds check on firmware key index in b43_rx() (git- fixes). * wifi: b43legacy: enforce bounds check on firmware key index in RX path (git- fixes). * wifi: brcmfmac: Fix error pointer dereference (git-fixes). * wifi: brcmfmac: validate bsscfg indices in IF events (stable-fixes). * wifi: brcmsmac: Fix dma_free_coherent() size (git-fixes). * wifi: cw1200: Revert "Fix locking in error paths" (git-fixes). * wifi: libertas: notify firmware load wait on disconnect (git-fixes). * wifi: mac80211: check ieee80211_rx_data_set_link return in pubsta MLO path (git-fixes). * wifi: mac80211: drop stray 'static' from fast-RX rx_result (git-fixes). * wifi: mac80211: remove station if connection prep fails (git-fixes). * wifi: mt76: mt792x: describe USB WFSYS reset with a descriptor (stable- fixes). * wifi: mt76: mt792x: fix mt7925u USB WFSYS reset handling (git-fixes). * wifi: mt76: mt7615: fix use_cts_prot support (git-fixes). * wifi: mt76: mt7915: fix use-after-free bugs in mt7915_mac_dump_work() (git- fixes). * wifi: mt76: mt7915: fix use_cts_prot support (git-fixes). * wifi: mt76: mt7921: fix a potential clc buffer length underflow (git-fixes). * wifi: mt76: mt7921: fix ROC abort flow interruption in mt7921_roc_work (git- fixes). * wifi: mt76: mt7921: Reset ampdu_state state in case of failure in mt76_connac2_tx_check_aggr() (git-fixes). * wifi: mt76: mt7925: fix incorrect length field in txpower command (git- fixes). * wifi: mt76: mt7996: fix FCS error flag check in RX descriptor (git-fixes). * wifi: mt76: mt7996: fix struct mt7996_mcu_uni_event (git-fixes). * wifi: mwifiex: Fix memory leak in mwifiex_11n_aggregate_pkt() (git-fixes). * wifi: nl80211: fix NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST usage (git- fixes). * wifi: nl80211: require admin perm on SET_PMK / DEL_PMK (git-fixes). * wifi: rsi: fix kthread lifetime race between self-exit and external-stop (git-fixes). * wifi: rt2x00usb: fix devres lifetime (git-fixes). * wifi: rtlwifi: pci: fix possible use-after-free caused by unfinished irq_prepare_bcn_tasklet (git-fixes). * wifi: rtw88: check for PCI upstream bridge existence (git-fixes). * wifi: rtw88: fix device leak on probe failure (git-fixes). * wifi: rtw89: phy: fix uninitialized variable access in rtw89_phy_cfo_set_crystal_cap() (git-fixes). * wifi: wl1251: validate packet IDs before indexing tx_frames (stable-fixes). * workqueue: Break up enum definitions and give names to the types (bsc#1260522). * workqueue: Clean up enum work_bits and related constants (bsc#1260522). * workqueue: Factor out work_grab_pending() from __cancel_work_sync() (bsc#1260522). * workqueue: Fix UBSAN 'subtraction overflow' error in shift_and_mask() (bsc#1260522). * workqueue: Implement disable/enable for (delayed) work items (bsc#1260522). * workqueue: Introduce work_cancel_flags (bsc#1260522). * workqueue: Make @flags handling consistent across set_work_data() and friends (bsc#1260522). * workqueue: Preserve OFFQ bits in cancel[_sync] paths (bsc#1260522). * workqueue: Rename __cancel_work_timer() to __cancel_timer_sync() (bsc#1260522). * workqueue: Reorganize flush and cancel[_sync] functions (bsc#1260522). * x86/boot/64: Clear most of CR4 in startup_64(), except PAE, MCE and LA57 (git-fixes). * x86/boot/sev: Avoid shared GHCB page for early memory acceptance (git- fixes). * x86/boot: Don't add the EFI stub to targets, again (git-fixes). * x86/boot: Fix page table access in 5-level to 4-level paging transition (git-fixes). * X.509: Fix out-of-bounds access when parsing extensions (git-fixes). * Xarray: do not return sibling entries from xas_find_marked() (bsc#1263815). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro Extras 6.0 zypper in -t patch SUSE-SLE-Micro-Extras-6.0-kernel-437=1 ## Package List: * SUSE Linux Micro Extras 6.0 (nosrc) * kernel-rt-6.4.0-47.1 * SUSE Linux Micro Extras 6.0 (x86_64) * kernel-rt-debugsource-6.4.0-47.1 * kernel-rt-devel-6.4.0-47.1 * kernel-rt-devel-debuginfo-6.4.0-47.1 ## References: * https://www.suse.com/security/cve/CVE-2023-20585.html * https://www.suse.com/security/cve/CVE-2025-40219.html * https://www.suse.com/security/cve/CVE-2025-71183.html * https://www.suse.com/security/cve/CVE-2025-71238.html * https://www.suse.com/security/cve/CVE-2026-23168.html * https://www.suse.com/security/cve/CVE-2026-23209.html * https://www.suse.com/security/cve/CVE-2026-23236.html * https://www.suse.com/security/cve/CVE-2026-23237.html * https://www.suse.com/security/cve/CVE-2026-23239.html * https://www.suse.com/security/cve/CVE-2026-23240.html * https://www.suse.com/security/cve/CVE-2026-23245.html * https://www.suse.com/security/cve/CVE-2026-23246.html * https://www.suse.com/security/cve/CVE-2026-23253.html * https://www.suse.com/security/cve/CVE-2026-23260.html * https://www.suse.com/security/cve/CVE-2026-23264.html * https://www.suse.com/security/cve/CVE-2026-23266.html * https://www.suse.com/security/cve/CVE-2026-23268.html * https://www.suse.com/security/cve/CVE-2026-23269.html * https://www.suse.com/security/cve/CVE-2026-23271.html * https://www.suse.com/security/cve/CVE-2026-23273.html * https://www.suse.com/security/cve/CVE-2026-23276.html * https://www.suse.com/security/cve/CVE-2026-23279.html * https://www.suse.com/security/cve/CVE-2026-23290.html * https://www.suse.com/security/cve/CVE-2026-23291.html * https://www.suse.com/security/cve/CVE-2026-23298.html * https://www.suse.com/security/cve/CVE-2026-23300.html * https://www.suse.com/security/cve/CVE-2026-23306.html * https://www.suse.com/security/cve/CVE-2026-23307.html * https://www.suse.com/security/cve/CVE-2026-23308.html * https://www.suse.com/security/cve/CVE-2026-23312.html * https://www.suse.com/security/cve/CVE-2026-23313.html * https://www.suse.com/security/cve/CVE-2026-23315.html * https://www.suse.com/security/cve/CVE-2026-23318.html * https://www.suse.com/security/cve/CVE-2026-23321.html * https://www.suse.com/security/cve/CVE-2026-23324.html * https://www.suse.com/security/cve/CVE-2026-23325.html * https://www.suse.com/security/cve/CVE-2026-23336.html * https://www.suse.com/security/cve/CVE-2026-23339.html * https://www.suse.com/security/cve/CVE-2026-23340.html * https://www.suse.com/security/cve/CVE-2026-23346.html * https://www.suse.com/security/cve/CVE-2026-23351.html * https://www.suse.com/security/cve/CVE-2026-23357.html * https://www.suse.com/security/cve/CVE-2026-23362.html * https://www.suse.com/security/cve/CVE-2026-23363.html * https://www.suse.com/security/cve/CVE-2026-23365.html * https://www.suse.com/security/cve/CVE-2026-23367.html * https://www.suse.com/security/cve/CVE-2026-23368.html * https://www.suse.com/security/cve/CVE-2026-23370.html * https://www.suse.com/security/cve/CVE-2026-23372.html * https://www.suse.com/security/cve/CVE-2026-23373.html * https://www.suse.com/security/cve/CVE-2026-23374.html * https://www.suse.com/security/cve/CVE-2026-23378.html * https://www.suse.com/security/cve/CVE-2026-23382.html * https://www.suse.com/security/cve/CVE-2026-23391.html * https://www.suse.com/security/cve/CVE-2026-23392.html * https://www.suse.com/security/cve/CVE-2026-23393.html * https://www.suse.com/security/cve/CVE-2026-23396.html * https://www.suse.com/security/cve/CVE-2026-23397.html * https://www.suse.com/security/cve/CVE-2026-23399.html * https://www.suse.com/security/cve/CVE-2026-23403.html * https://www.suse.com/security/cve/CVE-2026-23404.html * https://www.suse.com/security/cve/CVE-2026-23405.html * https://www.suse.com/security/cve/CVE-2026-23406.html * https://www.suse.com/security/cve/CVE-2026-23407.html * https://www.suse.com/security/cve/CVE-2026-23408.html * https://www.suse.com/security/cve/CVE-2026-23409.html * https://www.suse.com/security/cve/CVE-2026-23410.html * https://www.suse.com/security/cve/CVE-2026-23411.html * https://www.suse.com/security/cve/CVE-2026-23420.html * https://www.suse.com/security/cve/CVE-2026-23426.html * https://www.suse.com/security/cve/CVE-2026-23434.html * https://www.suse.com/security/cve/CVE-2026-23440.html * https://www.suse.com/security/cve/CVE-2026-23441.html * https://www.suse.com/security/cve/CVE-2026-23442.html * https://www.suse.com/security/cve/CVE-2026-23443.html * https://www.suse.com/security/cve/CVE-2026-23446.html * https://www.suse.com/security/cve/CVE-2026-23447.html * https://www.suse.com/security/cve/CVE-2026-23448.html * https://www.suse.com/security/cve/CVE-2026-23449.html * https://www.suse.com/security/cve/CVE-2026-23450.html * https://www.suse.com/security/cve/CVE-2026-23452.html * https://www.suse.com/security/cve/CVE-2026-23455.html * https://www.suse.com/security/cve/CVE-2026-23456.html * https://www.suse.com/security/cve/CVE-2026-23457.html * https://www.suse.com/security/cve/CVE-2026-23458.html * https://www.suse.com/security/cve/CVE-2026-23460.html * https://www.suse.com/security/cve/CVE-2026-23461.html * https://www.suse.com/security/cve/CVE-2026-23462.html * https://www.suse.com/security/cve/CVE-2026-23463.html * https://www.suse.com/security/cve/CVE-2026-23465.html * https://www.suse.com/security/cve/CVE-2026-23468.html * https://www.suse.com/security/cve/CVE-2026-23472.html * https://www.suse.com/security/cve/CVE-2026-23473.html * https://www.suse.com/security/cve/CVE-2026-23474.html * https://www.suse.com/security/cve/CVE-2026-23475.html * https://www.suse.com/security/cve/CVE-2026-31389.html * https://www.suse.com/security/cve/CVE-2026-31393.html * https://www.suse.com/security/cve/CVE-2026-31400.html * https://www.suse.com/security/cve/CVE-2026-31402.html * https://www.suse.com/security/cve/CVE-2026-31403.html * https://www.suse.com/security/cve/CVE-2026-31404.html * https://www.suse.com/security/cve/CVE-2026-31405.html * https://www.suse.com/security/cve/CVE-2026-31407.html * https://www.suse.com/security/cve/CVE-2026-31408.html * https://www.suse.com/security/cve/CVE-2026-31411.html * https://www.suse.com/security/cve/CVE-2026-31412.html * https://www.suse.com/security/cve/CVE-2026-31415.html * https://www.suse.com/security/cve/CVE-2026-31416.html * https://www.suse.com/security/cve/CVE-2026-31417.html * https://www.suse.com/security/cve/CVE-2026-31420.html * https://www.suse.com/security/cve/CVE-2026-31421.html * https://www.suse.com/security/cve/CVE-2026-31422.html * https://www.suse.com/security/cve/CVE-2026-31423.html * https://www.suse.com/security/cve/CVE-2026-31424.html * https://www.suse.com/security/cve/CVE-2026-31425.html * https://www.suse.com/security/cve/CVE-2026-31426.html * https://www.suse.com/security/cve/CVE-2026-31427.html * https://www.suse.com/security/cve/CVE-2026-31428.html * https://www.suse.com/security/cve/CVE-2026-31436.html * https://www.suse.com/security/cve/CVE-2026-31449.html * https://www.suse.com/security/cve/CVE-2026-31470.html * https://www.suse.com/security/cve/CVE-2026-31488.html * https://www.suse.com/security/cve/CVE-2026-31494.html * https://www.suse.com/security/cve/CVE-2026-31496.html * https://www.suse.com/security/cve/CVE-2026-31504.html * https://www.suse.com/security/cve/CVE-2026-31505.html * https://www.suse.com/security/cve/CVE-2026-31507.html * https://www.suse.com/security/cve/CVE-2026-31512.html * https://www.suse.com/security/cve/CVE-2026-31515.html * https://www.suse.com/security/cve/CVE-2026-31519.html * https://www.suse.com/security/cve/CVE-2026-31525.html * https://www.suse.com/security/cve/CVE-2026-31528.html * https://www.suse.com/security/cve/CVE-2026-31533.html * https://www.suse.com/security/cve/CVE-2026-31550.html * https://www.suse.com/security/cve/CVE-2026-31565.html * https://www.suse.com/security/cve/CVE-2026-31570.html * https://www.suse.com/security/cve/CVE-2026-31586.html * https://www.suse.com/security/cve/CVE-2026-31588.html * https://www.suse.com/security/cve/CVE-2026-31602.html * https://www.suse.com/security/cve/CVE-2026-31607.html * https://www.suse.com/security/cve/CVE-2026-31622.html * https://www.suse.com/security/cve/CVE-2026-31649.html * https://www.suse.com/security/cve/CVE-2026-31656.html * https://www.suse.com/security/cve/CVE-2026-31662.html * https://www.suse.com/security/cve/CVE-2026-31668.html * https://www.suse.com/security/cve/CVE-2026-31669.html * https://www.suse.com/security/cve/CVE-2026-31675.html * https://www.suse.com/security/cve/CVE-2026-31679.html * https://www.suse.com/security/cve/CVE-2026-31681.html * https://www.suse.com/security/cve/CVE-2026-31682.html * https://www.suse.com/security/cve/CVE-2026-31684.html * https://www.suse.com/security/cve/CVE-2026-31685.html * https://www.suse.com/security/cve/CVE-2026-31694.html * https://www.suse.com/security/cve/CVE-2026-31700.html * https://www.suse.com/security/cve/CVE-2026-31738.html * https://www.suse.com/security/cve/CVE-2026-31787.html * https://www.suse.com/security/cve/CVE-2026-43009.html * https://www.suse.com/security/cve/CVE-2026-43025.html * https://www.suse.com/security/cve/CVE-2026-43027.html * https://www.suse.com/security/cve/CVE-2026-43037.html * https://www.suse.com/security/cve/CVE-2026-43038.html * https://www.suse.com/security/cve/CVE-2026-43044.html * https://www.suse.com/security/cve/CVE-2026-43050.html * https://www.suse.com/security/cve/CVE-2026-43060.html * https://www.suse.com/security/cve/CVE-2026-43088.html * https://www.suse.com/security/cve/CVE-2026-43110.html * https://www.suse.com/security/cve/CVE-2026-43120.html * https://www.suse.com/security/cve/CVE-2026-43126.html * https://www.suse.com/security/cve/CVE-2026-43190.html * https://www.suse.com/security/cve/CVE-2026-43214.html * https://www.suse.com/security/cve/CVE-2026-43265.html * https://www.suse.com/security/cve/CVE-2026-43329.html * https://www.suse.com/security/cve/CVE-2026-43330.html * https://www.suse.com/security/cve/CVE-2026-43334.html * https://www.suse.com/security/cve/CVE-2026-43365.html * https://www.suse.com/security/cve/CVE-2026-43366.html * https://www.suse.com/security/cve/CVE-2026-43419.html * https://www.suse.com/security/cve/CVE-2026-43437.html * https://www.suse.com/security/cve/CVE-2026-43441.html * https://www.suse.com/security/cve/CVE-2026-43494.html * https://www.suse.com/security/cve/CVE-2026-43503.html * https://bugzilla.suse.com/show_bug.cgi?id=1215199 * https://bugzilla.suse.com/show_bug.cgi?id=1234634 * https://bugzilla.suse.com/show_bug.cgi?id=1243603 * https://bugzilla.suse.com/show_bug.cgi?id=1248754 * https://bugzilla.suse.com/show_bug.cgi?id=1253122 * https://bugzilla.suse.com/show_bug.cgi?id=1253754 * https://bugzilla.suse.com/show_bug.cgi?id=1254518 * https://bugzilla.suse.com/show_bug.cgi?id=1256863 * https://bugzilla.suse.com/show_bug.cgi?id=1257631 * https://bugzilla.suse.com/show_bug.cgi?id=1258518 * https://bugzilla.suse.com/show_bug.cgi?id=1258718 * https://bugzilla.suse.com/show_bug.cgi?id=1258826 * https://bugzilla.suse.com/show_bug.cgi?id=1258849 * https://bugzilla.suse.com/show_bug.cgi?id=1258850 * https://bugzilla.suse.com/show_bug.cgi?id=1258854 * https://bugzilla.suse.com/show_bug.cgi?id=1258855 * https://bugzilla.suse.com/show_bug.cgi?id=1258856 * https://bugzilla.suse.com/show_bug.cgi?id=1258857 * https://bugzilla.suse.com/show_bug.cgi?id=1258961 * https://bugzilla.suse.com/show_bug.cgi?id=1259186 * https://bugzilla.suse.com/show_bug.cgi?id=1259199 * https://bugzilla.suse.com/show_bug.cgi?id=1259222 * https://bugzilla.suse.com/show_bug.cgi?id=1259484 * https://bugzilla.suse.com/show_bug.cgi?id=1259485 * https://bugzilla.suse.com/show_bug.cgi?id=1259535 * https://bugzilla.suse.com/show_bug.cgi?id=1259799 * https://bugzilla.suse.com/show_bug.cgi?id=1259806 * https://bugzilla.suse.com/show_bug.cgi?id=1259857 * https://bugzilla.suse.com/show_bug.cgi?id=1259868 * https://bugzilla.suse.com/show_bug.cgi?id=1259869 * https://bugzilla.suse.com/show_bug.cgi?id=1259873 * https://bugzilla.suse.com/show_bug.cgi?id=1259878 * https://bugzilla.suse.com/show_bug.cgi?id=1260010 * https://bugzilla.suse.com/show_bug.cgi?id=1260012 * https://bugzilla.suse.com/show_bug.cgi?id=1260018 * https://bugzilla.suse.com/show_bug.cgi?id=1260468 * https://bugzilla.suse.com/show_bug.cgi?id=1260483 * https://bugzilla.suse.com/show_bug.cgi?id=1260484 * https://bugzilla.suse.com/show_bug.cgi?id=1260485 * https://bugzilla.suse.com/show_bug.cgi?id=1260489 * https://bugzilla.suse.com/show_bug.cgi?id=1260501 * https://bugzilla.suse.com/show_bug.cgi?id=1260504 * https://bugzilla.suse.com/show_bug.cgi?id=1260505 * https://bugzilla.suse.com/show_bug.cgi?id=1260507 * https://bugzilla.suse.com/show_bug.cgi?id=1260522 * https://bugzilla.suse.com/show_bug.cgi?id=1260523 * https://bugzilla.suse.com/show_bug.cgi?id=1260526 * https://bugzilla.suse.com/show_bug.cgi?id=1260528 * https://bugzilla.suse.com/show_bug.cgi?id=1260529 * https://bugzilla.suse.com/show_bug.cgi?id=1260530 * https://bugzilla.suse.com/show_bug.cgi?id=1260531 * https://bugzilla.suse.com/show_bug.cgi?id=1260532 * https://bugzilla.suse.com/show_bug.cgi?id=1260533 * https://bugzilla.suse.com/show_bug.cgi?id=1260536 * https://bugzilla.suse.com/show_bug.cgi?id=1260537 * https://bugzilla.suse.com/show_bug.cgi?id=1260538 * https://bugzilla.suse.com/show_bug.cgi?id=1260541 * https://bugzilla.suse.com/show_bug.cgi?id=1260546 * https://bugzilla.suse.com/show_bug.cgi?id=1260549 * https://bugzilla.suse.com/show_bug.cgi?id=1260551 * https://bugzilla.suse.com/show_bug.cgi?id=1260552 * https://bugzilla.suse.com/show_bug.cgi?id=1260553 * https://bugzilla.suse.com/show_bug.cgi?id=1260555 * https://bugzilla.suse.com/show_bug.cgi?id=1260561 * https://bugzilla.suse.com/show_bug.cgi?id=1260566 * https://bugzilla.suse.com/show_bug.cgi?id=1260572 * https://bugzilla.suse.com/show_bug.cgi?id=1260581 * https://bugzilla.suse.com/show_bug.cgi?id=1260728 * https://bugzilla.suse.com/show_bug.cgi?id=1260729 * https://bugzilla.suse.com/show_bug.cgi?id=1260731 * https://bugzilla.suse.com/show_bug.cgi?id=1260800 * https://bugzilla.suse.com/show_bug.cgi?id=1260811 * https://bugzilla.suse.com/show_bug.cgi?id=1261020 * https://bugzilla.suse.com/show_bug.cgi?id=1261287 * https://bugzilla.suse.com/show_bug.cgi?id=1261295 * https://bugzilla.suse.com/show_bug.cgi?id=1261348 * https://bugzilla.suse.com/show_bug.cgi?id=1261503 * https://bugzilla.suse.com/show_bug.cgi?id=1261504 * https://bugzilla.suse.com/show_bug.cgi?id=1261581 * https://bugzilla.suse.com/show_bug.cgi?id=1261582 * https://bugzilla.suse.com/show_bug.cgi?id=1261584 * https://bugzilla.suse.com/show_bug.cgi?id=1261601 * https://bugzilla.suse.com/show_bug.cgi?id=1261602 * https://bugzilla.suse.com/show_bug.cgi?id=1261618 * https://bugzilla.suse.com/show_bug.cgi?id=1261628 * https://bugzilla.suse.com/show_bug.cgi?id=1261632 * https://bugzilla.suse.com/show_bug.cgi?id=1261636 * https://bugzilla.suse.com/show_bug.cgi?id=1261638 * https://bugzilla.suse.com/show_bug.cgi?id=1261641 * https://bugzilla.suse.com/show_bug.cgi?id=1261644 * https://bugzilla.suse.com/show_bug.cgi?id=1261645 * https://bugzilla.suse.com/show_bug.cgi?id=1261648 * https://bugzilla.suse.com/show_bug.cgi?id=1261679 * https://bugzilla.suse.com/show_bug.cgi?id=1261685 * https://bugzilla.suse.com/show_bug.cgi?id=1261686 * https://bugzilla.suse.com/show_bug.cgi?id=1261687 * https://bugzilla.suse.com/show_bug.cgi?id=1261692 * https://bugzilla.suse.com/show_bug.cgi?id=1261694 * https://bugzilla.suse.com/show_bug.cgi?id=1261700 * https://bugzilla.suse.com/show_bug.cgi?id=1261703 * https://bugzilla.suse.com/show_bug.cgi?id=1261707 * https://bugzilla.suse.com/show_bug.cgi?id=1261710 * https://bugzilla.suse.com/show_bug.cgi?id=1261713 * https://bugzilla.suse.com/show_bug.cgi?id=1261719 * https://bugzilla.suse.com/show_bug.cgi?id=1261750 * https://bugzilla.suse.com/show_bug.cgi?id=1261751 * https://bugzilla.suse.com/show_bug.cgi?id=1261752 * https://bugzilla.suse.com/show_bug.cgi?id=1261768 * https://bugzilla.suse.com/show_bug.cgi?id=1261778 * https://bugzilla.suse.com/show_bug.cgi?id=1261779 * https://bugzilla.suse.com/show_bug.cgi?id=1261781 * https://bugzilla.suse.com/show_bug.cgi?id=1261789 * https://bugzilla.suse.com/show_bug.cgi?id=1261796 * https://bugzilla.suse.com/show_bug.cgi?id=1261797 * https://bugzilla.suse.com/show_bug.cgi?id=1261896 * https://bugzilla.suse.com/show_bug.cgi?id=1262020 * https://bugzilla.suse.com/show_bug.cgi?id=1262053 * https://bugzilla.suse.com/show_bug.cgi?id=1262054 * https://bugzilla.suse.com/show_bug.cgi?id=1262055 * https://bugzilla.suse.com/show_bug.cgi?id=1262061 * https://bugzilla.suse.com/show_bug.cgi?id=1262063 * https://bugzilla.suse.com/show_bug.cgi?id=1262074 * https://bugzilla.suse.com/show_bug.cgi?id=1262078 * https://bugzilla.suse.com/show_bug.cgi?id=1262086 * https://bugzilla.suse.com/show_bug.cgi?id=1262087 * https://bugzilla.suse.com/show_bug.cgi?id=1262099 * https://bugzilla.suse.com/show_bug.cgi?id=1262100 * https://bugzilla.suse.com/show_bug.cgi?id=1262101 * https://bugzilla.suse.com/show_bug.cgi?id=1262179 * https://bugzilla.suse.com/show_bug.cgi?id=1262181 * https://bugzilla.suse.com/show_bug.cgi?id=1262602 * https://bugzilla.suse.com/show_bug.cgi?id=1262616 * https://bugzilla.suse.com/show_bug.cgi?id=1262665 * https://bugzilla.suse.com/show_bug.cgi?id=1262671 * https://bugzilla.suse.com/show_bug.cgi?id=1262673 * https://bugzilla.suse.com/show_bug.cgi?id=1262725 * https://bugzilla.suse.com/show_bug.cgi?id=1262731 * https://bugzilla.suse.com/show_bug.cgi?id=1262734 * https://bugzilla.suse.com/show_bug.cgi?id=1262746 * https://bugzilla.suse.com/show_bug.cgi?id=1262752 * https://bugzilla.suse.com/show_bug.cgi?id=1262758 * https://bugzilla.suse.com/show_bug.cgi?id=1263001 * https://bugzilla.suse.com/show_bug.cgi?id=1263012 * https://bugzilla.suse.com/show_bug.cgi?id=1263064 * https://bugzilla.suse.com/show_bug.cgi?id=1263065 * https://bugzilla.suse.com/show_bug.cgi?id=1263085 * https://bugzilla.suse.com/show_bug.cgi?id=1263093 * https://bugzilla.suse.com/show_bug.cgi?id=1263095 * https://bugzilla.suse.com/show_bug.cgi?id=1263104 * https://bugzilla.suse.com/show_bug.cgi?id=1263131 * https://bugzilla.suse.com/show_bug.cgi?id=1263140 * https://bugzilla.suse.com/show_bug.cgi?id=1263141 * https://bugzilla.suse.com/show_bug.cgi?id=1263149 * https://bugzilla.suse.com/show_bug.cgi?id=1263165 * https://bugzilla.suse.com/show_bug.cgi?id=1263170 * https://bugzilla.suse.com/show_bug.cgi?id=1263176 * https://bugzilla.suse.com/show_bug.cgi?id=1263556 * https://bugzilla.suse.com/show_bug.cgi?id=1263582 * https://bugzilla.suse.com/show_bug.cgi?id=1263592 * https://bugzilla.suse.com/show_bug.cgi?id=1263593 * https://bugzilla.suse.com/show_bug.cgi?id=1263595 * https://bugzilla.suse.com/show_bug.cgi?id=1263596 * https://bugzilla.suse.com/show_bug.cgi?id=1263600 * https://bugzilla.suse.com/show_bug.cgi?id=1263668 * https://bugzilla.suse.com/show_bug.cgi?id=1263723 * https://bugzilla.suse.com/show_bug.cgi?id=1263797 * https://bugzilla.suse.com/show_bug.cgi?id=1263815 * https://bugzilla.suse.com/show_bug.cgi?id=1263882 * https://bugzilla.suse.com/show_bug.cgi?id=1263901 * https://bugzilla.suse.com/show_bug.cgi?id=1263931 * https://bugzilla.suse.com/show_bug.cgi?id=1263933 * https://bugzilla.suse.com/show_bug.cgi?id=1263995 * https://bugzilla.suse.com/show_bug.cgi?id=1264014 * https://bugzilla.suse.com/show_bug.cgi?id=1264059 * https://bugzilla.suse.com/show_bug.cgi?id=1264082 * https://bugzilla.suse.com/show_bug.cgi?id=1264087 * https://bugzilla.suse.com/show_bug.cgi?id=1264097 * https://bugzilla.suse.com/show_bug.cgi?id=1264183 * https://bugzilla.suse.com/show_bug.cgi?id=1264427 * https://bugzilla.suse.com/show_bug.cgi?id=1264469 * https://bugzilla.suse.com/show_bug.cgi?id=1264482 * https://bugzilla.suse.com/show_bug.cgi?id=1264634 * https://bugzilla.suse.com/show_bug.cgi?id=1264651 * https://bugzilla.suse.com/show_bug.cgi?id=1264661 * https://bugzilla.suse.com/show_bug.cgi?id=1264674 * https://bugzilla.suse.com/show_bug.cgi?id=1264801 * https://bugzilla.suse.com/show_bug.cgi?id=1264848 * https://bugzilla.suse.com/show_bug.cgi?id=1265085 * https://bugzilla.suse.com/show_bug.cgi?id=1265090 * https://bugzilla.suse.com/show_bug.cgi?id=1265116 * https://bugzilla.suse.com/show_bug.cgi?id=1265119 * https://bugzilla.suse.com/show_bug.cgi?id=1265126 * https://bugzilla.suse.com/show_bug.cgi?id=1265144 * https://bugzilla.suse.com/show_bug.cgi?id=1265308 * https://bugzilla.suse.com/show_bug.cgi?id=1265421 * https://bugzilla.suse.com/show_bug.cgi?id=1265449 * https://bugzilla.suse.com/show_bug.cgi?id=1265456 * https://bugzilla.suse.com/show_bug.cgi?id=1265626 * https://bugzilla.suse.com/show_bug.cgi?id=1265846 * https://bugzilla.suse.com/show_bug.cgi?id=1265960 * https://jira.suse.com/browse/PED-7249 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 17:12:21 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 17:12:21 -0000 Subject: SUSE-SU-2026:21867-1: important: Security update for gnutls Message-ID: <178042034103.42.12980267912290069994@b0da085613fb> # Security update for gnutls Announcement ID: SUSE-SU-2026:21867-1 Release Date: 2026-05-22T09:55:27Z Rating: important References: * bsc#1262395 * bsc#1263704 * bsc#1263705 * bsc#1263707 * bsc#1263708 * bsc#1263709 * bsc#1263710 * bsc#1263711 * bsc#1263712 * bsc#1263713 * bsc#1263714 * bsc#1263715 * bsc#1263716 * bsc#1264706 * bsc#1264707 * bsc#1264708 * bsc#1265349 * bsc#1265360 Cross-References: * CVE-2026-33845 * CVE-2026-33846 * CVE-2026-3833 * CVE-2026-42009 * CVE-2026-42010 * CVE-2026-42011 * CVE-2026-42012 * CVE-2026-42013 * CVE-2026-42014 * CVE-2026-42015 * CVE-2026-42307 * CVE-2026-43961 * CVE-2026-44656 * CVE-2026-45130 * CVE-2026-46483 * CVE-2026-5260 * CVE-2026-5419 CVSS scores: * CVE-2026-33845 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-33845 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-33845 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-33845 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-33846 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-33846 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-33846 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-3833 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-3833 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2026-3833 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2026-3833 ( NVD ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-42009 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-42009 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42009 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42010 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-42010 ( SUSE ): 7.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N * CVE-2026-42010 ( NVD ): 7.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N * CVE-2026-42010 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-42011 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-42011 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2026-42011 ( NVD ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-42012 ( NVD ): 7.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:N * CVE-2026-42013 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-42013 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:N * CVE-2026-42013 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N * CVE-2026-42014 ( SUSE ): 5.1 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-42014 ( SUSE ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-42015 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-42015 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H * CVE-2026-42015 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-42307 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N * CVE-2026-43961 ( SUSE ): 5.4 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43961 ( SUSE ): 4.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L * CVE-2026-44656 ( SUSE ): 4.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-44656 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N * CVE-2026-44656 ( NVD ): 4.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-44656 ( NVD ): 5.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L * CVE-2026-45130 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H * CVE-2026-45130 ( NVD ): 6.6 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H * CVE-2026-45130 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-46483 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46483 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-46483 ( NVD ): 3.6 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N * CVE-2026-46483 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-5260 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-5260 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-5260 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-5419 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-5419 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-5419 ( NVD ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N Affected Products: * SUSE Linux Micro 6.0 * SUSE Linux Micro 6.1 * SUSE Linux Micro Extras 6.0 An update that solves 17 vulnerabilities and has one fix can now be installed. ## Security update for gnutls ### Description: This update for gnutls fixes the following issues * CVE-2026-3833: x509/name-constraints: compare domain names case-insensitive (bsc#1263707). * CVE-2026-5260: lib/pkcs11_privkey: guard against overreading on short ciphertexts (bsc#1263715). * CVE-2026-5419: gnutls_cipher_decrypt3: make PKCS#7 unpadding branch free (bsc#1263716). * CVE-2026-33845: buffers: switch from end_offset over to frag_length (bsc#1263704). * CVE-2026-33846: buffers: add more checks to DTLS reassembly (bsc#1263705). * CVE-2026-42009: lib/buffers: ensure packets have differing sequence numbers (bsc#1263708). * CVE-2026-42010: lib/auth/rsa_psk: fix binary PSK identity lookup (bsc#1263709). * CVE-2026-42011: x509/name_constraints: fix intersecting empty constraints (bsc#1263710). * CVE-2026-42012: x509/hostname-verify: make URI/SRV SAN preclude CN fallback (bsc#1263711). * CVE-2026-42013: x509: prevent fallback on oversized SAN (bsc#1263712). * CVE-2026-42014: pkcs11_write: fix UAF and leak in gnutls_pkcs11_token_set_pin (bsc#1263713). * CVE-2026-42015: x509/pkcs12_bag: fix off-by-one in bag element bounds chec (bsc#1263714). ## Security update for vim ### Description: This update for vim fixes the following issues * CVE-2026-42307: Prior to version 9.2.0383, an OS command injection vulnerability exists in the netrw standard plugin bundled with Vim (bsc#1264706). * CVE-2026-43961: Vimscript Code Injection in netrw NetrwMarkFile() via crafted filename (bsc#1265349). * CVE-2026-44656: Prior to version 9.2.0435, an OS command injection vulnerability exists in Vim's: find command-line completion (bsc#1264707). * CVE-2026-45130: Prior to version 9.2.0450, a heap buffer overflow exists in read_compound() in src/spellfile.c when loading a crafted spell file (.spl) with UTF-8 encoding active (bsc#1264708). * CVE-2026-46483: command injection via `tar#Vimuntar()` in `runtime/autoload/tar.vim` when decompressing `.tgz` archives on Unix-like systems (bsc#1265360). Changes for vim: * Update to v9.2.0530. * Fix for incorrectly detecting scientific parameter files as bitbake recipies. (bsc#1262395) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro Extras 6.0 zypper in -t patch SUSE-SLE-Micro-Extras-6.0-736=1 * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-544=1 ## Package List: * SUSE Linux Micro Extras 6.0 (aarch64 s390x x86_64) * vim-debugsource-9.2.0530-1.1 * vim-debuginfo-9.2.0530-1.1 * vim-9.2.0530-1.1 * SUSE Linux Micro 6.1 (aarch64 ppc64le s390x x86_64) * gnutls-debuginfo-3.8.3-slfo.1.1_7.1 * gnutls-debugsource-3.8.3-slfo.1.1_7.1 * libgnutls30-3.8.3-slfo.1.1_7.1 * gnutls-3.8.3-slfo.1.1_7.1 * libgnutls30-debuginfo-3.8.3-slfo.1.1_7.1 ## References: * https://www.suse.com/security/cve/CVE-2026-33845.html * https://www.suse.com/security/cve/CVE-2026-33846.html * https://www.suse.com/security/cve/CVE-2026-3833.html * https://www.suse.com/security/cve/CVE-2026-42009.html * https://www.suse.com/security/cve/CVE-2026-42010.html * https://www.suse.com/security/cve/CVE-2026-42011.html * https://www.suse.com/security/cve/CVE-2026-42012.html * https://www.suse.com/security/cve/CVE-2026-42013.html * https://www.suse.com/security/cve/CVE-2026-42014.html * https://www.suse.com/security/cve/CVE-2026-42015.html * https://www.suse.com/security/cve/CVE-2026-42307.html * https://www.suse.com/security/cve/CVE-2026-43961.html * https://www.suse.com/security/cve/CVE-2026-44656.html * https://www.suse.com/security/cve/CVE-2026-45130.html * https://www.suse.com/security/cve/CVE-2026-46483.html * https://www.suse.com/security/cve/CVE-2026-5260.html * https://www.suse.com/security/cve/CVE-2026-5419.html * https://bugzilla.suse.com/show_bug.cgi?id=1262395 * https://bugzilla.suse.com/show_bug.cgi?id=1263704 * https://bugzilla.suse.com/show_bug.cgi?id=1263705 * https://bugzilla.suse.com/show_bug.cgi?id=1263707 * https://bugzilla.suse.com/show_bug.cgi?id=1263708 * https://bugzilla.suse.com/show_bug.cgi?id=1263709 * https://bugzilla.suse.com/show_bug.cgi?id=1263710 * https://bugzilla.suse.com/show_bug.cgi?id=1263711 * https://bugzilla.suse.com/show_bug.cgi?id=1263712 * https://bugzilla.suse.com/show_bug.cgi?id=1263713 * https://bugzilla.suse.com/show_bug.cgi?id=1263714 * https://bugzilla.suse.com/show_bug.cgi?id=1263715 * https://bugzilla.suse.com/show_bug.cgi?id=1263716 * https://bugzilla.suse.com/show_bug.cgi?id=1264706 * https://bugzilla.suse.com/show_bug.cgi?id=1264707 * https://bugzilla.suse.com/show_bug.cgi?id=1264708 * https://bugzilla.suse.com/show_bug.cgi?id=1265349 * https://bugzilla.suse.com/show_bug.cgi?id=1265360 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 17:17:10 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 17:17:10 -0000 Subject: SUSE-SU-2026:21866-1: important: Security update for the Linux Kernel Message-ID: <178042063038.42.7349404300173172071@b0da085613fb> # Security update for the Linux Kernel Announcement ID: SUSE-SU-2026:21866-1 Release Date: 2026-05-29T17:53:27Z Rating: important References: * bsc#1215199 * bsc#1234634 * bsc#1243603 * bsc#1248754 * bsc#1253122 * bsc#1253754 * bsc#1254518 * bsc#1256863 * bsc#1257631 * bsc#1258518 * bsc#1258718 * bsc#1258826 * bsc#1258849 * bsc#1258850 * bsc#1258854 * bsc#1258855 * bsc#1258856 * bsc#1258857 * bsc#1258961 * bsc#1259186 * bsc#1259199 * bsc#1259222 * bsc#1259484 * bsc#1259485 * bsc#1259535 * bsc#1259799 * bsc#1259806 * bsc#1259857 * bsc#1259868 * bsc#1259869 * bsc#1259873 * bsc#1259878 * bsc#1260010 * bsc#1260012 * bsc#1260018 * bsc#1260468 * bsc#1260483 * bsc#1260484 * bsc#1260485 * bsc#1260489 * bsc#1260501 * bsc#1260504 * bsc#1260505 * bsc#1260507 * bsc#1260522 * bsc#1260523 * bsc#1260526 * bsc#1260528 * bsc#1260529 * bsc#1260530 * bsc#1260531 * bsc#1260532 * bsc#1260533 * bsc#1260536 * bsc#1260537 * bsc#1260538 * bsc#1260541 * bsc#1260546 * bsc#1260549 * bsc#1260551 * bsc#1260552 * bsc#1260553 * bsc#1260555 * bsc#1260561 * bsc#1260566 * bsc#1260572 * bsc#1260581 * bsc#1260728 * bsc#1260729 * bsc#1260731 * bsc#1260800 * bsc#1260811 * bsc#1261020 * bsc#1261287 * bsc#1261295 * bsc#1261348 * bsc#1261503 * bsc#1261504 * bsc#1261581 * bsc#1261582 * bsc#1261584 * bsc#1261601 * bsc#1261602 * bsc#1261618 * bsc#1261628 * bsc#1261632 * bsc#1261636 * bsc#1261638 * bsc#1261641 * bsc#1261644 * bsc#1261645 * bsc#1261648 * bsc#1261679 * bsc#1261685 * bsc#1261686 * bsc#1261687 * bsc#1261692 * bsc#1261694 * bsc#1261700 * bsc#1261703 * bsc#1261707 * bsc#1261710 * bsc#1261713 * bsc#1261719 * bsc#1261750 * bsc#1261751 * bsc#1261752 * bsc#1261768 * bsc#1261778 * bsc#1261779 * bsc#1261781 * bsc#1261789 * bsc#1261796 * bsc#1261797 * bsc#1261896 * bsc#1262020 * bsc#1262053 * bsc#1262054 * bsc#1262055 * bsc#1262061 * bsc#1262063 * bsc#1262074 * bsc#1262078 * bsc#1262086 * bsc#1262087 * bsc#1262099 * bsc#1262100 * bsc#1262101 * bsc#1262179 * bsc#1262181 * bsc#1262602 * bsc#1262616 * bsc#1262665 * bsc#1262671 * bsc#1262673 * bsc#1262725 * bsc#1262731 * bsc#1262734 * bsc#1262746 * bsc#1262752 * bsc#1262758 * bsc#1263001 * bsc#1263012 * bsc#1263064 * bsc#1263065 * bsc#1263085 * bsc#1263093 * bsc#1263095 * bsc#1263104 * bsc#1263131 * bsc#1263140 * bsc#1263141 * bsc#1263149 * bsc#1263165 * bsc#1263170 * bsc#1263176 * bsc#1263556 * bsc#1263582 * bsc#1263592 * bsc#1263593 * bsc#1263595 * bsc#1263596 * bsc#1263600 * bsc#1263668 * bsc#1263723 * bsc#1263797 * bsc#1263815 * bsc#1263882 * bsc#1263901 * bsc#1263931 * bsc#1263933 * bsc#1263995 * bsc#1264014 * bsc#1264059 * bsc#1264082 * bsc#1264087 * bsc#1264097 * bsc#1264183 * bsc#1264427 * bsc#1264469 * bsc#1264482 * bsc#1264634 * bsc#1264651 * bsc#1264661 * bsc#1264674 * bsc#1264801 * bsc#1264848 * bsc#1265085 * bsc#1265090 * bsc#1265116 * bsc#1265119 * bsc#1265126 * bsc#1265144 * bsc#1265308 * bsc#1265421 * bsc#1265449 * bsc#1265456 * bsc#1265626 * bsc#1265846 * bsc#1265960 * jsc#PED-7249 Cross-References: * CVE-2023-2058 * CVE-2025-40219 * CVE-2025-71183 * CVE-2025-71238 * CVE-2026-23168 * CVE-2026-23209 * CVE-2026-23236 * CVE-2026-23237 * CVE-2026-23239 * CVE-2026-23240 * CVE-2026-23245 * CVE-2026-23246 * CVE-2026-23253 * CVE-2026-23260 * CVE-2026-23264 * CVE-2026-23266 * CVE-2026-23268 * CVE-2026-23269 * CVE-2026-23271 * CVE-2026-23273 * CVE-2026-23276 * CVE-2026-23279 * CVE-2026-23290 * CVE-2026-23291 * CVE-2026-23298 * CVE-2026-23300 * CVE-2026-23306 * CVE-2026-23307 * CVE-2026-23308 * CVE-2026-23312 * CVE-2026-23313 * CVE-2026-23315 * CVE-2026-23318 * CVE-2026-23321 * CVE-2026-23324 * CVE-2026-23325 * CVE-2026-23336 * CVE-2026-23339 * CVE-2026-23340 * CVE-2026-23346 * CVE-2026-23351 * CVE-2026-23357 * CVE-2026-23362 * CVE-2026-23363 * CVE-2026-23365 * CVE-2026-23367 * CVE-2026-23368 * CVE-2026-23370 * CVE-2026-23372 * CVE-2026-23373 * CVE-2026-23374 * CVE-2026-23378 * CVE-2026-23382 * CVE-2026-23391 * CVE-2026-23392 * CVE-2026-23393 * CVE-2026-23396 * CVE-2026-23397 * CVE-2026-23399 * CVE-2026-23403 * CVE-2026-23404 * CVE-2026-23405 * CVE-2026-23406 * CVE-2026-23407 * CVE-2026-23408 * CVE-2026-23409 * CVE-2026-23410 * CVE-2026-23411 * CVE-2026-23420 * CVE-2026-23426 * CVE-2026-23434 * CVE-2026-23440 * CVE-2026-23441 * CVE-2026-23442 * CVE-2026-23443 * CVE-2026-23446 * CVE-2026-23447 * CVE-2026-23448 * CVE-2026-23449 * CVE-2026-23450 * CVE-2026-23452 * CVE-2026-23455 * CVE-2026-23456 * CVE-2026-23457 * CVE-2026-23458 * CVE-2026-23460 * CVE-2026-23461 * CVE-2026-23462 * CVE-2026-23463 * CVE-2026-23465 * CVE-2026-23468 * CVE-2026-23472 * CVE-2026-23473 * CVE-2026-23474 * CVE-2026-23475 * CVE-2026-31389 * CVE-2026-31393 * CVE-2026-31400 * CVE-2026-31402 * CVE-2026-31403 * CVE-2026-31404 * CVE-2026-31405 * CVE-2026-31407 * CVE-2026-31408 * CVE-2026-31411 * CVE-2026-31412 * CVE-2026-31415 * CVE-2026-31416 * CVE-2026-31417 * CVE-2026-31420 * CVE-2026-31421 * CVE-2026-31422 * CVE-2026-31423 * CVE-2026-31424 * CVE-2026-31425 * CVE-2026-31426 * CVE-2026-31427 * CVE-2026-31428 * CVE-2026-31436 * CVE-2026-31449 * CVE-2026-31470 * CVE-2026-31488 * CVE-2026-31494 * CVE-2026-31496 * CVE-2026-31504 * CVE-2026-31505 * CVE-2026-31507 * CVE-2026-31512 * CVE-2026-31515 * CVE-2026-31519 * CVE-2026-31525 * CVE-2026-31528 * CVE-2026-31533 * CVE-2026-31550 * CVE-2026-31565 * CVE-2026-31570 * CVE-2026-31586 * CVE-2026-31588 * CVE-2026-31602 * CVE-2026-31607 * CVE-2026-31622 * CVE-2026-31649 * CVE-2026-31656 * CVE-2026-31662 * CVE-2026-31668 * CVE-2026-31669 * CVE-2026-31675 * CVE-2026-31679 * CVE-2026-31681 * CVE-2026-31682 * CVE-2026-31684 * CVE-2026-31685 * CVE-2026-31694 * CVE-2026-31700 * CVE-2026-31738 * CVE-2026-31787 * CVE-2026-43009 * CVE-2026-43025 * CVE-2026-43027 * CVE-2026-43037 * CVE-2026-43038 * CVE-2026-43044 * CVE-2026-43050 * CVE-2026-43060 * CVE-2026-43088 * CVE-2026-43110 * CVE-2026-43120 * CVE-2026-43126 * CVE-2026-43190 * CVE-2026-43214 * CVE-2026-43265 * CVE-2026-43329 * CVE-2026-43330 * CVE-2026-43334 * CVE-2026-43365 * CVE-2026-43366 * CVE-2026-43419 * CVE-2026-43437 * CVE-2026-43441 * CVE-2026-43494 * CVE-2026-43503 CVSS scores: * CVE-2023-2058 ( NVD ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N * CVE-2023-2058 ( NVD ): 2.4 CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N * CVE-2025-40219 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2025-40219 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2025-71183 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-71183 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-71238 ( SUSE ): 5.9 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-71238 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H * CVE-2025-71238 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23168 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23168 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23168 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23209 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23209 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23236 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23236 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23236 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23236 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H * CVE-2026-23237 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23237 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23237 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23239 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23239 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23239 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23240 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23240 