SUSE-SU-2026:2214-1: important: Security update for the Linux Kernel (Live Patch 11 for SUSE Linux Enterprise 15 SP7)
SUSE-SU-2026:2212-1: important: Security update for the Linux Kernel (Live Patch 39 for SUSE Linux Enterprise 15 SP5)
SUSE-SU-2026:2215-1: important: Security update for the Linux Kernel
SUSE-SU-2026:2216-1: important: Security update for the Linux Kernel
SUSE-SU-2026:2218-1: important: Security update for python3-Twisted
SUSE-SU-2026:2219-1: important: Security update for python-Twisted
openSUSE-SU-2026:0182-1: important: Security update for libjxl
SUSE-SU-2026:2222-1: critical: Security update for hplip
SUSE-SU-2026:2223-1: important: Security update for xorg-x11-server
SUSE-SU-2026:2224-1: important: Security update for xorg-x11-server
SUSE-SU-2026:2226-1: important: Security update for xorg-x11-server
openSUSE-SU-2026:20857-1: important: Security update for mapserver
openSUSE-SU-2026:20855-1: important: Security update for ffmpeg-4
openSUSE-SU-2026:20856-1: important: Security update for shadowsocks-v2ray-plugin
openSUSE-SU-2026:20854-1: important: Security update for rqlite
openSUSE-SU-2026:20858-1: critical: Security update for hplip
openSUSE-SU-2026:10908-1: moderate: cloudflared-2026.5.2-1.1 on GA media
openSUSE-SU-2026:10904-1: moderate: vorbis-tools-1.4.3-2.1 on GA media
openSUSE-SU-2026:10909-1: moderate: kubelogin-0.2.18-1.1 on GA media
openSUSE-SU-2026:10905-1: moderate: LibVNCServer-devel-0.9.15-3.1 on GA media
openSUSE-SU-2026:10903-1: moderate: libunbound8-1.25.1-1.1 on GA media
SUSE-SU-2026:2214-1: important: Security update for the Linux Kernel (Live Patch 11 for SUSE Linux Enterprise 15 SP7)
# Security update for the Linux Kernel (Live Patch 11 for SUSE Linux Enterprise
15 SP7)
Announcement ID: SUSE-SU-2026:2214-1
Release Date: 2026-06-01T18:33:54Z
Rating: important
References:
* bsc#1264096
* bsc#1265224
* bsc#1265384
Cross-References:
* CVE-2025-54518
* CVE-2026-46300
* CVE-2026-46333
CVSS scores:
* CVE-2025-54518 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2025-54518 ( NVD ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-46300 ( SUSE ): 8.6
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-46300 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
* CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-46300 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
* CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Affected Products:
* openSUSE Leap 15.4
* openSUSE Leap 15.6
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise Live Patching 15-SP4
* SUSE Linux Enterprise Live Patching 15-SP6
* SUSE Linux Enterprise Live Patching 15-SP7
* SUSE Linux Enterprise Micro 5.3
* SUSE Linux Enterprise Micro 5.4
* SUSE Linux Enterprise Real Time 15 SP4
* SUSE Linux Enterprise Real Time 15 SP6
* SUSE Linux Enterprise Real Time 15 SP7
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server 15 SP7
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
* SUSE Linux Enterprise Server for SAP Applications 15 SP7
An update that solves three vulnerabilities can now be installed.
## Description:
This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.53.37 fixes
various security issues
The following security issues were fixed:
* CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096).
* CVE-2026-46300: FragNesia attack: another xfrm/esp based local root exploit
(bsc#1265224).
* CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265384).
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.4
zypper in -t patch SUSE-2026-2214=1
* SUSE Linux Enterprise Live Patching 15-SP4
zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP4-2026-2214=1
* openSUSE Leap 15.6
zypper in -t patch SUSE-2026-2211=1
* SUSE Linux Enterprise Live Patching 15-SP6
zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP6-2026-2211=1
* SUSE Linux Enterprise Live Patching 15-SP7
zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP7-2026-2213=1
## Package List:
* openSUSE Leap 15.4 (ppc64le s390x x86_64)
* kernel-livepatch-5_14_21-150400_24_209-default-2-150400.2.1
* kernel-livepatch-SLE15-SP4_Update_52-debugsource-2-150400.2.1
* kernel-livepatch-5_14_21-150400_24_209-default-debuginfo-2-150400.2.1
* SUSE Linux Enterprise Live Patching 15-SP4 (ppc64le s390x x86_64)
* kernel-livepatch-5_14_21-150400_24_209-default-2-150400.2.1
* kernel-livepatch-SLE15-SP4_Update_52-debugsource-2-150400.2.1
* kernel-livepatch-5_14_21-150400_24_209-default-debuginfo-2-150400.2.1
* openSUSE Leap 15.6 (ppc64le s390x x86_64)
* kernel-livepatch-SLE15-SP6_Update_23-debugsource-3-150600.2.1
* kernel-livepatch-6_4_0-150600_23_100-default-3-150600.2.1
* kernel-livepatch-6_4_0-150600_23_100-default-debuginfo-3-150600.2.1
* SUSE Linux Enterprise Live Patching 15-SP6 (ppc64le s390x x86_64)
* kernel-livepatch-SLE15-SP6_Update_23-debugsource-3-150600.2.1
* kernel-livepatch-6_4_0-150600_23_100-default-3-150600.2.1
* kernel-livepatch-6_4_0-150600_23_100-default-debuginfo-3-150600.2.1
* SUSE Linux Enterprise Live Patching 15-SP7 (ppc64le s390x x86_64)
* kernel-livepatch-6_4_0-150700_53_37-default-4-150700.2.1
* kernel-livepatch-SLE15-SP7_Update_11-debugsource-4-150700.2.1
* kernel-livepatch-6_4_0-150700_53_37-default-debuginfo-4-150700.2.1
## References:
* https://www.suse.com/security/cve/CVE-2025-54518.html
* https://www.suse.com/security/cve/CVE-2026-46300.html
* https://www.suse.com/security/cve/CVE-2026-46333.html
* https://bugzilla.suse.com/show_bug.cgi?id=1264096
* https://bugzilla.suse.com/show_bug.cgi?id=1265224
* https://bugzilla.suse.com/show_bug.cgi?id=1265384
SUSE-SU-2026:2212-1: important: Security update for the Linux Kernel (Live Patch 39 for SUSE Linux Enterprise 15 SP5)
# Security update for the Linux Kernel (Live Patch 39 for SUSE Linux Enterprise
15 SP5)
Announcement ID: SUSE-SU-2026:2212-1
Release Date: 2026-06-01T17:05:30Z
Rating: important
References:
* bsc#1264096
Cross-References:
* CVE-2025-54518
CVSS scores:
* CVE-2025-54518 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2025-54518 ( SUSE ): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2025-54518 ( NVD ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Affected Products:
* openSUSE Leap 15.5
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise Live Patching 15-SP5
* SUSE Linux Enterprise Micro 5.5
* SUSE Linux Enterprise Real Time 15 SP5
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
An update that solves one vulnerability can now be installed.
## Description:
This update for the SUSE Linux Enterprise Kernel 5.14.21-150500.55.153 fixes one
security issue
The following security issue was fixed:
* CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption (bsc#1264096).
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.5
zypper in -t patch SUSE-2026-2212=1
* SUSE Linux Enterprise Live Patching 15-SP5
zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2026-2212=1
## Package List:
* openSUSE Leap 15.5 (ppc64le s390x x86_64)
* kernel-livepatch-5_14_21-150500_55_163-default-2-150500.2.1
* kernel-livepatch-5_14_21-150500_55_163-default-debuginfo-2-150500.2.1
* kernel-livepatch-SLE15-SP5_Update_39-debugsource-2-150500.2.1
* SUSE Linux Enterprise Live Patching 15-SP5 (ppc64le s390x x86_64)
* kernel-livepatch-5_14_21-150500_55_163-default-2-150500.2.1
* kernel-livepatch-5_14_21-150500_55_163-default-debuginfo-2-150500.2.1
* kernel-livepatch-SLE15-SP5_Update_39-debugsource-2-150500.2.1
## References:
* https://www.suse.com/security/cve/CVE-2025-54518.html
* https://bugzilla.suse.com/show_bug.cgi?id=1264096
SUSE-SU-2026:2215-1: important: Security update for the Linux Kernel
# Security update for the Linux Kernel
Announcement ID: SUSE-SU-2026:2215-1
Release Date: 2026-06-02T05:58:01Z
Rating: important
References:
* bsc#1243603
* bsc#1245109
* bsc#1256504
* bsc#1258518
* bsc#1258718
* bsc#1258849
* bsc#1258850
* bsc#1258854
* bsc#1258855
* bsc#1258856
* bsc#1258857
* bsc#1259484
* bsc#1259485
* bsc#1259857
* bsc#1260010
* bsc#1260018
* bsc#1260522
* bsc#1260526
* bsc#1261287
* bsc#1261295
* bsc#1261584
* bsc#1261638
* bsc#1261710
* bsc#1261779
* bsc#1261781
* bsc#1261796
* bsc#1261797
* bsc#1262179
* bsc#1262181
* bsc#1262602
* bsc#1262665
* bsc#1262734
* bsc#1262758
* bsc#1263065
* bsc#1263085
* bsc#1263093
* bsc#1263095
* bsc#1263131
* bsc#1263141
* bsc#1263165
* bsc#1263170
* bsc#1263176
* bsc#1263582
* bsc#1263600
* bsc#1263668
* bsc#1263723
* bsc#1263882
* bsc#1263901
* bsc#1263931
* bsc#1263933
* bsc#1264059
* bsc#1264082
* bsc#1264450
* bsc#1264482
* bsc#1264634
* bsc#1264651
* bsc#1264848
* bsc#1265085
* bsc#1265090
* bsc#1265119
* bsc#1265126
* bsc#1265308
* bsc#1265456
* bsc#1265626
* bsc#1265960
Cross-References:
* CVE-2022-49979
* CVE-2023-20585
* CVE-2026-23209
* CVE-2026-23239
* CVE-2026-23240
* CVE-2026-23268
* CVE-2026-23269
* CVE-2026-23271
* CVE-2026-23273
* CVE-2026-23351
* CVE-2026-23393
* CVE-2026-23403
* CVE-2026-23404
* CVE-2026-23405
* CVE-2026-23406
* CVE-2026-23407
* CVE-2026-23408
* CVE-2026-23409
* CVE-2026-23410
* CVE-2026-23411
* CVE-2026-23449
* CVE-2026-23450
* CVE-2026-23458
* CVE-2026-23462
* CVE-2026-31402
* CVE-2026-31403
* CVE-2026-31408
* CVE-2026-31436
* CVE-2026-31470
* CVE-2026-31504
* CVE-2026-31505
* CVE-2026-31507
* CVE-2026-31512
* CVE-2026-31533
* CVE-2026-31570
* CVE-2026-31586
* CVE-2026-31588
* CVE-2026-31602
* CVE-2026-31607
* CVE-2026-31649
* CVE-2026-31656
* CVE-2026-31662
* CVE-2026-31669
* CVE-2026-31685
* CVE-2026-31694
* CVE-2026-31700
* CVE-2026-31738
* CVE-2026-31787
* CVE-2026-43025
* CVE-2026-43027
* CVE-2026-43050
* CVE-2026-43110
* CVE-2026-43126
* CVE-2026-43190
* CVE-2026-43214
* CVE-2026-43329
* CVE-2026-43334
* CVE-2026-43365
* CVE-2026-43437
* CVE-2026-43494
* CVE-2026-43500
* CVE-2026-43503
* CVE-2026-46333
CVSS scores:
* CVE-2022-49979 ( SUSE ): 4.8
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
* CVE-2022-49979 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
* CVE-2022-49979 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2023-20585 ( SUSE ): 5.6
CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2023-20585 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:N
* CVE-2023-20585 ( NVD ): 5.6
CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-23209 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23209 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23239 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23239 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23239 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23240 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23240 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23240 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23268 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23268 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23268 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23269 ( SUSE ): 6.9
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23269 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H
* CVE-2026-23269 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
* CVE-2026-23271 ( SUSE ): 5.8
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23271 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H
* CVE-2026-23271 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23273 ( SUSE ): 7.1
CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23273 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23273 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23351 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-23351 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23393 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23393 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23393 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23403 ( SUSE ): 6.9
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23403 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H
* CVE-2026-23403 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-23404 ( SUSE ): 6.8
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23404 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-23404 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-23405 ( SUSE ): 6.8
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23405 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-23405 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-23406 ( SUSE ): 6.9
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23406 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H
* CVE-2026-23406 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23407 ( SUSE ): 6.9
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23407 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H
* CVE-2026-23407 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23408 ( SUSE ): 6.9
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23408 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H
* CVE-2026-23408 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23408 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23409 ( SUSE ): 5.8
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23409 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H
* CVE-2026-23409 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-23410 ( SUSE ): 7.1
CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23410 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23410 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23410 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23411 ( SUSE ): 7.1
CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23411 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23411 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23411 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23449 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23449 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23449 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23450 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23450 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23450 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23458 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23458 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23458 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23462 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23462 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23462 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31402 ( SUSE ): 8.8
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31402 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
* CVE-2026-31402 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31403 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31403 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31403 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31408 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31408 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31408 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31436 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31436 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31436 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31470 ( SUSE ): 6.0
CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:H/VI:L/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31470 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H
* CVE-2026-31470 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
* CVE-2026-31504 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31504 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31504 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31505 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31505 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31505 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31507 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31507 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31507 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31512 ( SUSE ): 7.1
CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31512 ( SUSE ): 7.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
* CVE-2026-31512 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-31533 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31533 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31533 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31570 ( SUSE ): 6.9
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:H/SI:N/SA:N
* CVE-2026-31570 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31570 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31586 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31586 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31586 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31588 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31588 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31588 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
* CVE-2026-31602 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31602 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31602 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31607 ( SUSE ): 7.0
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31607 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H
* CVE-2026-31607 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31649 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31649 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31649 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31656 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31656 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31656 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31662 ( SUSE ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31662 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-31662 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-31669 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31669 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31669 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31685 ( SUSE ): 8.3
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31685 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H
* CVE-2026-31685 ( NVD ): 9.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H
* CVE-2026-31694 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31694 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31694 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31700 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31700 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31700 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31738 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31738 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31738 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-31787 ( SUSE ): 6.8
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31787 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-31787 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43025 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43025 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H
* CVE-2026-43027 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43027 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43050 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-43050 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43050 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43110 ( SUSE ): 7.7
CVSS:4.0/AV:A/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-43110 ( SUSE ): 7.5 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43110 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43126 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-43126 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43126 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43190 ( SUSE ): 8.8
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-43190 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
* CVE-2026-43190 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
* CVE-2026-43214 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-43214 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43214 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43329 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-43329 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43329 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43334 ( SUSE ): 8.6
CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
* CVE-2026-43334 ( SUSE ): 8.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
* CVE-2026-43334 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43365 ( SUSE ): 8.8
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N
* CVE-2026-43365 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
* CVE-2026-43365 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
* CVE-2026-43437 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-43437 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43437 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43494 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-43494 ( SUSE ): 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43500 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
* CVE-2026-43500 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43500 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43503 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-43503 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
* CVE-2026-43503 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
* CVE-2026-46333 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-46333 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
* CVE-2026-46333 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Affected Products:
* openSUSE Leap 15.5
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
* SUSE Linux Enterprise Live Patching 15-SP5
* SUSE Linux Enterprise Micro 5.5
* SUSE Linux Enterprise Real Time 15 SP5
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server 15 SP5 LTSS
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
An update that solves 63 vulnerabilities and has two security fixes can now be
installed.
## Description:
The SUSE Linux Enterprise 15 SP5 kernel was updated to fix various security
issues
The following security issues were fixed:
* CVE-2022-49979: net: fix refcount bug in sk_psock_get (bsc#1245109).
* CVE-2023-20585: x86/CPU: Fix FPDSS on Zen1 (bsc#1243603).
* CVE-2026-23239: espintcp: Fix race condition in espintcp_close()
(bsc#1259485).
* CVE-2026-23240: tls: Fix race condition in tls_sw_cancel_work_tx()
(bsc#1259484).