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23240 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23245 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23245 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23245 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23246 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23246 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23253 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23253 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23260 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-23260 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-23260 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23264 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23264 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23264 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23266 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23266 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23266 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23268 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23268 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23268 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23269 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23269 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23269 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23271 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23271 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23271 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23273 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23273 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23273 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23276 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23276 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23279 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23279 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23279 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23290 ( SUSE ): 5.1 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23290 ( SUSE ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23290 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23291 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23291 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23298 ( SUSE ): 5.1 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23298 ( SUSE ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23298 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23300 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23300 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23300 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23306 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23306 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:H/A:H * CVE-2026-23306 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23307 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23307 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23308 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23308 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23312 ( SUSE ): 5.1 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23312 ( SUSE ): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23312 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23313 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23313 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23315 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23315 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23318 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23318 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23321 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-23321 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-23321 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23324 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23324 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23324 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23325 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23325 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23336 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23336 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23339 ( SUSE ): 2.3 CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-23339 ( SUSE ): 3.1 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-23339 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23340 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23340 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23340 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23346 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23346 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23346 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23351 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23351 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23357 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23357 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23357 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23362 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23362 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23363 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23363 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23365 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23365 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23365 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23367 ( SUSE ): 5.3 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-23367 ( SUSE ): 6.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2026-23367 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23368 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23368 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23368 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23370 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23370 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23372 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23372 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23373 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23373 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23374 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23374 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23374 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23378 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23378 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-23378 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23378 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23382 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23382 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23382 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23391 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23391 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23392 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23392 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23392 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23393 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23393 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23393 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23396 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23396 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23396 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23397 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23397 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23397 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23399 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23399 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23399 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23403 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23403 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2026-23403 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23404 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23404 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23404 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23405 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23405 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23405 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23406 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23406 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23406 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23407 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23407 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23407 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23408 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23408 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23408 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23408 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23409 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23409 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-23409 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23410 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23410 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23410 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23410 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23411 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23411 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23420 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23420 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23420 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23426 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23426 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23426 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23434 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23434 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23434 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23434 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-23440 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23440 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23440 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23440 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23441 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23441 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23442 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23442 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23442 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23443 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23443 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23443 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23446 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23446 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23446 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23447 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23447 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23447 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23448 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23448 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23448 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23449 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23449 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23449 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23450 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23450 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23450 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23452 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23452 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23452 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23455 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23455 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23455 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23456 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-23456 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-23456 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-23457 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23457 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-23457 ( NVD ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-23458 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23458 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23458 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23460 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23460 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23460 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23461 ( SUSE ): 7.7 CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23461 ( SUSE ): 7.5 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23461 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23462 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23462 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23462 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23463 ( SUSE ): 0.0 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-23463 ( SUSE ): 0.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N * CVE-2026-23463 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23465 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:L/SC:N/SI:N/SA:N * CVE-2026-23465 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L * CVE-2026-23465 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23468 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23468 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23468 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23472 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23472 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23472 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23473 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23473 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23474 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23474 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23474 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23475 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23475 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23475 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31389 ( SUSE ): 5.6 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31389 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31389 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31393 ( SUSE ): 5.3 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31393 ( SUSE ): 4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-31393 ( NVD ): 8.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31400 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31400 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31400 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31402 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31402 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-31402 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31403 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31403 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31403 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31404 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31404 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31404 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31405 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31405 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31405 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31407 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31407 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N * CVE-2026-31407 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31408 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31408 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31408 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31411 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31411 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31411 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31412 ( SUSE ): 7.0 CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31412 ( SUSE ): 6.8 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31412 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31415 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31415 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31415 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31416 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-31416 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-31416 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31417 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31417 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31417 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31420 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31420 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31420 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31421 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31421 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31421 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31422 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31422 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31422 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31423 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31423 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31423 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31424 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31424 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31424 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31425 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31425 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31425 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31426 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31426 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2026-31426 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31427 ( SUSE ): 2.0 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-31427 ( SUSE ): 4.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2026-31427 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31428 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31428 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2026-31428 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31436 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31436 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31436 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31449 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31449 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31449 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-31470 ( SUSE ): 6.0 CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:H/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31470 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H * CVE-2026-31470 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31488 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31488 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31488 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31494 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-31494 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N * CVE-2026-31494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31496 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31496 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-31496 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31504 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31504 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31504 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31505 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31505 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31505 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31507 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31507 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31507 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31512 ( SUSE ): 7.1 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31512 ( SUSE ): 7.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-31512 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31515 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31515 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31515 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31519 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31519 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31519 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31525 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31525 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31525 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31528 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31528 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31528 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31533 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31533 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31533 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31550 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31550 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31550 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31565 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31565 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31565 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31570 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:H/SI:N/SA:N * CVE-2026-31570 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31570 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31586 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31586 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31586 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31588 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31588 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31588 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-31602 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31602 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31602 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31607 ( SUSE ): 7.0 CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31607 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H * CVE-2026-31607 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31622 ( SUSE ): 8.7 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31622 ( SUSE ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31622 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31649 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31649 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31649 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31656 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31656 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31656 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31662 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31662 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31662 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31668 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-31668 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L * CVE-2026-31668 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31669 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31669 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31669 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31675 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31675 ( SUSE ): 5.6 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H * CVE-2026-31675 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31679 ( SUSE ): 8.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31679 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31679 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31681 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31681 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N * CVE-2026-31681 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31682 ( SUSE ): 5.3 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31682 ( SUSE ): 4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-31682 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31684 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-31684 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L * CVE-2026-31684 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31685 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31685 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31685 ( NVD ): 9.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H * CVE-2026-31694 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31694 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31694 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31700 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31700 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31700 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31738 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31738 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31738 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31787 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31787 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31787 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43009 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43009 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43025 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43025 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H * CVE-2026-43027 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43027 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43037 ( SUSE ): 7.7 CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43037 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43037 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43038 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43038 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43044 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43044 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43044 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43050 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43050 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43050 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43060 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43060 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43088 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-43088 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-43110 ( SUSE ): 7.7 CVSS:4.0/AV:A/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43110 ( SUSE ): 7.5 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43110 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43120 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43120 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-43120 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43120 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43126 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43126 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43126 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43190 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43190 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-43190 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-43214 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43214 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43214 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43265 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43265 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43265 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43329 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43329 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43329 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43330 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43330 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43330 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43334 ( SUSE ): 8.6 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-43334 ( SUSE ): 8.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-43334 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43365 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-43365 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-43365 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-43366 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43366 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43366 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43419 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-43419 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-43437 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43437 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43437 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43441 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43441 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43494 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43494 ( SUSE ): 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43503 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43503 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-43503 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H Affected Products: * SUSE Linux Micro 6.0 * SUSE Linux Micro Extras 6.0 An update that solves 181 vulnerabilities, contains one feature and has 19 fixes can now be installed. ## Description: The SUSE Linux Enterprise Micro 6.0 and Micro 6.1 kernel was updated to fix various security issues The following security issues were fixed: * CVE-2023-2058: x86/CPU: Fix FPDSS on Zen1 (bsc#1243603). * CVE-2025-71183: btrfs: always detect conflicting inodes when logging inode refs (bsc#1257631). * CVE-2026-23168: flex_proportions: make fprop_new_period() hardirq safe (bsc#1258826). * CVE-2026-23239: espintcp: Fix race condition in espintcp_close() (bsc#1259485). * CVE-2026-23240: tls: Fix race condition in tls_sw_cancel_work_tx() (bsc#1259484). * CVE-2026-23245: net/sched: act_gate: snapshot parameters with RCU on replace (bsc#1259799). * CVE-2026-23271: perf: Fix __perf_event_overflow() vs perf_remove_from_context() race (bsc#1260018). * CVE-2026-23276: net: move dev_xmit_recursion() helpers to net/core/dev.h (bsc#1260012). * CVE-2026-23300: net: ipv6: fix panic when IPv4 route references loopback IPv6 nexthop (bsc#1260538). * CVE-2026-23306: scsi: pm8001: Fix use-after-free in pm8001_queue_command() (bsc#1260501). * CVE-2026-23313: i40e: Fix preempt count leak in napi poll tracepoint (bsc#1260555). * CVE-2026-23321: mptcp: pm: in-kernel: always mark signal+subflow endp as used (bsc#1260505). * CVE-2026-23340: net: sched: avoid qdisc_reset_all_tx_gt() vs dequeue race for lockless qdiscs (bsc#1260523). * CVE-2026-23346: mm/ioremap: define generic_ioremap_prot() and generic_iounmap() (bsc#1260529). * CVE-2026-23351: netfilter: nft_set_pipapo: split gc into unlink and reclaim phase (bsc#1260526). * CVE-2026-23368: net: phy: register phy led_triggers during probe to avoid AB-BA deadlock (bsc#1260530). * CVE-2026-23374: blktrace: fix __this_cpu_read/write in preemptible context (bsc#1260811). * CVE-2026-23378: net/sched: act_ife: Fix metalist update behavior (bsc#1260546). * CVE-2026-23391: netfilter: xt_CT: drop pending enqueued packets on template removal (bsc#1260566). * CVE-2026-23392: netfilter: nf_tables: release flowtable after rcu grace period on error (bsc#1260531). * CVE-2026-23393: bridge: cfm: Fix race condition in peer_mep deletion (bsc#1260522). * CVE-2026-23397: nfnetlink_osf: validate individual option lengths in fingerprints (bsc#1260728). * CVE-2026-23399: nf_tables: nft_dynset: fix possible stateful expression memleak in error path (bsc#1261020). * CVE-2026-23440: net/mlx5e: Fix race condition during IPSec ESN update (bsc#1261641). * CVE-2026-23441: net/mlx5e: Prevent concurrent access to IPSec ASO context (bsc#1261768). * CVE-2026-23442: ipv6: add NULL checks for idev in SRv6 paths (bsc#1261581). * CVE-2026-23449: net/sched: teql: Fix double-free in teql_master_xmit (bsc#1261779). * CVE-2026-23450: net/smc: fix NULL dereference and UAF in smc_tcp_syn_recv_sock() (bsc#1261584). * CVE-2026-23455: netfilter: nf_conntrack_h323: check for zero length in DecodeQ931() (bsc#1261687). * CVE-2026-23456: netfilter: nf_conntrack_h323: fix OOB read in decode_int() CONS case (bsc#1261703). * CVE-2026-23457: netfilter: nf_conntrack_sip: fix Content-Length u32 truncation in sip_help_tcp() (bsc#1261686). * CVE-2026-23458: netfilter: ctnetlink: fix use-after-free in ctnetlink_dump_exp_ct() (bsc#1261781). * CVE-2026-23461: Bluetooth: L2CAP: Fix use-after-free in l2cap_unregister_user (bsc#1261707). * CVE-2026-23462: Bluetooth: HIDP: Fix possible UAF (bsc#1261710). * CVE-2026-23468: drm/amdgpu: Limit BO list entry count to prevent resource exhaustion (bsc#1261692). * CVE-2026-23472: serial: core: fix infinite loop in handle_tx() for PORT_UNKNOWN (bsc#1261636). * CVE-2026-23473: io_uring/poll: fix multishot recv missing EOF on wakeup race (bsc#1261694). * CVE-2026-31400: sunrpc: fix cache_request leak in cache_release (bsc#1261645). * CVE-2026-31402: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache (bsc#1261638). * CVE-2026-31403: NFSD: Hold net reference for the lifetime of /proc/fs/nfs/exports fd (bsc#1261796). * CVE-2026-31404: xfs: avoid dereferencing log items after push callbacks (bsc#1261628). * CVE-2026-31407: netfilter: conntrack: add missing netlink policy validations (bsc#1261632). * CVE-2026-31411: net: atm: fix crash due to unvalidated vcc pointer in sigd_send() (bsc#1261752). * CVE-2026-31415: ipv6: avoid overflows in ip6_datagram_send_ctl() (bsc#1262099). * CVE-2026-31416: netfilter: nfnetlink_log: account for netlink header size (bsc#1262100). * CVE-2026-31420: bridge: mrp: reject zero test interval to avoid OOM panic (bsc#1262055). * CVE-2026-31421: net/sched: cls_fw: fix NULL pointer dereference on shared blocks (bsc#1262061). * CVE-2026-31422: net/sched: cls_flow: fix NULL pointer dereference on shared blocks (bsc#1262054). * CVE-2026-31423: net/sched: sch_hfsc: fix divide-by-zero in rtsc_min() (bsc#1262063). * CVE-2026-31424: netfilter: x_tables: restrict xt_check_match/xt_check_target extensions for NFPROTO_ARP (bsc#1262053). * CVE-2026-31425: rds: ib: reject FRMR registration before IB connection is established (bsc#1262074). * CVE-2026-31427: netfilter: nf_conntrack_sip: fix use of uninitialized rtp_addr in process_sdp (bsc#1262086). * CVE-2026-31428: netfilter: nfnetlink_log: fix uninitialized padding leak in NFULA_PAYLOAD (bsc#1262087). * CVE-2026-31436: dmaengine: idxd: fix possible wrong descriptor completion in llist_abort_desc() (bsc#1262602). * CVE-2026-31449: ext4: validate p_idx bounds in ext4_ext_correct_indexes (bsc#1262616). * CVE-2026-31470: virt: tdx-guest: Fix handling of host controlled 'quote' buffer length (bsc#1262665). * CVE-2026-31488: drm/amd/display: Do not skip unrelated mode changes in DSC validation (bsc#1262746). * CVE-2026-31494: net: cadence: macb: Synchronize stats calculations (bsc#1262671). * CVE-2026-31496: netfilter: nf_conntrack_expect: skip expectations in other netns via proc (bsc#1262673). * CVE-2026-31504: net: fix fanout UAF in packet_release() via NETDEV_UP race (bsc#1263085). * CVE-2026-31505: iavf: fix out-of-bounds writes in iavf_get_ethtool_stats() (bsc#1263093). * CVE-2026-31507: net/smc: fix double-free of smc_spd_priv when tee() duplicates splice pipe buffer (bsc#1263095). * CVE-2026-31512: Bluetooth: L2CAP: Validate PDU length before reading SDU length in l2cap_ecred_data_rcv() (bsc#1262734). * CVE-2026-31515: af_key: validate families in pfkey_send_migrate() (bsc#1262752). * CVE-2026-31519: btrfs: set BTRFS_ROOT_ORPHAN_CLEANUP during subvol create (bsc#1263012). * CVE-2026-31525: bpf: Fix undefined behavior in interpreter sdiv/smod for INT_MIN (bsc#1262725). * CVE-2026-31528: perf: Make sure to use pmu_ctx->pmu for groups (bsc#1263001). * CVE-2026-31533: net/tls: fix use-after-free in -EBUSY error path of tls_do_encryption (bsc#1262758). * CVE-2026-31550: pmdomain: bcm: bcm2835-power: Increase ASB control timeout (bsc#1263104). * CVE-2026-31565: RDMA/irdma: Fix deadlock during netdev reset with active connections (bsc#1263064). * CVE-2026-31570: can: gw: fix OOB heap access in cgw_csum_crc8_rel() (bsc#1263065). * CVE-2026-31586: mm: blk-cgroup: fix use-after-free in cgwb_release_workfn() (bsc#1263176). * CVE-2026-31588: KVM: x86: Use scratch field in MMIO fragment to hold small write values (bsc#1263165). * CVE-2026-31602: ALSA: ctxfi: Limit PTP to a single page (bsc#1263723). * CVE-2026-31607: usbip: validate number_of_packets in usbip_pack_ret_submit() (bsc#1263600). * CVE-2026-31622: NFC: digital: Bounds check NFC-A cascade depth in SDD response handler (bsc#1263797). * CVE-2026-31649: net: stmmac: fix integer underflow in chain mode (bsc#1263582). * CVE-2026-31656: drm/i915/gt: fix refcount underflow in intel_engine_park_heartbeat (bsc#1263170). * CVE-2026-31662: tipc: fix bc_ackers underflow on duplicate GRP_ACK_MSG (bsc#1263131). * CVE-2026-31668: seg6: separate dst_cache for input and output paths in seg6 lwtunnel (bsc#1263140). * CVE-2026-31669: mptcp: fix slab-use-after-free in __inet_lookup_established (bsc#1263141). * CVE-2026-31675: net/sched: sch_netem: fix out-of-bounds access in packet corruption (bsc#1263556). * CVE-2026-31679: openvswitch: validate MPLS set/set_masked payload length (bsc#1263592). * CVE-2026-31681: netfilter: xt_multiport: validate range encoding in checkentry (bsc#1263593). * CVE-2026-31682: bridge: br_nd_send: linearize skb before parsing ND options (bsc#1263595). * CVE-2026-31684: net: sched: act_csum: validate nested VLAN headers (bsc#1263596). * CVE-2026-31685: netfilter: ip6t_eui64: reject invalid MAC header for all packets (bsc#1263668). * CVE-2026-31694: fuse: reject oversized dirents in page cache (bsc#1263901). * CVE-2026-31700: net/packet: fix TOCTOU race on mmap'd vnet_hdr in tpacket_snd() (bsc#1263882). * CVE-2026-31738: vxlan: validate ND option lengths in vxlan_na_create (bsc#1264059). * CVE-2026-31787: xen/privcmd: fix double free via VMA splitting (bsc#1262181). * CVE-2026-43009: bpf: Fix incorrect pruning due to atomic fetch precision tracking (bsc#1264014). * CVE-2026-43025: netfilter: ctnetlink: ignore explicit helper on new expectations (bsc#1263931). * CVE-2026-43027: netfilter: nf_conntrack_helper: pass helper to expect cleanup (bsc#1263933). * CVE-2026-43037: ip6_tunnel: clear skb2->cb in ip4ip6_err() (bsc#1263995). * CVE-2026-43038: ipv6: icmp: clear skb2->cb in ip6_err_gen_icmpv6_unreach() (bsc#1264097). * CVE-2026-43044: crypto: caam - fix DMA corruption on long hmac keys (bsc#1264087). * CVE-2026-43050: atm: lec: fix use-after-free in sock_def_readable() (bsc#1264082). * CVE-2026-43060: netfilter: nft_ct: drop pending enqueued packets on removal (bsc#1264183). * CVE-2026-43088: net: af_key: zero aligned sockaddr tail in PF_KEY exports (bsc#1264469). * CVE-2026-43110: wifi: brcmfmac: validate bsscfg indices in IF events (bsc#1264482). * CVE-2026-43120: RDMA/irdma: Fix double free related to rereg_user_mr. * CVE-2026-43126: ALSA: mixer: oss: Add card disconnect checkpoints (bsc#1264634). * CVE-2026-43190: netfilter: xt_tcpmss: check remaining length before reading optlen (bsc#1264848). * CVE-2026-43214: KVM: x86: Add SRCU protection for reading PDPTRs in __get_sregs2() (bsc#1264651). * CVE-2026-43265: KVM: x86: Ignore -EBUSY when checking nested events from vcpu_block() (bsc#1264427). * CVE-2026-43329: netfilter: flowtable: strictly check for maximum number of actions (bsc#1265085). * CVE-2026-43330: crypto: caam - fix overflow on long hmac keys (bsc#1264801). * CVE-2026-43334: Bluetooth: SMP: force responder MITM requirements before building the pairing response (bsc#1265090). * CVE-2026-43365: xfs: fix undersized l_iclog_roundoff values (bsc#1265119). * CVE-2026-43366: io_uring/kbuf: check if target buffer list is still legacy on recycle (bsc#1265116). * CVE-2026-43419: ceph: fix memory leaks in ceph_mdsc_build_path() (bsc#1264661). * CVE-2026-43437: ALSA: pcm: fix use-after-free on linked stream runtime in snd_pcm_drain() (bsc#1265126). * CVE-2026-43441: net: bonding: Fix nd_tbl NULL dereference when IPv6 is disabled (bsc#1264674). * CVE-2026-43494: net/rds: reset op_nents when zerocopy page pin fails (bsc#1265626). * CVE-2026-43503: net: skbuff: propagate shared-frag marker through frag- transfer helpers (bsc#1265960). The following non security issues were fixed: * accel/qaic: Add overflow check to remap_pfn_range during mmap (git-fixes). * ACPI: AGDI: fix missing newline in error message (git-fixes). * ACPI: CPPC: Fix related_cpus inconsistency during CPU hotplug (git-fixes). * ACPI: scan: Use acpi_dev_put() in object add error paths (git-fixes). * ACPI: video: force native backlight on HP OMEN 16 (8A44) (stable-fixes). * ALSA: 6fire: Fix input volume change detection (git-fixes). * ALSA: 