* CVE-2026-23271: perf: Fix __perf_event_overflow() vs
perf_remove_from_context() race (bsc#1260018).
* CVE-2026-23351: netfilter: nft_set_pipapo: split gc into unlink and reclaim
phase (bsc#1260526).
* CVE-2026-23393: bridge: cfm: Fix race condition in peer_mep deletion
(bsc#1260522).
* CVE-2026-23449: net/sched: teql: Fix double-free in teql_master_xmit
(bsc#1261779).
* CVE-2026-23450: net/smc: fix NULL dereference and UAF in
smc_tcp_syn_recv_sock() (bsc#1261584).
* CVE-2026-23458: netfilter: ctnetlink: fix use-after-free in
ctnetlink_dump_exp_ct() (bsc#1261781).
* CVE-2026-23462: Bluetooth: HIDP: Fix possible UAF (bsc#1261710).
* CVE-2026-31402: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache
(bsc#1261638).
* CVE-2026-31403: NFSD: Hold net reference for the lifetime of
/proc/fs/nfs/exports fd (bsc#1261796).
* CVE-2026-31408: Bluetooth: SCO: Fix use-after-free in sco_recv_frame() due
to missing sock_hold (bsc#1261797).
* CVE-2026-31436: dmaengine: idxd: fix possible wrong descriptor completion in
llist_abort_desc() (bsc#1262602).
* CVE-2026-31470: virt: tdx-guest: Fix handling of host controlled 'quote'
buffer length (bsc#1262665).
* CVE-2026-31504: net: fix fanout UAF in packet_release() via NETDEV_UP race
(bsc#1263085).
* CVE-2026-31505: iavf: fix out-of-bounds writes in iavf_get_ethtool_stats()
(bsc#1263093).
* CVE-2026-31507: net/smc: fix double-free of smc_spd_priv when tee()
duplicates splice pipe buffer (bsc#1263095).
* CVE-2026-31512: Bluetooth: L2CAP: Validate PDU length before reading SDU
length in l2cap_ecred_data_rcv() (bsc#1262734).
* CVE-2026-31533: net/tls: fix use-after-free in -EBUSY error path of
tls_do_encryption (bsc#1262758).
* CVE-2026-31570: can: gw: fix OOB heap access in cgw_csum_crc8_rel()
(bsc#1263065).
* CVE-2026-31586: mm: blk-cgroup: fix use-after-free in cgwb_release_workfn()
(bsc#1263176).
* CVE-2026-31588: KVM: x86: Use scratch field in MMIO fragment to hold small
write values (bsc#1263165).
* CVE-2026-31602: ALSA: ctxfi: Limit PTP to a single page (bsc#1263723).
* CVE-2026-31607: usbip: validate number_of_packets in usbip_pack_ret_submit()
(bsc#1263600).
* CVE-2026-31649: net: stmmac: fix integer underflow in chain mode
(bsc#1263582).
* CVE-2026-31656: drm/i915/gt: fix refcount underflow in
intel_engine_park_heartbeat (bsc#1263170).
* CVE-2026-31662: tipc: fix bc_ackers underflow on duplicate GRP_ACK_MSG
(bsc#1263131).
* CVE-2026-31669: mptcp: fix slab-use-after-free in __inet_lookup_established
(bsc#1263141).
* CVE-2026-31685: netfilter: ip6t_eui64: reject invalid MAC header for all
packets (bsc#1263668).
* CVE-2026-31694: fuse: reject oversized dirents in page cache (bsc#1263901).
* CVE-2026-31700: net/packet: fix TOCTOU race on mmap'd vnet_hdr in
tpacket_snd() (bsc#1263882).
* CVE-2026-31738: vxlan: validate ND option lengths in vxlan_na_create
(bsc#1264059).
* CVE-2026-31787: xen/privcmd: fix double free via VMA splitting
(bsc#1262181).
* CVE-2026-43025: netfilter: ctnetlink: ignore explicit helper on new
expectations (bsc#1263931).
* CVE-2026-43027: netfilter: nf_conntrack_helper: pass helper to expect
cleanup (bsc#1263933).
* CVE-2026-43050: atm: lec: fix use-after-free in sock_def_readable()
(bsc#1264082).
* CVE-2026-43110: wifi: brcmfmac: validate bsscfg indices in IF events
(bsc#1264482).
* CVE-2026-43126: ALSA: mixer: oss: Add card disconnect checkpoints
(bsc#1264634).
* CVE-2026-43190: netfilter: xt_tcpmss: check remaining length before reading
optlen (bsc#1264848).
* CVE-2026-43214: KVM: x86: Add SRCU protection for reading PDPTRs in
__get_sregs2() (bsc#1264651).
* CVE-2026-43329: netfilter: flowtable: strictly check for maximum number of
actions (bsc#1265085).
* CVE-2026-43334: Bluetooth: SMP: force responder MITM requirements before
building the pairing response (bsc#1265090).
* CVE-2026-43365: xfs: fix undersized l_iclog_roundoff values (bsc#1265119).
* CVE-2026-43437: ALSA: pcm: fix use-after-free on linked stream runtime in
snd_pcm_drain() (bsc#1265126).
* CVE-2026-43494: net/rds: reset op_nents when zerocopy page pin fails
(bsc#1265626).
* CVE-2026-43500: supported.conf: drop rxrpc and af_kfs (bsc#1264450).
* CVE-2026-43503: net: skbuff: propagate shared-frag marker through frag-
transfer helpers (bsc#1265960).
* CVE-2026-46333: ptrace: slightly saner 'get_dumpable()' logic (bsc#1265308).
The following non security issues were fixed:
* check-for-config-changes: Exclude CC_MS_EXTENSIONS.
* check-for-config-changes: Exclude
HAVE_CFI_ICALL_NORMALIZE_INTEGERS{,_RUSTC}.
* dm init: ensure device probing has finished in dm-mod.waitfor= (git-fixes).
* mkspec: Add signature to source list only when it exists.
* net/rds: reset op_nents when zerocopy page pin fails (bsc#1265626).
* net: gro: don't merge zcopy skbs (git-fixes).
* ocfs2: fix possible deadlock between unlink and dio_end_io_write
(bsc#1258718).
* ocfs2: split transactions in dio completion to avoid credit exhaustion
(bsc#1258718).
* tcp: derive delack_max from rto_min (git-fixes). (cherry picked from commit
681cef669f5a14ab844195d5b0e3dab01e42b3b7).
* virt: tdx-guest: Return error for GetQuote failures (git-fixes).
* watchdog/perf: properly initialize the turbo mode timestamp and rearm
counter (bsc#1256504).
* xfrm: esp: avoid in-place decrypt on shared skb frags.
## Special Instructions and Notes:
* Please reboot the system after installing this update.
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2215=1
* SUSE Linux Enterprise Server 15 SP5 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2215=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2215=1
* SUSE Linux Enterprise Live Patching 15-SP5
zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2026-2215=1
* openSUSE Leap 15.5
zypper in -t patch SUSE-2026-2215=1
* SUSE Linux Enterprise Micro 5.5
zypper in -t patch SUSE-SLE-Micro-5.5-2026-2215=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2215=1
## Package List:
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64
x86_64)
* kernel-default-devel-5.14.21-150500.55.166.1
* kernel-obs-build-debugsource-5.14.21-150500.55.166.1
* cluster-md-kmp-default-debuginfo-5.14.21-150500.55.166.1
* kernel-default-debuginfo-5.14.21-150500.55.166.1
* kernel-default-base-5.14.21-150500.55.166.1.150500.6.77.1
* dlm-kmp-default-5.14.21-150500.55.166.1
* cluster-md-kmp-default-5.14.21-150500.55.166.1
* kernel-syms-5.14.21-150500.55.166.1
* kernel-default-devel-debuginfo-5.14.21-150500.55.166.1
* ocfs2-kmp-default-debuginfo-5.14.21-150500.55.166.1
* gfs2-kmp-default-debuginfo-5.14.21-150500.55.166.1
* kernel-obs-build-5.14.21-150500.55.166.1
* gfs2-kmp-default-5.14.21-150500.55.166.1
* kernel-default-debugsource-5.14.21-150500.55.166.1
* dlm-kmp-default-debuginfo-5.14.21-150500.55.166.1
* ocfs2-kmp-default-5.14.21-150500.55.166.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 nosrc
x86_64)
* kernel-default-5.14.21-150500.55.166.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch)
* kernel-source-5.14.21-150500.55.166.1
* kernel-devel-5.14.21-150500.55.166.1
* kernel-macros-5.14.21-150500.55.166.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch nosrc)
* kernel-docs-5.14.21-150500.55.166.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 nosrc)
* kernel-64kb-5.14.21-150500.55.166.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64)
* kernel-64kb-devel-5.14.21-150500.55.166.1
* kernel-64kb-debugsource-5.14.21-150500.55.166.1
* kernel-64kb-debuginfo-5.14.21-150500.55.166.1
* kernel-64kb-devel-debuginfo-5.14.21-150500.55.166.1
* SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64
nosrc)
* kernel-default-5.14.21-150500.55.166.1
* SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le x86_64)
* kernel-default-base-5.14.21-150500.55.166.1.150500.6.77.1
* SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64)
* kernel-default-devel-5.14.21-150500.55.166.1
* kernel-obs-build-debugsource-5.14.21-150500.55.166.1
* cluster-md-kmp-default-debuginfo-5.14.21-150500.55.166.1
* kernel-default-debuginfo-5.14.21-150500.55.166.1
* dlm-kmp-default-5.14.21-150500.55.166.1
* cluster-md-kmp-default-5.14.21-150500.55.166.1
* reiserfs-kmp-default-debuginfo-5.14.21-150500.55.166.1
* kernel-syms-5.14.21-150500.55.166.1
* kernel-default-devel-debuginfo-5.14.21-150500.55.166.1
* ocfs2-kmp-default-debuginfo-5.14.21-150500.55.166.1
* gfs2-kmp-default-debuginfo-5.14.21-150500.55.166.1
* reiserfs-kmp-default-5.14.21-150500.55.166.1
* kernel-obs-build-5.14.21-150500.55.166.1
* gfs2-kmp-default-5.14.21-150500.55.166.1
* kernel-default-debugsource-5.14.21-150500.55.166.1
* dlm-kmp-default-debuginfo-5.14.21-150500.55.166.1
* ocfs2-kmp-default-5.14.21-150500.55.166.1
* SUSE Linux Enterprise Server 15 SP5 LTSS (noarch)
* kernel-source-5.14.21-150500.55.166.1
* kernel-devel-5.14.21-150500.55.166.1
* kernel-macros-5.14.21-150500.55.166.1
* SUSE Linux Enterprise Server 15 SP5 LTSS (noarch nosrc)
* kernel-docs-5.14.21-150500.55.166.1
* SUSE Linux Enterprise Server 15 SP5 LTSS (nosrc s390x)
* kernel-zfcpdump-5.14.21-150500.55.166.1
* SUSE Linux Enterprise Server 15 SP5 LTSS (s390x)
* kernel-zfcpdump-debugsource-5.14.21-150500.55.166.1
* kernel-zfcpdump-debuginfo-5.14.21-150500.55.166.1
* SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 nosrc)
* kernel-64kb-5.14.21-150500.55.166.1
* SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64)
* kernel-64kb-devel-5.14.21-150500.55.166.1
* kernel-64kb-debugsource-5.14.21-150500.55.166.1
* kernel-64kb-debuginfo-5.14.21-150500.55.166.1
* kernel-64kb-devel-debuginfo-5.14.21-150500.55.166.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64)
* kernel-default-devel-5.14.21-150500.55.166.1
* cluster-md-kmp-default-debuginfo-5.14.21-150500.55.166.1
* kernel-obs-build-debugsource-5.14.21-150500.55.166.1
* kernel-default-debuginfo-5.14.21-150500.55.166.1
* dlm-kmp-default-5.14.21-150500.55.166.1
* cluster-md-kmp-default-5.14.21-150500.55.166.1
* kernel-default-base-5.14.21-150500.55.166.1.150500.6.77.1
* kernel-syms-5.14.21-150500.55.166.1
* reiserfs-kmp-default-debuginfo-5.14.21-150500.55.166.1
* kernel-default-devel-debuginfo-5.14.21-150500.55.166.1
* ocfs2-kmp-default-debuginfo-5.14.21-150500.55.166.1
* gfs2-kmp-default-debuginfo-5.14.21-150500.55.166.1
* reiserfs-kmp-default-5.14.21-150500.55.166.1
* kernel-obs-build-5.14.21-150500.55.166.1
* gfs2-kmp-default-5.14.21-150500.55.166.1
* kernel-default-debugsource-5.14.21-150500.55.166.1
* dlm-kmp-default-debuginfo-5.14.21-150500.55.166.1
* ocfs2-kmp-default-5.14.21-150500.55.166.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5 (nosrc ppc64le
x86_64)
* kernel-default-5.14.21-150500.55.166.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5 (noarch)
* kernel-source-5.14.21-150500.55.166.1
* kernel-devel-5.14.21-150500.55.166.1
* kernel-macros-5.14.21-150500.55.166.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5 (noarch nosrc)
* kernel-docs-5.14.21-150500.55.166.1
* SUSE Linux Enterprise Live Patching 15-SP5 (ppc64le s390x x86_64)
* kernel-default-debuginfo-5.14.21-150500.55.166.1
* kernel-livepatch-5_14_21-150500_55_166-default-1-150500.11.3.1
* kernel-default-livepatch-devel-5.14.21-150500.55.166.1
* kernel-default-debugsource-5.14.21-150500.55.166.1
* kernel-livepatch-5_14_21-150500_55_166-default-debuginfo-1-150500.11.3.1
* kernel-default-livepatch-5.14.21-150500.55.166.1
* kernel-livepatch-SLE15-SP5_Update_40-debugsource-1-150500.11.3.1
* SUSE Linux Enterprise Live Patching 15-SP5 (nosrc)
* kernel-default-5.14.21-150500.55.166.1
* openSUSE Leap 15.5 (noarch nosrc)
* kernel-docs-5.14.21-150500.55.166.1
* openSUSE Leap 15.5 (noarch)
* kernel-source-5.14.21-150500.55.166.1
* kernel-source-vanilla-5.14.21-150500.55.166.1
* kernel-devel-5.14.21-150500.55.166.1
* kernel-macros-5.14.21-150500.55.166.1
* kernel-docs-html-5.14.21-150500.55.166.1
* openSUSE Leap 15.5 (aarch64 ppc64le x86_64)
* kernel-kvmsmall-debugsource-5.14.21-150500.55.166.1
* kernel-kvmsmall-devel-debuginfo-5.14.21-150500.55.166.1
* kernel-kvmsmall-debuginfo-5.14.21-150500.55.166.1
* kernel-default-base-5.14.21-150500.55.166.1.150500.6.77.1
* kernel-kvmsmall-devel-5.14.21-150500.55.166.1
* kernel-default-base-rebuild-5.14.21-150500.55.166.1.150500.6.77.1
* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64)
* kernel-obs-build-debugsource-5.14.21-150500.55.166.1
* cluster-md-kmp-default-debuginfo-5.14.21-150500.55.166.1
* kernel-syms-5.14.21-150500.55.166.1
* kernel-default-extra-5.14.21-150500.55.166.1
* ocfs2-kmp-default-5.14.21-150500.55.166.1
* kernel-default-optional-5.14.21-150500.55.166.1
* kernel-default-optional-debuginfo-5.14.21-150500.55.166.1
* dlm-kmp-default-5.14.21-150500.55.166.1
* kselftests-kmp-default-5.14.21-150500.55.166.1
* kernel-obs-qa-5.14.21-150500.55.166.1
* gfs2-kmp-default-5.14.21-150500.55.166.1
* kernel-default-livepatch-5.14.21-150500.55.166.1
* kernel-default-devel-5.14.21-150500.55.166.1
* kernel-default-extra-debuginfo-5.14.21-150500.55.166.1
* ocfs2-kmp-default-debuginfo-5.14.21-150500.55.166.1
* gfs2-kmp-default-debuginfo-5.14.21-150500.55.166.1
* kernel-default-debugsource-5.14.21-150500.55.166.1
* dlm-kmp-default-debuginfo-5.14.21-150500.55.166.1
* kernel-default-debuginfo-5.14.21-150500.55.166.1
* cluster-md-kmp-default-5.14.21-150500.55.166.1
* reiserfs-kmp-default-debuginfo-5.14.21-150500.55.166.1
* kernel-default-devel-debuginfo-5.14.21-150500.55.166.1
* kselftests-kmp-default-debuginfo-5.14.21-150500.55.166.1
* reiserfs-kmp-default-5.14.21-150500.55.166.1
* kernel-obs-build-5.14.21-150500.55.166.1
* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 nosrc)
* kernel-default-5.14.21-150500.55.166.1
* openSUSE Leap 15.5 (ppc64le s390x x86_64)
* kernel-livepatch-5_14_21-150500_55_166-default-debuginfo-1-150500.11.3.1
* kernel-livepatch-5_14_21-150500_55_166-default-1-150500.11.3.1
* kernel-livepatch-SLE15-SP5_Update_40-debugsource-1-150500.11.3.1
* kernel-default-livepatch-devel-5.14.21-150500.55.166.1
* openSUSE Leap 15.5 (x86_64)
* kernel-default-vdso-5.14.21-150500.55.166.1
* kernel-kvmsmall-vdso-debuginfo-5.14.21-150500.55.166.1
* kernel-default-vdso-debuginfo-5.14.21-150500.55.166.1
* kernel-kvmsmall-vdso-5.14.21-150500.55.166.1
* openSUSE Leap 15.5 (aarch64 nosrc ppc64le x86_64)
* kernel-kvmsmall-5.14.21-150500.55.166.1
* openSUSE Leap 15.5 (nosrc s390x)
* kernel-zfcpdump-5.14.21-150500.55.166.1
* openSUSE Leap 15.5 (s390x)
* kernel-zfcpdump-debugsource-5.14.21-150500.55.166.1
* kernel-zfcpdump-debuginfo-5.14.21-150500.55.166.1
* openSUSE Leap 15.5 (nosrc)
* dtb-aarch64-5.14.21-150500.55.166.1
* openSUSE Leap 15.5 (aarch64)
* dtb-broadcom-5.14.21-150500.55.166.1
* gfs2-kmp-64kb-debuginfo-5.14.21-150500.55.166.1
* dtb-lg-5.14.21-150500.55.166.1
* gfs2-kmp-64kb-5.14.21-150500.55.166.1
* kselftests-kmp-64kb-debuginfo-5.14.21-150500.55.166.1
* kernel-64kb-devel-debuginfo-5.14.21-150500.55.166.1
* kernel-64kb-optional-5.14.21-150500.55.166.1
* dtb-nvidia-5.14.21-150500.55.166.1
* dlm-kmp-64kb-5.14.21-150500.55.166.1
* dtb-hisilicon-5.14.21-150500.55.166.1
* cluster-md-kmp-64kb-debuginfo-5.14.21-150500.55.166.1
* kernel-64kb-debugsource-5.14.21-150500.55.166.1
* dtb-renesas-5.14.21-150500.55.166.1