6fire: fix use-after-free on disconnect (git-fixes). * ALSA: aoa: i2sbus: clear stale prepared state (git-fixes). * ALSA: aoa: i2sbus: fix OF node lifetime handling (git-fixes). * ALSA: aoa: Skip devices with no codecs in i2sbus_resume() (git-fixes). * ALSA: aoa: Use guard() for mutex locks (stable-fixes). * ALSA: asihpi: avoid write overflow check warning (stable-fixes). * ALSA: caiaq: Don't abort when no input device is available (git-fixes). * ALSA: caiaq: Fix control_put() result and cache rollback (git-fixes). * ALSA: caiaq: Fix potentially leftover ep1_in_urb at error path (git-fixes). * ALSA: caiaq: fix usb_dev refcount leak on probe failure (git-fixes). * ALSA: caiaq: Handle probe errors properly (git-fixes). * ALSA: caiaq: take a reference on the USB device in create_card() (git- fixes). * ALSA: control: Validate buf_len before strnlen() in snd_ctl_elem_init_enum_names() (git-fixes). * ALSA: core: Fix potential data race at fasync handling (git-fixes). * ALSA: core: Serialize deferred fasync state checks (git-fixes). * ALSA: core: Validate compress device numbers without dynamic minors (git- fixes). * ALSA: ctxfi: Add fallback to default RSR for S/PDIF (git-fixes). * ALSA: ctxfi: Fix missing SPDIFI1 index handling (stable-fixes). * ALSA: ctxfi: Limit PTP to a single page (git-fixes). * ALSA: firewire-tascam: Do not drop unread control events (git-fixes). * ALSA: fireworks: bound device-supplied status before string array lookup (git-fixes). * ALSA: hda/realtek - fixed speaker no sound update (git-fixes). * ALSA: hda/realtek: Add HP ENVY Laptop 13-ba0xxx quirk (stable-fixes). * ALSA: hda/realtek: Add mute LED quirk for HP Pavilion 15-eg0xxx (stable- fixes). * ALSA: hda/realtek: Add quirk for ASUS ROG Flow Z13-KJP GZ302EAC (stable- fixes). * ALSA: hda/realtek: add quirk for Framework F111:000F (stable-fixes). * ALSA: hda/realtek: Add quirk for Lenovo Yoga Pro 7 14IAH10 (stable-fixes). * ALSA: hda/realtek: fix code style (ERROR: else should follow close brace '}') (git-fixes). * ALSA: misc: Use guard() for spin locks (stable-fixes). * ALSA: scarlett2: Add missing sentinel initializer field (git-fixes). * ALSA: seq: Notify client and port info changes (stable-fixes). * ALSA: seq_oss: return full count for successful SEQ_FULLSIZE writes (stable- fixes). * ALSA: usb-audio: apply quirk for MOONDROP JU Jiu (stable-fixes). * ALSA: usb-audio: Avoid false E-MU sample-rate notifications (git-fixes). * ALSA: usb-audio: Avoid potential endless loop in convert_chmap_v3() (git- fixes). * ALSA: usb-audio: Evaluate packsize caps at the right place (git-fixes). * ALSA: usb-audio: Fix Audio Advantage Micro II SPDIF switch (git-fixes). * ALSA: usb-audio: Fix potential leak of pd at parsing UAC3 streams (git- fixes). * ALSA: usb-audio: Fix quirk flags for NeuralDSP Quad Cortex (stable-fixes). * ALSA: usb-audio: Fix UAC3 cluster descriptor size check (git-fixes). * ALSA: usb-audio: midi2: Restart output URBs on resume (git-fixes). * ALSA: usb-audio: stop parsing UAC2 rates at MAX_NR_RATES (git-fixes). * ASoC: amd: yc: Add DMI entry for HP Laptop 15-fc0xxx (stable-fixes). * ASoC: amd: yc: Add DMI quirk for ASUS EXPERTBOOK BM1403CDA (stable-fixes). * ASoC: amd: yc: Add DMI quirk for Thin A15 B7VF (stable-fixes). * ASoC: amd: yc: Add HP OMEN Gaming Laptop 16-ap0xxx product line in quirk table (stable-fixes). * ASoC: codecs: ab8500: Fix casting of private data (git-fixes). * ASoC: cs35l56: Destroy workqueue in probe error path (git-fixes). * ASoC: cs35l56: Don't use devres to unregister component (git-fixes). * ASoC: fsl_easrc: Change the type for iec958 channel status controls (git- fixes). * ASoC: fsl_easrc: Check the variable range in fsl_easrc_iec958_put_bits() (git-fixes). * ASoC: fsl_easrc: fix comment typo (git-fixes). * ASoC: fsl_easrc: Fix value type in fsl_easrc_iec958_get_bits() (git-fixes). * ASoC: fsl_micfil: Add access property for "VAD Detected" (git-fixes). * ASoC: fsl_micfil: Fix event generation in hwvad_put_enable() (git-fixes). * ASoC: fsl_micfil: Fix event generation in hwvad_put_init_mode() (git-fixes). * ASoC: fsl_micfil: Fix event generation in micfil_put_dc_remover_state() (git-fixes). * ASoC: fsl_micfil: Fix event generation in micfil_quality_set() (git-fixes). * ASoC: fsl_xcvr: Fix event generation for cached controls (git-fixes). * ASoC: fsl_xcvr: Fix event generation in fsl_xcvr_arc_mode_put() (git-fixes). * ASoC: fsl_xcvr: Fix event generation in fsl_xcvr_mode_put() (git-fixes). * ASoC: Intel: bytcr_wm5102: Fix MCLK leak on platform_clock_control error (git-fixes). * ASoC: qcom: q6apm-lpass-dai: Fix multiple graph opens (git-fixes). * ASoC: qcom: q6apm: move component registration to unmanaged version (git- fixes). * ASoC: qcom: q6apm: remove child devices when apm is removed (git-fixes). * ASoC: qcom: qdsp6: topology: check widget type before accessing data (git- fixes). * ASoC: soc-core: call missing INIT_LIST_HEAD() for card_aux_list (stable- fixes). * ASoC: SOF: compress: return the configured codec from get_params (git- fixes). * ASoC: SOF: Don't allow pointer operations on unconfigured streams (git- fixes). * ASoC: SOF: Intel: hda: Place check before dereference (git-fixes). * ASoC: SOF: topology: reject invalid vendor array size in token parser (stable-fixes). * ASoC: sti: Return errors from regmap_field_alloc() (git-fixes). * ASoC: sti: use managed regmap_field allocations (git-fixes). * ASoC: stm32_sai: fix incorrect BCLK polarity for DSP_A/B, LEFT_J (stable- fixes). * ata: ahci: force 32-bit DMA for JMicron JMB582/JMB585 (stable-fixes). * batman-adv: bla: only purge non-released claims (git-fixes). * batman-adv: bla: prevent use-after-free when deleting claims (git-fixes). * batman-adv: bla: put backbone reference on failed claim hash insert (git- fixes). * batman-adv: fix integer overflow on buff_pos (git-fixes). * batman-adv: hold claim backbone gateways by reference (git-fixes). * batman-adv: reject new tp_meter sessions during teardown (git-fixes). * batman-adv: reject oversized global TT response buffers (git-fixes). * batman-adv: stop caching unowned originator pointers in BAT IV (git-fixes). * Bluetooth: bnep: fix incorrect length parsing in bnep_rx_frame() extension handling (git-fixes). * Bluetooth: fix locking in hci_conn_request_evt() with HCI_PROTO_DEFER (git- fixes). * Bluetooth: hci_event: Fix OOB read and infinite loop in hci_le_create_big_complete_evt (git-fixes). * Bluetooth: hci_event: fix potential UAF in SSP passkey handlers (git-fixes). * Bluetooth: hci_ldisc: Clear HCI_UART_PROTO_INIT on error (git-fixes). * Bluetooth: HIDP: serialise l2cap_unregister_user via hidp_session_sem (git- fixes). * Bluetooth: ISO: Fix data-race on dst in iso_sock_connect() (git-fixes). * Bluetooth: l2cap: Add missing chan lock in l2cap_ecred_reconf_rsp (git- fixes). * Bluetooth: l2cap: fix MPS check in l2cap_ecred_reconf_req (git-fixes). * Bluetooth: L2CAP: Fix null-ptr-deref in l2cap_sock_new_connection_cb() (git- fixes). * Bluetooth: L2CAP: Fix null-ptr-deref in l2cap_sock_state_change_cb() (git- fixes). * Bluetooth: L2CAP: Fix printing wrong information if SDU length exceeds MTU (git-fixes). * Bluetooth: RFCOMM: pull credit byte with skb_pull_data() (git-fixes). * Bluetooth: SCO: check for codecs->num_codecs == 1 before assigning to sco_pi(sk)->codec (git-fixes). * Bluetooth: SCO: fix sleeping under spinlock in sco_conn_ready (git-fixes). * Bluetooth: SCO: hold sk properly in sco_conn_ready (git-fixes). * Bluetooth: virtio_bt: clamp rx length before skb_put (git-fixes). * Bluetooth: virtio_bt: validate rx pkt_type header length (git-fixes). * btrfs: do not skip logging new dentries when logging a new name (git-fixes). * btrfs: reject root items with drop_progress and zero drop_level (git-fixes). * btrfs: replace BUG() with error handling in __btrfs_balance() (git-fixes). * can: mcp251x: add error handling for power enable in open and resume (stable-fixes). * can: raw: fix ro->uniq use-after-free in raw_rcv() (git-fixes). * can: ucan: fix devres lifetime (git-fixes). * cdc-acm: new quirk for EPSON HMD (stable-fixes). * check-for-config-changes: Exclude CC_MS_EXTENSIONS. * check-for-config-changes: Exclude HAVE_CFI_ICALL_NORMALIZE_INTEGERS{,_RUSTC}. * checkpatch: add support for Assisted-by tag (stable-fixes). * comedi: dt2815: add hardware detection to prevent crash (stable-fixes). * crypto: algif_aead - Fix minimum RX size check for decryption (git-fixes). * crypto: arm64/aes - Fix 32-bit aes_mac_update() arg treated as 64-bit (git- fixes). * crypto: atmel-aes - Fix 3-page memory leak in atmel_aes_buff_cleanup (git- fixes). * crypto: atmel-ecc - Release client on allocation failure (git-fixes). * crypto: atmel-sha204a - Fix potential UAF and memory leak in remove path (git-fixes). * crypto: atmel-tdes - fix DMA sync direction (git-fixes). * crypto: authencesn - reject short ahash digests during instance creation (git-fixes). * crypto: ccp - copy IV using skcipher ivsize (git-fixes). * crypto: ccp: Don't attempt to copy CSR to userspace if PSP command failed (git-fixes). * crypto: ccp: Don't attempt to copy ID to userspace if PSP command failed (git-fixes). * crypto: ccp: Don't attempt to copy PDH cert to userspace if PSP command failed (git-fixes). * crypto: ccree - fix a memory leak in cc_mac_digest() (git-fixes). * crypto: hisilicon - Fix dma_unmap_single() direction (git-fixes). * crypto: jitterentropy - replace long-held spinlock with mutex (git-fixes). * crypto: pcrypt - Fix handling of MAY_BACKLOG requests (git-fixes). * crypto: qat - fix type mismatch in RAS sysfs show functions (git-fixes). * crypto: qat - use swab32 macro (git-fixes). * crypto: sa2ul - Fix AEAD fallback algorithm names (git-fixes). * crypto: simd - reject compat registrations without __ prefixes (git-fixes). * crypto: talitos - fix SEC1 32k ahash request limitation (git-fixes). * crypto: testmgr - Hide ENOENT errors (stable-fixes). * crypto: testmgr - Hide ENOENT errors better (git-fixes). * devres: fix missing node debug info in devm_krealloc() (git-fixes). * dm init: ensure device probing has finished in dm-mod.waitfor= (git-fixes). * dmaengine: dw-axi-dmac: Remove unnecessary return statement from void function (git-fixes). * dmaengine: mxs-dma: Fix missing return value from of_dma_controller_register() (git-fixes). * drm/amd/display: Add NULL check for integrated_info in clk_mgr_construct (git-fixes). * drm/amd/display: Allow DCE link encoder without AUX registers (git-fixes). * drm/amd/display: Avoid NULL dereference in dc_dmub_srv error paths (git- fixes). * drm/amd/display: Disable 10-bit truncation and dithering on DCE 6.x (git- fixes). * drm/amd/display: Read EDID from VBIOS embedded panel info (git-fixes). * drm/amd/pm/ci: Clear EnabledForActivity field for memory levels (git-fixes). * drm/amd/pm/ci: Disable MCLK DPM on problematic CI ASICs (git-fixes). * drm/amd/pm/ci: Fill DW8 fields from SMC (git-fixes). * drm/amd/pm/ci: Fix powertune defaults for Hawaii 0x67B0 (git-fixes). * drm/amd/pm/ci: Use highest MCLK on CI when MCLK DPM is disabled (git-fixes). * drm/amd/pm/smu7: Add SCLK cap for quirky Hawaii board (git-fixes). * drm/amd/pm/smu7: Fix SMU7 voltage dependency on display clock (git-fixes). * drm/amdgpu/gfx6: Support harvested SI chips with disabled TCCs (v2) (git- fixes). * drm/amdgpu/gfx9: drop unnecessary 64-bit fence flag check in KIQ (stable- fixes). * drm/amdgpu/gfx10: look at the right prop for gfx queue priority (git-fixes). * drm/amdgpu/gmc: Fix AMDGPU_GART_PLACEMENT_LOW to not overlap with VRAM (git- fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v2.0 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v2.5 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v3.0 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v4.0 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v4.0.3 ring (git-fixes). * drm/amdgpu/jpeg: set no_user_fence for JPEG v4.0.5 ring (git-fixes). * drm/amdgpu/pm: add missing revision check for CI (git-fixes). * drm/amdgpu/pm: align Hawaii mclk workaround with radeon (git-fixes). * drm/amdgpu/sdma4: replace BUG_ON with WARN_ON in fence emission (git-fixes). * drm/amdgpu/vce: Prevent partial address patches (stable-fixes). * drm/amdgpu/vcn3: Avoid overflow on msg bound check (git-fixes). * drm/amdgpu/vcn3: Prevent OOB reads when parsing dec msg (stable-fixes). * drm/amdgpu/vcn4: Avoid overflow on msg bound check (git-fixes). * drm/amdgpu/vcn4: Prevent OOB reads when parsing dec msg (stable-fixes). * drm/amdgpu/vcn4: Prevent OOB reads when parsing IB (stable-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v2.0 enc/dec rings (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v2.5 enc/dec rings (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v3.0 enc/dec rings (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v4.0 enc ring (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v4.0.3 enc ring (git-fixes). * drm/amdgpu/vcn: set no_user_fence for VCN v4.0.5 enc ring (git-fixes). * drm/amdgpu: Add bounds checking to ib_{get,set}_value (stable-fixes). * drm/amdgpu: fix AMDGPU_INFO_READ_MMR_REG (git-fixes). * drm/amdgpu: fix zero-size GDS range init on RDNA4 (stable-fixes). * drm/amdgpu: zero-initialize GART table on allocation (stable-fixes). * drm/amdkfd: Add upper bound check for num_of_nodes (stable-fixes). * drm/amdkfd: Clear VRAM on allocation to prevent stale data exposure (stable- fixes). * drm/amdkfd: validate SVM ioctl nattr against buffer size (stable-fixes). * drm/arcpgu: fix device node leak (git-fixes). * drm/bridge: cadence: cdns-mhdp8546-core: Add mode_valid hook to drm_bridge_funcs (git-fixes). * drm/bridge: cadence: cdns-mhdp8546-core: Handle HDCP state in bridge atomic check (git-fixes). * drm/bridge: cadence: cdns-mhdp8546-core: Set the mhdp connector earlier in atomic_enable() (git-fixes). * drm/etnaviv: Fix armed job not being pushed to the DRM scheduler (git- fixes). * drm/fb-helper: Fix clipping when damage area spans a single scanline (git- fixes). * drm/gem: Fix inconsistent plane dimension calculation in drm_gem_fb_init_with_funcs() (git-fixes). * drm/gma500/oaktrail_hdmi: fix i2c adapter leak on setup (git-fixes). * drm/gma500/oaktrail_lvds: fix hang on init failure (git-fixes). * drm/gma500/oaktrail_lvds: fix i2c adapter leaks on init (git-fixes). * drm/i915/dp: Fix VSC dynamic range signaling for RGB formats (git-fixes). * drm/i915/gt: fix refcount underflow in intel_engine_park_heartbeat (git- fixes). * drm/i915/wm: Verify the correct plane DDB entry (git-fixes). * drm/i915: skip __i915_request_skip() for already signaled requests (git- fixes). * drm/komeda: fix integer overflow in AFBC framebuffer size check (git-fixes). * drm/msm/a6xx: Fix dumping A650+ debugbus blocks (git-fixes). * drm/msm/a6xx: Fix HLSQ register dumping (git-fixes). * drm/msm/a6xx: Use barriers while updating HFI Q headers (git-fixes). * drm/msm/dpu: fix mismatch between power and frequency (git-fixes). * drm/msm/dsi: add the missing parameter description (git-fixes). * drm/msm/dsi: fix bits_per_pclk (git-fixes). * drm/msm/dsi: fix hdisplay calculation for CMD mode panel (git-fixes). * drm/msm/dsi: rename MSM8998 DSI version from V2_2_0 to V2_0_0 (git-fixes). * drm/msm/shrinker: Fix can_block() logic (git-fixes). * drm/nouveau: fix u32 overflow in pushbuf reloc bounds check (git-fixes). * drm/panel: sharp-ls043t1le01: make use of prepare_prev_first (git-fixes). * drm/panel: simple: Correct G190EAN01 prepare timing (git-fixes). * drm/panfrost: Fix wait_bo ioctl leaking positive return from dma_resv_wait_timeout() (git-fixes). * drm/radeon: add missing revision check for CI (git-fixes). * drm/sun4i: backend: fix error pointer dereference (git-fixes). * drm/sun4i: Fix resource leaks (git-fixes). * drm/vc4: Fix a memory leak in hang state error path (git-fixes). * drm/vc4: Fix memory leak of BO array in hang state (git-fixes). * drm/vc4: platform_get_irq_byname() returns an int (stable-fixes). * drm/vc4: Protect madv read in vc4_gem_object_mmap() with madv_lock (git- fixes). * drm/vc4: Release runtime PM reference after binding V3D (git-fixes). * drm/vram: remove DRM_VRAM_MM_FILE_OPERATIONS from docs (git-fixes). * dt-bindings: net: Fix Tegra234 MGBE PTP clock (git-fixes). * efi/capsule-loader: fix incorrect sizeof in phys array reallocation (git- fixes). * efi: pstore: Drop efivar lock when efi_pstore_open() returns with an error (git-fixes). * ext4: fix fsync(2) for nojournal mode (git-fixes). * ext4: make recently_deleted() properly work with lazy itable initialization (git-fixes). * ext4: reject mount if bigalloc with s_first_data_block != 0 (git-fixes). * extcon: ptn5150: handle pending IRQ events during system resume (git-fixes). * fbdev: matroxfb: Mark variable with __maybe_unused to avoid W=1 build break (git-fixes). * fbdev: offb: fix PCI device reference leak on probe failure (git-fixes). * fbdev: tdfxfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO (stable-fixes). * fbdev: udlfb: add vm_ops to dlfb_ops_mmap to prevent use-after-free (stable- fixes). * fbdev: udlfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO (git-fixes). * firmware: dmi: Correct an indexing error in dmi.h (git-fixes). * gpio: tegra: fix irq_release_resources calling enable instead of disable (git-fixes). * gtp: disable BH before calling udp_tunnel_xmit_skb() (git-fixes). * HID: alps: fix NULL pointer dereference in alps_raw_event() (git-fixes). * HID: asus: do not abort probe when not necessary (git-fixes). * HID: asus: make asus_resume adhere to linux kernel coding standards (git- fixes). * HID: core: clamp report_size in s32ton() to avoid undefined shift (stable- fixes). * HID: multitouch: Check to ensure report responses match the request (stable- fixes). * HID: playstation: Clamp num_touch_reports (git-fixes). * HID: quirks: add HID_QUIRK_ALWAYS_POLL for 8BitDo Pro 3 (stable-fixes). * HID: roccat: fix use-after-free in roccat_report_event (stable-fixes). * HID: usbhid: fix deadlock in hid_post_reset() (git-fixes). * HID: wacom: fix out-of-bounds read in wacom_intuos_bt_irq (stable-fixes). * hv_sock: fix ARM64 support (git-fixes). * hwmon: (ads7871) Fix endianness bug in 16-bit register reads (git-fixes). * hwmon: (corsair-psu) Close HID device on probe errors (git-fixes). * hwmon: (lm63) Add locking to avoid TOCTOU (git-fixes). * hwmon: (ltc2992) Clamp threshold writes to hardware range (git-fixes). * hwmon: (ltc2992) Fix u32 overflow in power read path (git-fixes). * i2c: s3c24xx: check the size of the SMBUS message before using it (stable- fixes). * i2c: smbus: reject oversized block transfers in the common path (git-fixes). * i2c: stm32f7: reinit_completion() per transfer not per msg (git-fixes). * i2c: stub: Reject I2C block transfers with invalid length (git-fixes). * i3c: master: Fix error codes at send_ccc_cmd (git-fixes). * i3c: mipi-i3c-hci: fix IBI payload length calculation for final status (git- fixes). * ibmveth: Disable GSO for packets with small MSS (bsc#1265144). * ice: set max queues in alloc_etherdev_mqs() (git-fixes). * iio: adc: ad7768-1: fix one-shot mode data acquisition (git-fixes). * iio: adc: ti-adc161s626: use DMA-safe memory for spi_read() (git-fixes). * iio: adc: ti-ads7950: use iio_push_to_buffers_with_ts_unaligned() (git- fixes). * Input: i8042 - add TUXEDO InfinityBook Max 16 Gen10 AMD to i8042 quirk table (stable-fixes). * Input: uinput - fix circular locking dependency with ff-core (git-fixes). * Input: uinput - take event lock when submitting FF request "event" (stable- fixes). * Input: xpad - add support for BETOP BTP-KP50B/C controller's wireless mode (stable-fixes). * Input: xpad - add support for Razer Wolverine V3 Pro (stable-fixes). * ipmi: Add limits to event and receive message requests (git-fixes). * ipmi: Check event message buffer response for bad data (git-fixes). * ipmi: ssif_bmc: change log level to dbg in irq callback (git-fixes). * ipmi: ssif_bmc: fix message desynchronization after truncated response (git- fixes). * ipmi: ssif_bmc: fix missing check for copy_to_user() partial failure (git- fixes). * irqchip/irq-pic32-evic: Address warning related to wrong printf() formatter (git-fixes). * kdump, documentation: describe craskernel CMA reservation (jsc#PED-7249). * KVM: Reject wrapped offset in kvm_reset_dirty_gfn() (git-fixes). * KVM: SVM: Mark VMCB_NPT as dirty on nested VMRUN (git-fixes). * KVM: SVM: Mark VMCB_PERM_MAP as dirty on nested VMRUN (git-fixes). * KVM: x86/mmu: Retry fault before acquiring mmu_lock if mapping is changing (bsc#1253122). * KVM: x86/xen: Fix cleanup logic in emulation of Xen schedop poll hypercalls (git-fixes). * KVM: x86: check for nEPT/nNPT in slow flush hypercalls (git-fixes). * KVM: x86: Fix shadow paging use-after-free due to unexpected GFN (git- fixes). * KVM: x86: hyper-v: Validate all GVAs during PV TLB flush (git-fixes). * KVM: x86: Ignore cpuid faulting in SMM (git-fixes). * leds: lgm-sso: Remove duplicate assignments for priv->mmap (git-fixes). * lib/hexdump: print_hex_dump_bytes() calls print_hex_dump_debug() (git- fixes). * media: amphion: Fix race between m2m job_abort and device_run (git-fixes). * media: as102: fix to not free memory after the device is registered in as102_usb_probe() (git-fixes). * media: dib8000: avoid division by 0 in dib8000_set_dds() (git-fixes). * media: em28xx: fix use-after-free in em28xx_v4l2_open() (git-fixes). * media: hackrf: fix to not free memory after the device is registered in hackrf_probe() (git-fixes). * media: i2c: imx219: Check return value of devm_gpiod_get_optional() in imx219_probe() (git-fixes). * media: i2c: imx412: Assert reset GPIO during probe (git-fixes). * media: i2c: ov08d10: fix image vertical start setting (git-fixes). * media: i2c: ov8856: free control handler on error in ov8856_init_controls() (git-fixes). * media: mtk-jpeg: fix use-after-free in release path due to uncancelled work (git-fixes). * media: omap3isp: drop the use count of v4l2 pipeline (git-fixes). * media: pci: zoran: fix potential memory leak in zoran_probe() (git-fixes). * media: rc: streamzap: Error handling in probe (git-fixes). * media: rc: xbox_remote: heed DMA restrictions (git-fixes). * media: saa7164: add ioremap return checks and cleanups (git-fixes). * media: staging: imx: configure src_mux in csi_start (git-fixes). * media: staging: imx: request mbus_config in csi_start (git-fixes). * media: uvcvideo: Enable VB2_DMABUF for metadata stream (git-fixes). * media: videobuf2: Set vma_flags in vb2_dma_sg_mmap (git-fixes). * media: vidtv: fix nfeeds state corruption on start_streaming failure (git- fixes). * media: vidtv: fix NULL pointer dereference in vidtv_channel_pmt_match_sections (git-fixes). * media: vidtv: fix pass-by-value structs causing MSAN warnings (git-fixes). * memory: tegra30-emc: Fix dll_change check (git-fixes). * memory: tegra124-emc: Fix dll_change check (git-fixes). * mfd: mc13xxx-core: Fix memory leak in mc13xxx_add_subdevice_pdata() (git- fixes). * mkspec: Add signature to source list only when it exists. * mmc: sdhci-of-dwcmshc: Disable clock before DLL configuration (git-fixes). * mmc: vub300: fix NULL-deref on disconnect (git-fixes). * modpost: Amend ppc64 save/restfpr symnames for -Os build (bsc#1215199). * mtd: docg3: Convert to platform remove callback returning void (stable- fixes). * mtd: docg3: fix use-after-free in docg3_release() (git-fixes). * mtd: parsers: ofpart: call of_node_get() for dedicated subpartitions (git- fixes). * mtd: parsers: ofpart: call of_node_put() only in ofpart_fail path (git- fixes). * mtd: physmap_of_gemini: Fix disabled pinctrl state check (git-fixes). * mtd: rawnand: sunxi: fix sunxi_nfc_hw_ecc_read_extra_oob (git-fixes). * mtd: spi-nor: core: correct the op.dummy.nbytes when check read operations (git-fixes). * mtd: spi-nor: sst: Factor out common write operation to `sst_nor_write_data()` (stable-fixes). * mtd: spi-nor: sst: Fix SST write failure (git-fixes). * mtd: spi-nor: sst: Fix write enable before AAI sequence (git-fixes). * mtd: spi-nor: swp: check SR_TB flag when getting tb_mask (git-fixes). * net/rds: reset op_nents when zerocopy page pin fails (bsc#1265626). * net/sched: cls_fw: fix NULL dereference of "old" filters before change() (git-fixes). * net/sched: fix pedit partial COW leading to page cache corruption (bsc#1265421). * net: gro: don't merge zcopy skbs (git-fixes). * net: mana: Add MAC address to vPort logs and clarify error messages (git- fixes). * net: mana: check xdp_rxq registration before unreg in mana_destroy_rxq() (git-fixes). * net: mana: Don't overwrite port probe error with add_adev result (git- fixes). * net: mana: Fix crash from unvalidated SHM offset read from BAR0 during FLR (bsc#1265846). * net: mana: Fix EQ leak in mana_remove on NULL port (git-fixes). * net: mana: Fix RX skb truesize accounting (bsc#1248754). * net: mana: fix use-after-free in mana_hwc_destroy_channel() by reordering teardown (git-fixes). * net: mana: Guard mana_remove against double invocation (git-fixes). * net: mana: hardening: Validate adapter_mtu from MANA_QUERY_DEV_CONFIG (git- fixes). * net: mana: hardening: Validate doorbell ID from GDMA_REGISTER_DEVICE response (git-fixes). * net: mana: Init gf_stats_work before potential error paths in probe (git- fixes). * net: mana: Init link_change_work before potential error paths in probe (git- fixes). * net: mana: remove double CQ cleanup in mana_create_rxq error path (git- fixes). * net: mana: Set default number of queues to 16 (bsc#1261648). * net: mana: Skip WQ object destruction for uninitialized RXQ (git-fixes). * net: mana: Use at least SZ_4K in doorbell ID range check (git-fixes). * net: mana: Use pci_name() for debugfs directory naming (git-fixes). * net: phy: dp83869: fix setting CLK_O_SEL field (git-fixes). * net: stmmac: Fix PTP ref clock for Tegra234 (git-fixes). * net: usb: asix: ax88772: re-add usbnet_link_change() in phylink callbacks (git-fixes). * net: usb: cdc-phonet: fix skb frags[] overflow in rx_complete() (git-fixes). * net: usb: rtl8150: fix use-after-free in rtl8150_start_xmit() (git-fixes). * net: usb: rtl8150: free skb on usb_submit_urb() failure in xmit (git-fixes). * net: wan: fsl_ucc_hdlc: fix ucc_hdlc_remove (git-fixes). * net: wan: fsl_ucc_hdlc: fix uhdlc_memclean (git-fixes). * net: wan: fsl_ucc_hdlc: free tx_skbuff in uhdlc_memclean (git-fixes). * NFC: digital: Bounds check NFC-A cascade depth in SDD response handler (git- fixes). * nfc: llcp: add missing return after LLCP_CLOSED checks (git-fixes). * nfc: pn533: allocate rx skb before consuming bytes (git-fixes). * nfc: s3fwrn5: allocate rx skb before consuming bytes (git-fixes). * NFC: trf7970a: Ignore antenna noise when checking for RF field (git-fixes). * nvmet-tcp: propagate nvmet_tcp_build_pdu_iovec() errors to its callers (git- fixes). * ocfs2: fix possible deadlock between unlink and dio_end_io_write (bsc#1258718). * ocfs2: split transactions in dio completion to avoid credit exhaustion (bsc#1258718). * PCI/AER: Clear only error bits in PCIe Device Status (git-fixes). * PCI/AER: Stop ruling out unbound devices as error source (git-fixes). * PCI: dwc: Apply ECRC workaround to DesignWare 5.00a as well (git-fixes). * PCI: Enable AtomicOps only if Root Port supports them (git-fixes). * PCI: endpoint: pci-epf-ntb: Remove duplicate resource teardown (git-fixes). * PCI: hv: Set default NUMA node to 0 for devices without affinity info (git- fixes). * PCI: mediatek-gen3: Prevent leaking IRQ domains when IRQ not found (git- fixes). * PCI: tegra194: Allow system suspend when the Endpoint link is not up (git- fixes). * PCI: tegra194: Disable direct speed change for Endpoint mode (git-fixes). * PCI: tegra194: Disable LTSSM after transition to Detect on surprise link down (git-fixes). * PCI: tegra194: Disable PERST# IRQ only in Endpoint mode (git-fixes). * PCI: tegra194: Fix polling delay for L2 state (git-fixes). * PCI: tegra194: Increase LTSSM poll time on surprise link down (git-fixes). * PCI: tegra194: Set LTR message request before PCIe link up in Endpoint mode (git-fixes). * PCI: tegra194: Use devm_gpiod_get_optional() to parse "nvidia,refclk-select" (git-fixes). * PCI: tegra194: Use DWC IP core version (git-fixes). * pinctrl: abx500: Fix type of 'argument' variable (git-fixes). * pinctrl: Fix spelling problem (git-fixes). * pinctrl: intel: Fix the revision for new features (1kOhm PD, HW debouncer) (stable-fixes). * pinctrl: pic32: change all cases of bare 'unsigned' to 'unsigned int' (git- fixes). * pinctrl: pic32: use consistent spacing around '+' (git-fixes). * pinctrl: pinctrl-pic32: Fix resource leak (git-fixes). * platform/chrome: chromeos_tbmc: Drop wakeup source on remove (git-fixes). * platform/surface: surfacepro3_button: Drop wakeup source on remove (git- fixes). * platform/x86/amd: pmc: Add Thinkpad L14 Gen3 to quirk_s2idle_bug (stable- fixes). * platform/x86: dell-wmi-sysman: bound enumeration string aggregation (git- fixes). * platform/x86: dell_rbu: avoid uninit value usage in packet_size_write() (git-fixes). * platform/x86: hp-wmi: Ignore backlight and FnLock events (stable-fixes). * platform/x86: panasonic-laptop: Fix OPTD notifier registration and cleanup (git-fixes). * power: supply: axp288_charger: Do not cancel work before initializing it (git-fixes). * power: supply: max17042: avoid overflow when determining health (git-fixes). * powerpc/crash: fix backup region offset update to elfcorehdr (bsc#1259535). * RDMA/mana: Fix error unwind in mana_ib_create_qp_rss() (git-fixes). * RDMA/mana: Fix mana_destroy_wq_obj() cleanup in mana_ib_create_qp_rss() (git-fixes). * RDMA/mana: Remove user triggerable WARN_ON() in mana_ib_create_qp_rss() (git-fixes). * RDMA/mana: Validate rx_hash_key_len (git-fixes). * RDMA/mana_ib: cleanup the usage of mana_gd_send_request() (git-fixes). * RDMA/mana_ib: Disable RX steering on RSS QP destroy (git-fixes). * RDMA/mana_ib: Support memory windows (git-fixes). * regulator: act8945a: fix OF node reference imbalance (git-fixes). * regulator: bd9571mwv: fix OF node reference imbalance (git-fixes). * regulator: max77650: fix OF node reference imbalance (git-fixes). * regulator: mt6357: fix OF node reference imbalance (git-fixes). * remoteproc: xlnx: Only access buffer information if IPI is buffered (git- fixes). * Revert "ALSA: usb: Increase volume range that triggers a warning" (git- fixes). * rtc: abx80x: Disable alarm feature if no interrupt attached (git-fixes). * rtc: ntxec: fix OF node reference imbalance (git-fixes). * sched/balancing: Switch the 'DEFINE_SPINLOCK(balancing)' spinlock into an 'atomic_t sched_balance_running' flag (bsc#1253754). * sched/fair: Change likelyhood of nohz.nr_cpus (bsc#1234634 bsc#1258961). * sched/fair: Have SD_SERIALIZE affect newidle balancing (bsc#1253754). * sched/fair: Move checking for nohz cpus after time check (bsc#1234634 bsc#1258961). * sched/fair: Remove nohz.nr_cpus and use weight of cpumask instead (bsc#1234634 bsc#1258961). * sched/fair: Skip sched_balance_running cmpxchg when balance is not due (bsc#1253754). * scsi: storvsc: Handle PERSISTENT_RESERVE_IN truncation for Hyper-V vFC (git- fixes). * scsi: target: iscsi: validate CHAP_R length before base64 decode (bsc#1265449). * soc/tegra: cbb: Set ERD on resume for err interrupt (git-fixes). * soc: qcom: aoss: compare against normalized cooling state (git-fixes). * soc: qcom: llcc: fix v1 SB syndrome register offset (git-fixes). * sound: ua101: fix division by zero at probe (git-fixes). * soundwire: bus: demote UNATTACHED state warnings to dev_dbg() (git-fixes). * soundwire: cadence: Clear message complete before signaling waiting thread (git-fixes). * spi: at91-usart: fix controller deregistration (git-fixes). * spi: atmel: fix controller deregistration (git-fixes). * spi: cadence: fix controller deregistration (git-fixes). * spi: fix controller cleanup() documentation (git-fixes). * spi: fix misleading controller deregistration kernel-doc (git-fixes). * spi: fix misleading controller registration kernel-doc (git-fixes). * spi: fsl-qspi: Use reinit_completion() for repeated operations (git-fixes). * spi: hisi-kunpeng: prevent infinite while() loop in hisi_spi_flush_fifo (git-fixes). * spi: imx: fix runtime pm leak on probe deferral (git-fixes). * spi: imx: fix use-after-free on unbind (git-fixes). * spi: microchip-core-qspi: fix controller deregistration (git-fixes). * spi: microchip-core-qspi: Use helper function devm_clk_get_enabled() (stable-fixes). * spi: mpc52xx: fix use-after-free on unbind (git-fixes). * spi: mtk-nor: fix controller deregistration (git-fixes). * spi: mtk-snfi: unregister ECC engine on probe failure and remove() callback (git-fixes). * spi: omap2-mcspi: fix controller deregistration (git-fixes). * spi: orion: fix clock imbalance on registration failure (git-fixes). * spi: orion: fix runtime pm leak on unbind (git-fixes). * spi: rockchip: fix controller deregistration (git-fixes). * spi: rspi: fix controller deregistration (git-fixes). * spi: sh-hspi: fix controller deregistration (git-fixes). * spi: spi-ti-qspi: Convert to platform remove callback returning void (stable-fixes). * spi: sprd: fix controller deregistration (git-fixes). * spi: sun4i: fix controller deregistration (git-fixes). * spi: sun4i: switch to use modern name (stable-fixes). * spi: syncuacer: fix controller deregistration (git-fixes). * spi: synquacer: switch to use modern name (stable-fixes). * spi: uniphier: fix controller deregistration (git-fixes). * spi: uniphier: Simplify clock handling with devm_clk_get_enabled() (stable- fixes). * spi: uniphier: switch to use modern name (stable-fixes). * spi: zynq-qspi: switch to use modern name (stable-fixes). * spi: zynqmp-gqspi: fix controller deregistration (git-fixes). * staging: media: atomisp: Disallow all private IOCTLs (git-fixes). * staging: rtl8723bs: initialize le_tmp64 in rtw_BIP_verify() (git-fixes). * staging: sm750fb: fix division by zero in ps_to_hz() (git-fixes). * staging: vme_user: added bound check to geoid (stable-fixes). * staging: vme_user: fix root device leak on init failure (git-fixes). * thermal/drivers/spear: Fix error condition for reading st,thermal-flags (git-fixes). * thermal/drivers/sprd: Fix raw temperature clamping in sprd_thm_rawdata_to_temp (git-fixes). * thermal/drivers/sprd: Fix temperature clamping in sprd_thm_temp_to_rawdata (git-fixes). * tpm: avoid -Wunused-but-set-variable (git-fixes). * tpm: tpm_tis: add error logging for data transfer (git-fixes). * tpm: tpm_tis: stop transmit if retries are exhausted (git-fixes). * tty: tty_io: update timestamps on all device nodes (bsc#1262020). * USB: cdc-acm: Add quirks for Yoga Book 9 14IAH10 INGENIC touchscreen (stable-fixes). * usb: chipidea: core: allow ci_irq_handler() handle both ID and VBUS change (git-fixes). * usb: chipidea: otg: not wait vbus drop if use role_switch (git-fixes). * USB: core: add NO_LPM quirk for Razer Kiyo Pro webcam (stable-fixes). * usb: gadget: dummy_hcd: fix premature URB completion when ZLP follows partial transfer (stable-fixes). * usb: gadget: f_ncm: validate minimum block_len in ncm_unwrap_ntb() (git- fixes). * usb: gadget: f_phonet: fix skb frags[] overflow in pn_rx_complete() (stable- fixes). * usb: gadget: f_uac1_legacy: validate control request size (stable-fixes). * usb: gadget: renesas_usb3: validate endpoint index in standard request handlers (git-fixes). * USB: omap_udc: DMA: Don't enable burst 4 mode (git-fixes). * usb: port: add delay after usb_hub_set_port_power() (git-fixes). * usb: quirks: add DELAY_INIT quirk for another Silicon Motion flash drive (stable-fixes). * USB: serial: io_edgeport: add support for Blackbox IC135A (stable-fixes). * USB: serial: option: add MeiG Smart SRM825WN (stable-fixes). * USB: serial: option: add support for Rolling Wireless RW135R-GL (stable- fixes). * USB: serial: option: add Telit Cinterion FN990A MBIM composition (stable- fixes). * USB: serial: option: add Telit Cinterion LE910Cx compositions (stable- fixes). * usb: storage: Expand range of matched versions for VL817 quirks entry (stable-fixes). * usb: ulpi: fix memory leak on ulpi_register() error paths (git-fixes). * usb: usblp: fix heap leak in IEEE 1284 device ID via short response (stable- fixes). * usb: usblp: fix uninitialized heap leak via LPGETSTATUS ioctl (stable- fixes). * usb: xhci: Make usb_host_endpoint.hcpriv survive endpoint_disable() (git- fixes). * usbip: validate number_of_packets in usbip_pack_ret_submit() (git-fixes). * virt: tdx-guest: Fix handling of host controlled 'quote' buffer length (git- fixes). * virt: tdx-guest: Return error for GetQuote failures (git-fixes). * wifi: ath5k: do not access array OOB (git-fixes). * wifi: ath9k: Fix typo (git-fixes). * wifi: ath11k: Pass the correct value of each TID during a stop AMPDU session (git-fixes). * wifi: ath11k: skip status ring entry processing (stable-fixes). * wifi: ath11k: Use dma_alloc_noncoherent for rx_tid buffer allocation (stable-fixes). * wifi: b43: enforce bounds check on firmware key index in b43_rx() (git- fixes). * wifi: b43legacy: enforce bounds check on firmware key index in RX path (git- fixes). * wifi: brcmfmac: Fix error pointer dereference (git-fixes). * wifi: brcmfmac: validate bsscfg indices in IF events (stable-fixes). * wifi: brcmsmac: Fix dma_free_coherent() size (git-fixes). * wifi: cw1200: Revert "Fix locking in error paths" (git-fixes). * wifi: libertas: notify firmware load wait on disconnect (git-fixes). * wifi: mac80211: check ieee80211_rx_data_set_link return in pubsta MLO path (git-fixes). * wifi: mac80211: drop stray 'static' from fast-RX rx_result (git-fixes). * wifi: mac80211: remove station if connection prep fails (git-fixes). * wifi: mt76: mt792x: describe USB WFSYS reset with a descriptor (stable- fixes). * wifi: mt76: mt792x: fix mt7925u USB WFSYS reset handling (git-fixes). * wifi: mt76: mt7615: fix use_cts_prot support (git-fixes). * wifi: mt76: mt7915: fix use-after-free bugs in mt7915_mac_dump_work() (git- fixes). * wifi: mt76: mt7915: fix use_cts_prot support (git-fixes). * wifi: mt76: mt7921: fix a potential clc buffer length underflow (git-fixes). * wifi: mt76: mt7921: fix ROC abort flow interruption in mt7921_roc_work (git- fixes). * wifi: mt76: mt7921: Reset ampdu_state state in case of failure in mt76_connac2_tx_check_aggr() (git-fixes). * wifi: mt76: mt7925: fix incorrect length field in txpower command (git- fixes). * wifi: mt76: mt7996: fix FCS error flag check in RX descriptor (git-fixes). * wifi: mt76: mt7996: fix struct mt7996_mcu_uni_event (git-fixes). * wifi: mwifiex: Fix memory leak in mwifiex_11n_aggregate_pkt() (git-fixes). * wifi: nl80211: fix NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST usage (git- fixes). * wifi: nl80211: require admin perm on SET_PMK / DEL_PMK (git-fixes). * wifi: rsi: fix kthread lifetime race between self-exit and external-stop (git-fixes). * wifi: rt2x00usb: fix devres lifetime (git-fixes). * wifi: rtlwifi: pci: fix possible use-after-free caused by unfinished irq_prepare_bcn_tasklet (git-fixes). * wifi: rtw88: check for PCI upstream bridge existence (git-fixes). * wifi: rtw88: fix device leak on probe failure (git-fixes). * wifi: rtw89: phy: fix uninitialized variable access in rtw89_phy_cfo_set_crystal_cap() (git-fixes). * wifi: wl1251: validate packet IDs before indexing tx_frames (stable-fixes). * workqueue: Break up enum definitions and give names to the types (bsc#1260522). * workqueue: Clean up enum work_bits and related constants (bsc#1260522). * workqueue: Factor out work_grab_pending() from __cancel_work_sync() (bsc#1260522). * workqueue: Fix UBSAN 'subtraction overflow' error in shift_and_mask() (bsc#1260522). * workqueue: Implement disable/enable for (delayed) work items (bsc#1260522). * workqueue: Introduce work_cancel_flags (bsc#1260522). * workqueue: Make @flags handling consistent across set_work_data() and friends (bsc#1260522). * workqueue: Preserve OFFQ bits in cancel[_sync] paths (bsc#1260522). * workqueue: Rename __cancel_work_timer() to __cancel_timer_sync() (bsc#1260522). * workqueue: Reorganize flush and cancel[_sync] functions (bsc#1260522). * x86/boot/64: Clear most of CR4 in startup_64(), except PAE, MCE and LA57 (git-fixes). * x86/boot/sev: Avoid shared GHCB page for early memory acceptance (git- fixes). * x86/boot: Don't add the EFI stub to targets, again (git-fixes). * x86/boot: Fix page table access in 5-level to 4-level paging transition (git-fixes). * X.509: Fix out-of-bounds access when parsing extensions (git-fixes). * Xarray: do not return sibling entries from xas_find_marked() (bsc#1263815). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro Extras 6.0 zypper in -t patch SUSE-SLE-Micro-Extras-6.0-kernel-435=1 ## Package List: * SUSE Linux Micro Extras 6.0 (nosrc) * kernel-default-6.4.0-46.1 * kernel-64kb-6.4.0-46.1 * SUSE Linux Micro Extras 6.0 (aarch64) * kernel-64kb-devel-6.4.0-46.1 * kernel-64kb-debugsource-6.4.0-46.1 * SUSE Linux Micro Extras 6.0 (aarch64 s390x x86_64) * kernel-obs-build-debugsource-6.4.0-46.1 * kernel-default-devel-6.4.0-46.1 * kernel-default-debugsource-6.4.0-46.1 * kernel-obs-build-6.4.0-46.1 * kernel-syms-6.4.0-46.1 * SUSE Linux Micro Extras 6.0 (x86_64) * kernel-default-devel-debuginfo-6.4.0-46.1 ## References: * https://www.suse.com/security/cve/CVE-2023-2058.html * https://www.suse.com/security/cve/CVE-2025-40219.html * https://www.suse.com/security/cve/CVE-2025-71183.html * https://www.suse.com/security/cve/CVE-2025-71238.html * https://www.suse.com/security/cve/CVE-2026-23168.html * https://www.suse.com/security/cve/CVE-2026-23209.html * https://www.suse.com/security/cve/CVE-2026-23236.html * https://www.suse.com/security/cve/CVE-2026-23237.html * https://www.suse.com/security/cve/CVE-2026-23239.html * https://www.suse.com/security/cve/CVE-2026-23240.html * https://www.suse.com/security/cve/CVE-2026-23245.html * https://www.suse.com/security/cve/CVE-2026-23246.html * https://www.suse.com/security/cve/CVE-2026-23253.html * https://www.suse.com/security/cve/CVE-2026-23260.html * https://www.suse.com/security/cve/CVE-2026-23264.html * https://www.suse.com/security/cve/CVE-2026-23266.html * https://www.suse.com/security/cve/CVE-2026-23268.html * https://www.suse.com/security/cve/CVE-2026-23269.html * https://www.suse.com/security/cve/CVE-2026-23271.html * https://www.suse.com/security/cve/CVE-2026-23273.html * https://www.suse.com/security/cve/CVE-2026-23276.html * https://www.suse.com/security/cve/CVE-2026-23279.html * https://www.suse.com/security/cve/CVE-2026-23290.html * https://www.suse.com/security/cve/CVE-2026-23291.html * https://www.suse.com/security/cve/CVE-2026-23298.html * https://www.suse.com/security/cve/CVE-2026-23300.html * https://www.suse.com/security/cve/CVE-2026-23306.html * https://www.suse.com/security/cve/CVE-2026-23307.html * https://www.suse.com/security/cve/CVE-2026-23308.html * https://www.suse.com/security/cve/CVE-2026-23312.html * https://www.suse.com/security/cve/CVE-2026-23313.html * https://www.suse.com/security/cve/CVE-2026-23315.html * https://www.suse.com/security/cve/CVE-2026-23318.html * https://www.suse.com/security/cve/CVE-2026-23321.html * https://www.suse.com/security/cve/CVE-2026-23324.html * https://www.suse.com/security/cve/CVE-2026-23325.html * https://www.suse.com/security/cve/CVE-2026-23336.html * https://www.suse.com/security/cve/CVE-2026-23339.html * https://www.suse.com/security/cve/CVE-2026-23340.html * https://www.suse.com/security/cve/CVE-2026-23346.html * https://www.suse.com/security/cve/CVE-2026-23351.html * https://www.suse.com/security/cve/CVE-2026-23357.html * https://www.suse.com/security/cve/CVE-2026-23362.html * https://www.suse.com/security/cve/CVE-2026-23363.html * https://www.suse.com/security/cve/CVE-2026-23365.html * https://www.suse.com/security/cve/CVE-2026-23367.html * https://www.suse.com/security/cve/CVE-2026-23368.html * https://www.suse.com/security/cve/CVE-2026-23370.html * https://www.suse.com/security/cve/CVE-2026-23372.html * https://www.suse.com/security/cve/CVE-2026-23373.html * https://www.suse.com/security/cve/CVE-2026-23374.html * https://www.suse.com/security/cve/CVE-2026-23378.html * https://www.suse.com/security/cve/CVE-2026-23382.html * https://www.suse.com/security/cve/CVE-2026-23391.html * https://www.suse.com/security/cve/CVE-2026-23392.html * https://www.suse.com/security/cve/CVE-2026-23393.html * https://www.suse.com/security/cve/CVE-2026-23396.html * https://www.suse.com/security/cve/CVE-2026-23397.html * https://www.suse.com/security/cve/CVE-2026-23399.html * https://www.suse.com/security/cve/CVE-2026-23403.html * https://www.suse.com/security/cve/CVE-2026-23404.html * https://www.suse.com/security/cve/CVE-2026-23405.html * https://www.suse.com/security/cve/CVE-2026-23406.html * https://www.suse.com/security/cve/CVE-2026-23407.html * https://www.suse.com/security/cve/CVE-2026-23408.html * https://www.suse.com/security/cve/CVE-2026-23409.html * https://www.suse.com/security/cve/CVE-2026-23410.html * https://www.suse.com/security/cve/CVE-2026-23411.html * https://www.suse.com/security/cve/CVE-2026-23420.html * https://www.suse.com/security/cve/CVE-2026-23426.html * https://www.suse.com/security/cve/CVE-2026-23434.html * https://www.suse.com/security/cve/CVE-2026-23440.html * https://www.suse.com/security/cve/CVE-2026-23441.html * https://www.suse.com/security/cve/CVE-2026-23442.html * https://www.suse.com/security/cve/CVE-2026-23443.html * https://www.suse.com/security/cve/CVE-2026-23446.html * https://www.suse.com/security/cve/CVE-2026-23447.html * https://www.suse.com/security/cve/CVE-2026-23448.html * https://www.suse.com/security/cve/CVE-2026-23449.html * https://www.suse.com/security/cve/CVE-2026-23450.html * https://www.suse.com/security/cve/CVE-2026-23452.html * https://www.suse.com/security/cve/CVE-2026-23455.html * https://www.suse.com/security/cve/CVE-2026-23456.html * https://www.suse.com/security/cve/CVE-2026-23457.html * https://www.suse.com/security/cve/CVE-2026-23458.html * https://www.suse.com/security/cve/CVE-2026-23460.html * https://www.suse.com/security/cve/CVE-2026-23461.html * https://www.suse.com/security/cve/CVE-2026-23462.html * https://www.suse.com/security/cve/CVE-2026-23463.html * https://www.suse.com/security/cve/CVE-2026-23465.html * https://www.suse.com/security/cve/CVE-2026-23468.html * https://www.suse.com/security/cve/CVE-2026-23472.html * https://www.suse.com/security/cve/CVE-2026-23473.html * https://www.suse.com/security/cve/CVE-2026-23474.html * https://www.suse.com/security/cve/CVE-2026-23475.html * https://www.suse.com/security/cve/CVE-2026-31389.html * https://www.suse.com/security/cve/CVE-2026-31393.html * https://www.suse.com/security/cve/CVE-2026-31400.html * https://www.suse.com/security/cve/CVE-2026-31402.html * https://www.suse.com/security/cve/CVE-2026-31403.html * https://www.suse.com/security/cve/CVE-2026-31404.html * https://www.suse.com/security/cve/CVE-2026-31405.html * https://www.suse.com/security/cve/CVE-2026-31407.html * https://www.suse.com/security/cve/CVE-2026-31408.html * https://www.suse.com/security/cve/CVE-2026-31411.html * https://www.suse.com/security/cve/CVE-2026-31412.html * https://www.suse.com/security/cve/CVE-2026-31415.html * https://www.suse.com/security/cve/CVE-2026-31416.html * https://www.suse.com/security/cve/CVE-2026-31417.html * https://www.suse.com/security/cve/CVE-2026-31420.html * https://www.suse.com/security/cve/CVE-2026-31421.html * https://www.suse.com/security/cve/CVE-2026-31422.html * https://www.suse.com/security/cve/CVE-2026-31423.html * https://www.suse.com/security/cve/CVE-2026-31424.html * https://www.suse.com/security/cve/CVE-2026-31425.html * https://www.suse.com/security/cve/CVE-2026-31426.html * https://www.suse.com/security/cve/CVE-2026-31427.html * https://www.suse.com/security/cve/CVE-2026-31428.html * https://www.suse.com/security/cve/CVE-2026-31436.html * https://www.suse.com/security/cve/CVE-2026-31449.html * https://www.suse.com/security/cve/CVE-2026-31470.html * https://www.suse.com/security/cve/CVE-2026-31488.html * https://www.suse.com/security/cve/CVE-2026-31494.html * https://www.suse.com/security/cve/CVE-2026-31496.html * https://www.suse.com/security/cve/CVE-2026-31504.html * https://www.suse.com/security/cve/CVE-2026-31505.html * https://www.suse.com/security/cve/CVE-2026-31507.html * https://www.suse.com/security/cve/CVE-2026-31512.html * https://www.suse.com/security/cve/CVE-2026-31515.html * https://www.suse.com/security/cve/CVE-2026-31519.html * https://www.suse.com/security/cve/CVE-2026-31525.html * https://www.suse.com/security/cve/CVE-2026-31528.html * https://www.suse.com/security/cve/CVE-2026-31533.html * https://www.suse.com/security/cve/CVE-2026-31550.html * https://www.suse.com/security/cve/CVE-2026-31565.html * https://www.suse.com/security/cve/CVE-2026-31570.html * https://www.suse.com/security/cve/CVE-2026-31586.html * https://www.suse.com/security/cve/CVE-2026-31588.html * https://www.suse.com/security/cve/CVE-2026-31602.html * https://www.suse.com/security/cve/CVE-2026-31607.html * https://www.suse.com/security/cve/CVE-2026-31622.html * https://www.suse.com/security/cve/CVE-2026-31649.html * https://www.suse.com/security/cve/CVE-2026-31656.html * https://www.suse.com/security/cve/CVE-2026-31662.html * https://www.suse.com/security/cve/CVE-2026-31668.html * https://www.suse.com/security/cve/CVE-2026-31669.html * https://www.suse.com/security/cve/CVE-2026-31675.html * https://www.suse.com/security/cve/CVE-2026-31679.html * https://www.suse.com/security/cve/CVE-2026-31681.html * https://www.suse.com/security/cve/CVE-2026-31682.html * https://www.suse.com/security/cve/CVE-2026-31684.html * https://www.suse.com/security/cve/CVE-2026-31685.html * https://www.suse.com/security/cve/CVE-2026-31694.html * https://www.suse.com/security/cve/CVE-2026-31700.html * https://www.suse.com/security/cve/CVE-2026-31738.html * https://www.suse.com/security/cve/CVE-2026-31787.html * https://www.suse.com/security/cve/CVE-2026-43009.html * https://www.suse.com/security/cve/CVE-2026-43025.html * https://www.suse.com/security/cve/CVE-2026-43027.html * https://www.suse.com/security/cve/CVE-2026-43037.html * https://www.suse.com/security/cve/CVE-2026-43038.html * https://www.suse.com/security/cve/CVE-2026-43044.html * https://www.suse.com/security/cve/CVE-2026-43050.html * https://www.suse.com/security/cve/CVE-2026-43060.html * https://www.suse.com/security/cve/CVE-2026-43088.html * https://www.suse.com/security/cve/CVE-2026-43110.html * https://www.suse.com/security/cve/CVE-2026-43120.html * https://www.suse.com/security/cve/CVE-2026-43126.html * https://www.suse.com/security/cve/CVE-2026-43190.html * https://www.suse.com/security/cve/CVE-2026-43214.html * https://www.suse.com/security/cve/CVE-2026-43265.html * https://www.suse.com/security/cve/CVE-2026-43329.html * https://www.suse.com/security/cve/CVE-2026-43330.html * https://www.suse.com/security/cve/CVE-2026-43334.html * https://www.suse.com/security/cve/CVE-2026-43365.html * https://www.suse.com/security/cve/CVE-2026-43366.html * https://www.suse.com/security/cve/CVE-2026-43419.html * https://www.suse.com/security/cve/CVE-2026-43437.html * https://www.suse.com/security/cve/CVE-2026-43441.html * https://www.suse.com/security/cve/CVE-2026-43494.html * https://www.suse.com/security/cve/CVE-2026-43503.html * https://bugzilla.suse.com/show_bug.cgi?id=1215199 * https://bugzilla.suse.com/show_bug.cgi?id=1234634 * https://bugzilla.suse.com/show_bug.cgi?id=1243603 * https://bugzilla.suse.com/show_bug.cgi?id=1248754 * https://bugzilla.suse.com/show_bug.cgi?id=1253122 * https://bugzilla.suse.com/show_bug.cgi?id=1253754 * https://bugzilla.suse.com/show_bug.cgi?id=1254518 * https://bugzilla.suse.com/show_bug.cgi?id=1256863 * https://bugzilla.suse.com/show_bug.cgi?id=1257631 * https://bugzilla.suse.com/show_bug.cgi?id=1258518 * https://bugzilla.suse.com/show_bug.cgi?id=1258718 * https://bugzilla.suse.com/show_bug.cgi?id=1258826 * https://bugzilla.suse.com/show_bug.cgi?id=1258849 * https://bugzilla.suse.com/show_bug.cgi?id=1258850 * https://bugzilla.suse.com/show_bug.cgi?id=1258854 * https://bugzilla.suse.com/show_bug.cgi?id=1258855 * https://bugzilla.suse.com/show_bug.cgi?id=1258856 * https://bugzilla.suse.com/show_bug.cgi?id=1258857 * https://bugzilla.suse.com/show_bug.cgi?id=1258961 * https://bugzilla.suse.com/show_bug.cgi?id=1259186 * https://bugzilla.suse.com/show_bug.cgi?id=1259199 * https://bugzilla.suse.com/show_bug.cgi?id=1259222 * https://bugzilla.suse.com/show_bug.cgi?id=1259484 * https://bugzilla.suse.com/show_bug.cgi?id=1259485 * https://bugzilla.suse.com/show_bug.cgi?id=1259535 * https://bugzilla.suse.com/show_bug.cgi?id=1259799 * https://bugzilla.suse.com/show_bug.cgi?id=1259806 * https://bugzilla.suse.com/show_bug.cgi?id=1259857 * https://bugzilla.suse.com/show_bug.cgi?id=1259868 * https://bugzilla.suse.com/show_bug.cgi?id=1259869 * https://bugzilla.suse.com/show_bug.cgi?id=1259873 * https://bugzilla.suse.com/show_bug.cgi?id=1259878 * https://bugzilla.suse.com/show_bug.cgi?id=1260010 * https://bugzilla.suse.com/show_bug.cgi?id=1260012 * https://bugzilla.suse.com/show_bug.cgi?id=1260018 * https://bugzilla.suse.com/show_bug.cgi?id=1260468 * https://bugzilla.suse.com/show_bug.cgi?id=1260483 * https://bugzilla.suse.com/show_bug.cgi?id=1260484 * https://bugzilla.suse.com/show_bug.cgi?id=1260485 * https://bugzilla.suse.com/show_bug.cgi?id=1260489 * https://bugzilla.suse.com/show_bug.cgi?id=1260501 * https://bugzilla.suse.com/show_bug.cgi?id=1260504 * https://bugzilla.suse.com/show_bug.cgi?id=1260505 * https://bugzilla.suse.com/show_bug.cgi?id=1260507 * https://bugzilla.suse.com/show_bug.cgi?id=1260522 * https://bugzilla.suse.com/show_bug.cgi?id=1260523 * https://bugzilla.suse.com/show_bug.cgi?id=1260526 * https://bugzilla.suse.com/show_bug.cgi?id=1260528 * https://bugzilla.suse.com/show_bug.cgi?id=1260529 * https://bugzilla.suse.com/show_bug.cgi?id=1260530 * https://bugzilla.suse.com/show_bug.cgi?id=1260531 * https://bugzilla.suse.com/show_bug.cgi?id=1260532 * https://bugzilla.suse.com/show_bug.cgi?id=1260533 * https://bugzilla.suse.com/show_bug.cgi?id=1260536 * https://bugzilla.suse.com/show_bug.cgi?id=1260537 * https://bugzilla.suse.com/show_bug.cgi?id=1260538 * https://bugzilla.suse.com/show_bug.cgi?id=1260541 * https://bugzilla.suse.com/show_bug.cgi?id=1260546 * https://bugzilla.suse.com/show_bug.cgi?id=1260549 * https://bugzilla.suse.com/show_bug.cgi?id=1260551 * https://bugzilla.suse.com/show_bug.cgi?id=1260552 * https://bugzilla.suse.com/show_bug.cgi?id=1260553 * https://bugzilla.suse.com/show_bug.cgi?id=1260555 * https://bugzilla.suse.com/show_bug.cgi?id=1260561 * https://bugzilla.suse.com/show_bug.cgi?id=1260566 * https://bugzilla.suse.com/show_bug.cgi?id=1260572 * https://bugzilla.suse.com/show_bug.cgi?id=1260581 * https://bugzilla.suse.com/show_bug.cgi?id=1260728 * https://bugzilla.suse.com/show_bug.cgi?id=1260729 * https://bugzilla.suse.com/show_bug.cgi?id=1260731 * https://bugzilla.suse.com/show_bug.cgi?id=1260800 * https://bugzilla.suse.com/show_bug.cgi?id=1260811 * https://bugzilla.suse.com/show_bug.cgi?id=1261020 * https://bugzilla.suse.com/show_bug.cgi?id=1261287 * https://bugzilla.suse.com/show_bug.cgi?id=1261295 * https://bugzilla.suse.com/show_bug.cgi?id=1261348 * https://bugzilla.suse.com/show_bug.cgi?id=1261503 * https://bugzilla.suse.com/show_bug.cgi?id=1261504 * https://bugzilla.suse.com/show_bug.cgi?id=1261581 * https://bugzilla.suse.com/show_bug.cgi?id=1261582 * https://bugzilla.suse.com/show_bug.cgi?id=1261584 * https://bugzilla.suse.com/show_bug.cgi?id=1261601 * https://bugzilla.suse.com/show_bug.cgi?id=1261602 * https://bugzilla.suse.com/show_bug.cgi?id=1261618 * https://bugzilla.suse.com/show_bug.cgi?id=1261628 * https://bugzilla.suse.com/show_bug.cgi?id=1261632 * https://bugzilla.suse.com/show_bug.cgi?id=1261636 * https://bugzilla.suse.com/show_bug.cgi?id=1261638 * https://bugzilla.suse.com/show_bug.cgi?id=1261641 * https://bugzilla.suse.com/show_bug.cgi?id=1261644 * https://bugzilla.suse.com/show_bug.cgi?id=1261645 * https://bugzilla.suse.com/show_bug.cgi?id=1261648 * https://bugzilla.suse.com/show_bug.cgi?id=1261679 * https://bugzilla.suse.com/show_bug.cgi?id=1261685 * https://bugzilla.suse.com/show_bug.cgi?id=1261686 * https://bugzilla.suse.com/show_bug.cgi?id=1261687 * https://bugzilla.suse.com/show_bug.cgi?id=1261692 * https://bugzilla.suse.com/show_bug.cgi?id=1261694 * https://bugzilla.suse.com/show_bug.cgi?id=1261700 * https://bugzilla.suse.com/show_bug.cgi?id=1261703 * https://bugzilla.suse.com/show_bug.cgi?id=1261707 * https://bugzilla.suse.com/show_bug.cgi?id=1261710 * https://bugzilla.suse.com/show_bug.cgi?id=1261713 * https://bugzilla.suse.com/show_bug.cgi?id=1261719 * https://bugzilla.suse.com/show_bug.cgi?id=1261750 * https://bugzilla.suse.com/show_bug.cgi?id=1261751 * https://bugzilla.suse.com/show_bug.cgi?id=1261752 * https://bugzilla.suse.com/show_bug.cgi?id=1261768 * https://bugzilla.suse.com/show_bug.cgi?id=1261778 * https://bugzilla.suse.com/show_bug.cgi?id=1261779 * https://bugzilla.suse.com/show_bug.cgi?id=1261781 * https://bugzilla.suse.com/show_bug.cgi?id=1261789 * https://bugzilla.suse.com/show_bug.cgi?id=1261796 * https://bugzilla.suse.com/show_bug.cgi?id=1261797 * https://bugzilla.suse.com/show_bug.cgi?id=1261896 * https://bugzilla.suse.com/show_bug.cgi?id=1262020 * https://bugzilla.suse.com/show_bug.cgi?id=1262053 * https://bugzilla.suse.com/show_bug.cgi?id=1262054 * https://bugzilla.suse.com/show_bug.cgi?id=1262055 * https://bugzilla.suse.com/show_bug.cgi?id=1262061 * https://bugzilla.suse.com/show_bug.cgi?id=1262063 * https://bugzilla.suse.com/show_bug.cgi?id=1262074 * https://bugzilla.suse.com/show_bug.cgi?id=1262078 * https://bugzilla.suse.com/show_bug.cgi?id=1262086 * https://bugzilla.suse.com/show_bug.cgi?id=1262087 * https://bugzilla.suse.com/show_bug.cgi?id=1262099 * https://bugzilla.suse.com/show_bug.cgi?id=1262100 * https://bugzilla.suse.com/show_bug.cgi?id=1262101 * https://bugzilla.suse.com/show_bug.cgi?id=1262179 * https://bugzilla.suse.com/show_bug.cgi?id=1262181 * https://bugzilla.suse.com/show_bug.cgi?id=1262602 * https://bugzilla.suse.com/show_bug.cgi?id=1262616 * https://bugzilla.suse.com/show_bug.cgi?id=1262665 * https://bugzilla.suse.com/show_bug.cgi?id=1262671 * https://bugzilla.suse.com/show_bug.cgi?id=1262673 * https://bugzilla.suse.com/show_bug.cgi?id=1262725 * https://bugzilla.suse.com/show_bug.cgi?id=1262731 * https://bugzilla.suse.com/show_bug.cgi?id=1262734 * https://bugzilla.suse.com/show_bug.cgi?id=1262746 * https://bugzilla.suse.com/show_bug.cgi?id=1262752 * https://bugzilla.suse.com/show_bug.cgi?id=1262758 * https://bugzilla.suse.com/show_bug.cgi?id=1263001 * https://bugzilla.suse.com/show_bug.cgi?id=1263012 * https://bugzilla.suse.com/show_bug.cgi?id=1263064 * https://bugzilla.suse.com/show_bug.cgi?id=1263065 * https://bugzilla.suse.com/show_bug.cgi?id=1263085 * https://bugzilla.suse.com/show_bug.cgi?id=1263093 * https://bugzilla.suse.com/show_bug.cgi?id=1263095 * https://bugzilla.suse.com/show_bug.cgi?id=1263104 * https://bugzilla.suse.com/show_bug.cgi?id=1263131 * https://bugzilla.suse.com/show_bug.cgi?id=1263140 * https://bugzilla.suse.com/show_bug.cgi?id=1263141 * https://bugzilla.suse.com/show_bug.cgi?id=1263149 * https://bugzilla.suse.com/show_bug.cgi?id=1263165 * https://bugzilla.suse.com/show_bug.cgi?id=1263170 * https://bugzilla.suse.com/show_bug.cgi?id=1263176 * https://bugzilla.suse.com/show_bug.cgi?id=1263556 * https://bugzilla.suse.com/show_bug.cgi?id=1263582 * https://bugzilla.suse.com/show_bug.cgi?id=1263592 * https://bugzilla.suse.com/show_bug.cgi?id=1263593 * https://bugzilla.suse.com/show_bug.cgi?id=1263595 * https://bugzilla.suse.com/show_bug.cgi?id=1263596 * https://bugzilla.suse.com/show_bug.cgi?id=1263600 * https://bugzilla.suse.com/show_bug.cgi?id=1263668 * https://bugzilla.suse.com/show_bug.cgi?id=1263723 * https://bugzilla.suse.com/show_bug.cgi?id=1263797 * https://bugzilla.suse.com/show_bug.cgi?id=1263815 * https://bugzilla.suse.com/show_bug.cgi?id=1263882 * https://bugzilla.suse.com/show_bug.cgi?id=1263901 * https://bugzilla.suse.com/show_bug.cgi?id=1263931 * https://bugzilla.suse.com/show_bug.cgi?id=1263933 * https://bugzilla.suse.com/show_bug.cgi?id=1263995 * https://bugzilla.suse.com/show_bug.cgi?id=1264014 * https://bugzilla.suse.com/show_bug.cgi?id=1264059 * https://bugzilla.suse.com/show_bug.cgi?id=1264082 * https://bugzilla.suse.com/show_bug.cgi?id=1264087 * https://bugzilla.suse.com/show_bug.cgi?id=1264097 * https://bugzilla.suse.com/show_bug.cgi?id=1264183 * https://bugzilla.suse.com/show_bug.cgi?id=1264427 * https://bugzilla.suse.com/show_bug.cgi?id=1264469 * https://bugzilla.suse.com/show_bug.cgi?id=1264482 * https://bugzilla.suse.com/show_bug.cgi?id=1264634 * https://bugzilla.suse.com/show_bug.cgi?id=1264651 * https://bugzilla.suse.com/show_bug.cgi?id=1264661 * https://bugzilla.suse.com/show_bug.cgi?id=1264674 * https://bugzilla.suse.com/show_bug.cgi?id=1264801 * https://bugzilla.suse.com/show_bug.cgi?id=1264848 * https://bugzilla.suse.com/show_bug.cgi?id=1265085 * https://bugzilla.suse.com/show_bug.cgi?id=1265090 * https://bugzilla.suse.com/show_bug.cgi?id=1265116 * https://bugzilla.suse.com/show_bug.cgi?id=1265119 * https://bugzilla.suse.com/show_bug.cgi?id=1265126 * https://bugzilla.suse.com/show_bug.cgi?id=1265144 * https://bugzilla.suse.com/show_bug.cgi?id=1265308 * https://bugzilla.suse.com/show_bug.cgi?id=1265421 * https://bugzilla.suse.com/show_bug.cgi?id=1265449 * https://bugzilla.suse.com/show_bug.cgi?id=1265456 * https://bugzilla.suse.com/show_bug.cgi?id=1265626 * https://bugzilla.suse.com/show_bug.cgi?id=1265846 * https://bugzilla.suse.com/show_bug.cgi?id=1265960 * https://jira.suse.com/browse/PED-7249 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 17:17:25 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 17:17:25 -0000 Subject: SUSE-SU-2026:2226-1: important: Security update for xorg-x11-server Message-ID: <178042064562.42.3686637893999249439@b0da085613fb> # Security update for xorg-x11-server Announcement ID: SUSE-SU-2026:2226-1 Release Date: 2026-06-02T08:42:33Z Rating: important References: * bsc#1266294 * bsc#1266295 * bsc#1266296 * bsc#1266297 * bsc#1266298 * bsc#1266299 * bsc#1266300 * bsc#1266301 * bsc#1266302 Affected Products: * openSUSE Leap 15.6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that has nine security fixes can now be installed. ## Description: This update for xorg-x11-server fixes the following issues * CreateSaverWindow Use-After-Free Information Disclosure. (bsc#1266301) * DRI2 DRIGetBuffers/DRIGetBuffersWithFormat Out-Of-Bounds Write. (bsc#1266302) * Font Alias Stack-based Buffer Overflow. (bsc#1266294) * GLX ChangeDrawableAttributes Out-Of-Bounds Read/Write. (bsc#1266300) * XKB Key Types Stack-based Buffer Overflow. (bsc#1266296) * XKB SetMap Request Stack-based Buffer Overflow. (bsc#1266297) * XSYNC Use-After-Free in FreeCounter(). (bsc#1266298) * XSYNC Use-After-Free in miSyncDestroyFence(). (bsc#1266295) * XSYNC Use-After-Free in SyncChangeCounter(). (bsc#1266299) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-2226=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2226=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2226=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * xorg-x11-server-debugsource-21.1.11-150600.5.28.1 * xorg-x11-server-debuginfo-21.1.11-150600.5.28.1 * xorg-x11-server-21.1.11-150600.5.28.1 * xorg-x11-server-extra-debuginfo-21.1.11-150600.5.28.1 * xorg-x11-server-sdk-21.1.11-150600.5.28.1 * xorg-x11-server-Xvfb-21.1.11-150600.5.28.1 * xorg-x11-server-extra-21.1.11-150600.5.28.1 * xorg-x11-server-source-21.1.11-150600.5.28.1 * xorg-x11-server-Xvfb-debuginfo-21.1.11-150600.5.28.