* kernel-64kb-extra-5.14.21-150500.55.166.1
* dtb-freescale-5.14.21-150500.55.166.1
* kselftests-kmp-64kb-5.14.21-150500.55.166.1
* dtb-apm-5.14.21-150500.55.166.1
* dtb-qcom-5.14.21-150500.55.166.1
* dtb-allwinner-5.14.21-150500.55.166.1
* reiserfs-kmp-64kb-5.14.21-150500.55.166.1
* dtb-apple-5.14.21-150500.55.166.1
* kernel-64kb-devel-5.14.21-150500.55.166.1
* dlm-kmp-64kb-debuginfo-5.14.21-150500.55.166.1
* kernel-64kb-optional-debuginfo-5.14.21-150500.55.166.1
* dtb-altera-5.14.21-150500.55.166.1
* dtb-mediatek-5.14.21-150500.55.166.1
* dtb-amazon-5.14.21-150500.55.166.1
* kernel-64kb-extra-debuginfo-5.14.21-150500.55.166.1
* dtb-arm-5.14.21-150500.55.166.1
* dtb-rockchip-5.14.21-150500.55.166.1
* reiserfs-kmp-64kb-debuginfo-5.14.21-150500.55.166.1
* dtb-socionext-5.14.21-150500.55.166.1
* dtb-marvell-5.14.21-150500.55.166.1
* dtb-amlogic-5.14.21-150500.55.166.1
* ocfs2-kmp-64kb-5.14.21-150500.55.166.1
* ocfs2-kmp-64kb-debuginfo-5.14.21-150500.55.166.1
* dtb-amd-5.14.21-150500.55.166.1
* kernel-64kb-debuginfo-5.14.21-150500.55.166.1
* cluster-md-kmp-64kb-5.14.21-150500.55.166.1
* dtb-sprd-5.14.21-150500.55.166.1
* dtb-xilinx-5.14.21-150500.55.166.1
* dtb-exynos-5.14.21-150500.55.166.1
* dtb-cavium-5.14.21-150500.55.166.1
* openSUSE Leap 15.5 (aarch64 nosrc)
* kernel-64kb-5.14.21-150500.55.166.1
* SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64 nosrc)
* kernel-default-5.14.21-150500.55.166.1
* SUSE Linux Enterprise Micro 5.5 (aarch64 x86_64)
* kernel-default-base-5.14.21-150500.55.166.1.150500.6.77.1
* SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64)
* kernel-default-debugsource-5.14.21-150500.55.166.1
* kernel-default-debuginfo-5.14.21-150500.55.166.1
* SUSE Linux Enterprise Micro 5.5 (noarch)
* kernel-source-5.14.21-150500.55.166.1
* kernel-macros-5.14.21-150500.55.166.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64
x86_64)
* kernel-default-devel-5.14.21-150500.55.166.1
* cluster-md-kmp-default-debuginfo-5.14.21-150500.55.166.1
* kernel-obs-build-debugsource-5.14.21-150500.55.166.1
* kernel-default-debuginfo-5.14.21-150500.55.166.1
* dlm-kmp-default-5.14.21-150500.55.166.1
* cluster-md-kmp-default-5.14.21-150500.55.166.1
* kernel-default-base-5.14.21-150500.55.166.1.150500.6.77.1
* kernel-syms-5.14.21-150500.55.166.1
* kernel-default-devel-debuginfo-5.14.21-150500.55.166.1
* ocfs2-kmp-default-debuginfo-5.14.21-150500.55.166.1
* gfs2-kmp-default-debuginfo-5.14.21-150500.55.166.1
* kernel-obs-build-5.14.21-150500.55.166.1
* gfs2-kmp-default-5.14.21-150500.55.166.1
* kernel-default-debugsource-5.14.21-150500.55.166.1
* dlm-kmp-default-debuginfo-5.14.21-150500.55.166.1
* ocfs2-kmp-default-5.14.21-150500.55.166.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64
nosrc)
* kernel-64kb-5.14.21-150500.55.166.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64)
* kernel-64kb-devel-5.14.21-150500.55.166.1
* kernel-64kb-debugsource-5.14.21-150500.55.166.1
* kernel-64kb-debuginfo-5.14.21-150500.55.166.1
* kernel-64kb-devel-debuginfo-5.14.21-150500.55.166.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 nosrc
x86_64)
* kernel-default-5.14.21-150500.55.166.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch)
* kernel-source-5.14.21-150500.55.166.1
* kernel-devel-5.14.21-150500.55.166.1
* kernel-macros-5.14.21-150500.55.166.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch nosrc)
* kernel-docs-5.14.21-150500.55.166.1
## References:
* https://www.suse.com/security/cve/CVE-2022-49979.html
* https://www.suse.com/security/cve/CVE-2023-20585.html
* https://www.suse.com/security/cve/CVE-2026-23209.html
* https://www.suse.com/security/cve/CVE-2026-23239.html
* https://www.suse.com/security/cve/CVE-2026-23240.html
* https://www.suse.com/security/cve/CVE-2026-23268.html
* https://www.suse.com/security/cve/CVE-2026-23269.html
* https://www.suse.com/security/cve/CVE-2026-23271.html
* https://www.suse.com/security/cve/CVE-2026-23273.html
* https://www.suse.com/security/cve/CVE-2026-23351.html
* https://www.suse.com/security/cve/CVE-2026-23393.html
* https://www.suse.com/security/cve/CVE-2026-23403.html
* https://www.suse.com/security/cve/CVE-2026-23404.html
* https://www.suse.com/security/cve/CVE-2026-23405.html
* https://www.suse.com/security/cve/CVE-2026-23406.html
* https://www.suse.com/security/cve/CVE-2026-23407.html
* https://www.suse.com/security/cve/CVE-2026-23408.html
* https://www.suse.com/security/cve/CVE-2026-23409.html
* https://www.suse.com/security/cve/CVE-2026-23410.html
* https://www.suse.com/security/cve/CVE-2026-23411.html
* https://www.suse.com/security/cve/CVE-2026-23449.html
* https://www.suse.com/security/cve/CVE-2026-23450.html
* https://www.suse.com/security/cve/CVE-2026-23458.html
* https://www.suse.com/security/cve/CVE-2026-23462.html
* https://www.suse.com/security/cve/CVE-2026-31402.html
* https://www.suse.com/security/cve/CVE-2026-31403.html
* https://www.suse.com/security/cve/CVE-2026-31408.html
* https://www.suse.com/security/cve/CVE-2026-31436.html
* https://www.suse.com/security/cve/CVE-2026-31470.html
* https://www.suse.com/security/cve/CVE-2026-31504.html
* https://www.suse.com/security/cve/CVE-2026-31505.html
* https://www.suse.com/security/cve/CVE-2026-31507.html
* https://www.suse.com/security/cve/CVE-2026-31512.html
* https://www.suse.com/security/cve/CVE-2026-31533.html
* https://www.suse.com/security/cve/CVE-2026-31570.html
* https://www.suse.com/security/cve/CVE-2026-31586.html
* https://www.suse.com/security/cve/CVE-2026-31588.html
* https://www.suse.com/security/cve/CVE-2026-31602.html
* https://www.suse.com/security/cve/CVE-2026-31607.html
* https://www.suse.com/security/cve/CVE-2026-31649.html
* https://www.suse.com/security/cve/CVE-2026-31656.html
* https://www.suse.com/security/cve/CVE-2026-31662.html
* https://www.suse.com/security/cve/CVE-2026-31669.html
* https://www.suse.com/security/cve/CVE-2026-31685.html
* https://www.suse.com/security/cve/CVE-2026-31694.html
* https://www.suse.com/security/cve/CVE-2026-31700.html
* https://www.suse.com/security/cve/CVE-2026-31738.html
* https://www.suse.com/security/cve/CVE-2026-31787.html
* https://www.suse.com/security/cve/CVE-2026-43025.html
* https://www.suse.com/security/cve/CVE-2026-43027.html
* https://www.suse.com/security/cve/CVE-2026-43050.html
* https://www.suse.com/security/cve/CVE-2026-43110.html
* https://www.suse.com/security/cve/CVE-2026-43126.html
* https://www.suse.com/security/cve/CVE-2026-43190.html
* https://www.suse.com/security/cve/CVE-2026-43214.html
* https://www.suse.com/security/cve/CVE-2026-43329.html
* https://www.suse.com/security/cve/CVE-2026-43334.html
* https://www.suse.com/security/cve/CVE-2026-43365.html
* https://www.suse.com/security/cve/CVE-2026-43437.html
* https://www.suse.com/security/cve/CVE-2026-43494.html
* https://www.suse.com/security/cve/CVE-2026-43500.html
* https://www.suse.com/security/cve/CVE-2026-43503.html
* https://www.suse.com/security/cve/CVE-2026-46333.html
* https://bugzilla.suse.com/show_bug.cgi?id=1243603
* https://bugzilla.suse.com/show_bug.cgi?id=1245109
* https://bugzilla.suse.com/show_bug.cgi?id=1256504
* https://bugzilla.suse.com/show_bug.cgi?id=1258518
* https://bugzilla.suse.com/show_bug.cgi?id=1258718
* https://bugzilla.suse.com/show_bug.cgi?id=1258849
* https://bugzilla.suse.com/show_bug.cgi?id=1258850
* https://bugzilla.suse.com/show_bug.cgi?id=1258854
* https://bugzilla.suse.com/show_bug.cgi?id=1258855
* https://bugzilla.suse.com/show_bug.cgi?id=1258856
* https://bugzilla.suse.com/show_bug.cgi?id=1258857
* https://bugzilla.suse.com/show_bug.cgi?id=1259484
* https://bugzilla.suse.com/show_bug.cgi?id=1259485
* https://bugzilla.suse.com/show_bug.cgi?id=1259857
* https://bugzilla.suse.com/show_bug.cgi?id=1260010
* https://bugzilla.suse.com/show_bug.cgi?id=1260018
* https://bugzilla.suse.com/show_bug.cgi?id=1260522
* https://bugzilla.suse.com/show_bug.cgi?id=1260526
* https://bugzilla.suse.com/show_bug.cgi?id=1261287
* https://bugzilla.suse.com/show_bug.cgi?id=1261295
* https://bugzilla.suse.com/show_bug.cgi?id=1261584
* https://bugzilla.suse.com/show_bug.cgi?id=1261638
* https://bugzilla.suse.com/show_bug.cgi?id=1261710
* https://bugzilla.suse.com/show_bug.cgi?id=1261779
* https://bugzilla.suse.com/show_bug.cgi?id=1261781
* https://bugzilla.suse.com/show_bug.cgi?id=1261796
* https://bugzilla.suse.com/show_bug.cgi?id=1261797
* https://bugzilla.suse.com/show_bug.cgi?id=1262179
* https://bugzilla.suse.com/show_bug.cgi?id=1262181
* https://bugzilla.suse.com/show_bug.cgi?id=1262602
* https://bugzilla.suse.com/show_bug.cgi?id=1262665
* https://bugzilla.suse.com/show_bug.cgi?id=1262734
* https://bugzilla.suse.com/show_bug.cgi?id=1262758
* https://bugzilla.suse.com/show_bug.cgi?id=1263065
* https://bugzilla.suse.com/show_bug.cgi?id=1263085
* https://bugzilla.suse.com/show_bug.cgi?id=1263093
* https://bugzilla.suse.com/show_bug.cgi?id=1263095
* https://bugzilla.suse.com/show_bug.cgi?id=1263131
* https://bugzilla.suse.com/show_bug.cgi?id=1263141
* https://bugzilla.suse.com/show_bug.cgi?id=1263165
* https://bugzilla.suse.com/show_bug.cgi?id=1263170
* https://bugzilla.suse.com/show_bug.cgi?id=1263176
* https://bugzilla.suse.com/show_bug.cgi?id=1263582
* https://bugzilla.suse.com/show_bug.cgi?id=1263600
* https://bugzilla.suse.com/show_bug.cgi?id=1263668
* https://bugzilla.suse.com/show_bug.cgi?id=1263723
* https://bugzilla.suse.com/show_bug.cgi?id=1263882
* https://bugzilla.suse.com/show_bug.cgi?id=1263901
* https://bugzilla.suse.com/show_bug.cgi?id=1263931
* https://bugzilla.suse.com/show_bug.cgi?id=1263933
* https://bugzilla.suse.com/show_bug.cgi?id=1264059
* https://bugzilla.suse.com/show_bug.cgi?id=1264082
* https://bugzilla.suse.com/show_bug.cgi?id=1264450
* https://bugzilla.suse.com/show_bug.cgi?id=1264482
* https://bugzilla.suse.com/show_bug.cgi?id=1264634
* https://bugzilla.suse.com/show_bug.cgi?id=1264651
* https://bugzilla.suse.com/show_bug.cgi?id=1264848
* https://bugzilla.suse.com/show_bug.cgi?id=1265085
* https://bugzilla.suse.com/show_bug.cgi?id=1265090
* https://bugzilla.suse.com/show_bug.cgi?id=1265119
* https://bugzilla.suse.com/show_bug.cgi?id=1265126
* https://bugzilla.suse.com/show_bug.cgi?id=1265308
* https://bugzilla.suse.com/show_bug.cgi?id=1265456
* https://bugzilla.suse.com/show_bug.cgi?id=1265626
* https://bugzilla.suse.com/show_bug.cgi?id=1265960
SUSE-SU-2026:2216-1: important: Security update for the Linux Kernel
# Security update for the Linux Kernel
Announcement ID: SUSE-SU-2026:2216-1
Release Date: 2026-06-02T05:58:23Z
Rating: important
References:
* bsc#1243603
* bsc#1245109
* bsc#1256504
* bsc#1258518
* bsc#1258718
* bsc#1258849
* bsc#1258850
* bsc#1258854
* bsc#1258855
* bsc#1258856
* bsc#1258857
* bsc#1259484
* bsc#1259485
* bsc#1259857
* bsc#1260010
* bsc#1260018
* bsc#1260522
* bsc#1260526
* bsc#1261287
* bsc#1261295
* bsc#1261584
* bsc#1261638
* bsc#1261710
* bsc#1261779
* bsc#1261781
* bsc#1261796
* bsc#1261797
* bsc#1262179
* bsc#1262181
* bsc#1262602
* bsc#1262665
* bsc#1262734
* bsc#1262758
* bsc#1263065
* bsc#1263085
* bsc#1263093
* bsc#1263095
* bsc#1263131
* bsc#1263141
* bsc#1263165
* bsc#1263170
* bsc#1263176
* bsc#1263582
* bsc#1263600
* bsc#1263668
* bsc#1263723
* bsc#1263882
* bsc#1263901
* bsc#1263931
* bsc#1263933
* bsc#1264059
* bsc#1264082
* bsc#1264450
* bsc#1264482
* bsc#1264634
* bsc#1264651
* bsc#1264848
* bsc#1265085
* bsc#1265090
* bsc#1265119
* bsc#1265126
* bsc#1265456
* bsc#1265626
* bsc#1265960
Cross-References:
* CVE-2022-49979
* CVE-2023-20585
* CVE-2026-23209
* CVE-2026-23239
* CVE-2026-23240
* CVE-2026-23268
* CVE-2026-23269
* CVE-2026-23271
* CVE-2026-23273
* CVE-2026-23351
* CVE-2026-23393
* CVE-2026-23403
* CVE-2026-23404
* CVE-2026-23405
* CVE-2026-23406
* CVE-2026-23407
* CVE-2026-23408
* CVE-2026-23409
* CVE-2026-23410
* CVE-2026-23411
* CVE-2026-23449
* CVE-2026-23450
* CVE-2026-23458
* CVE-2026-23462
* CVE-2026-31402
* CVE-2026-31403
* CVE-2026-31408
* CVE-2026-31436
* CVE-2026-31470
* CVE-2026-31504
* CVE-2026-31505
* CVE-2026-31507
* CVE-2026-31512
* CVE-2026-31533
* CVE-2026-31570
* CVE-2026-31586
* CVE-2026-31588
* CVE-2026-31602
* CVE-2026-31607
* CVE-2026-31649
* CVE-2026-31656
* CVE-2026-31662
* CVE-2026-31669
* CVE-2026-31685
* CVE-2026-31694
* CVE-2026-31700
* CVE-2026-31738
* CVE-2026-31787
* CVE-2026-43025
* CVE-2026-43027
* CVE-2026-43050
* CVE-2026-43110
* CVE-2026-43126
* CVE-2026-43190
* CVE-2026-43214
* CVE-2026-43329
* CVE-2026-43334
* CVE-2026-43365
* CVE-2026-43437
* CVE-2026-43494
* CVE-2026-43500
* CVE-2026-43503
CVSS scores:
* CVE-2022-49979 ( SUSE ): 4.8
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
* CVE-2022-49979 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
* CVE-2022-49979 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2023-20585 ( SUSE ): 5.6
CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2023-20585 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:N
* CVE-2023-20585 ( NVD ): 5.6
CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-23209 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23209 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23209 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23239 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23239 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23239 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23240 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23240 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23240 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23268 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23268 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23268 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23269 ( SUSE ): 6.9
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23269 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H
* CVE-2026-23269 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
* CVE-2026-23271 ( SUSE ): 5.8
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23271 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H
* CVE-2026-23271 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23273 ( SUSE ): 7.1
CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23273 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23273 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23351 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-23351 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23393 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23393 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23393 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23403 ( SUSE ): 6.9
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23403 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H
* CVE-2026-23403 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-23404 ( SUSE ): 6.8
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23404 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-23404 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-23405 ( SUSE ): 6.8
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23405 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-23405 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-23406 ( SUSE ): 6.9
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23406 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H
* CVE-2026-23406 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23407 ( SUSE ): 6.9
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23407 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H
* CVE-2026-23407 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23408 ( SUSE ): 6.9
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23408 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H
* CVE-2026-23408 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23408 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23409 ( SUSE ): 5.8
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23409 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H
* CVE-2026-23409 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-23410 ( SUSE ): 7.1
CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23410 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23410 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23410 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23411 ( SUSE ): 7.1
CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23411 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23411 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23411 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23449 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23449 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23449 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23450 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23450 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23450 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23458 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23458 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23458 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23462 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23462 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23462 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31402 ( SUSE ): 8.8
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31402 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
* CVE-2026-31402 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31403 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31403 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31403 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31408 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31408 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31408 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31436 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31436 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31436 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31470 ( SUSE ): 6.0
CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:H/VI:L/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31470 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H
* CVE-2026-31470 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
* CVE-2026-31504 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31504 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31504 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31505 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31505 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31505 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31507 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31507 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31507 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31512 ( SUSE ): 7.1
CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31512 ( SUSE ): 7.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
* CVE-2026-31512 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-31533 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31533 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31533 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31570 ( SUSE ): 6.9
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:H/SI:N/SA:N
* CVE-2026-31570 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31570 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31586 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31586 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31586 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31588 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31588 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31588 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
* CVE-2026-31602 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31602 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31602 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31607 ( SUSE ): 7.0
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31607 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H
* CVE-2026-31607 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31649 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31649 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31649 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31656 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31656 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31656 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31662 ( SUSE ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31662 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-31662 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-31669 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31669 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31669 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31685 ( SUSE ): 8.3
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31685 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H
* CVE-2026-31685 ( NVD ): 9.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H
* CVE-2026-31694 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31694 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31694 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31700 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31700 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31700 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31738 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31738 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31738 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-31787 ( SUSE ): 6.8
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31787 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-31787 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43025 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43025 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H
* CVE-2026-43027 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43027 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43050 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-43050 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43050 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43110 ( SUSE ): 7.7
CVSS:4.0/AV:A/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-43110 ( SUSE ): 7.5 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43110 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43126 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-43126 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43126 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43190 ( SUSE ): 8.8
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-43190 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
* CVE-2026-43190 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
* CVE-2026-43214 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-43214 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43214 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43329 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-43329 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43329 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43334 ( SUSE ): 8.6
CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
* CVE-2026-43334 ( SUSE ): 8.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
* CVE-2026-43334 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43365 ( SUSE ): 8.8
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N
* CVE-2026-43365 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
* CVE-2026-43365 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
* CVE-2026-43437 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-43437 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43437 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43494 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-43494 ( SUSE ): 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43494 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43500 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
* CVE-2026-43500 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43500 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43503 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-43503 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
* CVE-2026-43503 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Affected Products:
* openSUSE Leap 15.5
* SUSE Linux Enterprise Micro 5.5
An update that solves 62 vulnerabilities and has two security fixes can now be
installed.
## Description:
The SUSE Linux Enterprise 15 SP5 RT kernel was updated to fix various security
issues
The following security issues were fixed:
* CVE-2022-49979: net: fix refcount bug in sk_psock_get (bsc#1245109).
* CVE-2023-20585: x86/CPU: Fix FPDSS on Zen1 (bsc#1243603).
* CVE-2026-23239: espintcp: Fix race condition in espintcp_close()
(bsc#1259485).
* CVE-2026-23240: tls: Fix race condition in tls_sw_cancel_work_tx()
(bsc#1259484).
* CVE-2026-23271: perf: Fix __perf_event_overflow() vs
perf_remove_from_context() race (bsc#1260018).
* CVE-2026-23351: netfilter: nft_set_pipapo: split gc into unlink and reclaim
phase (bsc#1260526).
* CVE-2026-23393: bridge: cfm: Fix race condition in peer_mep deletion
(bsc#1260522).
* CVE-2026-23449: net/sched: teql: Fix double-free in teql_master_xmit
(bsc#1261779).
* CVE-2026-23450: net/smc: fix NULL dereference and UAF in
smc_tcp_syn_recv_sock() (bsc#1261584).
* CVE-2026-23458: netfilter: ctnetlink: fix use-after-free in
ctnetlink_dump_exp_ct() (bsc#1261781).
* CVE-2026-23462: Bluetooth: HIDP: Fix possible UAF (bsc#1261710).
* CVE-2026-31402: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache
(bsc#1261638).
* CVE-2026-31403: NFSD: Hold net reference for the lifetime of
/proc/fs/nfs/exports fd (bsc#1261796).
* CVE-2026-31408: Bluetooth: SCO: Fix use-after-free in sco_recv_frame() due
to missing sock_hold (bsc#1261797).
* CVE-2026-31436: dmaengine: idxd: fix possible wrong descriptor completion in
llist_abort_desc() (bsc#1262602).
* CVE-2026-31470: virt: tdx-guest: Fix handling of host controlled 'quote'
buffer length (bsc#1262665).
* CVE-2026-31504: net: fix fanout UAF in packet_release() via NETDEV_UP race
(bsc#1263085).
* CVE-2026-31505: iavf: fix out-of-bounds writes in iavf_get_ethtool_stats()
(bsc#1263093).
* CVE-2026-31507: net/smc: fix double-free of smc_spd_priv when tee()
duplicates splice pipe buffer (bsc#1263095).
* CVE-2026-31512: Bluetooth: L2CAP: Validate PDU length before reading SDU
length in l2cap_ecred_data_rcv() (bsc#1262734).
* CVE-2026-31533: net/tls: fix use-after-free in -EBUSY error path of
tls_do_encryption (bsc#1262758).
* CVE-2026-31570: can: gw: fix OOB heap access in cgw_csum_crc8_rel()
(bsc#1263065).
* CVE-2026-31586: mm: blk-cgroup: fix use-after-free in cgwb_release_workfn()
(bsc#1263176).
* CVE-2026-31588: KVM: x86: Use scratch field in MMIO fragment to hold small
write values (bsc#1263165).
* CVE-2026-31602: ALSA: ctxfi: Limit PTP to a single page (bsc#1263723).
* CVE-2026-31607: usbip: validate number_of_packets in usbip_pack_ret_submit()
(bsc#1263600).
* CVE-2026-31649: net: stmmac: fix integer underflow in chain mode
(bsc#1263582).
* CVE-2026-31656: drm/i915/gt: fix refcount underflow in
intel_engine_park_heartbeat (bsc#1263170).
* CVE-2026-31662: tipc: fix bc_ackers underflow on duplicate GRP_ACK_MSG
(bsc#1263131).
* CVE-2026-31669: mptcp: fix slab-use-after-free in __inet_lookup_established
(bsc#1263141).
* CVE-2026-31685: netfilter: ip6t_eui64: reject invalid MAC header for all
packets (bsc#1263668).
* CVE-2026-31694: fuse: reject oversized dirents in page cache (bsc#1263901).
* CVE-2026-31700: net/packet: fix TOCTOU race on mmap'd vnet_hdr in
tpacket_snd() (bsc#1263882).
* CVE-2026-31738: vxlan: validate ND option lengths in vxlan_na_create
(bsc#1264059).
* CVE-2026-31787: xen/privcmd: fix double free via VMA splitting
(bsc#1262181).
* CVE-2026-43025: netfilter: ctnetlink: ignore explicit helper on new
expectations (bsc#1263931).
* CVE-2026-43027: netfilter: nf_conntrack_helper: pass helper to expect
cleanup (bsc#1263933).
* CVE-2026-43050: atm: lec: fix use-after-free in sock_def_readable()
(bsc#1264082).
* CVE-2026-43110: wifi: brcmfmac: validate bsscfg indices in IF events
(bsc#1264482).
* CVE-2026-43126: ALSA: mixer: oss: Add card disconnect checkpoints
(bsc#1264634).
* CVE-2026-43190: netfilter: xt_tcpmss: check remaining length before reading
optlen (bsc#1264848).
* CVE-2026-43214: KVM: x86: Add SRCU protection for reading PDPTRs in
__get_sregs2() (bsc#1264651).
* CVE-2026-43329: netfilter: flowtable: strictly check for maximum number of
actions (bsc#1265085).
* CVE-2026-43334: Bluetooth: SMP: force responder MITM requirements before
building the pairing response (bsc#1265090).
* CVE-2026-43365: xfs: fix undersized l_iclog_roundoff values (bsc#1265119).
* CVE-2026-43437: ALSA: pcm: fix use-after-free on linked stream runtime in
snd_pcm_drain() (bsc#1265126).
* CVE-2026-43494: net/rds: reset op_nents when zerocopy page pin fails
(bsc#1265626).
* CVE-2026-43500: supported.conf: drop rxrpc and af_kfs (bsc#1264450).
* CVE-2026-43503: net: skbuff: propagate shared-frag marker through frag-
transfer helpers (bsc#1265960).
The following non security issues were fixed:
* check-for-config-changes: Exclude CC_MS_EXTENSIONS.
* check-for-config-changes: Exclude
HAVE_CFI_ICALL_NORMALIZE_INTEGERS{,_RUSTC}.
* dm init: ensure device probing has finished in dm-mod.waitfor= (git-fixes).
* mkspec: Add signature to source list only when it exists.
* net/rds: reset op_nents when zerocopy page pin fails (bsc#1265626).
* net: gro: don't merge zcopy skbs (git-fixes).
* ocfs2: fix possible deadlock between unlink and dio_end_io_write
(bsc#1258718).
* ocfs2: split transactions in dio completion to avoid credit exhaustion
(bsc#1258718).
* tcp: derive delack_max from rto_min (git-fixes).
* virt: tdx-guest: Return error for GetQuote failures (git-fixes).
* watchdog/perf: properly initialize the turbo mode timestamp and rearm
counter (bsc#1256504).
* xfrm: esp: avoid in-place decrypt on shared skb frags.
## Special Instructions and Notes:
* Please reboot the system after installing this update.
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.5
zypper in -t patch SUSE-2026-2216=1
* SUSE Linux Enterprise Micro 5.5
zypper in -t patch SUSE-SLE-Micro-5.5-2026-2216=1
## Package List:
* openSUSE Leap 15.5 (x86_64)
* kernel-rt-extra-5.14.21-150500.13.140.1
* kselftests-kmp-rt-debuginfo-5.14.21-150500.13.140.1
* kernel-rt-devel-5.14.21-150500.13.140.1
* kernel-rt_debug-devel-5.14.21-150500.13.140.1
* gfs2-kmp-rt-5.14.21-150500.13.140.1
* kernel-rt-livepatch-5.14.21-150500.13.140.1
* kernel-rt-debuginfo-5.14.21-150500.13.140.1
* kernel-rt-livepatch-devel-5.14.21-150500.13.140.1
* reiserfs-kmp-rt-debuginfo-5.14.21-150500.13.140.1
* kernel-rt-extra-debuginfo-5.14.21-150500.13.140.1
* kselftests-kmp-rt-5.14.21-150500.13.140.1
* kernel-rt-debugsource-5.14.21-150500.13.140.1
* kernel-rt_debug-debugsource-5.14.21-150500.13.140.1
* cluster-md-kmp-rt-debuginfo-5.14.21-150500.13.140.1
* reiserfs-kmp-rt-5.14.21-150500.13.140.1
* dlm-kmp-rt-debuginfo-5.14.21-150500.13.140.1
* kernel-rt-optional-5.14.21-150500.13.140.1
* kernel-rt_debug-devel-debuginfo-5.14.21-150500.13.140.1
* kernel-rt-vdso-5.14.21-150500.13.140.1
* dlm-kmp-rt-5.14.21-150500.13.140.1
* kernel-syms-rt-5.14.21-150500.13.140.1
* cluster-md-kmp-rt-5.14.21-150500.13.140.1
* kernel-rt_debug-debuginfo-5.14.21-150500.13.140.1
* kernel-rt_debug-vdso-5.14.21-150500.13.140.1
* ocfs2-kmp-rt-5.14.21-150500.13.140.1
* gfs2-kmp-rt-debuginfo-5.14.21-150500.13.140.1
* kernel-rt-optional-debuginfo-5.14.21-150500.13.140.1
* kernel-rt-vdso-debuginfo-5.14.21-150500.13.140.1
* kernel-rt-devel-debuginfo-5.14.21-150500.13.140.1
* kernel-rt_debug-vdso-debuginfo-5.14.21-150500.13.140.1
* ocfs2-kmp-rt-debuginfo-5.14.21-150500.13.140.1
* openSUSE Leap 15.5 (nosrc x86_64)
* kernel-rt-5.14.21-150500.13.140.1
* kernel-rt_debug-5.14.21-150500.13.140.1
* openSUSE Leap 15.5 (noarch)
* kernel-source-rt-5.14.21-150500.13.140.1
* kernel-devel-rt-5.14.21-150500.13.140.1
* SUSE Linux Enterprise Micro 5.5 (noarch)
* kernel-source-rt-5.14.21-150500.13.140.1
* kernel-devel-rt-5.14.21-150500.13.140.1
* SUSE Linux Enterprise Micro 5.5 (nosrc x86_64)
* kernel-rt-5.14.21-150500.13.140.1
* SUSE Linux Enterprise Micro 5.5 (x86_64)
* kernel-rt-debuginfo-5.14.21-150500.13.140.1
* kernel-rt-debugsource-5.14.21-150500.13.140.1
## References:
* https://www.suse.com/security/cve/CVE-2022-49979.html
* https://www.suse.com/security/cve/CVE-2023-20585.html
* https://www.suse.com/security/cve/CVE-2026-23209.html
* https://www.suse.com/security/cve/CVE-2026-23239.html
* https://www.suse.com/security/cve/CVE-2026-23240.html
* https://www.suse.com/security/cve/CVE-2026-23268.html
* https://www.suse.com/security/cve/CVE-2026-23269.html
* https://www.suse.com/security/cve/CVE-2026-23271.html
* https://www.suse.com/security/cve/CVE-2026-23273.html
* https://www.suse.com/security/cve/CVE-2026-23351.html
* https://www.suse.com/security/cve/CVE-2026-23393.html
* https://www.suse.com/security/cve/CVE-2026-23403.html
* https://www.suse.com/security/cve/CVE-2026-23404.html
* https://www.suse.com/security/cve/CVE-2026-23405.html
* https://www.suse.com/security/cve/CVE-2026-23406.html
* https://www.suse.com/security/cve/CVE-2026-23407.html
* https://www.suse.com/security/cve/CVE-2026-23408.html
* https://www.suse.com/security/cve/CVE-2026-23409.html
* https://www.suse.com/security/cve/CVE-2026-23410.html
* https://www.suse.com/security/cve/CVE-2026-23411.html
* https://www.suse.com/security/cve/CVE-2026-23449.html
* https://www.suse.com/security/cve/CVE-2026-23450.html
* https://www.suse.com/security/cve/CVE-2026-23458.html
* https://www.suse.com/security/cve/CVE-2026-23462.html
* https://www.suse.com/security/cve/CVE-2026-31402.html
* https://www.suse.com/security/cve/CVE-2026-31403.html
* https://www.suse.com/security/cve/CVE-2026-31408.html
* https://www.suse.com/security/cve/CVE-2026-31436.html
* https://www.suse.com/security/cve/CVE-2026-31470.html
* https://www.suse.com/security/cve/CVE-2026-31504.html
* https://www.suse.com/security/cve/CVE-2026-31505.html
* https://www.suse.com/security/cve/CVE-2026-31507.html
* https://www.suse.com/security/cve/CVE-2026-31512.html
* https://www.suse.com/security/cve/CVE-2026-31533.html
* https://www.suse.com/security/cve/CVE-2026-31570.html
* https://www.suse.com/security/cve/CVE-2026-31586.html
* https://www.suse.com/security/cve/CVE-2026-31588.html
* https://www.suse.com/security/cve/CVE-2026-31602.html
* https://www.suse.com/security/cve/CVE-2026-31607.html
* https://www.suse.com/security/cve/CVE-2026-31649.html
* https://www.suse.com/security/cve/CVE-2026-31656.html
* https://www.suse.com/security/cve/CVE-2026-31662.html
* https://www.suse.com/security/cve/CVE-2026-31669.html
* https://www.suse.com/security/cve/CVE-2026-31685.html
* https://www.suse.com/security/cve/CVE-2026-31694.html
* https://www.suse.com/security/cve/CVE-2026-31700.html
* https://www.suse.com/security/cve/CVE-2026-31738.html
* https://www.suse.com/security/cve/CVE-2026-31787.html
* https://www.suse.com/security/cve/CVE-2026-43025.html
* https://www.suse.com/security/cve/CVE-2026-43027.html
* https://www.suse.com/security/cve/CVE-2026-43050.html
* https://www.suse.com/security/cve/CVE-2026-43110.html
* https://www.suse.com/security/cve/CVE-2026-43126.html
* https://www.suse.com/security/cve/CVE-2026-43190.html
* https://www.suse.com/security/cve/CVE-2026-43214.html
* https://www.suse.com/security/cve/CVE-2026-43329.html
* https://www.suse.com/security/cve/CVE-2026-43334.html
* https://www.suse.com/security/cve/CVE-2026-43365.html
* https://www.suse.com/security/cve/CVE-2026-43437.html
* https://www.suse.com/security/cve/CVE-2026-43494.html
* https://www.suse.com/security/cve/CVE-2026-43500.html
* https://www.suse.com/security/cve/CVE-2026-43503.html
* https://bugzilla.suse.com/show_bug.cgi?id=1243603
* https://bugzilla.suse.com/show_bug.cgi?id=1245109
* https://bugzilla.suse.com/show_bug.cgi?id=1256504
* https://bugzilla.suse.com/show_bug.cgi?id=1258518
* https://bugzilla.suse.com/show_bug.cgi?id=1258718
* https://bugzilla.suse.com/show_bug.cgi?id=1258849
* https://bugzilla.suse.com/show_bug.cgi?id=1258850
* https://bugzilla.suse.com/show_bug.cgi?id=1258854
* https://bugzilla.suse.com/show_bug.cgi?id=1258855
* https://bugzilla.suse.com/show_bug.cgi?id=1258856
* https://bugzilla.suse.com/show_bug.cgi?id=1258857
* https://bugzilla.suse.com/show_bug.cgi?id=1259484
* https://bugzilla.suse.com/show_bug.cgi?id=1259485
* https://bugzilla.suse.com/show_bug.cgi?id=1259857
* https://bugzilla.suse.com/show_bug.cgi?id=1260010
* https://bugzilla.suse.com/show_bug.cgi?id=1260018
* https://bugzilla.suse.com/show_bug.cgi?id=1260522
* https://bugzilla.suse.com/show_bug.cgi?id=1260526
* https://bugzilla.suse.com/show_bug.cgi?id=1261287
* https://bugzilla.suse.com/show_bug.cgi?id=1261295
* https://bugzilla.suse.com/show_bug.cgi?id=1261584
* https://bugzilla.suse.com/show_bug.cgi?id=1261638
* https://bugzilla.suse.com/show_bug.cgi?id=1261710
* https://bugzilla.suse.com/show_bug.cgi?id=1261779
* https://bugzilla.suse.com/show_bug.cgi?id=1261781
* https://bugzilla.suse.com/show_bug.cgi?id=1261796
* https://bugzilla.suse.com/show_bug.cgi?id=1261797
* https://bugzilla.suse.com/show_bug.cgi?id=1262179
* https://bugzilla.suse.com/show_bug.cgi?id=1262181
* https://bugzilla.suse.com/show_bug.cgi?id=1262602
* https://bugzilla.suse.com/show_bug.cgi?id=1262665
* https://bugzilla.suse.com/show_bug.cgi?id=1262734
* https://bugzilla.suse.com/show_bug.cgi?id=1262758
* https://bugzilla.suse.com/show_bug.cgi?id=1263065
* https://bugzilla.suse.com/show_bug.cgi?id=1263085
* https://bugzilla.suse.com/show_bug.cgi?id=1263093
* https://bugzilla.suse.com/show_bug.cgi?id=1263095
* https://bugzilla.suse.com/show_bug.cgi?id=1263131
* https://bugzilla.suse.com/show_bug.cgi?id=1263141
* https://bugzilla.suse.com/show_bug.cgi?id=1263165
* https://bugzilla.suse.com/show_bug.cgi?id=1263170
* https://bugzilla.suse.com/show_bug.cgi?id=1263176
* https://bugzilla.suse.com/show_bug.cgi?id=1263582
* https://bugzilla.suse.com/show_bug.cgi?id=1263600
* https://bugzilla.suse.com/show_bug.cgi?id=1263668
* https://bugzilla.suse.com/show_bug.cgi?id=1263723
* https://bugzilla.suse.com/show_bug.cgi?id=1263882
* https://bugzilla.suse.com/show_bug.cgi?id=1263901
* https://bugzilla.suse.com/show_bug.cgi?id=1263931
* https://bugzilla.suse.com/show_bug.cgi?id=1263933
* https://bugzilla.suse.com/show_bug.cgi?id=1264059
* https://bugzilla.suse.com/show_bug.cgi?id=1264082
* https://bugzilla.suse.com/show_bug.cgi?id=1264450
* https://bugzilla.suse.com/show_bug.cgi?id=1264482
* https://bugzilla.suse.com/show_bug.cgi?id=1264634
* https://bugzilla.suse.com/show_bug.cgi?id=1264651
* https://bugzilla.suse.com/show_bug.cgi?id=1264848
* https://bugzilla.suse.com/show_bug.cgi?id=1265085
* https://bugzilla.suse.com/show_bug.cgi?id=1265090
* https://bugzilla.suse.com/show_bug.cgi?id=1265119
* https://bugzilla.suse.com/show_bug.cgi?id=1265126
* https://bugzilla.suse.com/show_bug.cgi?id=1265456
* https://bugzilla.suse.com/show_bug.cgi?id=1265626
* https://bugzilla.suse.com/show_bug.cgi?id=1265960
SUSE-SU-2026:2218-1: important: Security update for python3-Twisted
# Security update for python3-Twisted
Announcement ID: SUSE-SU-2026:2218-1
Release Date: 2026-06-02T06:00:52Z
Rating: important
References:
* bsc#1265265
Cross-References:
* CVE-2026-42304
CVSS scores:
* CVE-2026-42304 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-42304 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products:
* openSUSE Leap 15.4
* Server Applications Module 15-SP7
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
* SUSE Linux Enterprise Real Time 15 SP7
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server 15 SP5 LTSS
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server 15 SP6 LTSS
* SUSE Linux Enterprise Server 15 SP7
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
* SUSE Linux Enterprise Server for SAP Applications 15 SP7
An update that solves one vulnerability can now be installed.
## Description:
This update for python3-Twisted fixes the following issue
* CVE-2026-42304: Prior to 26.4.0rc2, the twisted.names module is vulnerable
to a Denial of Service (DoS) attack via resource exhaustion during DNS name
decompression (bsc#1265265).
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.4
zypper in -t patch SUSE-2026-2218=1
* Server Applications Module 15-SP7
zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP7-2026-2218=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2218=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2218=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2218=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2218=1
* SUSE Linux Enterprise Server 15 SP4 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2218=1
* SUSE Linux Enterprise Server 15 SP5 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2218=1
* SUSE Linux Enterprise Server 15 SP6 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2218=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2218=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2218=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2218=1
## Package List:
* openSUSE Leap 15.4 (noarch)
* python3-Twisted-22.2.0-150400.24.1
* python-Twisted-doc-22.2.0-150400.24.1
* Server Applications Module 15-SP7 (noarch)
* python3-Twisted-22.2.0-150400.24.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch)
* python3-Twisted-22.2.0-150400.24.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch)
* python3-Twisted-22.2.0-150400.24.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch)
* python3-Twisted-22.2.0-150400.24.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch)
* python3-Twisted-22.2.0-150400.24.1
* SUSE Linux Enterprise Server 15 SP4 LTSS (noarch)
* python3-Twisted-22.2.0-150400.24.1
* SUSE Linux Enterprise Server 15 SP5 LTSS (noarch)
* python3-Twisted-22.2.0-150400.24.1
* SUSE Linux Enterprise Server 15 SP6 LTSS (noarch)
* python3-Twisted-22.2.0-150400.24.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch)
* python3-Twisted-22.2.0-150400.24.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5 (noarch)
* python3-Twisted-22.2.0-150400.24.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP6 (noarch)
* python3-Twisted-22.2.0-150400.24.1
## References:
* https://www.suse.com/security/cve/CVE-2026-42304.html
* https://bugzilla.suse.com/show_bug.cgi?id=1265265
SUSE-SU-2026:2219-1: important: Security update for python-Twisted
# Security update for python-Twisted
Announcement ID: SUSE-SU-2026:2219-1
Release Date: 2026-06-02T06:02:09Z
Rating: important
References:
* bsc#1265265
Cross-References:
* CVE-2026-42304
CVSS scores:
* CVE-2026-42304 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-42304 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products:
* openSUSE Leap 15.4
* Public Cloud Module 15-SP4
* Python 3 Module 15-SP7
* SUSE Linux Enterprise Desktop 15 SP7
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server 15 SP5 LTSS
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server 15 SP6 LTSS
* SUSE Linux Enterprise Server 15 SP7
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
* SUSE Linux Enterprise Server for SAP Applications 15 SP7
* SUSE Manager Proxy 4.3
* SUSE Manager Retail Branch Server 4.3
* SUSE Manager Server 4.3
An update that solves one vulnerability can now be installed.
## Description:
This update for python-Twisted fixes the following issue
* CVE-2026-42304: Prior to 26.4.0rc2, the twisted.names module is vulnerable
to a Denial of Service (DoS) attack via resource exhaustion during DNS name
decompression (bsc#1265265).
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.4
zypper in -t patch SUSE-2026-2219=1
* Public Cloud Module 15-SP4
zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP4-2026-2219=1
* SUSE Linux Enterprise Server 15 SP5 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2219=1
* Python 3 Module 15-SP7
zypper in -t patch SUSE-SLE-Module-Python3-15-SP7-2026-2219=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2219=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2219=1
* SUSE Linux Enterprise Server 15 SP6 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2219=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2219=1
* SUSE Linux Enterprise Server 15 SP4 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2219=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2219=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2219=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2219=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2219=1
## Package List:
* openSUSE Leap 15.4 (noarch)
* python311-Twisted-contextvars-22.10.0-150400.5.26.1
* python311-Twisted-conch_nacl-22.10.0-150400.5.26.1
* python311-Twisted-all_non_platform-22.10.0-150400.5.26.1
* python311-Twisted-serial-22.10.0-150400.5.26.1
* python311-Twisted-tls-22.10.0-150400.5.26.1
* python311-Twisted-conch-22.10.0-150400.5.26.1
* python311-Twisted-http2-22.10.0-150400.5.26.1
* python311-Twisted-22.10.0-150400.5.26.1
* Public Cloud Module 15-SP4 (noarch)
* python311-Twisted-22.10.0-150400.5.26.1
* python311-Twisted-tls-22.10.0-150400.5.26.1
* SUSE Linux Enterprise Server 15 SP5 LTSS (noarch)
* python311-Twisted-contextvars-22.10.0-150400.5.26.1
* python311-Twisted-conch_nacl-22.10.0-150400.5.26.1
* python311-Twisted-all_non_platform-22.10.0-150400.5.26.1
* python311-Twisted-tls-22.10.0-150400.5.26.1
* python311-Twisted-serial-22.10.0-150400.5.26.1
* python311-Twisted-conch-22.10.0-150400.5.26.1
* python311-Twisted-http2-22.10.0-150400.5.26.1
* python311-Twisted-22.10.0-150400.5.26.1
* Python 3 Module 15-SP7 (noarch)
* python311-Twisted-contextvars-22.10.0-150400.5.26.1
* python311-Twisted-conch_nacl-22.10.0-150400.5.26.1
* python311-Twisted-all_non_platform-22.10.0-150400.5.26.1
* python311-Twisted-serial-22.10.0-150400.5.26.1
* python311-Twisted-tls-22.10.0-150400.5.26.1
* python311-Twisted-conch-22.10.0-150400.5.26.1
* python311-Twisted-http2-22.10.0-150400.5.26.1
* python311-Twisted-22.10.0-150400.5.26.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch)
* python311-Twisted-contextvars-22.10.0-150400.5.26.1
* python311-Twisted-conch_nacl-22.10.0-150400.5.26.1
* python311-Twisted-all_non_platform-22.10.0-150400.5.26.1
* python311-Twisted-tls-22.10.0-150400.5.26.1
* python311-Twisted-serial-22.10.0-150400.5.26.1
* python311-Twisted-conch-22.10.0-150400.5.26.1
* python311-Twisted-http2-22.10.0-150400.5.26.1
* python311-Twisted-22.10.0-150400.5.26.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch)
* python311-Twisted-contextvars-22.10.0-150400.5.26.1
* python311-Twisted-conch_nacl-22.10.0-150400.5.26.1
* python311-Twisted-all_non_platform-22.10.0-150400.5.26.1
* python311-Twisted-serial-22.10.0-150400.5.26.1
* python311-Twisted-tls-22.10.0-150400.5.26.1
* python311-Twisted-conch-22.10.0-150400.5.26.1
* python311-Twisted-http2-22.10.0-150400.5.26.1
* python311-Twisted-22.10.0-150400.5.26.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch)
* python311-Twisted-contextvars-22.10.0-150400.5.26.1
* python311-Twisted-conch_nacl-22.10.0-150400.5.26.1
* python311-Twisted-all_non_platform-22.10.0-150400.5.26.1
* python311-Twisted-serial-22.10.0-150400.5.26.1
* python311-Twisted-tls-22.10.0-150400.5.26.1
* python311-Twisted-conch-22.10.0-150400.5.26.1
* python311-Twisted-http2-22.10.0-150400.5.26.1
* python311-Twisted-22.10.0-150400.5.26.1
* SUSE Linux Enterprise Server 15 SP4 LTSS (noarch)
* python311-Twisted-contextvars-22.10.0-150400.5.26.1
* python311-Twisted-conch_nacl-22.10.0-150400.5.26.1
* python311-Twisted-all_non_platform-22.10.0-150400.5.26.1
* python311-Twisted-serial-22.10.0-150400.5.26.1
* python311-Twisted-tls-22.10.0-150400.5.26.1
* python311-Twisted-conch-22.10.0-150400.5.26.1
* python311-Twisted-http2-22.10.0-150400.5.26.1
* python311-Twisted-22.10.0-150400.5.26.1
* SUSE Linux Enterprise Server 15 SP6 LTSS (noarch)
* python311-Twisted-contextvars-22.10.0-150400.5.26.1
* python311-Twisted-conch_nacl-22.10.0-150400.5.26.1
* python311-Twisted-all_non_platform-22.10.0-150400.5.26.1
* python311-Twisted-serial-22.10.0-150400.5.26.1
* python311-Twisted-tls-22.10.0-150400.5.26.1
* python311-Twisted-conch-22.10.0-150400.5.26.1
* python311-Twisted-http2-22.10.0-150400.5.26.1
* python311-Twisted-22.10.0-150400.5.26.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch)
* python311-Twisted-contextvars-22.10.0-150400.5.26.1
* python311-Twisted-conch_nacl-22.10.0-150400.5.26.1
* python311-Twisted-all_non_platform-22.10.0-150400.5.26.1
* python311-Twisted-serial-22.10.0-150400.5.26.1
* python311-Twisted-tls-22.10.0-150400.5.26.1
* python311-Twisted-conch-22.10.0-150400.5.26.1
* python311-Twisted-http2-22.10.0-150400.5.26.1
* python311-Twisted-22.10.0-150400.5.26.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP6 (noarch)
* python311-Twisted-contextvars-22.10.0-150400.5.26.1
* python311-Twisted-conch_nacl-22.10.0-150400.5.26.1
* python311-Twisted-all_non_platform-22.10.0-150400.5.26.1
* python311-Twisted-serial-22.10.0-150400.5.26.1
* python311-Twisted-tls-22.10.0-150400.5.26.1
* python311-Twisted-conch-22.10.0-150400.5.26.1
* python311-Twisted-http2-22.10.0-150400.5.26.1
* python311-Twisted-22.10.0-150400.5.26.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch)
* python311-Twisted-contextvars-22.10.0-150400.5.26.1
* python311-Twisted-conch_nacl-22.10.0-150400.5.26.1
* python311-Twisted-all_non_platform-22.10.0-150400.5.26.1
* python311-Twisted-serial-22.10.0-150400.5.26.1
* python311-Twisted-tls-22.10.0-150400.5.26.1
* python311-Twisted-conch-22.10.0-150400.5.26.1
* python311-Twisted-http2-22.10.0-150400.5.26.1
* python311-Twisted-22.10.0-150400.5.26.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5 (noarch)
* python311-Twisted-contextvars-22.10.0-150400.5.26.1
* python311-Twisted-conch_nacl-22.10.0-150400.5.26.1
* python311-Twisted-all_non_platform-22.10.0-150400.5.26.1
* python311-Twisted-serial-22.10.0-150400.5.26.1
* python311-Twisted-tls-22.10.0-150400.5.26.1
* python311-Twisted-conch-22.10.0-150400.5.26.1
* python311-Twisted-http2-22.10.0-150400.5.26.1
* python311-Twisted-22.10.0-150400.5.26.1
## References:
* https://www.suse.com/security/cve/CVE-2026-42304.html
* https://bugzilla.suse.com/show_bug.cgi?id=1265265
openSUSE-SU-2026:0182-1: important: Security update for libjxl
openSUSE Security Update: Security update for libjxl
_______________________________
Announcement ID: openSUSE-SU-2026:0182-1
Rating: important
References: #1266460
Cross-References: CVE-2025-70103
CVSS scores:
CVE-2025-70103 (SUSE): 9.2 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected Products:
openSUSE Backports SLE-15-SP7
_______________________________
An update that fixes one vulnerability is now available.
Description:
This update for libjxl fixes the following issues:
- CVE-2025-70103: take EC into account when checking required PNM input
length (boo#1266460).
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Backports SLE-15-SP7:
zypper in -t patch openSUSE-2026-182=1
Package List:
- openSUSE Backports SLE-15-SP7 (aarch64 i586 ppc64le s390x x86_64):
gdk-pixbuf-loader-jxl-0.8.5-bp157.2.6.1
gimp-plugin-jxl-0.8.5-bp157.2.6.1
libjxl-devel-0.8.5-bp157.2.6.1
libjxl-tools-0.8.5-bp157.2.6.1
libjxl0_8-0.8.5-bp157.2.6.1
- openSUSE Backports SLE-15-SP7 (aarch64_ilp32):
libjxl0_8-64bit-0.8.5-bp157.2.6.1
- openSUSE Backports SLE-15-SP7 (noarch):
jxl-thumbnailer-0.8.5-bp157.2.6.1
- openSUSE Backports SLE-15-SP7 (x86_64):
libjxl0_8-32bit-0.8.5-bp157.2.6.1
References:
https://www.suse.com/security/cve/CVE-2025-70103.html
https://bugzilla.suse.com/1266460
SUSE-SU-2026:2222-1: critical: Security update for hplip
# Security update for hplip
Announcement ID: SUSE-SU-2026:2222-1
Release Date: 2026-06-02T08:40:55Z
Rating: critical
References:
* bsc#1209401
* bsc#1234745
* bsc#1245358
* bsc#1250481
* bsc#1257529
* bsc#1266023
* bsc#1266024
* bsc#1266031
Cross-References:
* CVE-2025-43023
* CVE-2026-8631
* CVE-2026-8632
CVSS scores:
* CVE-2025-43023 ( SUSE ): 7.5
CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2025-43023 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2025-43023 ( NVD ): 5.9
CVSS:4.0/AV:N/AC:H/AT:N/PR:H/UI:N/VC:N/VI:H/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2025-43023 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
* CVE-2026-8631 ( SUSE ): 9.3
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-8631 ( SUSE ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-8631 ( NVD ): 9.3
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-8631 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-8632 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-8632 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-8632 ( NVD ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-8632 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Products:
* openSUSE Leap 15.6
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server 15 SP6 LTSS
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
An update that solves three vulnerabilities and has five security fixes can now
be installed.
## Description:
This update for hplip fixes the following issues
Security issues:
* CVE-2025-43023: weak code signing DSA key used to generate package
signatures can lead to key spoofing and malicious software installation
(bsc#1266031).
* CVE-2026-8631: escalation of privileges and/or arbitrary code execution via
an integer overflow in the hpcups processing path (bsc#1266023).
* CVE-2026-8632: escalation of privileges and/or arbitrary code execution via
operating system command injection (bsc#1266024).
* Unauthenticated remote (LAN) denial-of-service in the SLP parser (ReDoS).
(bsc#1245358)
* URI parameter injection via unsanitized USB serial number. (bsc#1209401)
Non security issues:
* Can't set up fax for HP OfficeJet 3830 (bsc#1257529).
* hplip requires foomatic-filters which does not exist in Leap 16
(bsc#1250481).
* Update to HPLIP 3.26.4
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.6
zypper in -t patch SUSE-2026-2222=1
* SUSE Linux Enterprise Server 15 SP6 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2222=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2222=1
## Package List:
* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586)
* hplip-debuginfo-3.26.4-150600.4.9.1
* hplip-debugsource-3.26.4-150600.4.9.1
* hplip-scan-utils-3.26.4-150600.4.9.1
* hplip-3.26.4-150600.4.9.1
* hplip-sane-debuginfo-3.26.4-150600.4.9.1
* hplip-udev-rules-3.26.4-150600.4.9.1
* hplip-sane-3.26.4-150600.4.9.1
* hplip-scan-utils-debuginfo-3.26.4-150600.4.9.1
* hplip-hpijs-debuginfo-3.26.4-150600.4.9.1
* hplip-devel-3.26.4-150600.4.9.1
* hplip-hpijs-3.26.4-150600.4.9.1
* SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64)
* hplip-debuginfo-3.26.4-150600.4.9.1
* hplip-debugsource-3.26.4-150600.4.9.1
* hplip-3.26.4-150600.4.9.1
* hplip-sane-debuginfo-3.26.4-150600.4.9.1
* hplip-udev-rules-3.26.4-150600.4.9.1
* hplip-sane-3.26.4-150600.4.9.1
* hplip-hpijs-debuginfo-3.26.4-150600.4.9.1
* hplip-devel-3.26.4-150600.4.9.1
* hplip-hpijs-3.26.4-150600.4.9.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64)
* hplip-debuginfo-3.26.4-150600.4.9.1
* hplip-debugsource-3.26.4-150600.4.9.1
* hplip-3.26.4-150600.4.9.1
* hplip-sane-debuginfo-3.26.4-150600.4.9.1
* hplip-udev-rules-3.26.4-150600.4.9.1
* hplip-sane-3.26.4-150600.4.9.1
* hplip-hpijs-debuginfo-3.26.4-150600.4.9.1
* hplip-devel-3.26.4-150600.4.9.1
* hplip-hpijs-3.26.4-150600.4.9.1
## References:
* https://www.suse.com/security/cve/CVE-2025-43023.html
* https://www.suse.com/security/cve/CVE-2026-8631.html
* https://www.suse.com/security/cve/CVE-2026-8632.html
* https://bugzilla.suse.com/show_bug.cgi?id=1209401
* https://bugzilla.suse.com/show_bug.cgi?id=1234745
* https://bugzilla.suse.com/show_bug.cgi?id=1245358
* https://bugzilla.suse.com/show_bug.cgi?id=1250481
* https://bugzilla.suse.com/show_bug.cgi?id=1257529
* https://bugzilla.suse.com/show_bug.cgi?id=1266023
* https://bugzilla.suse.com/show_bug.cgi?id=1266024
* https://bugzilla.suse.com/show_bug.cgi?id=1266031
SUSE-SU-2026:2223-1: important: Security update for xorg-x11-server
# Security update for xorg-x11-server
Announcement ID: SUSE-SU-2026:2223-1
Release Date: 2026-06-02T08:41:31Z
Rating: important
References:
* bsc#1266294
* bsc#1266295
* bsc#1266296
* bsc#1266297
* bsc#1266298
* bsc#1266299
* bsc#1266300
* bsc#1266301
* bsc#1266302
Affected Products:
* openSUSE Leap 15.4
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
An update that has nine security fixes can now be installed.
## Description:
This update for xorg-x11-server fixes the following issues
* CreateSaverWindow Use-After-Free Information Disclosure. (bsc#1266301)
* DRI2 DRIGetBuffers/DRIGetBuffersWithFormat Out-Of-Bounds Write.
(bsc#1266302)
* Font Alias Stack-based Buffer Overflow. (bsc#1266294)
* GLX ChangeDrawableAttributes Out-Of-Bounds Read/Write. (bsc#1266300)
* XKB Key Types Stack-based Buffer Overflow. (bsc#1266296)
* XKB SetMap Request Stack-based Buffer Overflow. (bsc#1266297)
* XSYNC Use-After-Free in FreeCounter(). (bsc#1266298)
* XSYNC Use-After-Free in miSyncDestroyFence(). (bsc#1266295)
* XSYNC Use-After-Free in SyncChangeCounter(). (bsc#1266299)
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.4
zypper in -t patch SUSE-2026-2223=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2223=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2223=1
* SUSE Linux Enterprise Server 15 SP4 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2223=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2223=1
## Package List:
* openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586)
* xorg-x11-server-extra-1.20.3-150400.38.71.1
* xorg-x11-server-1.20.3-150400.38.71.1
* xorg-x11-server-sdk-1.20.3-150400.38.71.1
* xorg-x11-server-source-1.20.3-150400.38.71.1
* xorg-x11-server-debuginfo-1.20.3-150400.38.71.1
* xorg-x11-server-extra-debuginfo-1.20.3-150400.38.71.1
* xorg-x11-server-debugsource-1.20.3-150400.38.71.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64
x86_64)
* xorg-x11-server-extra-1.20.3-150400.38.71.1
* xorg-x11-server-1.20.3-150400.38.71.1
* xorg-x11-server-sdk-1.20.3-150400.38.71.1
* xorg-x11-server-debuginfo-1.20.3-150400.38.71.1
* xorg-x11-server-extra-debuginfo-1.20.3-150400.38.71.1
* xorg-x11-server-debugsource-1.20.3-150400.38.71.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64
x86_64)
* xorg-x11-server-extra-1.20.3-150400.38.71.1
* xorg-x11-server-1.20.3-150400.38.71.1
* xorg-x11-server-sdk-1.20.3-150400.38.71.1
* xorg-x11-server-debuginfo-1.20.3-150400.38.71.1
* xorg-x11-server-extra-debuginfo-1.20.3-150400.38.71.1
* xorg-x11-server-debugsource-1.20.3-150400.38.71.1
* SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64)
* xorg-x11-server-extra-1.20.3-150400.38.71.1
* xorg-x11-server-1.20.3-150400.38.71.1
* xorg-x11-server-sdk-1.20.3-150400.38.71.1
* xorg-x11-server-debuginfo-1.20.3-150400.38.71.1
* xorg-x11-server-extra-debuginfo-1.20.3-150400.38.71.1
* xorg-x11-server-debugsource-1.20.3-150400.38.71.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64)
* xorg-x11-server-extra-1.20.3-150400.38.71.1
* xorg-x11-server-1.20.3-150400.38.71.1
* xorg-x11-server-sdk-1.20.3-150400.38.71.1
* xorg-x11-server-debuginfo-1.20.3-150400.38.71.1
* xorg-x11-server-extra-debuginfo-1.20.3-150400.38.71.1
* xorg-x11-server-debugsource-1.20.3-150400.38.71.1
## References:
* https://bugzilla.suse.com/show_bug.cgi?id=1266294
* https://bugzilla.suse.com/show_bug.cgi?id=1266295
* https://bugzilla.suse.com/show_bug.cgi?id=1266296
* https://bugzilla.suse.com/show_bug.cgi?id=1266297
* https://bugzilla.suse.com/show_bug.cgi?id=1266298
* https://bugzilla.suse.com/show_bug.cgi?id=1266299
* https://bugzilla.suse.com/show_bug.cgi?id=1266300
* https://bugzilla.suse.com/show_bug.cgi?id=1266301
* https://bugzilla.suse.com/show_bug.cgi?id=1266302
SUSE-SU-2026:2224-1: important: Security update for xorg-x11-server
# Security update for xorg-x11-server
Announcement ID: SUSE-SU-2026:2224-1
Release Date: 2026-06-02T08:41:58Z
Rating: important
References:
* bsc#1266294
* bsc#1266295
* bsc#1266296
* bsc#1266297
* bsc#1266298
* bsc#1266299
* bsc#1266300
* bsc#1266301
* bsc#1266302
Affected Products:
* openSUSE Leap 15.5
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server 15 SP5 LTSS
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
An update that has nine security fixes can now be installed.
## Description:
This update for xorg-x11-server fixes the following issues
* CreateSaverWindow Use-After-Free Information Disclosure. (bsc#1266301)
* DRI2 DRIGetBuffers/DRIGetBuffersWithFormat Out-Of-Bounds Write.
(bsc#1266302)
* Font Alias Stack-based Buffer Overflow. (bsc#1266294)
* GLX ChangeDrawableAttributes Out-Of-Bounds Read/Write. (bsc#1266300)
* XKB Key Types Stack-based Buffer Overflow. (bsc#1266296)
* XKB SetMap Request Stack-based Buffer Overflow. (bsc#1266297)
* XSYNC Use-After-Free in FreeCounter(). (bsc#1266298)
* XSYNC Use-After-Free in miSyncDestroyFence(). (bsc#1266295)
* XSYNC Use-After-Free in SyncChangeCounter(). (bsc#1266299)
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2224=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2224=1
* openSUSE Leap 15.5
zypper in -t patch SUSE-2026-2224=1
* SUSE Linux Enterprise Server 15 SP5 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2224=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2224=1
## Package List:
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64
x86_64)
* xorg-x11-server-extra-21.1.4-150500.7.49.1
* xorg-x11-server-Xvfb-debuginfo-21.1.4-150500.7.49.1
* xorg-x11-server-21.1.4-150500.7.49.1
* xorg-x11-server-extra-debuginfo-21.1.4-150500.7.49.1
* xorg-x11-server-debuginfo-21.1.4-150500.7.49.1
* xorg-x11-server-sdk-21.1.4-150500.7.49.1
* xorg-x11-server-debugsource-21.1.4-150500.7.49.1
* xorg-x11-server-Xvfb-21.1.4-150500.7.49.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64
x86_64)
* xorg-x11-server-extra-21.1.4-150500.7.49.1
* xorg-x11-server-Xvfb-debuginfo-21.1.4-150500.7.49.1
* xorg-x11-server-21.1.4-150500.7.49.1
* xorg-x11-server-debuginfo-21.1.4-150500.7.49.1
* xorg-x11-server-extra-debuginfo-21.1.4-150500.7.49.1
* xorg-x11-server-sdk-21.1.4-150500.7.49.1
* xorg-x11-server-debugsource-21.1.4-150500.7.49.1
* xorg-x11-server-Xvfb-21.1.4-150500.7.49.1
* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586)
* xorg-x11-server-extra-21.1.4-150500.7.49.1
* xorg-x11-server-Xvfb-debuginfo-21.1.4-150500.7.49.1
* xorg-x11-server-source-21.1.4-150500.7.49.1
* xorg-x11-server-21.1.4-150500.7.49.1
* xorg-x11-server-debuginfo-21.1.4-150500.7.49.1
* xorg-x11-server-extra-debuginfo-21.1.4-150500.7.49.1
* xorg-x11-server-sdk-21.1.4-150500.7.49.1
* xorg-x11-server-debugsource-21.1.4-150500.7.49.1
* xorg-x11-server-Xvfb-21.1.4-150500.7.49.1
* SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64)
* xorg-x11-server-extra-21.1.4-150500.7.49.1
* xorg-x11-server-Xvfb-debuginfo-21.1.4-150500.7.49.1
* xorg-x11-server-21.1.4-150500.7.49.1
* xorg-x11-server-debuginfo-21.1.4-150500.7.49.1
* xorg-x11-server-extra-debuginfo-21.1.4-150500.7.49.1
* xorg-x11-server-sdk-21.1.4-150500.7.49.1
* xorg-x11-server-debugsource-21.1.4-150500.7.49.1
* xorg-x11-server-Xvfb-21.1.4-150500.7.49.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64)
* xorg-x11-server-extra-21.1.4-150500.7.49.1
* xorg-x11-server-Xvfb-debuginfo-21.1.4-150500.7.49.1
* xorg-x11-server-21.1.4-150500.7.49.1
* xorg-x11-server-debuginfo-21.1.4-150500.7.49.1
* xorg-x11-server-extra-debuginfo-21.1.4-150500.7.49.1
* xorg-x11-server-sdk-21.1.4-150500.7.49.1
* xorg-x11-server-debugsource-21.1.4-150500.7.49.1
* xorg-x11-server-Xvfb-21.1.4-150500.7.49.1
## References:
* https://bugzilla.suse.com/show_bug.cgi?id=1266294
* https://bugzilla.suse.com/show_bug.cgi?id=1266295
* https://bugzilla.suse.com/show_bug.cgi?id=1266296
* https://bugzilla.suse.com/show_bug.cgi?id=1266297
* https://bugzilla.suse.com/show_bug.cgi?id=1266298
* https://bugzilla.suse.com/show_bug.cgi?id=1266299
* https://bugzilla.suse.com/show_bug.cgi?id=1266300
* https://bugzilla.suse.com/show_bug.cgi?id=1266301
* https://bugzilla.suse.com/show_bug.cgi?id=1266302
SUSE-SU-2026:2226-1: important: Security update for xorg-x11-server
# Security update for xorg-x11-server
Announcement ID: SUSE-SU-2026:2226-1
Release Date: 2026-06-02T08:42:33Z
Rating: important
References:
* bsc#1266294
* bsc#1266295
* bsc#1266296
* bsc#1266297
* bsc#1266298
* bsc#1266299
* bsc#1266300
* bsc#1266301
* bsc#1266302
Affected Products:
* openSUSE Leap 15.6
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server 15 SP6 LTSS
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
An update that has nine security fixes can now be installed.
## Description:
This update for xorg-x11-server fixes the following issues
* CreateSaverWindow Use-After-Free Information Disclosure. (bsc#1266301)
* DRI2 DRIGetBuffers/DRIGetBuffersWithFormat Out-Of-Bounds Write.
(bsc#1266302)
* Font Alias Stack-based Buffer Overflow. (bsc#1266294)
* GLX ChangeDrawableAttributes Out-Of-Bounds Read/Write. (bsc#1266300)
* XKB Key Types Stack-based Buffer Overflow. (bsc#1266296)
* XKB SetMap Request Stack-based Buffer Overflow. (bsc#1266297)
* XSYNC Use-After-Free in FreeCounter(). (bsc#1266298)
* XSYNC Use-After-Free in miSyncDestroyFence(). (bsc#1266295)
* XSYNC Use-After-Free in SyncChangeCounter(). (bsc#1266299)
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.6
zypper in -t patch SUSE-2026-2226=1
* SUSE Linux Enterprise Server 15 SP6 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2226=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2226=1
## Package List:
* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586)
* xorg-x11-server-debugsource-21.1.11-150600.5.28.1
* xorg-x11-server-debuginfo-21.1.11-150600.5.28.1
* xorg-x11-server-21.1.11-150600.5.28.1
* xorg-x11-server-extra-debuginfo-21.1.11-150600.5.28.1
* xorg-x11-server-sdk-21.1.11-150600.5.28.1
* xorg-x11-server-Xvfb-21.1.11-150600.5.28.1
* xorg-x11-server-extra-21.1.11-150600.5.28.1
* xorg-x11-server-source-21.1.11-150600.5.28.1
* xorg-x11-server-Xvfb-debuginfo-21.1.11-150600.5.28.1
* SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64)
* xorg-x11-server-debugsource-21.1.11-150600.5.28.1
* xorg-x11-server-debuginfo-21.1.11-150600.5.28.1
* xorg-x11-server-extra-debuginfo-21.1.11-150600.5.28.1
* xorg-x11-server-21.1.11-150600.5.28.1
* xorg-x11-server-sdk-21.1.11-150600.5.28.1
* xorg-x11-server-Xvfb-21.1.11-150600.5.28.1
* xorg-x11-server-extra-21.1.11-150600.5.28.1
* xorg-x11-server-Xvfb-debuginfo-21.1.11-150600.5.28.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64)
* xorg-x11-server-debugsource-21.1.11-150600.5.28.1
* xorg-x11-server-debuginfo-21.1.11-150600.5.28.1
* xorg-x11-server-21.1.11-150600.5.28.1
* xorg-x11-server-extra-debuginfo-21.1.11-150600.5.28.1
* xorg-x11-server-sdk-21.1.11-150600.5.28.1
* xorg-x11-server-Xvfb-21.1.11-150600.5.28.1
* xorg-x11-server-extra-21.1.11-150600.5.28.1
* xorg-x11-server-Xvfb-debuginfo-21.1.11-150600.5.28.1
## References:
* https://bugzilla.suse.com/show_bug.cgi?id=1266294
* https://bugzilla.suse.com/show_bug.cgi?id=1266295
* https://bugzilla.suse.com/show_bug.cgi?id=1266296
* https://bugzilla.suse.com/show_bug.cgi?id=1266297
* https://bugzilla.suse.com/show_bug.cgi?id=1266298
* https://bugzilla.suse.com/show_bug.cgi?id=1266299
* https://bugzilla.suse.com/show_bug.cgi?id=1266300
* https://bugzilla.suse.com/show_bug.cgi?id=1266301
* https://bugzilla.suse.com/show_bug.cgi?id=1266302
openSUSE-SU-2026:20857-1: important: Security update for mapserver
openSUSE security update: security update for mapserver
-------------------------------------------------------------
Announcement ID: openSUSE-SU-2026:20857-1
Rating: important
References:
* bsc#1260869
* bsc#1266663
Cross-References:
* CVE-2026-33721
* CVE-2026-45104
Affected Products:
openSUSE Leap 16.0
-------------------------------------------------------------
An update that solves 2 vulnerabilities and has 2 bug fixes can now be installed.
Description:
This update for mapserver fixes the following issues:
Changes in mapserver:
- Update to releasee 8.6.3
* SLD parser: fix out of bounds access on SLD with only a Rule
with a ElseFilter but without a symbolizer
[CVE-2026-33721, boo#1260869] [CVE-2026-45104, boo#1266663]
Patch instructions:
To install this openSUSE security update use the suse recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 16.0
zypper in -t patch openSUSE-Leap-16.0-packagehub-287=1
Package List:
- openSUSE Leap 16.0:
libjavamapscript-8.6.3-bp160.1.1
libmapserver2-8.6.3-bp160.1.1
mapserver-8.6.3-bp160.1.1
mapserver-devel-8.6.3-bp160.1.1
perl-mapscript-8.6.3-bp160.1.1
php-mapscriptng-8.6.3-bp160.1.1
python313-mapserver-8.6.3-bp160.1.1
References:
* https://www.suse.com/security/cve/CVE-2026-33721.html
* https://www.suse.com/security/cve/CVE-2026-45104.html
openSUSE-SU-2026:20855-1: important: Security update for ffmpeg-4
openSUSE security update: security update for ffmpeg-4
-------------------------------------------------------------
Announcement ID: openSUSE-SU-2026:20855-1
Rating: important
References:
* bsc#1234030
* bsc#1237561
* bsc#1249393
* bsc#1249431
Cross-References:
* CVE-2024-35366
* CVE-2024-35368
* CVE-2024-36618
* CVE-2025-10256
* CVE-2025-1594
* CVE-2025-59728
* CVE-2025-9951
CVSS scores:
* CVE-2024-35366 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
* CVE-2024-35366 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
* CVE-2024-35368 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
* CVE-2024-35368 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
* CVE-2024-36618 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
* CVE-2024-36618 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N
* CVE-2025-10256 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2025-10256 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2025-1594 ( SUSE ): 6.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
* CVE-2025-1594 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
* CVE-2025-59728 ( SUSE ): 7.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
* CVE-2025-59728 ( SUSE ): 7.4 CVSS:4.0/AV:A/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
* CVE-2025-9951 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
* CVE-2025-9951 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N
Affected Products:
openSUSE Leap 16.0
-------------------------------------------------------------
An update that solves 7 vulnerabilities and has 4 bug fixes can now be installed.
Description:
This update for ffmpeg-4 fixes the following issues:
Changes in ffmpeg-4:
- Add check for the return value of av_malloc_array() to avoid potential NULL pointer dereference. (CVE-2025-10256, bsc#1249431)
- Update to version 4.4.7:
* Codecs, filters and other various bugfixes
* aacenc_tns: clamp filter direction energy measurement. (CVE-2025-1594, bsc#1237561)
* avcodec/jpeg2000dec: implement cdef remapping during pixel format matching. (CVE-2025-9951, bsc#1249393)
Patch instructions:
To install this openSUSE security update use the suse recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 16.0
zypper in -t patch openSUSE-Leap-16.0-packagehub-285=1
Package List:
- openSUSE Leap 16.0:
ffmpeg-4-4.4.7-bp160.1.1
ffmpeg-4-libavcodec-devel-4.4.7-bp160.1.1
ffmpeg-4-libavdevice-devel-4.4.7-bp160.1.1
ffmpeg-4-libavfilter-devel-4.4.7-bp160.1.1
ffmpeg-4-libavformat-devel-4.4.7-bp160.1.1
ffmpeg-4-libavresample-devel-4.4.7-bp160.1.1
ffmpeg-4-libavutil-devel-4.4.7-bp160.1.1
ffmpeg-4-libpostproc-devel-4.4.7-bp160.1.1
ffmpeg-4-libswresample-devel-4.4.7-bp160.1.1
ffmpeg-4-libswscale-devel-4.4.7-bp160.1.1
ffmpeg-4-private-devel-4.4.7-bp160.1.1
libavcodec58_134-4.4.7-bp160.1.1
libavdevice58_13-4.4.7-bp160.1.1
libavfilter7_110-4.4.7-bp160.1.1
libavformat58_76-4.4.7-bp160.1.1
libavresample4_0-4.4.7-bp160.1.1
libavutil56_70-4.4.7-bp160.1.1
libpostproc55_9-4.4.7-bp160.1.1
libswresample3_9-4.4.7-bp160.1.1
libswscale5_9-4.4.7-bp160.1.1
References:
* https://www.suse.com/security/cve/CVE-2024-35366.html
* https://www.suse.com/security/cve/CVE-2024-35368.html
* https://www.suse.com/security/cve/CVE-2024-36618.html
* https://www.suse.com/security/cve/CVE-2025-10256.html
* https://www.suse.com/security/cve/CVE-2025-1594.html
* https://www.suse.com/security/cve/CVE-2025-59728.html
* https://www.suse.com/security/cve/CVE-2025-9951.html
openSUSE-SU-2026:20856-1: important: Security update for shadowsocks-v2ray-plugin
openSUSE security update: security update for shadowsocks-v2ray-plugin
-------------------------------------------------------------
Announcement ID: openSUSE-SU-2026:20856-1
Rating: important
References:
* bsc#1260328
Cross-References:
* CVE-2026-33186
CVSS scores:
* CVE-2026-33186 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
* CVE-2026-33186 ( SUSE ): 8.6 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
Affected Products:
openSUSE Leap 16.0
-------------------------------------------------------------
An update that solves one vulnerability and has one bug fix can now be installed.
Description:
This update for shadowsocks-v2ray-plugin fixes the following issues:
Changes in shadowsocks-v2ray-plugin:
- Update version to 5.49.0
* Update v2ray-core to 5.49.0
* Update grpc to 1.81.1 (boo#1260328 and CVE-2026-33186)
- Update version to 5.44.1
* Update v2ray-core to v5.44.1
- Update version to 5.41.0
* Update v2ray-core to v5.41.0
- Update version to 5.37.0
* Update v2ray-core to 5.37.0
- Drop update-vendor.patch, fixed by upstream
Patch instructions:
To install this openSUSE security update use the suse recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 16.0
zypper in -t patch openSUSE-Leap-16.0-packagehub-286=1
Package List:
- openSUSE Leap 16.0:
golang-github-teddysun-v2ray-plugin-5.49.0-bp160.1.1
shadowsocks-v2ray-plugin-5.49.0-bp160.1.1
References:
* https://www.suse.com/security/cve/CVE-2026-33186.html
openSUSE-SU-2026:20854-1: important: Security update for rqlite
openSUSE security update: security update for rqlite
-------------------------------------------------------------
Announcement ID: openSUSE-SU-2026:20854-1
Rating: important
References:
* bsc#1265706
* bsc#1266544
Cross-References:
* CVE-2026-33814
* CVE-2026-39821
CVSS scores:
* CVE-2026-33814 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-39821 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
* CVE-2026-39821 ( SUSE ): 9.1 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
Affected Products:
openSUSE Leap 16.0
-------------------------------------------------------------
An update that solves 2 vulnerabilities and has 2 bug fixes can now be installed.
Description:
This update for rqlite fixes the following issues:
Changes in rqlite:
- Update to version 10.2.0:
* Support verifying mTLS peer Common Name
* Console supports restore from SQLite data
* Console "count rows" respects current Tables Expand/Collapse state
* Console supports dropping indexes
* Further Console app improvements
- update go-net depdendency to address IDN Punycode validation
bypass CVE-2026-39821 boo#1266544
- Update to version 10.1.0:
* Add Schema management page to Console app
* Display node TLS state in console's Cluster panel
- includes changes from 10.0.6:
* Limit number of redirects followed on cluster-join
* fix HTTP auth reporting
Patch instructions:
To install this openSUSE security update use the suse recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 16.0
zypper in -t patch openSUSE-Leap-16.0-packagehub-284=1
Package List:
- openSUSE Leap 16.0:
rqlite-10.2.0-bp160.1.1
References:
* https://www.suse.com/security/cve/CVE-2026-33814.html
* https://www.suse.com/security/cve/CVE-2026-39821.html
openSUSE-SU-2026:20858-1: critical: Security update for hplip
openSUSE security update: security update for hplip
-------------------------------------------------------------
Announcement ID: openSUSE-SU-2026:20858-1
Rating: critical
References:
* bsc#1250481
* bsc#1257529
* bsc#1266023
* bsc#1266024
* bsc#1266031
Cross-References:
* CVE-2025-43023
* CVE-2026-8631
* CVE-2026-8632
CVSS scores:
* CVE-2025-43023 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2025-43023 ( SUSE ): 7.5 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-8631 ( SUSE ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-8631 ( SUSE ): 9.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-8632 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-8632 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Affected Products:
openSUSE Leap 16.0
-------------------------------------------------------------
An update that solves 3 vulnerabilities and has 5 bug fixes can now be installed.
Description:
This update for hplip fixes the following issues:
Changes in hplip:
- Update to HPLIP 3.26.4
* CVE-2026-8631: Fixed privileges escalation and/or arbitrary code execution via an integer overflow in the hpcups processing path (bsc#1266023)
* CVE-2026-8632: Fixed privileges escalation and/or arbitrary code execution via operating system command injection (bsc#1266024)
- Add support for the following new printers:
* HP LaserJet Pro MFP 3106sdw
* HP LaserJet Pro MFP 3105sdw
* HP Envy 6500e series
* HP Envy 6500 series
* HP OfficeJet Pro 9730 Series
* HP OfficeJet Pro 9730e Series
* HP OfficeJet Pro 9720 Series
* HP OfficeJet Pro 9720e Series
* HP OfficeJet Pro 8130e All-in-One series
* HP OfficeJet Pro 8130 All-in-One series
* HP OfficeJet 8130e All-in-One series
* HP OfficeJet 8130 All-in-One series
* HP OfficeJet Pro 8120e All-in-One series
* HP OfficeJet Pro 8120 All-in-One series
* HP OfficeJet 8120e All-in-One series
* HP OfficeJet 8120 All-in-One series
* HP DeskJet Ink Advantage ultra 5800 All-in-One Printer series
* HP DeskJet Ink Advantage ultra 5100 All-in-One Printer series
* HP DeskJet 4300e All-in-One Printer series
* HP DeskJet Ink Advantage 4300 All-in-One Printer series
* HP DeskJet 4300 All-in-One Printer series
* HP DeskJet 2900e All-in-One Printer series
* HP DeskJet Ink Advantage 2900 All-in-One Printer series
* HP DeskJet 2900 All-in-One Printer series
- Update to HPLIP 3.25.8
- Added support for the following new Printers:
* HP LaserJet Enterprise Flow MFP 8601z
* HP LaserJet Enterprise 5501
* HP LaserJet Enterprise MFP 5601dn
* HP LaserJet Enterprise 6500dn
* HP LaserJet Enterprise 5501n
* HP LaserJet Enterprise MFP 5601
* HP LaserJet Enterprise 6500
* HP LaserJet Enterprise 5502dn
* HP LaserJet Enterprise MFP 5602dn
* HP LaserJet Enterprise 6500n
* HP LaserJet Enterprise 5502
* HP LaserJet Enterprise MFP 5602f
* HP LaserJet Enterprise 6501dn
* HP LaserJet Enterprise X50452dn
* HP LaserJet Enterprise Flow MFP 5602zfw
* HP LaserJet Enterprise 6501
* HP LaserJet Enterprise X50452
* HP LaserJet Enterprise MFP 5602
* HP LaserJet Enterprise X60257dn
* HP LaserJet Enterprise MFP X53052dn
* HP LaserJet Enterprise Flow MFP X530
* HP LaserJet Enterprise X60257
* HP LaserJet Enterprise MFP X53052
* HP LaserJet Enterprise X60357dn
* HP LaserJet Enterprise X60357
* HP LaserJet Enterprise MFP 6600dn
* HP LaserJet Enterprise Flow MFP 6600zfw
* HP LaserJet Enterprise MFP 6600
* HP LaserJet Enterprise Flow MFP 6600zfsw
* HP LaserJet Enterprise MFP X62757dn
* HP LaserJet Enterprise Flow MFP X62757zs
* HP LaserJet Enterprise MFP X62757
* DEX D50452dn
* DEX MFP D53052dn
- Fix handling of readfp() and read_filke() for ConfigParser objects,
avoiding confusing error messages (lp#2139771)
- Fix compiler warnings on SLE15
- Fix "Found No Section" error with python (lp#2095776)
- Fix PPD lookup by moving PPDs from manufacturer-PPDs/hplip-fax
to manufacturer-PPDs/hplip/fax etc (boo#1257529)
- Move more utilities from hplip-utils to hplip-base.
* hplip-base now contains all utilities that are not totally useless
and can run without the Qt GUI.
- Update fix for support of new GPG key, as the key has now been
uploaded to GPG keyservers (lp#2120738)
- This fixes CVE-2025-43023 (bsc#1266031)
- Drop dependency on cups-ppdc. It isn't necessary, as PPD
generation on target system is done by cups-driverd.
- The old and outdated 'hpijs' driver support is finally dropped
(the 'hpcups' driver is the default driver since 2009)
so that there is no need for foomatic-filters (boo#1250481)
- Continue refactoring:
* move GUI tools to "hplip-utils" subpackage
* convert "hplip" into an empty metapackage that pulls in hplip-utils
and all drivers / PPDs (except hpijs PPDs).
- Refactor package structure:
* hplip: full set of utilities. Pulls in almost all subpackages
to deliver the "traditional" hplip experience
* hplip-base: small set of basic utilities that can be run
without GUI. Includes hp-probe and hp-plugin
* hplip-cups: minimal package for printing, without PPDs or
setup helpers
* hplip-sane: scanning support (unchanged)
* hplip-driver-hpcups: hpcups.drv for generating hpcups PPDs on
the fly (requires ppdc). The functionality of this package is
similar to the old (misnamed) "hplip-hpijs" package.
* hplip-driver-hpijs: hpijs.drv for generating PPDs for the deprecated
hpijs / foomatic_rip filter. Note that this functionality was not part of
the late hplip-hpijs package, because upstream hasn't ship foomatic PPDs
since hplip 3.17.11.
* hplip-ppds-{hpcups,hpps,postscript,hpijs,fax,plugin}: static PPD
files for different printer types.
hplip-ppds-hpcups is an alternative to hplip-driver-hpcups.
* libhplip0: shared library package, used by hplip-cups and
hplip-sane
* hplip-common: configuration files and directories used by
all hplip packages.
- Other spec file changes:
* Skip deprecated suse_update_desktop_file by default on TW
* Don't mess with sane configuration in udev rules
* Only the hpijs packages depend on foomatic-rip, which is only
provided by cups-filters-1.x. The other packages can be used
with cups-filters2.
* Remove Obsoletes: for ancient predecessor packages
* Remove outdated comments from spec file
* Shorten package descriptions
* Fix a couple of rpmlint issues
- Fix printer probing using avahi (lp#2120947)
Patch instructions:
To install this openSUSE security update use the suse recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 16.0
zypper in -t patch openSUSE-Leap-16.0-packagehub-288=1
Package List:
- openSUSE Leap 16.0:
hplip-3.26.4-bp160.1.1
hplip-base-3.26.4-bp160.1.1
hplip-common-3.26.4-bp160.1.1
hplip-cups-3.26.4-bp160.1.1
hplip-devel-3.26.4-bp160.1.1
hplip-driver-hpcups-3.26.4-bp160.1.1
hplip-ppds-fax-3.26.4-bp160.1.1
hplip-ppds-hpcups-3.26.4-bp160.1.1
hplip-ppds-hpps-3.26.4-bp160.1.1
hplip-ppds-plugin-3.26.4-bp160.1.1
hplip-ppds-postscript-3.26.4-bp160.1.1
hplip-sane-3.26.4-bp160.1.1
hplip-utils-3.26.4-bp160.1.1
libhplip0-3.26.4-bp160.1.1
References:
* https://www.suse.com/security/cve/CVE-2025-43023.html
* https://www.suse.com/security/cve/CVE-2026-8631.html
* https://www.suse.com/security/cve/CVE-2026-8632.html
openSUSE-SU-2026:10908-1: moderate: cloudflared-2026.5.2-1.1 on GA media
# cloudflared-2026.5.2-1.1 on GA media
Announcement ID: openSUSE-SU-2026:10908-1
Rating: moderate
Cross-References:
* CVE-2026-33814
* CVE-2026-39821
CVSS scores:
* CVE-2026-33814 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-39821 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
* CVE-2026-39821 ( SUSE ): 9.1 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
Affected Products:
* openSUSE Tumbleweed
An update that solves 2 vulnerabilities can now be installed.
## Description:
These are all security issues fixed in the cloudflared-2026.5.2-1.1 package on the GA media of openSUSE Tumbleweed.
## Package List:
* openSUSE Tumbleweed:
* cloudflared 2026.5.2-1.1
## References:
* https://www.suse.com/security/cve/CVE-2026-33814.html
* https://www.suse.com/security/cve/CVE-2026-39821.html
openSUSE-SU-2026:10904-1: moderate: vorbis-tools-1.4.3-2.1 on GA media
# vorbis-tools-1.4.3-2.1 on GA media
Announcement ID: openSUSE-SU-2026:10904-1
Rating: moderate
Cross-References:
* CVE-2026-34253
CVSS scores:
* CVE-2026-34253 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2026-34253 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
Affected Products:
* openSUSE Tumbleweed
An update that solves one vulnerability can now be installed.
## Description:
These are all security issues fixed in the vorbis-tools-1.4.3-2.1 package on the GA media of openSUSE Tumbleweed.
## Package List:
* openSUSE Tumbleweed:
* vorbis-tools 1.4.3-2.1
* vorbis-tools-lang 1.4.3-2.1
## References:
* https://www.suse.com/security/cve/CVE-2026-34253.html
openSUSE-SU-2026:10909-1: moderate: kubelogin-0.2.18-1.1 on GA media
# kubelogin-0.2.18-1.1 on GA media
Announcement ID: openSUSE-SU-2026:10909-1
Rating: moderate
Cross-References:
* CVE-2026-27137
CVSS scores:
* CVE-2026-27137 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
* CVE-2026-27137 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
Affected Products:
* openSUSE Tumbleweed
An update that solves one vulnerability can now be installed.
## Description:
These are all security issues fixed in the kubelogin-0.2.18-1.1 package on the GA media of openSUSE Tumbleweed.
## Package List:
* openSUSE Tumbleweed:
* kubelogin 0.2.18-1.1
## References:
* https://www.suse.com/security/cve/CVE-2026-27137.html
openSUSE-SU-2026:10905-1: moderate: LibVNCServer-devel-0.9.15-3.1 on GA media
# LibVNCServer-devel-0.9.15-3.1 on GA media
Announcement ID: openSUSE-SU-2026:10905-1
Rating: moderate
Cross-References:
* CVE-2026-44988
CVSS scores:
* CVE-2026-44988 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-44988 ( SUSE ): 9.2 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected Products:
* openSUSE Tumbleweed
An update that solves one vulnerability can now be installed.
## Description:
These are all security issues fixed in the LibVNCServer-devel-0.9.15-3.1 package on the GA media of openSUSE Tumbleweed.
## Package List:
* openSUSE Tumbleweed:
* LibVNCServer-devel 0.9.15-3.1
* libvncclient1 0.9.15-3.1
* libvncserver1 0.9.15-3.1
## References:
* https://www.suse.com/security/cve/CVE-2026-44988.html
openSUSE-SU-2026:10903-1: moderate: libunbound8-1.25.1-1.1 on GA media
# libunbound8-1.25.1-1.1 on GA media
Announcement ID: openSUSE-SU-2026:10903-1
Rating: moderate
Cross-References:
* CVE-2026-32792
* CVE-2026-33278
* CVE-2026-40622
* CVE-2026-41292
* CVE-2026-42534
* CVE-2026-42923
* CVE-2026-42944
* CVE-2026-42959
* CVE-2026-42960
* CVE-2026-44390
* CVE-2026-44608
CVSS scores:
* CVE-2026-32792 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-33278 ( SUSE ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
* CVE-2026-40622 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
* CVE-2026-41292 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-42534 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-42923 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-42944 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2026-42959 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-42960 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
* CVE-2026-44390 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-44608 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products:
* openSUSE Tumbleweed
An update that solves 11 vulnerabilities can now be installed.
## Description:
These are all security issues fixed in the libunbound8-1.25.1-1.1 package on the GA media of openSUSE Tumbleweed.
## Package List:
* openSUSE Tumbleweed:
* libunbound8 1.25.1-1.1
* python3-unbound 1.25.1-1.1
* unbound 1.25.1-1.1
* unbound-anchor 1.25.1-1.1
* unbound-devel 1.25.1-1.1
* unbound-munin 1.25.1-1.1
## References:
* https://www.suse.com/security/cve/CVE-2026-32792.html
* https://www.suse.com/security/cve/CVE-2026-33278.html
* https://www.suse.com/security/cve/CVE-2026-40622.html
* https://www.suse.com/security/cve/CVE-2026-41292.html
* https://www.suse.com/security/cve/CVE-2026-42534.html
* https://www.suse.com/security/cve/CVE-2026-42923.html
* https://www.suse.com/security/cve/CVE-2026-42944.html
* https://www.suse.com/security/cve/CVE-2026-42959.html
* https://www.suse.com/security/cve/CVE-2026-42960.html
* https://www.suse.com/security/cve/CVE-2026-44390.html
* https://www.suse.com/security/cve/CVE-2026-44608.html