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64) * xorg-x11-server-debugsource-21.1.11-150600.5.28.1 * xorg-x11-server-debuginfo-21.1.11-150600.5.28.1 * xorg-x11-server-extra-debuginfo-21.1.11-150600.5.28.1 * xorg-x11-server-21.1.11-150600.5.28.1 * xorg-x11-server-sdk-21.1.11-150600.5.28.1 * xorg-x11-server-Xvfb-21.1.11-150600.5.28.1 * xorg-x11-server-extra-21.1.11-150600.5.28.1 * xorg-x11-server-Xvfb-debuginfo-21.1.11-150600.5.28.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64) * xorg-x11-server-debugsource-21.1.11-150600.5.28.1 * xorg-x11-server-debuginfo-21.1.11-150600.5.28.1 * xorg-x11-server-21.1.11-150600.5.28.1 * xorg-x11-server-extra-debuginfo-21.1.11-150600.5.28.1 * xorg-x11-server-sdk-21.1.11-150600.5.28.1 * xorg-x11-server-Xvfb-21.1.11-150600.5.28.1 * xorg-x11-server-extra-21.1.11-150600.5.28.1 * xorg-x11-server-Xvfb-debuginfo-21.1.11-150600.5.28.1 ## References: * https://bugzilla.suse.com/show_bug.cgi?id=1266294 * https://bugzilla.suse.com/show_bug.cgi?id=1266295 * https://bugzilla.suse.com/show_bug.cgi?id=1266296 * https://bugzilla.suse.com/show_bug.cgi?id=1266297 * https://bugzilla.suse.com/show_bug.cgi?id=1266298 * https://bugzilla.suse.com/show_bug.cgi?id=1266299 * https://bugzilla.suse.com/show_bug.cgi?id=1266300 * https://bugzilla.suse.com/show_bug.cgi?id=1266301 * https://bugzilla.suse.com/show_bug.cgi?id=1266302 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 17:17:39 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 17:17:39 -0000 Subject: SUSE-SU-2026:2225-1: important: Security update for xorg-x11-server Message-ID: <178042065952.42.3450735427567614303@b0da085613fb> # Security update for xorg-x11-server Announcement ID: SUSE-SU-2026:2225-1 Release Date: 2026-06-02T08:42:21Z Rating: important References: * bsc#1266294 * bsc#1266295 * bsc#1266296 * bsc#1266297 * bsc#1266298 * bsc#1266299 * bsc#1266300 * bsc#1266301 * bsc#1266302 Affected Products: * Basesystem Module 15-SP7 * Development Tools Module 15-SP7 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that has nine security fixes can now be installed. ## Description: This update for xorg-x11-server fixes the following issues * CreateSaverWindow Use-After-Free Information Disclosure. (bsc#1266301) * DRI2 DRIGetBuffers/DRIGetBuffersWithFormat Out-Of-Bounds Write. (bsc#1266302) * Font Alias Stack-based Buffer Overflow. (bsc#1266294) * GLX ChangeDrawableAttributes Out-Of-Bounds Read/Write. (bsc#1266300) * XKB Key Types Stack-based Buffer Overflow. (bsc#1266296) * XKB SetMap Request Stack-based Buffer Overflow. (bsc#1266297) * XSYNC Use-After-Free in FreeCounter(). (bsc#1266298) * XSYNC Use-After-Free in miSyncDestroyFence(). (bsc#1266295) * XSYNC Use-After-Free in SyncChangeCounter(). (bsc#1266299) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-2225=1 * Development Tools Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP7-2026-2225=1 ## Package List: * Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64) * xorg-x11-server-Xvfb-debuginfo-21.1.15-150700.5.19.1 * xorg-x11-server-debuginfo-21.1.15-150700.5.19.1 * xorg-x11-server-21.1.15-150700.5.19.1 * xorg-x11-server-debugsource-21.1.15-150700.5.19.1 * xorg-x11-server-extra-21.1.15-150700.5.19.1 * xorg-x11-server-extra-debuginfo-21.1.15-150700.5.19.1 * xorg-x11-server-Xvfb-21.1.15-150700.5.19.1 * Development Tools Module 15-SP7 (aarch64 ppc64le s390x x86_64) * xorg-x11-server-debugsource-21.1.15-150700.5.19.1 * xorg-x11-server-debuginfo-21.1.15-150700.5.19.1 * xorg-x11-server-sdk-21.1.15-150700.5.19.1 ## References: * https://bugzilla.suse.com/show_bug.cgi?id=1266294 * https://bugzilla.suse.com/show_bug.cgi?id=1266295 * https://bugzilla.suse.com/show_bug.cgi?id=1266296 * https://bugzilla.suse.com/show_bug.cgi?id=1266297 * https://bugzilla.suse.com/show_bug.cgi?id=1266298 * https://bugzilla.suse.com/show_bug.cgi?id=1266299 * https://bugzilla.suse.com/show_bug.cgi?id=1266300 * https://bugzilla.suse.com/show_bug.cgi?id=1266301 * https://bugzilla.suse.com/show_bug.cgi?id=1266302 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 17:17:53 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 17:17:53 -0000 Subject: SUSE-SU-2026:2224-1: important: Security update for xorg-x11-server Message-ID: <178042067397.42.1326249289294990680@b0da085613fb> # Security update for xorg-x11-server Announcement ID: SUSE-SU-2026:2224-1 Release Date: 2026-06-02T08:41:58Z Rating: important References: * bsc#1266294 * bsc#1266295 * bsc#1266296 * bsc#1266297 * bsc#1266298 * bsc#1266299 * bsc#1266300 * bsc#1266301 * bsc#1266302 Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that has nine security fixes can now be installed. ## Description: This update for xorg-x11-server fixes the following issues * CreateSaverWindow Use-After-Free Information Disclosure. (bsc#1266301) * DRI2 DRIGetBuffers/DRIGetBuffersWithFormat Out-Of-Bounds Write. (bsc#1266302) * Font Alias Stack-based Buffer Overflow. (bsc#1266294) * GLX ChangeDrawableAttributes Out-Of-Bounds Read/Write. (bsc#1266300) * XKB Key Types Stack-based Buffer Overflow. (bsc#1266296) * XKB SetMap Request Stack-based Buffer Overflow. (bsc#1266297) * XSYNC Use-After-Free in FreeCounter(). (bsc#1266298) * XSYNC Use-After-Free in miSyncDestroyFence(). (bsc#1266295) * XSYNC Use-After-Free in SyncChangeCounter(). (bsc#1266299) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2224=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2224=1 * openSUSE Leap 15.5 zypper in -t patch SUSE-2026-2224=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2224=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2224=1 ## Package List: * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * xorg-x11-server-extra-21.1.4-150500.7.49.1 * xorg-x11-server-Xvfb-debuginfo-21.1.4-150500.7.49.1 * xorg-x11-server-21.1.4-150500.7.49.1 * xorg-x11-server-extra-debuginfo-21.1.4-150500.7.49.1 * xorg-x11-server-debuginfo-21.1.4-150500.7.49.1 * xorg-x11-server-sdk-21.1.4-150500.7.49.1 * xorg-x11-server-debugsource-21.1.4-150500.7.49.1 * xorg-x11-server-Xvfb-21.1.4-150500.7.49.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * xorg-x11-server-extra-21.1.4-150500.7.49.1 * xorg-x11-server-Xvfb-debuginfo-21.1.4-150500.7.49.1 * xorg-x11-server-21.1.4-150500.7.49.1 * xorg-x11-server-debuginfo-21.1.4-150500.7.49.1 * xorg-x11-server-extra-debuginfo-21.1.4-150500.7.49.1 * xorg-x11-server-sdk-21.1.4-150500.7.49.1 * xorg-x11-server-debugsource-21.1.4-150500.7.49.1 * xorg-x11-server-Xvfb-21.1.4-150500.7.49.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586) * xorg-x11-server-extra-21.1.4-150500.7.49.1 * xorg-x11-server-Xvfb-debuginfo-21.1.4-150500.7.49.1 * xorg-x11-server-source-21.1.4-150500.7.49.1 * xorg-x11-server-21.1.4-150500.7.49.1 * xorg-x11-server-debuginfo-21.1.4-150500.7.49.1 * xorg-x11-server-extra-debuginfo-21.1.4-150500.7.49.1 * xorg-x11-server-sdk-21.1.4-150500.7.49.1 * xorg-x11-server-debugsource-21.1.4-150500.7.49.1 * xorg-x11-server-Xvfb-21.1.4-150500.7.49.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * xorg-x11-server-extra-21.1.4-150500.7.49.1 * xorg-x11-server-Xvfb-debuginfo-21.1.4-150500.7.49.1 * xorg-x11-server-21.1.4-150500.7.49.1 * xorg-x11-server-debuginfo-21.1.4-150500.7.49.1 * xorg-x11-server-extra-debuginfo-21.1.4-150500.7.49.1 * xorg-x11-server-sdk-21.1.4-150500.7.49.1 * xorg-x11-server-debugsource-21.1.4-150500.7.49.1 * xorg-x11-server-Xvfb-21.1.4-150500.7.49.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * xorg-x11-server-extra-21.1.4-150500.7.49.1 * xorg-x11-server-Xvfb-debuginfo-21.1.4-150500.7.49.1 * xorg-x11-server-21.1.4-150500.7.49.1 * xorg-x11-server-debuginfo-21.1.4-150500.7.49.1 * xorg-x11-server-extra-debuginfo-21.1.4-150500.7.49.1 * xorg-x11-server-sdk-21.1.4-150500.7.49.1 * xorg-x11-server-debugsource-21.1.4-150500.7.49.1 * xorg-x11-server-Xvfb-21.1.4-150500.7.49.1 ## References: * https://bugzilla.suse.com/show_bug.cgi?id=1266294 * https://bugzilla.suse.com/show_bug.cgi?id=1266295 * https://bugzilla.suse.com/show_bug.cgi?id=1266296 * https://bugzilla.suse.com/show_bug.cgi?id=1266297 * https://bugzilla.suse.com/show_bug.cgi?id=1266298 * https://bugzilla.suse.com/show_bug.cgi?id=1266299 * https://bugzilla.suse.com/show_bug.cgi?id=1266300 * https://bugzilla.suse.com/show_bug.cgi?id=1266301 * https://bugzilla.suse.com/show_bug.cgi?id=1266302 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 17:18:11 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 17:18:11 -0000 Subject: SUSE-SU-2026:2223-1: important: Security update for xorg-x11-server Message-ID: <178042069187.42.692892155403548873@b0da085613fb> # Security update for xorg-x11-server Announcement ID: SUSE-SU-2026:2223-1 Release Date: 2026-06-02T08:41:31Z Rating: important References: * bsc#1266294 * bsc#1266295 * bsc#1266296 * bsc#1266297 * bsc#1266298 * bsc#1266299 * bsc#1266300 * bsc#1266301 * bsc#1266302 Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP4 An update that has nine security fixes can now be installed. ## Description: This update for xorg-x11-server fixes the following issues * CreateSaverWindow Use-After-Free Information Disclosure. (bsc#1266301) * DRI2 DRIGetBuffers/DRIGetBuffersWithFormat Out-Of-Bounds Write. (bsc#1266302) * Font Alias Stack-based Buffer Overflow. (bsc#1266294) * GLX ChangeDrawableAttributes Out-Of-Bounds Read/Write. (bsc#1266300) * XKB Key Types Stack-based Buffer Overflow. (bsc#1266296) * XKB SetMap Request Stack-based Buffer Overflow. (bsc#1266297) * XSYNC Use-After-Free in FreeCounter(). (bsc#1266298) * XSYNC Use-After-Free in miSyncDestroyFence(). (bsc#1266295) * XSYNC Use-After-Free in SyncChangeCounter(). (bsc#1266299) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2026-2223=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2223=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2223=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2223=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2223=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * xorg-x11-server-extra-1.20.3-150400.38.71.1 * xorg-x11-server-1.20.3-150400.38.71.1 * xorg-x11-server-sdk-1.20.3-150400.38.71.1 * xorg-x11-server-source-1.20.3-150400.38.71.1 * xorg-x11-server-debuginfo-1.20.3-150400.38.71.1 * xorg-x11-server-extra-debuginfo-1.20.3-150400.38.71.1 * xorg-x11-server-debugsource-1.20.3-150400.38.71.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * xorg-x11-server-extra-1.20.3-150400.38.71.1 * xorg-x11-server-1.20.3-150400.38.71.1 * xorg-x11-server-sdk-1.20.3-150400.38.71.1 * xorg-x11-server-debuginfo-1.20.3-150400.38.71.1 * xorg-x11-server-extra-debuginfo-1.20.3-150400.38.71.1 * xorg-x11-server-debugsource-1.20.3-150400.38.71.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * xorg-x11-server-extra-1.20.3-150400.38.71.1 * xorg-x11-server-1.20.3-150400.38.71.1 * xorg-x11-server-sdk-1.20.3-150400.38.71.1 * xorg-x11-server-debuginfo-1.20.3-150400.38.71.1 * xorg-x11-server-extra-debuginfo-1.20.3-150400.38.71.1 * xorg-x11-server-debugsource-1.20.3-150400.38.71.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * xorg-x11-server-extra-1.20.3-150400.38.71.1 * xorg-x11-server-1.20.3-150400.38.71.1 * xorg-x11-server-sdk-1.20.3-150400.38.71.1 * xorg-x11-server-debuginfo-1.20.3-150400.38.71.1 * xorg-x11-server-extra-debuginfo-1.20.3-150400.38.71.1 * xorg-x11-server-debugsource-1.20.3-150400.38.71.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * xorg-x11-server-extra-1.20.3-150400.38.71.1 * xorg-x11-server-1.20.3-150400.38.71.1 * xorg-x11-server-sdk-1.20.3-150400.38.71.1 * xorg-x11-server-debuginfo-1.20.3-150400.38.71.1 * xorg-x11-server-extra-debuginfo-1.20.3-150400.38.71.1 * xorg-x11-server-debugsource-1.20.3-150400.38.71.1 ## References: * https://bugzilla.suse.com/show_bug.cgi?id=1266294 * https://bugzilla.suse.com/show_bug.cgi?id=1266295 * https://bugzilla.suse.com/show_bug.cgi?id=1266296 * https://bugzilla.suse.com/show_bug.cgi?id=1266297 * https://bugzilla.suse.com/show_bug.cgi?id=1266298 * https://bugzilla.suse.com/show_bug.cgi?id=1266299 * https://bugzilla.suse.com/show_bug.cgi?id=1266300 * https://bugzilla.suse.com/show_bug.cgi?id=1266301 * https://bugzilla.suse.com/show_bug.cgi?id=1266302 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 17:18:25 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 17:18:25 -0000 Subject: SUSE-SU-2026:2222-1: critical: Security update for hplip Message-ID: <178042070533.42.7590426518821348630@b0da085613fb> # Security update for hplip Announcement ID: SUSE-SU-2026:2222-1 Release Date: 2026-06-02T08:40:55Z Rating: critical References: * bsc#1209401 * bsc#1234745 * bsc#1245358 * bsc#1250481 * bsc#1257529 * bsc#1266023 * bsc#1266024 * bsc#1266031 Cross-References: * CVE-2025-43023 * CVE-2026-8631 * CVE-2026-8632 CVSS scores: * CVE-2025-43023 ( SUSE ): 7.5 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-43023 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2025-43023 ( NVD ): 5.9 CVSS:4.0/AV:N/AC:H/AT:N/PR:H/UI:N/VC:N/VI:H/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2025-43023 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-8631 ( SUSE ): 9.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-8631 ( SUSE ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-8631 ( NVD ): 9.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-8631 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-8632 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-8632 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-8632 ( NVD ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-8632 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves three vulnerabilities and has five security fixes can now be installed. ## Description: This update for hplip fixes the following issues Security issues: * CVE-2025-43023: weak code signing DSA key used to generate package signatures can lead to key spoofing and malicious software installation (bsc#1266031). * CVE-2026-8631: escalation of privileges and/or arbitrary code execution via an integer overflow in the hpcups processing path (bsc#1266023). * CVE-2026-8632: escalation of privileges and/or arbitrary code execution via operating system command injection (bsc#1266024). * Unauthenticated remote (LAN) denial-of-service in the SLP parser (ReDoS). (bsc#1245358) * URI parameter injection via unsanitized USB serial number. (bsc#1209401) Non security issues: * Can't set up fax for HP OfficeJet 3830 (bsc#1257529). * hplip requires foomatic-filters which does not exist in Leap 16 (bsc#1250481). * Update to HPLIP 3.26.4 ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-2222=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2222=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2222=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * hplip-debuginfo-3.26.4-150600.4.9.1 * hplip-debugsource-3.26.4-150600.4.9.1 * hplip-scan-utils-3.26.4-150600.4.9.1 * hplip-3.26.4-150600.4.9.1 * hplip-sane-debuginfo-3.26.4-150600.4.9.1 * hplip-udev-rules-3.26.4-150600.4.9.1 * hplip-sane-3.26.4-150600.4.9.1 * hplip-scan-utils-debuginfo-3.26.4-150600.4.9.1 * hplip-hpijs-debuginfo-3.26.4-150600.4.9.1 * hplip-devel-3.26.4-150600.4.9.1 * hplip-hpijs-3.26.4-150600.4.9.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64) * hplip-debuginfo-3.26.4-150600.4.9.1 * hplip-debugsource-3.26.4-150600.4.9.1 * hplip-3.26.4-150600.4.9.1 * hplip-sane-debuginfo-3.26.4-150600.4.9.1 * hplip-udev-rules-3.26.4-150600.4.9.1 * hplip-sane-3.26.4-150600.4.9.1 * hplip-hpijs-debuginfo-3.26.4-150600.4.9.1 * hplip-devel-3.26.4-150600.4.9.1 * hplip-hpijs-3.26.4-150600.4.9.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64) * hplip-debuginfo-3.26.4-150600.4.9.1 * hplip-debugsource-3.26.4-150600.4.9.1 * hplip-3.26.4-150600.4.9.1 * hplip-sane-debuginfo-3.26.4-150600.4.9.1 * hplip-udev-rules-3.26.4-150600.4.9.1 * hplip-sane-3.26.4-150600.4.9.1 * hplip-hpijs-debuginfo-3.26.4-150600.4.9.1 * hplip-devel-3.26.4-150600.4.9.1 * hplip-hpijs-3.26.4-150600.4.9.1 ## References: * https://www.suse.com/security/cve/CVE-2025-43023.html * https://www.suse.com/security/cve/CVE-2026-8631.html * https://www.suse.com/security/cve/CVE-2026-8632.html * https://bugzilla.suse.com/show_bug.cgi?id=1209401 * https://bugzilla.suse.com/show_bug.cgi?id=1234745 * https://bugzilla.suse.com/show_bug.cgi?id=1245358 * https://bugzilla.suse.com/show_bug.cgi?id=1250481 * https://bugzilla.suse.com/show_bug.cgi?id=1257529 * https://bugzilla.suse.com/show_bug.cgi?id=1266023 * https://bugzilla.suse.com/show_bug.cgi?id=1266024 * https://bugzilla.suse.com/show_bug.cgi?id=1266031 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Tue Jun 2 17:18:38 2026 From: null at suse.de (SLE-UPDATES) Date: Tue, 02 Jun 2026 17:18:38 -0000 Subject: SUSE-SU-2026:2221-1: important: Security update for xorg-x11-server Message-ID: <178042071884.42.9705390504687581247@b0da085613fb> # Security update for xorg-x11-server Announcement ID: SUSE-SU-2026:2221-1 Release Date: 2026-06-02T08:40:04Z Rating: important References: * bsc#1266294 * bsc#1266295 * bsc#1266296 * bsc#1266297 * bsc#1266298 * bsc#1266299 * bsc#1266300 * bsc#1266301 * bsc#1266302 Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server 12 SP5 LTSS * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that has nine security fixes can now be installed. ## Description: This update for xorg-x11-server fixes the following issues * CreateSaverWindow Use-After-Free Information Disclosure. (bsc#1266301) * DRI2 DRIGetBuffers/DRIGetBuffersWithFormat Out-Of-Bounds Write. (bsc#1266302) * Font Alias Stack-based Buffer Overflow. (bsc#1266294) * GLX ChangeDrawableAttributes Out-Of-Bounds Read/Write. (bsc#1266300) * XKB Key Types Stack-based Buffer Overflow. (bsc#1266296) * XKB SetMap Request Stack-based Buffer Overflow. (bsc#1266297) * XSYNC Use-After-Free in FreeCounter(). (bsc#1266298) * XSYNC Use-After-Free in miSyncDestroyFence(). (bsc#1266295) * XSYNC Use-After-Free in SyncChangeCounter(). (bsc#1266299) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 12 SP5 LTSS zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-2026-2221=1 * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2026-2221=1 ## Package List: * SUSE Linux Enterprise Server 12 SP5 LTSS (aarch64 ppc64le s390x x86_64) * xorg-x11-server-extra-debuginfo-1.19.6-10.102.1 * xorg-x11-server-debuginfo-1.19.6-10.102.1 * xorg-x11-server-debugsource-1.19.6-10.102.1 * xorg-x11-server-extra-1.19.6-10.102.1 * xorg-x11-server-1.19.6-10.102.1 * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security (x86_64) * xorg-x11-server-extra-debuginfo-1.19.6-10.102.1 * xorg-x11-server-debuginfo-1.19.6-10.102.1 * xorg-x11-server-debugsource-1.19.6-10.102.1 * xorg-x11-server-extra-1.19.6-10.102.1 * xorg-x11-server-1.19.6-10.102.1 ## References: * https://bugzilla.suse.com/show_bug.cgi?id=1266294 * https://bugzilla.suse.com/show_bug.cgi?id=1266295 * https://bugzilla.suse.com/show_bug.cgi?id=1266296 * https://bugzilla.suse.com/show_bug.cgi?id=1266297 * https://bugzilla.suse.com/show_bug.cgi?id=1266298 * https://bugzilla.suse.com/show_bug.cgi?id=1266299 * https://bugzilla.suse.com/show_bug.cgi?id=1266300 * https://bugzilla.suse.com/show_bug.cgi?id=1266301 * https://bugzilla.suse.com/show_bug.cgi?id=1266302 -------------- next part -------------- An HTML attachment was scrubbed... URL: