SUSE-SU-2026:2638-1: important: Security update for the Linux Kernel
openSUSE-SU-2026:11106-1: moderate: asn1c-0.9.29-1.1 on GA media
openSUSE-SU-2026:11111-1: moderate: pacemaker-3.0.2+20260616.4544f351-1.1 on GA media
openSUSE-SU-2026:11102-1: moderate: trivy-0.71.2-1.1 on GA media
openSUSE-SU-2026:11109-1: moderate: libssh2-1-1.11.1-3.1 on GA media
openSUSE-SU-2026:11104-1: moderate: NetworkManager-applet-openvpn-1.12.5-1.1 on GA media
SUSE-SU-2026:2644-1: important: Security update for frr
SUSE-SU-2026:2647-1: important: Security update for nodejs22
SUSE-SU-2026:2653-1: moderate: Security update for util-linux
SUSE-SU-2026:2651-1: important: Security update for haproxy
SUSE-SU-2026:2654-1: moderate: Security update for libsoup2
SUSE-SU-2026:2652-1: important: Security update for haproxy
SUSE-SU-2026:2657-1: important: Security update for opensc
SUSE-SU-2026:2658-1: important: Security update for the Linux Kernel
SUSE-SU-2026:2638-1: important: Security update for the Linux Kernel
# Security update for the Linux Kernel
Announcement ID: SUSE-SU-2026:2638-1
Release Date: 2026-06-26T06:37:49Z
Rating: important
References:
* bsc#1255416
* bsc#1258538
* bsc#1260531
* bsc#1262663
* bsc#1262993
* bsc#1263769
* bsc#1263879
* bsc#1263880
* bsc#1264076
* bsc#1264116
* bsc#1264470
* bsc#1264610
* bsc#1266214
* bsc#1266290
* bsc#1267214
* bsc#1267361
* bsc#1267369
* bsc#1267381
* bsc#1267387
* bsc#1267621
* bsc#1267640
* bsc#1267652
* bsc#1267697
Cross-References:
* CVE-2025-10263
* CVE-2025-68324
* CVE-2026-23392
* CVE-2026-31473
* CVE-2026-31500
* CVE-2026-31613
* CVE-2026-31697
* CVE-2026-31698
* CVE-2026-31699
* CVE-2026-31759
* CVE-2026-43077
* CVE-2026-43198
* CVE-2026-45984
* CVE-2026-46037
* CVE-2026-46116
* CVE-2026-46120
* CVE-2026-46123
* CVE-2026-46150
* CVE-2026-46159
* CVE-2026-46197
* CVE-2026-46227
CVSS scores:
* CVE-2025-10263 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
* CVE-2025-68324 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23392 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23392 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23392 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31473 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31473 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31473 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31500 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31500 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31500 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31613 ( SUSE ): 6.9
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31613 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
* CVE-2026-31613 ( NVD ): 8.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H
* CVE-2026-31697 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31697 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
* CVE-2026-31698 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31698 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
* CVE-2026-31699 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31699 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
* CVE-2026-31759 ( SUSE ): 6.9
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31759 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
* CVE-2026-31759 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43077 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-43077 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43077 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-43198 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-43198 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43198 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-45984 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-45984 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-45984 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-46037 ( SUSE ): 8.8
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-46037 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
* CVE-2026-46037 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
* CVE-2026-46116 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-46116 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-46116 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-46120 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
* CVE-2026-46120 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-46123 ( SUSE ): 6.9
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-46123 ( SUSE ): 7.7 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
* CVE-2026-46123 ( NVD ): 7.7 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
* CVE-2026-46150 ( SUSE ): 8.4
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
* CVE-2026-46150 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
* CVE-2026-46150 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
* CVE-2026-46159 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-46159 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-46197 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-46197 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-46197 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-46227 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-46227 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-46227 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Products:
* openSUSE Leap 15.4
* SUSE Linux Enterprise High Availability Extension 15 SP4
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise Live Patching 15-SP4
* SUSE Linux Enterprise Micro 5.3
* SUSE Linux Enterprise Micro 5.4
* SUSE Linux Enterprise Micro for Rancher 5.3
* SUSE Linux Enterprise Micro for Rancher 5.4
* SUSE Linux Enterprise Real Time 15 SP4
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
* SUSE Manager Proxy 4.3
* SUSE Manager Retail Branch Server 4.3
* SUSE Manager Server 4.3
An update that solves 21 vulnerabilities and has two security fixes can now be
installed.
## Description:
The SUSE Linux Enterprise 15 SP4 kernel was updated to fix various security
issues
The following security issues were fixed:
* CVE-2025-10263: arm64: errata: Mitigate TLBI errata on various Arm CPUs
(bsc#1266290).
* CVE-2025-68324: scsi: imm: Fix use-after-free bug caused by unfinished
delayed work (bsc#1255416).
* CVE-2026-23392: netfilter: nf_tables: release flowtable after rcu grace
period on error (bsc#1260531).
* CVE-2026-31473: media: mc, v4l2: serialize REINIT and REQBUFS with
req_queue_mutex (bsc#1262663).
* CVE-2026-31500: Bluetooth: btintel: serialize btintel_hw_error() with
hci_req_sync_lock (bsc#1262993).
* CVE-2026-31613: smb: client: fix OOB reads parsing symlink error response
(bsc#1263769).
* CVE-2026-31697: crypto: ccp: Don't attempt to copy ID to userspace if PSP
command failed (bsc#1264116).
* CVE-2026-31698: crypto: ccp: Don't attempt to copy PDH cert to userspace if
PSP command failed (bsc#1263880).
* CVE-2026-31699: crypto: ccp: Don't attempt to copy CSR to userspace if PSP
command failed (bsc#1263879).
* CVE-2026-31759: usb: ulpi: fix double free in ulpi_register_interface()
error path (bsc#1264076).
* CVE-2026-43077: crypto: algif_aead - Fix minimum RX size check for
decryption (bsc#1264470).
* CVE-2026-43198: tcp: fix potential race in tcp_v6_syn_recv_sock()
(bsc#1264610).
* CVE-2026-45984: gfs2: Move the inode glock locking to
gfs2_file_buffered_write (bsc#1267214).
* CVE-2026-46037: ipv4: icmp: validate reply type before using icmp_pointers
(bsc#1267361).
* CVE-2026-46116: xfrm: defensively unhash xfrm_state lists in
__xfrm_state_delete (bsc#1267369).
* CVE-2026-46120: ip6_gre: Use cached t->net in ip6erspan_changelink()
(bsc#1267640).
* CVE-2026-46123: Bluetooth: virtio_bt: clamp rx length before skb_put
(bsc#1267621).
* CVE-2026-46150: fanotify: fix false positive on permission events
(bsc#1267387).
* CVE-2026-46159: btrfs: fix btrfs_ioctl_space_info() slot_count TOCTOU which
can lead to info-leak (bsc#1267652).
* CVE-2026-46197: drm/amdkfd: validate SVM ioctl nattr against buffer size
(bsc#1267381).
* CVE-2026-46227: sctp: revalidate list cursor after sctp_sendmsg_to_asoc() in
SCTP_SENDALL (bsc#1267697).
The following non security issues were fixed:
* smb: client: correctly handle ErrorContextData as a flexible array (git-
fixes).
## Special Instructions and Notes:
* Please reboot the system after installing this update.
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* SUSE Linux Enterprise Live Patching 15-SP4
zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP4-2026-2638=1
* SUSE Linux Enterprise Micro for Rancher 5.3
zypper in -t patch SUSE-SLE-Micro-5.3-2026-2638=1
* SUSE Linux Enterprise Micro 5.3
zypper in -t patch SUSE-SLE-Micro-5.3-2026-2638=1
* SUSE Linux Enterprise Server 15 SP4 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2638=1
* SUSE Linux Enterprise High Availability Extension 15 SP4
zypper in -t patch SUSE-SLE-Product-HA-15-SP4-2026-2638=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2638=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2638=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2638=1
* SUSE Linux Enterprise Micro for Rancher 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2026-2638=1
* SUSE Linux Enterprise Micro 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2026-2638=1
* openSUSE Leap 15.4
zypper in -t patch SUSE-2026-2638=1
## Package List:
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (nosrc ppc64le
x86_64)
* kernel-default-5.14.21-150400.24.225.2
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64)
* reiserfs-kmp-default-debuginfo-5.14.21-150400.24.225.2
* kernel-default-base-5.14.21-150400.24.225.2.150400.24.114.2
* kernel-default-debugsource-5.14.21-150400.24.225.2
* kernel-obs-build-debugsource-5.14.21-150400.24.225.2
* kernel-default-devel-5.14.21-150400.24.225.2
* kernel-obs-build-5.14.21-150400.24.225.2
* kernel-syms-5.14.21-150400.24.225.1
* kernel-default-debuginfo-5.14.21-150400.24.225.2
* reiserfs-kmp-default-5.14.21-150400.24.225.2
* kernel-default-devel-debuginfo-5.14.21-150400.24.225.2
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch)
* kernel-source-5.14.21-150400.24.225.2
* kernel-macros-5.14.21-150400.24.225.2
* kernel-devel-5.14.21-150400.24.225.2
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch nosrc)
* kernel-docs-5.14.21-150400.24.225.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64
nosrc)
* kernel-64kb-5.14.21-150400.24.225.2
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64)
* kernel-64kb-devel-5.14.21-150400.24.225.2
* kernel-64kb-devel-debuginfo-5.14.21-150400.24.225.2
* kernel-64kb-debuginfo-5.14.21-150400.24.225.2
* kernel-64kb-debugsource-5.14.21-150400.24.225.2
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 nosrc
x86_64)
* kernel-default-5.14.21-150400.24.225.2
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64
x86_64)
* reiserfs-kmp-default-debuginfo-5.14.21-150400.24.225.2
* kernel-default-base-5.14.21-150400.24.225.2.150400.24.114.2
* kernel-default-debugsource-5.14.21-150400.24.225.2
* kernel-obs-build-debugsource-5.14.21-150400.24.225.2
* kernel-default-devel-5.14.21-150400.24.225.2
* kernel-obs-build-5.14.21-150400.24.225.2
* kernel-syms-5.14.21-150400.24.225.1
* kernel-default-debuginfo-5.14.21-150400.24.225.2
* reiserfs-kmp-default-5.14.21-150400.24.225.2
* kernel-default-devel-debuginfo-5.14.21-150400.24.225.2
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch)
* kernel-source-5.14.21-150400.24.225.2
* kernel-macros-5.14.21-150400.24.225.2
* kernel-devel-5.14.21-150400.24.225.2
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch nosrc)
* kernel-docs-5.14.21-150400.24.225.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 nosrc
x86_64)
* kernel-default-5.14.21-150400.24.225.2
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64
x86_64)
* reiserfs-kmp-default-debuginfo-5.14.21-150400.24.225.2
* kernel-default-base-5.14.21-150400.24.225.2.150400.24.114.2
* kernel-default-debugsource-5.14.21-150400.24.225.2
* kernel-obs-build-debugsource-5.14.21-150400.24.225.2
* kernel-default-devel-5.14.21-150400.24.225.2
* kernel-obs-build-5.14.21-150400.24.225.2
* kernel-syms-5.14.21-150400.24.225.1
* kernel-default-debuginfo-5.14.21-150400.24.225.2
* reiserfs-kmp-default-5.14.21-150400.24.225.2
* kernel-default-devel-debuginfo-5.14.21-150400.24.225.2
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch)
* kernel-source-5.14.21-150400.24.225.2
* kernel-macros-5.14.21-150400.24.225.2
* kernel-devel-5.14.21-150400.24.225.2
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch nosrc)
* kernel-docs-5.14.21-150400.24.225.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 nosrc)
* kernel-64kb-5.14.21-150400.24.225.2
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64)
* kernel-64kb-devel-5.14.21-150400.24.225.2
* kernel-64kb-devel-debuginfo-5.14.21-150400.24.225.2
* kernel-64kb-debuginfo-5.14.21-150400.24.225.2
* kernel-64kb-debugsource-5.14.21-150400.24.225.2
* SUSE Linux Enterprise High Availability Extension 15 SP4 (aarch64 ppc64le
s390x x86_64)
* kernel-default-debugsource-5.14.21-150400.24.225.2
* dlm-kmp-default-5.14.21-150400.24.225.2
* gfs2-kmp-default-debuginfo-5.14.21-150400.24.225.2
* dlm-kmp-default-debuginfo-5.14.21-150400.24.225.2
* ocfs2-kmp-default-debuginfo-5.14.21-150400.24.225.2
* cluster-md-kmp-default-debuginfo-5.14.21-150400.24.225.2
* kernel-default-debuginfo-5.14.21-150400.24.225.2
* ocfs2-kmp-default-5.14.21-150400.24.225.2
* cluster-md-kmp-default-5.14.21-150400.24.225.2
* gfs2-kmp-default-5.14.21-150400.24.225.2
* SUSE Linux Enterprise High Availability Extension 15 SP4 (nosrc)
* kernel-default-5.14.21-150400.24.225.2
* SUSE Linux Enterprise Live Patching 15-SP4 (nosrc)
* kernel-default-5.14.21-150400.24.225.2
* SUSE Linux Enterprise Live Patching 15-SP4 (ppc64le s390x x86_64)
* kernel-default-debugsource-5.14.21-150400.24.225.2
* kernel-livepatch-SLE15-SP4_Update_56-debugsource-1-150400.9.3.2
* kernel-default-livepatch-5.14.21-150400.24.225.2
* kernel-livepatch-5_14_21-150400_24_225-default-1-150400.9.3.2
* kernel-default-livepatch-devel-5.14.21-150400.24.225.2
* kernel-livepatch-5_14_21-150400_24_225-default-debuginfo-1-150400.9.3.2
* kernel-default-debuginfo-5.14.21-150400.24.225.2
* openSUSE Leap 15.4 (aarch64)
* dlm-kmp-64kb-debuginfo-5.14.21-150400.24.225.2
* dtb-apple-5.14.21-150400.24.225.1
* kernel-64kb-debuginfo-5.14.21-150400.24.225.2
* kernel-64kb-extra-5.14.21-150400.24.225.2
* dtb-arm-5.14.21-150400.24.225.1
* dtb-cavium-5.14.21-150400.24.225.1
* reiserfs-kmp-64kb-debuginfo-5.14.21-150400.24.225.2
* dtb-amazon-5.14.21-150400.24.225.1
* kernel-64kb-optional-5.14.21-150400.24.225.2
* kernel-64kb-devel-5.14.21-150400.24.225.2
* dtb-xilinx-5.14.21-150400.24.225.1
* dtb-mediatek-5.14.21-150400.24.225.1
* dtb-qcom-5.14.21-150400.24.225.1
* dtb-broadcom-5.14.21-150400.24.225.1
* dtb-hisilicon-5.14.21-150400.24.225.1
* ocfs2-kmp-64kb-5.14.21-150400.24.225.2
* dtb-exynos-5.14.21-150400.24.225.1
* dtb-lg-5.14.21-150400.24.225.1
* reiserfs-kmp-64kb-5.14.21-150400.24.225.2
* gfs2-kmp-64kb-5.14.21-150400.24.225.2
* kernel-64kb-devel-debuginfo-5.14.21-150400.24.225.2
* dtb-amd-5.14.21-150400.24.225.1
* gfs2-kmp-64kb-debuginfo-5.14.21-150400.24.225.2
* dtb-altera-5.14.21-150400.24.225.1
* cluster-md-kmp-64kb-5.14.21-150400.24.225.2
* dtb-nvidia-5.14.21-150400.24.225.1
* dlm-kmp-64kb-5.14.21-150400.24.225.2
* dtb-apm-5.14.21-150400.24.225.1
* ocfs2-kmp-64kb-debuginfo-5.14.21-150400.24.225.2
* kselftests-kmp-64kb-debuginfo-5.14.21-150400.24.225.2
* dtb-renesas-5.14.21-150400.24.225.1
* cluster-md-kmp-64kb-debuginfo-5.14.21-150400.24.225.2
* kernel-64kb-optional-debuginfo-5.14.21-150400.24.225.2
* dtb-sprd-5.14.21-150400.24.225.1
* dtb-allwinner-5.14.21-150400.24.225.1
* dtb-marvell-5.14.21-150400.24.225.1
* kernel-64kb-extra-debuginfo-5.14.21-150400.24.225.2
* dtb-socionext-5.14.21-150400.24.225.1
* kselftests-kmp-64kb-5.14.21-150400.24.225.2
* dtb-freescale-5.14.21-150400.24.225.1
* dtb-amlogic-5.14.21-150400.24.225.1
* kernel-64kb-debugsource-5.14.21-150400.24.225.2
* dtb-rockchip-5.14.21-150400.24.225.1
* openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64)
* ocfs2-kmp-default-debuginfo-5.14.21-150400.24.225.2
* reiserfs-kmp-default-5.14.21-150400.24.225.2
* kselftests-kmp-default-debuginfo-5.14.21-150400.24.225.2
* kselftests-kmp-default-5.14.21-150400.24.225.2
* kernel-default-debugsource-5.14.21-150400.24.225.2
* kernel-default-livepatch-5.14.21-150400.24.225.2
* kernel-default-optional-5.14.21-150400.24.225.2
* kernel-syms-5.14.21-150400.24.225.1
* ocfs2-kmp-default-5.14.21-150400.24.225.2
* kernel-default-extra-5.14.21-150400.24.225.2
* kernel-default-devel-debuginfo-5.14.21-150400.24.225.2
* reiserfs-kmp-default-debuginfo-5.14.21-150400.24.225.2
* dlm-kmp-default-5.14.21-150400.24.225.2
* kernel-default-devel-5.14.21-150400.24.225.2
* gfs2-kmp-default-debuginfo-5.14.21-150400.24.225.2
* dlm-kmp-default-debuginfo-5.14.21-150400.24.225.2
* kernel-obs-build-5.14.21-150400.24.225.2
* cluster-md-kmp-default-debuginfo-5.14.21-150400.24.225.2
* gfs2-kmp-default-5.14.21-150400.24.225.2
* kernel-obs-build-debugsource-5.14.21-150400.24.225.2
* kernel-default-optional-debuginfo-5.14.21-150400.24.225.2
* kernel-default-debuginfo-5.14.21-150400.24.225.2
* kernel-obs-qa-5.14.21-150400.24.225.1
* kernel-default-extra-debuginfo-5.14.21-150400.24.225.2
* cluster-md-kmp-default-5.14.21-150400.24.225.2
* openSUSE Leap 15.4 (nosrc)
* dtb-aarch64-5.14.21-150400.24.225.1
* openSUSE Leap 15.4 (aarch64 nosrc)
* kernel-64kb-5.14.21-150400.24.225.2
* openSUSE Leap 15.4 (aarch64 nosrc ppc64le s390x x86_64)
* kernel-default-5.14.21-150400.24.225.2
* openSUSE Leap 15.4 (aarch64 ppc64le x86_64)
* kernel-default-base-5.14.21-150400.24.225.2.150400.24.114.2
* kernel-default-base-rebuild-5.14.21-150400.24.225.2.150400.24.114.2
* kernel-kvmsmall-devel-5.14.21-150400.24.225.2
* kernel-kvmsmall-debuginfo-5.14.21-150400.24.225.2
* kernel-kvmsmall-devel-debuginfo-5.14.21-150400.24.225.2
* kernel-kvmsmall-debugsource-5.14.21-150400.24.225.2
* openSUSE Leap 15.4 (ppc64le s390x x86_64)
* kernel-livepatch-5_14_21-150400_24_225-default-1-150400.9.3.2
* kernel-livepatch-5_14_21-150400_24_225-default-debuginfo-1-150400.9.3.2
* kernel-livepatch-SLE15-SP4_Update_56-debugsource-1-150400.9.3.2
* kernel-default-livepatch-devel-5.14.21-150400.24.225.2
* openSUSE Leap 15.4 (noarch)
* kernel-macros-5.14.21-150400.24.225.2
* kernel-source-vanilla-5.14.21-150400.24.225.2
* kernel-docs-html-5.14.21-150400.24.225.1
* kernel-devel-5.14.21-150400.24.225.2
* kernel-source-5.14.21-150400.24.225.2
* openSUSE Leap 15.4 (noarch nosrc)
* kernel-docs-5.14.21-150400.24.225.1
* openSUSE Leap 15.4 (aarch64 nosrc ppc64le x86_64)
* kernel-kvmsmall-5.14.21-150400.24.225.2
* openSUSE Leap 15.4 (nosrc s390x)
* kernel-zfcpdump-5.14.21-150400.24.225.2
* openSUSE Leap 15.4 (s390x)
* kernel-zfcpdump-debuginfo-5.14.21-150400.24.225.2
* kernel-zfcpdump-debugsource-5.14.21-150400.24.225.2
* SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 nosrc s390x x86_64)
* kernel-default-5.14.21-150400.24.225.2
* SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 x86_64)
* kernel-default-base-5.14.21-150400.24.225.2.150400.24.114.2
* SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64)
* kernel-default-debuginfo-5.14.21-150400.24.225.2
* kernel-default-debugsource-5.14.21-150400.24.225.2
* SUSE Linux Enterprise Micro for Rancher 5.3 (noarch)
* kernel-macros-5.14.21-150400.24.225.2
* kernel-source-5.14.21-150400.24.225.2
* SUSE Linux Enterprise Micro 5.3 (aarch64 nosrc s390x x86_64)
* kernel-default-5.14.21-150400.24.225.2
* SUSE Linux Enterprise Micro 5.3 (aarch64 x86_64)
* kernel-default-base-5.14.21-150400.24.225.2.150400.24.114.2
* SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64)
* kernel-default-debuginfo-5.14.21-150400.24.225.2
* kernel-default-debugsource-5.14.21-150400.24.225.2
* SUSE Linux Enterprise Micro 5.3 (noarch)
* kernel-macros-5.14.21-150400.24.225.2
* kernel-source-5.14.21-150400.24.225.2
* SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 nosrc s390x x86_64)
* kernel-default-5.14.21-150400.24.225.2
* SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 x86_64)
* kernel-default-base-5.14.21-150400.24.225.2.150400.24.114.2
* SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64)
* kernel-default-debuginfo-5.14.21-150400.24.225.2
* kernel-default-debugsource-5.14.21-150400.24.225.2
* SUSE Linux Enterprise Micro for Rancher 5.4 (noarch)
* kernel-macros-5.14.21-150400.24.225.2
* kernel-source-5.14.21-150400.24.225.2
* SUSE Linux Enterprise Micro 5.4 (aarch64 nosrc s390x x86_64)
* kernel-default-5.14.21-150400.24.225.2
* SUSE Linux Enterprise Micro 5.4 (aarch64 x86_64)
* kernel-default-base-5.14.21-150400.24.225.2.150400.24.114.2
* SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64)
* kernel-default-debuginfo-5.14.21-150400.24.225.2
* kernel-default-debugsource-5.14.21-150400.24.225.2
* SUSE Linux Enterprise Micro 5.4 (noarch)
* kernel-macros-5.14.21-150400.24.225.2
* kernel-source-5.14.21-150400.24.225.2
* SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 nosrc ppc64le s390x
x86_64)
* kernel-default-5.14.21-150400.24.225.2
* SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le x86_64)
* kernel-default-base-5.14.21-150400.24.225.2.150400.24.114.2
* SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64)
* reiserfs-kmp-default-debuginfo-5.14.21-150400.24.225.2
* kernel-default-debugsource-5.14.21-150400.24.225.2
* kernel-obs-build-debugsource-5.14.21-150400.24.225.2
* kernel-default-devel-5.14.21-150400.24.225.2
* kernel-obs-build-5.14.21-150400.24.225.2
* kernel-syms-5.14.21-150400.24.225.1
* kernel-default-debuginfo-5.14.21-150400.24.225.2
* reiserfs-kmp-default-5.14.21-150400.24.225.2
* kernel-default-devel-debuginfo-5.14.21-150400.24.225.2
* SUSE Linux Enterprise Server 15 SP4 LTSS (noarch)
* kernel-source-5.14.21-150400.24.225.2
* kernel-macros-5.14.21-150400.24.225.2
* kernel-devel-5.14.21-150400.24.225.2
* SUSE Linux Enterprise Server 15 SP4 LTSS (noarch nosrc)
* kernel-docs-5.14.21-150400.24.225.1
* SUSE Linux Enterprise Server 15 SP4 LTSS (nosrc s390x)
* kernel-zfcpdump-5.14.21-150400.24.225.2
* SUSE Linux Enterprise Server 15 SP4 LTSS (s390x)
* kernel-zfcpdump-debuginfo-5.14.21-150400.24.225.2
* kernel-zfcpdump-debugsource-5.14.21-150400.24.225.2
* SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 nosrc)
* kernel-64kb-5.14.21-150400.24.225.2
* SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64)
* kernel-64kb-devel-5.14.21-150400.24.225.2
* kernel-64kb-devel-debuginfo-5.14.21-150400.24.225.2
* kernel-64kb-debuginfo-5.14.21-150400.24.225.2
* kernel-64kb-debugsource-5.14.21-150400.24.225.2
## References:
* https://www.suse.com/security/cve/CVE-2025-10263.html
* https://www.suse.com/security/cve/CVE-2025-68324.html
* https://www.suse.com/security/cve/CVE-2026-23392.html
* https://www.suse.com/security/cve/CVE-2026-31473.html
* https://www.suse.com/security/cve/CVE-2026-31500.html
* https://www.suse.com/security/cve/CVE-2026-31613.html
* https://www.suse.com/security/cve/CVE-2026-31697.html
* https://www.suse.com/security/cve/CVE-2026-31698.html
* https://www.suse.com/security/cve/CVE-2026-31699.html
* https://www.suse.com/security/cve/CVE-2026-31759.html
* https://www.suse.com/security/cve/CVE-2026-43077.html
* https://www.suse.com/security/cve/CVE-2026-43198.html
* https://www.suse.com/security/cve/CVE-2026-45984.html
* https://www.suse.com/security/cve/CVE-2026-46037.html
* https://www.suse.com/security/cve/CVE-2026-46116.html
* https://www.suse.com/security/cve/CVE-2026-46120.html
* https://www.suse.com/security/cve/CVE-2026-46123.html
* https://www.suse.com/security/cve/CVE-2026-46150.html
* https://www.suse.com/security/cve/CVE-2026-46159.html
* https://www.suse.com/security/cve/CVE-2026-46197.html
* https://www.suse.com/security/cve/CVE-2026-46227.html
* https://bugzilla.suse.com/show_bug.cgi?id=1255416
* https://bugzilla.suse.com/show_bug.cgi?id=1258538
* https://bugzilla.suse.com/show_bug.cgi?id=1260531
* https://bugzilla.suse.com/show_bug.cgi?id=1262663
* https://bugzilla.suse.com/show_bug.cgi?id=1262993
* https://bugzilla.suse.com/show_bug.cgi?id=1263769
* https://bugzilla.suse.com/show_bug.cgi?id=1263879
* https://bugzilla.suse.com/show_bug.cgi?id=1263880
* https://bugzilla.suse.com/show_bug.cgi?id=1264076
* https://bugzilla.suse.com/show_bug.cgi?id=1264116
* https://bugzilla.suse.com/show_bug.cgi?id=1264470
* https://bugzilla.suse.com/show_bug.cgi?id=1264610
* https://bugzilla.suse.com/show_bug.cgi?id=1266214
* https://bugzilla.suse.com/show_bug.cgi?id=1266290
* https://bugzilla.suse.com/show_bug.cgi?id=1267214
* https://bugzilla.suse.com/show_bug.cgi?id=1267361
* https://bugzilla.suse.com/show_bug.cgi?id=1267369
* https://bugzilla.suse.com/show_bug.cgi?id=1267381
* https://bugzilla.suse.com/show_bug.cgi?id=1267387
* https://bugzilla.suse.com/show_bug.cgi?id=1267621
* https://bugzilla.suse.com/show_bug.cgi?id=1267640
* https://bugzilla.suse.com/show_bug.cgi?id=1267652
* https://bugzilla.suse.com/show_bug.cgi?id=1267697
openSUSE-SU-2026:11106-1: moderate: asn1c-0.9.29-1.1 on GA media
# asn1c-0.9.29-1.1 on GA media
Announcement ID: openSUSE-SU-2026:11106-1
Rating: moderate
Cross-References:
* CVE-2017-12966
Affected Products:
* openSUSE Tumbleweed
An update that solves one vulnerability can now be installed.
## Description:
These are all security issues fixed in the asn1c-0.9.29-1.1 package on the GA media of openSUSE Tumbleweed.
## Package List:
* openSUSE Tumbleweed:
* asn1c 0.9.29-1.1
## References:
* https://www.suse.com/security/cve/CVE-2017-12966.html
openSUSE-SU-2026:11111-1: moderate: pacemaker-3.0.2+20260616.4544f351-1.1 on GA media
# pacemaker-3.0.2+20260616.4544f351-1.1 on GA media
Announcement ID: openSUSE-SU-2026:11111-1
Rating: moderate
Cross-References:
* CVE-2026-10649
CVSS scores:
* CVE-2026-10649 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products:
* openSUSE Tumbleweed
An update that solves one vulnerability can now be installed.
## Description:
These are all security issues fixed in the pacemaker-3.0.2+20260616.4544f351-1.1 package on the GA media of openSUSE Tumbleweed.
## Package List:
* openSUSE Tumbleweed:
* pacemaker 3.0.2+20260616.4544f351-1.1
* pacemaker-cli 3.0.2+20260616.4544f351-1.1
* pacemaker-cts 3.0.2+20260616.4544f351-1.1
* pacemaker-devel 3.0.2+20260616.4544f351-1.1
* pacemaker-libs 3.0.2+20260616.4544f351-1.1
* pacemaker-remote 3.0.2+20260616.4544f351-1.1
* pacemaker-schemas 3.0.2+20260616.4544f351-1.1
* python3-pacemaker 3.0.2+20260616.4544f351-1.1
## References:
* https://www.suse.com/security/cve/CVE-2026-10649.html
openSUSE-SU-2026:11102-1: moderate: trivy-0.71.2-1.1 on GA media
# trivy-0.71.2-1.1 on GA media
Announcement ID: openSUSE-SU-2026:11102-1
Rating: moderate
Cross-References:
* CVE-2026-47262
* CVE-2026-50195
* CVE-2026-53488
* CVE-2026-53489
* CVE-2026-53492
CVSS scores:
* CVE-2026-47262 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2026-50195 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
* CVE-2026-53488 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
* CVE-2026-53489 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
* CVE-2026-53492 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Affected Products:
* openSUSE Tumbleweed
An update that solves 5 vulnerabilities can now be installed.
## Description:
These are all security issues fixed in the trivy-0.71.2-1.1 package on the GA media of openSUSE Tumbleweed.
## Package List:
* openSUSE Tumbleweed:
* trivy 0.71.2-1.1
## References:
* https://www.suse.com/security/cve/CVE-2026-47262.html
* https://www.suse.com/security/cve/CVE-2026-50195.html
* https://www.suse.com/security/cve/CVE-2026-53488.html
* https://www.suse.com/security/cve/CVE-2026-53489.html
* https://www.suse.com/security/cve/CVE-2026-53492.html
openSUSE-SU-2026:11109-1: moderate: libssh2-1-1.11.1-3.1 on GA media
# libssh2-1-1.11.1-3.1 on GA media
Announcement ID: openSUSE-SU-2026:11109-1
Rating: moderate
Cross-References:
* CVE-2025-15661
* CVE-2026-55199
* CVE-2026-55200
* CVE-2026-7598
CVSS scores:
* CVE-2025-15661 ( SUSE ): 6.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:H
* CVE-2026-55199 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-55200 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-7598 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
* CVE-2026-7598 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Affected Products:
* openSUSE Tumbleweed
An update that solves 4 vulnerabilities can now be installed.
## Description:
These are all security issues fixed in the libssh2-1-1.11.1-3.1 package on the GA media of openSUSE Tumbleweed.
## Package List:
* openSUSE Tumbleweed:
* libssh2-1 1.11.1-3.1
* libssh2-1-32bit 1.11.1-3.1
* libssh2-devel 1.11.1-3.1
## References:
* https://www.suse.com/security/cve/CVE-2025-15661.html
* https://www.suse.com/security/cve/CVE-2026-55199.html
* https://www.suse.com/security/cve/CVE-2026-55200.html
* https://www.suse.com/security/cve/CVE-2026-7598.html
openSUSE-SU-2026:11104-1: moderate: NetworkManager-applet-openvpn-1.12.5-1.1 on GA media
# NetworkManager-applet-openvpn-1.12.5-1.1 on GA media
Announcement ID: openSUSE-SU-2026:11104-1
Rating: moderate
Cross-References:
* CVE-2025-9615
CVSS scores:
* CVE-2025-9615 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Affected Products:
* openSUSE Tumbleweed
An update that solves one vulnerability can now be installed.
## Description:
These are all security issues fixed in the NetworkManager-applet-openvpn-1.12.5-1.1 package on the GA media of openSUSE Tumbleweed.
## Package List:
* openSUSE Tumbleweed:
* NetworkManager-applet-openvpn 1.12.5-1.1
* NetworkManager-openvpn 1.12.5-1.1
* NetworkManager-openvpn-lang 1.12.5-1.1
## References:
* https://www.suse.com/security/cve/CVE-2025-9615.html
SUSE-SU-2026:2644-1: important: Security update for frr
# Security update for frr
Announcement ID: SUSE-SU-2026:2644-1
Release Date: 2026-06-26T08:52:55Z
Rating: important
References:
* bsc#1263859
* bsc#1263863
* bsc#1263974
Cross-References:
* CVE-2026-28532
* CVE-2026-37457
* CVE-2026-37458
CVSS scores:
* CVE-2026-28532 ( SUSE ): 6.0
CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-28532 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-28532 ( NVD ): 6.0
CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-28532 ( NVD ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-37457 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-37457 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-37458 ( SUSE ): 7.1
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-37458 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-37458 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Affected Products:
* openSUSE Leap 15.3
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
An update that solves three vulnerabilities can now be installed.
## Description:
This update for frr fixes the following issues
* CVE-2026-28532: Denial of Service due to integer overflow in OSPF TLV parser
functions (bsc#1263859).
* CVE-2026-37457: An off-by-one out-of-bounds write vulnerability in the
bgp_flowspec_op_decode() function (bgpd/bgp_flowspec_util.c) of FRRouting
(FRR) stable/10.0 allows attackers to cause a Denial of Service
(bsc#1263863).
* CVE-2026-37458: missing input validation in the `MP_REACH_NLRI` component
allows authenticated attackers to cause a DoS via a crafted UPDATE message
(bsc#1263974).
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* SUSE Linux Enterprise Server 15 SP4 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2644=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2644=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2644=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2644=1
* openSUSE Leap 15.3
zypper in -t patch SUSE-2026-2644=1
## Package List:
* openSUSE Leap 15.3 (aarch64 i586 ppc64le s390x x86_64)
* libfrrzmq0-debuginfo-7.4-150300.4.43.1
* libfrrfpm_pb0-7.4-150300.4.43.1
* frr-debugsource-7.4-150300.4.43.1
* libfrrsnmp0-debuginfo-7.4-150300.4.43.1
* libmlag_pb0-debuginfo-7.4-150300.4.43.1
* libfrrcares0-debuginfo-7.4-150300.4.43.1
* frr-7.4-150300.4.43.1
* libfrr_pb0-debuginfo-7.4-150300.4.43.1
* libfrrospfapiclient0-7.4-150300.4.43.1
* libfrrospfapiclient0-debuginfo-7.4-150300.4.43.1
* libfrrzmq0-7.4-150300.4.43.1
* libfrrsnmp0-7.4-150300.4.43.1
* frr-devel-7.4-150300.4.43.1
* libfrrcares0-7.4-150300.4.43.1
* libmlag_pb0-7.4-150300.4.43.1
* libfrr_pb0-7.4-150300.4.43.1
* libfrr0-7.4-150300.4.43.1
* libfrrgrpc_pb0-7.4-150300.4.43.1
* libfrr0-debuginfo-7.4-150300.4.43.1
* libfrrfpm_pb0-debuginfo-7.4-150300.4.43.1
* frr-debuginfo-7.4-150300.4.43.1
* libfrrgrpc_pb0-debuginfo-7.4-150300.4.43.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64)
* libfrrzmq0-debuginfo-7.4-150300.4.43.1
* libfrrfpm_pb0-7.4-150300.4.43.1
* frr-debugsource-7.4-150300.4.43.1
* libfrrsnmp0-debuginfo-7.4-150300.4.43.1
* libmlag_pb0-debuginfo-7.4-150300.4.43.1
* libfrrcares0-debuginfo-7.4-150300.4.43.1
* frr-7.4-150300.4.43.1
* libfrr_pb0-debuginfo-7.4-150300.4.43.1
* libfrrospfapiclient0-7.4-150300.4.43.1
* libfrrospfapiclient0-debuginfo-7.4-150300.4.43.1
* libfrrzmq0-7.4-150300.4.43.1
* libfrrsnmp0-7.4-150300.4.43.1
* frr-devel-7.4-150300.4.43.1
* libfrrcares0-7.4-150300.4.43.1
* libmlag_pb0-7.4-150300.4.43.1
* libfrr_pb0-7.4-150300.4.43.1
* libfrr0-7.4-150300.4.43.1
* libfrrgrpc_pb0-7.4-150300.4.43.1
* libfrr0-debuginfo-7.4-150300.4.43.1
* libfrrfpm_pb0-debuginfo-7.4-150300.4.43.1
* frr-debuginfo-7.4-150300.4.43.1
* libfrrgrpc_pb0-debuginfo-7.4-150300.4.43.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64
x86_64)
* libfrrzmq0-debuginfo-7.4-150300.4.43.1
* libfrrfpm_pb0-7.4-150300.4.43.1
* frr-debugsource-7.4-150300.4.43.1
* libfrrsnmp0-debuginfo-7.4-150300.4.43.1
* libmlag_pb0-debuginfo-7.4-150300.4.43.1
* libfrrcares0-debuginfo-7.4-150300.4.43.1
* frr-7.4-150300.4.43.1
* libfrr_pb0-debuginfo-7.4-150300.4.43.1
* libfrrospfapiclient0-7.4-150300.4.43.1
* libfrrospfapiclient0-debuginfo-7.4-150300.4.43.1
* libfrrzmq0-7.4-150300.4.43.1
* libfrrsnmp0-7.4-150300.4.43.1
* frr-devel-7.4-150300.4.43.1
* libfrrcares0-7.4-150300.4.43.1
* libmlag_pb0-7.4-150300.4.43.1
* libfrr_pb0-7.4-150300.4.43.1
* libfrr0-7.4-150300.4.43.1
* libfrrgrpc_pb0-7.4-150300.4.43.1
* libfrr0-debuginfo-7.4-150300.4.43.1
* libfrrfpm_pb0-debuginfo-7.4-150300.4.43.1
* frr-debuginfo-7.4-150300.4.43.1
* libfrrgrpc_pb0-debuginfo-7.4-150300.4.43.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64
x86_64)
* libfrrzmq0-debuginfo-7.4-150300.4.43.1
* libfrrfpm_pb0-7.4-150300.4.43.1
* frr-debugsource-7.4-150300.4.43.1
* libfrrsnmp0-debuginfo-7.4-150300.4.43.1
* libmlag_pb0-debuginfo-7.4-150300.4.43.1
* libfrrcares0-debuginfo-7.4-150300.4.43.1
* frr-7.4-150300.4.43.1
* libfrr_pb0-debuginfo-7.4-150300.4.43.1
* libfrrospfapiclient0-7.4-150300.4.43.1
* libfrrospfapiclient0-debuginfo-7.4-150300.4.43.1
* libfrrzmq0-7.4-150300.4.43.1
* libfrrsnmp0-7.4-150300.4.43.1
* frr-devel-7.4-150300.4.43.1
* libfrrcares0-7.4-150300.4.43.1
* libmlag_pb0-7.4-150300.4.43.1
* libfrr_pb0-7.4-150300.4.43.1
* libfrr0-7.4-150300.4.43.1
* libfrrgrpc_pb0-7.4-150300.4.43.1
* libfrr0-debuginfo-7.4-150300.4.43.1
* libfrrfpm_pb0-debuginfo-7.4-150300.4.43.1
* frr-debuginfo-7.4-150300.4.43.1
* libfrrgrpc_pb0-debuginfo-7.4-150300.4.43.1
* SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64)
* libfrrzmq0-debuginfo-7.4-150300.4.43.1
* libfrrfpm_pb0-7.4-150300.4.43.1
* frr-debugsource-7.4-150300.4.43.1
* libfrrsnmp0-debuginfo-7.4-150300.4.43.1
* libmlag_pb0-debuginfo-7.4-150300.4.43.1
* libfrrcares0-debuginfo-7.4-150300.4.43.1
* frr-7.4-150300.4.43.1
* libfrr_pb0-debuginfo-7.4-150300.4.43.1
* libfrrospfapiclient0-7.4-150300.4.43.1
* libfrrospfapiclient0-debuginfo-7.4-150300.4.43.1
* libfrrzmq0-7.4-150300.4.43.1
* libfrrsnmp0-7.4-150300.4.43.1
* frr-devel-7.4-150300.4.43.1
* libfrrcares0-7.4-150300.4.43.1
* libmlag_pb0-7.4-150300.4.43.1
* libfrr_pb0-7.4-150300.4.43.1
* libfrr0-7.4-150300.4.43.1
* libfrrgrpc_pb0-7.4-150300.4.43.1
* libfrr0-debuginfo-7.4-150300.4.43.1
* libfrrfpm_pb0-debuginfo-7.4-150300.4.43.1
* frr-debuginfo-7.4-150300.4.43.1
* libfrrgrpc_pb0-debuginfo-7.4-150300.4.43.1
## References:
* https://www.suse.com/security/cve/CVE-2026-28532.html
* https://www.suse.com/security/cve/CVE-2026-37457.html
* https://www.suse.com/security/cve/CVE-2026-37458.html
* https://bugzilla.suse.com/show_bug.cgi?id=1263859
* https://bugzilla.suse.com/show_bug.cgi?id=1263863
* https://bugzilla.suse.com/show_bug.cgi?id=1263974
SUSE-SU-2026:2647-1: important: Security update for nodejs22
# Security update for nodejs22
Announcement ID: SUSE-SU-2026:2647-1
Release Date: 2026-06-26T10:34:06Z
Rating: important
References:
* bsc#1259853
* bsc#1262274
* bsc#1266318
* bsc#1268097
* bsc#1268477
* bsc#1268479
* bsc#1268481
* bsc#1268482
* bsc#1268554
* bsc#1268555
* bsc#1268592
* bsc#1268593
* bsc#1268598
* bsc#1268605
* bsc#1268606
* bsc#1268608
* bsc#1268609
* bsc#1268611
* bsc#1268618
Cross-References:
* CVE-2026-11525
* CVE-2026-12151
* CVE-2026-27135
* CVE-2026-40170
* CVE-2026-42338
* CVE-2026-48615
* CVE-2026-48617
* CVE-2026-48618
* CVE-2026-48619
* CVE-2026-48928
* CVE-2026-48930
* CVE-2026-48931
* CVE-2026-48933
* CVE-2026-48934
* CVE-2026-48935
* CVE-2026-48937
* CVE-2026-6733
* CVE-2026-9496
* CVE-2026-9679
CVSS scores:
* CVE-2026-11525 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
* CVE-2026-11525 ( NVD ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
* CVE-2026-12151 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-12151 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-27135 ( SUSE ): 8.2
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-27135 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-27135 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-40170 ( SUSE ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-40170 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-40170 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-42338 ( SUSE ): 5.3
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-42338 ( SUSE ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
* CVE-2026-42338 ( NVD ): 5.3
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-42338 ( NVD ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
* CVE-2026-48615 ( SUSE ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
* CVE-2026-48615 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
* CVE-2026-48615 ( NVD ): 5.9 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
* CVE-2026-48617 ( SUSE ): 1.8
CVSS:4.0/AV:L/AC:H/AT:P/PR:H/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
* CVE-2026-48617 ( SUSE ): 2.9 CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:L/I:L/A:N
* CVE-2026-48617 ( NVD ): 1.8 CVSS:3.0/AV:L/AC:H/PR:H/UI:R/S:U/C:N/I:L/A:N
* CVE-2026-48618 ( SUSE ): 8.3
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N
* CVE-2026-48618 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
* CVE-2026-48618 ( NVD ): 7.7 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
* CVE-2026-48619 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-48619 ( NVD ): 5.3 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
* CVE-2026-48928 ( SUSE ): 6.0
CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N
* CVE-2026-48928 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:N
* CVE-2026-48928 ( NVD ): 4.2 CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N
* CVE-2026-48930 ( SUSE ): 6.0
CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
* CVE-2026-48930 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N
* CVE-2026-48930 ( NVD ): 5.6 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
* CVE-2026-48931 ( SUSE ): 6.3
CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
* CVE-2026-48931 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
* CVE-2026-48931 ( NVD ): 3.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
* CVE-2026-48933 ( SUSE ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-48933 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-48933 ( NVD ): 7.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-48934 ( SUSE ): 6.3
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
* CVE-2026-48934 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
* CVE-2026-48934 ( NVD ): 4.3 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
* CVE-2026-48935 ( SUSE ): 5.1
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
* CVE-2026-48935 ( SUSE ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
* CVE-2026-48935 ( NVD ): 3.3 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
* CVE-2026-48937 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
* CVE-2026-48937 ( NVD ): 5.3 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
* CVE-2026-6733 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
* CVE-2026-6733 ( NVD ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
* CVE-2026-9496 ( SUSE ): 6.8
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-9496 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2026-9496 ( NVD ): 7.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-9496 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-9679 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
* CVE-2026-9679 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
Affected Products:
* openSUSE Leap 15.6
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server 15 SP6 LTSS
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
An update that solves 19 vulnerabilities can now be installed.
## Description:
This update for nodejs22 fixes the following issues
Update to 22.23.0:
* CVE-2026-6733: undici: Undici: Response queue poisoning on reused keep-alive
sockets can lead to incorrect response delivery (bsc#1268479).
* CVE-2026-9496: pacote: excessive CPU consumption in `addGitSha` when
processing a specially crafted `spec.rawSpec` value can lead to DoS
(bsc#1266318).
* CVE-2026-9679: undici: undici vulnerable to HTTP header injection via Set-
Cookie percent-decoding (bsc#1268477).
* CVE-2026-11525: undici: undici: Weakening of cookie SameSite policy due to
incorrect parsing of Set-Cookie header (bsc#1268481).
* CVE-2026-12151: undici: undici: Denial of Service due to unbounded memory
growth via WebSocket frames (bsc#1268482).
* CVE-2026-27135: nghttp2: assertion failure due to missing state validation
can lead to DoS (bsc#1259853).
* CVE-2026-40170: ngtcp2: qlog parameters_set stack buffer overflow
(bsc#1262274).
* CVE-2026-42338: ip-address: Cross-site scripting via improper HTML escaping
of untrusted input (bsc#1268097).
* CVE-2026-48615: Proxy credentials leaked in ERR_PROXY_TUNNEL error message
(bsc#1268598).
* CVE-2026-48617: permission model enforcement bypass via
`process.report.writeReport()` path misvalidation (bsc#1268554).
* CVE-2026-48618: Node.js unicode dot separator handling can lead to tls
wildcard-depth authentication bypass due to resolver and verifier hostname
normalization mismatch (bsc#1268593).
* CVE-2026-48619: Unbounded memory growth in node:http2 clients via attacker-
controlled ORIGIN frames (bsc#1268618).
* CVE-2026-48928: Uppercase sni context matching can lead to mtls
authorization bypass due to case-sensitive hostname matching (bsc#1268605).
* CVE-2026-48930: Embedded-nul hostnames can lead to silent authority
rebinding due to c-string truncation in resolver bindings (bsc#1268606).
* CVE-2026-48931: HTTP Response Queue Poisoning via TOCTOU Race Condition in
http.Agent (bsc#1268611).
* CVE-2026-48933: Node.js WebCrypto AES Integer Overflow Leads to Remote
Process Abort (bsc#1268592).
* CVE-2026-48934: TLS host identity verification bypass via session reuse with
different servername leads to unauthorized connections (bsc#1268608).
* CVE-2026-48935: Permission Model bypass via FileHandle.utimes() in the
promises API (bsc#1268609).
* CVE-2026-48937: servers keep accepting data even after sending a `GOAWAY`
frame (bsc#1268555).
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* SUSE Linux Enterprise Server 15 SP6 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2647=1
* openSUSE Leap 15.6
zypper in -t patch SUSE-2026-2647=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2647=1
## Package List:
* SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64)
* nodejs22-debuginfo-22.23.0-150600.13.18.1
* nodejs22-devel-22.23.0-150600.13.18.1
* nodejs22-debugsource-22.23.0-150600.13.18.1
* npm22-22.23.0-150600.13.18.1
* nodejs22-22.23.0-150600.13.18.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP6 (noarch)
* nodejs22-docs-22.23.0-150600.13.18.1
* openSUSE Leap 15.6 (aarch64 i586 ppc64le s390x x86_64)
* nodejs22-debuginfo-22.23.0-150600.13.18.1
* nodejs22-devel-22.23.0-150600.13.18.1
* nodejs22-debugsource-22.23.0-150600.13.18.1
* corepack22-22.23.0-150600.13.18.1
* npm22-22.23.0-150600.13.18.1
* nodejs22-22.23.0-150600.13.18.1
* openSUSE Leap 15.6 (noarch)
* nodejs22-docs-22.23.0-150600.13.18.1
* SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64)
* nodejs22-debuginfo-22.23.0-150600.13.18.1
* nodejs22-devel-22.23.0-150600.13.18.1
* nodejs22-debugsource-22.23.0-150600.13.18.1
* npm22-22.23.0-150600.13.18.1
* nodejs22-22.23.0-150600.13.18.1
* SUSE Linux Enterprise Server 15 SP6 LTSS (noarch)
* nodejs22-docs-22.23.0-150600.13.18.1
## References:
* https://www.suse.com/security/cve/CVE-2026-11525.html
* https://www.suse.com/security/cve/CVE-2026-12151.html
* https://www.suse.com/security/cve/CVE-2026-27135.html
* https://www.suse.com/security/cve/CVE-2026-40170.html
* https://www.suse.com/security/cve/CVE-2026-42338.html
* https://www.suse.com/security/cve/CVE-2026-48615.html
* https://www.suse.com/security/cve/CVE-2026-48617.html
* https://www.suse.com/security/cve/CVE-2026-48618.html
* https://www.suse.com/security/cve/CVE-2026-48619.html
* https://www.suse.com/security/cve/CVE-2026-48928.html
* https://www.suse.com/security/cve/CVE-2026-48930.html
* https://www.suse.com/security/cve/CVE-2026-48931.html
* https://www.suse.com/security/cve/CVE-2026-48933.html
* https://www.suse.com/security/cve/CVE-2026-48934.html
* https://www.suse.com/security/cve/CVE-2026-48935.html
* https://www.suse.com/security/cve/CVE-2026-48937.html
* https://www.suse.com/security/cve/CVE-2026-6733.html
* https://www.suse.com/security/cve/CVE-2026-9496.html
* https://www.suse.com/security/cve/CVE-2026-9679.html
* https://bugzilla.suse.com/show_bug.cgi?id=1259853
* https://bugzilla.suse.com/show_bug.cgi?id=1262274
* https://bugzilla.suse.com/show_bug.cgi?id=1266318
* https://bugzilla.suse.com/show_bug.cgi?id=1268097
* https://bugzilla.suse.com/show_bug.cgi?id=1268477
* https://bugzilla.suse.com/show_bug.cgi?id=1268479
* https://bugzilla.suse.com/show_bug.cgi?id=1268481
* https://bugzilla.suse.com/show_bug.cgi?id=1268482
* https://bugzilla.suse.com/show_bug.cgi?id=1268554
* https://bugzilla.suse.com/show_bug.cgi?id=1268555
* https://bugzilla.suse.com/show_bug.cgi?id=1268592
* https://bugzilla.suse.com/show_bug.cgi?id=1268593
* https://bugzilla.suse.com/show_bug.cgi?id=1268598
* https://bugzilla.suse.com/show_bug.cgi?id=1268605
* https://bugzilla.suse.com/show_bug.cgi?id=1268606
* https://bugzilla.suse.com/show_bug.cgi?id=1268608
* https://bugzilla.suse.com/show_bug.cgi?id=1268609
* https://bugzilla.suse.com/show_bug.cgi?id=1268611
* https://bugzilla.suse.com/show_bug.cgi?id=1268618
SUSE-SU-2026:2653-1: moderate: Security update for util-linux
# Security update for util-linux
Announcement ID: SUSE-SU-2026:2653-1
Release Date: 2026-06-26T12:22:43Z
Rating: moderate
References:
* bsc#1261606
Cross-References:
* CVE-2026-27456
CVSS scores:
* CVE-2026-27456 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
* CVE-2026-27456 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
Affected Products:
* openSUSE Leap 15.4
* SUSE Linux Enterprise Micro 5.3
* SUSE Linux Enterprise Micro 5.4
* SUSE Linux Enterprise Micro for Rancher 5.3
* SUSE Linux Enterprise Micro for Rancher 5.4
An update that solves one vulnerability can now be installed.
## Description:
This update for util-linux fixes the following issue
* CVE-2026-27456: TOCTOU in the mount program when setting up loop devices
(bsc#1261606).
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* SUSE Linux Enterprise Micro for Rancher 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2026-2653=1
* SUSE Linux Enterprise Micro 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2026-2653=1
* openSUSE Leap 15.4
zypper in -t patch SUSE-2026-2653=1
* SUSE Linux Enterprise Micro for Rancher 5.3
zypper in -t patch SUSE-SLE-Micro-5.3-2026-2653=1
* SUSE Linux Enterprise Micro 5.3
zypper in -t patch SUSE-SLE-Micro-5.3-2026-2653=1
## Package List:
* openSUSE Leap 15.4 (aarch64 i586 ppc64le s390x x86_64)
* libfdisk1-2.37.2-150400.8.47.1
* python3-libmount-debuginfo-2.37.2-150400.8.47.1
* libmount1-2.37.2-150400.8.47.1
* libuuid-devel-2.37.2-150400.8.47.1
* python3-libmount-2.37.2-150400.8.47.1
* libuuid1-debuginfo-2.37.2-150400.8.47.1
* util-linux-systemd-2.37.2-150400.8.47.1
* libblkid1-debuginfo-2.37.2-150400.8.47.1
* libsmartcols-devel-static-2.37.2-150400.8.47.1
* libblkid-devel-static-2.37.2-150400.8.47.1
* uuidd-2.37.2-150400.8.47.1
* libmount1-debuginfo-2.37.2-150400.8.47.1
* python3-libmount-debugsource-2.37.2-150400.8.47.1
* libsmartcols1-2.37.2-150400.8.47.1
* libfdisk1-debuginfo-2.37.2-150400.8.47.1
* libfdisk-devel-2.37.2-150400.8.47.1
* libsmartcols1-debuginfo-2.37.2-150400.8.47.1
* util-linux-debugsource-2.37.2-150400.8.47.1
* util-linux-systemd-debugsource-2.37.2-150400.8.47.1
* libblkid-devel-2.37.2-150400.8.47.1
* libuuid1-2.37.2-150400.8.47.1
* libsmartcols-devel-2.37.2-150400.8.47.1
* libuuid-devel-static-2.37.2-150400.8.47.1
* util-linux-debuginfo-2.37.2-150400.8.47.1
* libfdisk-devel-static-2.37.2-150400.8.47.1
* uuidd-debuginfo-2.37.2-150400.8.47.1
* libmount-devel-static-2.37.2-150400.8.47.1
* util-linux-2.37.2-150400.8.47.1
* libblkid1-2.37.2-150400.8.47.1
* util-linux-systemd-debuginfo-2.37.2-150400.8.47.1
* libmount-devel-2.37.2-150400.8.47.1
* openSUSE Leap 15.4 (x86_64)
* libblkid-devel-32bit-2.37.2-150400.8.47.1
* libsmartcols1-32bit-debuginfo-2.37.2-150400.8.47.1
* libfdisk1-32bit-debuginfo-2.37.2-150400.8.47.1
* libsmartcols-devel-32bit-2.37.2-150400.8.47.1
* libmount1-32bit-debuginfo-2.37.2-150400.8.47.1
* libmount1-32bit-2.37.2-150400.8.47.1
* libsmartcols1-32bit-2.37.2-150400.8.47.1
* libmount-devel-32bit-2.37.2-150400.8.47.1
* libuuid-devel-32bit-2.37.2-150400.8.47.1
* libfdisk1-32bit-2.37.2-150400.8.47.1
* libuuid1-32bit-2.37.2-150400.8.47.1
* libfdisk-devel-32bit-2.37.2-150400.8.47.1
* libblkid1-32bit-debuginfo-2.37.2-150400.8.47.1
* libblkid1-32bit-2.37.2-150400.8.47.1
* libuuid1-32bit-debuginfo-2.37.2-150400.8.47.1
* openSUSE Leap 15.4 (aarch64_ilp32)
* libfdisk-devel-64bit-2.37.2-150400.8.47.1
* libmount1-64bit-debuginfo-2.37.2-150400.8.47.1
* libuuid1-64bit-2.37.2-150400.8.47.1
* libuuid1-64bit-debuginfo-2.37.2-150400.8.47.1
* libfdisk1-64bit-debuginfo-2.37.2-150400.8.47.1
* libfdisk1-64bit-2.37.2-150400.8.47.1
* libblkid1-64bit-debuginfo-2.37.2-150400.8.47.1
* libmount1-64bit-2.37.2-150400.8.47.1
* libsmartcols1-64bit-2.37.2-150400.8.47.1
* libsmartcols-devel-64bit-2.37.2-150400.8.47.1
* libmount-devel-64bit-2.37.2-150400.8.47.1
* libblkid1-64bit-2.37.2-150400.8.47.1
* libuuid-devel-64bit-2.37.2-150400.8.47.1
* libblkid-devel-64bit-2.37.2-150400.8.47.1
* libsmartcols1-64bit-debuginfo-2.37.2-150400.8.47.1
* openSUSE Leap 15.4 (noarch)
* util-linux-lang-2.37.2-150400.8.47.1
* SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64)
* libfdisk1-2.37.2-150400.8.47.1
* libmount1-debuginfo-2.37.2-150400.8.47.1
* libsmartcols1-debuginfo-2.37.2-150400.8.47.1
* libmount1-2.37.2-150400.8.47.1
* libsmartcols1-2.37.2-150400.8.47.1
* util-linux-systemd-debugsource-2.37.2-150400.8.47.1
* util-linux-2.37.2-150400.8.47.1
* libuuid1-debuginfo-2.37.2-150400.8.47.1
* libuuid1-2.37.2-150400.8.47.1
* libblkid1-2.37.2-150400.8.47.1
* util-linux-debugsource-2.37.2-150400.8.47.1
* util-linux-systemd-2.37.2-150400.8.47.1
* util-linux-systemd-debuginfo-2.37.2-150400.8.47.1
* libblkid1-debuginfo-2.37.2-150400.8.47.1
* util-linux-debuginfo-2.37.2-150400.8.47.1
* libfdisk1-debuginfo-2.37.2-150400.8.47.1
* SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64)
* libfdisk1-2.37.2-150400.8.47.1
* libmount1-debuginfo-2.37.2-150400.8.47.1
* libsmartcols1-debuginfo-2.37.2-150400.8.47.1
* libmount1-2.37.2-150400.8.47.1
* libsmartcols1-2.37.2-150400.8.47.1
* util-linux-systemd-debugsource-2.37.2-150400.8.47.1
* util-linux-2.37.2-150400.8.47.1
* libuuid1-debuginfo-2.37.2-150400.8.47.1
* libuuid1-2.37.2-150400.8.47.1
* libblkid1-2.37.2-150400.8.47.1
* util-linux-debugsource-2.37.2-150400.8.47.1
* util-linux-systemd-2.37.2-150400.8.47.1
* util-linux-systemd-debuginfo-2.37.2-150400.8.47.1
* libblkid1-debuginfo-2.37.2-150400.8.47.1
* util-linux-debuginfo-2.37.2-150400.8.47.1
* libfdisk1-debuginfo-2.37.2-150400.8.47.1
* SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64)
* libfdisk1-2.37.2-150400.8.47.1
* libmount1-debuginfo-2.37.2-150400.8.47.1
* libsmartcols1-debuginfo-2.37.2-150400.8.47.1
* libmount1-2.37.2-150400.8.47.1
* libsmartcols1-2.37.2-150400.8.47.1
* util-linux-systemd-debugsource-2.37.2-150400.8.47.1
* util-linux-2.37.2-150400.8.47.1
* libuuid1-debuginfo-2.37.2-150400.8.47.1
* libuuid1-2.37.2-150400.8.47.1
* libblkid1-2.37.2-150400.8.47.1
* util-linux-debugsource-2.37.2-150400.8.47.1
* util-linux-systemd-2.37.2-150400.8.47.1
* util-linux-systemd-debuginfo-2.37.2-150400.8.47.1
* libblkid1-debuginfo-2.37.2-150400.8.47.1
* util-linux-debuginfo-2.37.2-150400.8.47.1
* libfdisk1-debuginfo-2.37.2-150400.8.47.1
* SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64)
* libfdisk1-2.37.2-150400.8.47.1
* libmount1-debuginfo-2.37.2-150400.8.47.1
* libsmartcols1-debuginfo-2.37.2-150400.8.47.1
* libmount1-2.37.2-150400.8.47.1
* libsmartcols1-2.37.2-150400.8.47.1
* util-linux-systemd-debugsource-2.37.2-150400.8.47.1
* util-linux-2.37.2-150400.8.47.1
* libuuid1-debuginfo-2.37.2-150400.8.47.1
* libuuid1-2.37.2-150400.8.47.1
* libblkid1-2.37.2-150400.8.47.1
* util-linux-debugsource-2.37.2-150400.8.47.1
* util-linux-systemd-2.37.2-150400.8.47.1
* util-linux-systemd-debuginfo-2.37.2-150400.8.47.1
* libblkid1-debuginfo-2.37.2-150400.8.47.1
* util-linux-debuginfo-2.37.2-150400.8.47.1
* libfdisk1-debuginfo-2.37.2-150400.8.47.1
## References:
* https://www.suse.com/security/cve/CVE-2026-27456.html
* https://bugzilla.suse.com/show_bug.cgi?id=1261606
SUSE-SU-2026:2651-1: important: Security update for haproxy
# Security update for haproxy
Announcement ID: SUSE-SU-2026:2651-1
Release Date: 2026-06-26T12:18:44Z
Rating: important
References:
* bsc#1268557
* bsc#1268558
Cross-References:
* CVE-2026-55203
* CVE-2026-55204
CVSS scores:
* CVE-2026-55203 ( SUSE ): 5.6 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
* CVE-2026-55203 ( NVD ): 9.0
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:H/VA:N/SC:L/SI:H/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-55203 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
* CVE-2026-55203 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:H/A:N
* CVE-2026-55204 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-55204 ( NVD ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-55204 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products:
* openSUSE Leap 15.4
* SUSE Linux Enterprise High Availability Extension 15 SP4
* SUSE Linux Enterprise High Availability Extension 15 SP5
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise Micro 5.3
* SUSE Linux Enterprise Micro 5.4
* SUSE Linux Enterprise Micro 5.5
* SUSE Linux Enterprise Micro for Rancher 5.3
* SUSE Linux Enterprise Micro for Rancher 5.4
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
* SUSE Manager Proxy 4.3
* SUSE Manager Retail Branch Server 4.3
* SUSE Manager Server 4.3
An update that solves two vulnerabilities can now be installed.
## Description:
This update for haproxy fixes the following issues
* CVE-2026-55203: integer overflow vulnerability in the fcgi_conn structure's
drl field that allows buffer misparse as new FCGI record headers
(bsc#1268557).
* CVE-2026-55204: null pointer dereference vulnerability in hpack_dht_insert()
within src/hpack-tbl.c (bsc#1268558).
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* SUSE Linux Enterprise Micro 5.5
zypper in -t patch SUSE-SLE-Micro-5.5-2026-2651=1
* SUSE Linux Enterprise Micro for Rancher 5.3
zypper in -t patch SUSE-SLE-Micro-5.3-2026-2651=1
* SUSE Linux Enterprise Micro 5.3
zypper in -t patch SUSE-SLE-Micro-5.3-2026-2651=1
* SUSE Linux Enterprise High Availability Extension 15 SP5
zypper in -t patch SUSE-SLE-Product-HA-15-SP5-2026-2651=1
* SUSE Linux Enterprise High Availability Extension 15 SP4
zypper in -t patch SUSE-SLE-Product-HA-15-SP4-2026-2651=1
* SUSE Linux Enterprise Micro for Rancher 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2026-2651=1
* SUSE Linux Enterprise Micro 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2026-2651=1
* openSUSE Leap 15.4
zypper in -t patch SUSE-2026-2651=1
## Package List:
* SUSE Linux Enterprise High Availability Extension 15 SP4 (aarch64 ppc64le
s390x x86_64)
* haproxy-2.4.22+git0.f8e3218e2-150400.3.28.1
* haproxy-debuginfo-2.4.22+git0.f8e3218e2-150400.3.28.1
* haproxy-debugsource-2.4.22+git0.f8e3218e2-150400.3.28.1
* openSUSE Leap 15.4 (aarch64 i586 ppc64le s390x x86_64)
* haproxy-2.4.22+git0.f8e3218e2-150400.3.28.1
* haproxy-debuginfo-2.4.22+git0.f8e3218e2-150400.3.28.1
* haproxy-debugsource-2.4.22+git0.f8e3218e2-150400.3.28.1
* SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64)
* haproxy-2.4.22+git0.f8e3218e2-150400.3.28.1
* haproxy-debuginfo-2.4.22+git0.f8e3218e2-150400.3.28.1
* haproxy-debugsource-2.4.22+git0.f8e3218e2-150400.3.28.1
* SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64)
* haproxy-2.4.22+git0.f8e3218e2-150400.3.28.1
* haproxy-debuginfo-2.4.22+git0.f8e3218e2-150400.3.28.1
* haproxy-debugsource-2.4.22+git0.f8e3218e2-150400.3.28.1
* SUSE Linux Enterprise High Availability Extension 15 SP5 (aarch64 ppc64le
s390x x86_64)
* haproxy-2.4.22+git0.f8e3218e2-150400.3.28.1
* haproxy-debuginfo-2.4.22+git0.f8e3218e2-150400.3.28.1
* haproxy-debugsource-2.4.22+git0.f8e3218e2-150400.3.28.1
* SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64)
* haproxy-2.4.22+git0.f8e3218e2-150400.3.28.1
* haproxy-debuginfo-2.4.22+git0.f8e3218e2-150400.3.28.1
* haproxy-debugsource-2.4.22+git0.f8e3218e2-150400.3.28.1
* SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64)
* haproxy-2.4.22+git0.f8e3218e2-150400.3.28.1
* haproxy-debuginfo-2.4.22+git0.f8e3218e2-150400.3.28.1
* haproxy-debugsource-2.4.22+git0.f8e3218e2-150400.3.28.1
* SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64)
* haproxy-2.4.22+git0.f8e3218e2-150400.3.28.1
* haproxy-debuginfo-2.4.22+git0.f8e3218e2-150400.3.28.1
* haproxy-debugsource-2.4.22+git0.f8e3218e2-150400.3.28.1
## References:
* https://www.suse.com/security/cve/CVE-2026-55203.html
* https://www.suse.com/security/cve/CVE-2026-55204.html
* https://bugzilla.suse.com/show_bug.cgi?id=1268557
* https://bugzilla.suse.com/show_bug.cgi?id=1268558
SUSE-SU-2026:2654-1: moderate: Security update for libsoup2
# Security update for libsoup2
Announcement ID: SUSE-SU-2026:2654-1
Release Date: 2026-06-26T12:23:06Z
Rating: moderate
References:
* bsc#1257649
Cross-References:
* CVE-2026-1801
CVSS scores:
* CVE-2026-1801 ( SUSE ): 6.9
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
* CVE-2026-1801 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
* CVE-2026-1801 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
* CVE-2026-1801 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
Affected Products:
* Basesystem Module 15-SP7
* openSUSE Leap 15.6
* SUSE Linux Enterprise Desktop 15 SP7
* SUSE Linux Enterprise Real Time 15 SP7
* SUSE Linux Enterprise Server 15 SP7
* SUSE Linux Enterprise Server for SAP Applications 15 SP7
An update that solves one vulnerability can now be installed.
## Description:
This update for libsoup2 fixes the following issue
* CVE-2026-1801: HTTP Request Smuggling in
soup_filter_input_stream_read_line() (bsc#1257649).
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* Basesystem Module 15-SP7
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-2654=1
* openSUSE Leap 15.6
zypper in -t patch SUSE-2026-2654=1
## Package List:
* openSUSE Leap 15.6 (aarch64 i586 ppc64le s390x x86_64)
* typelib-1_0-Soup-2_4-2.74.3-150600.4.36.1
* libsoup-2_4-1-debuginfo-2.74.3-150600.4.36.1
* libsoup-2_4-1-2.74.3-150600.4.36.1
* libsoup2-debugsource-2.74.3-150600.4.36.1
* libsoup2-devel-2.74.3-150600.4.36.1
* openSUSE Leap 15.6 (x86_64)
* libsoup-2_4-1-32bit-debuginfo-2.74.3-150600.4.36.1
* libsoup2-devel-32bit-2.74.3-150600.4.36.1
* libsoup-2_4-1-32bit-2.74.3-150600.4.36.1
* openSUSE Leap 15.6 (aarch64_ilp32)
* libsoup-2_4-1-64bit-debuginfo-2.74.3-150600.4.36.1
* libsoup-2_4-1-64bit-2.74.3-150600.4.36.1
* libsoup2-devel-64bit-2.74.3-150600.4.36.1
* openSUSE Leap 15.6 (noarch)
* libsoup2-lang-2.74.3-150600.4.36.1
* Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64)
* typelib-1_0-Soup-2_4-2.74.3-150600.4.36.1
* libsoup-2_4-1-debuginfo-2.74.3-150600.4.36.1
* libsoup-2_4-1-2.74.3-150600.4.36.1
* libsoup2-debugsource-2.74.3-150600.4.36.1
* libsoup2-devel-2.74.3-150600.4.36.1
* Basesystem Module 15-SP7 (noarch)
* libsoup2-lang-2.74.3-150600.4.36.1
## References:
* https://www.suse.com/security/cve/CVE-2026-1801.html
* https://bugzilla.suse.com/show_bug.cgi?id=1257649
SUSE-SU-2026:2652-1: important: Security update for haproxy
# Security update for haproxy
Announcement ID: SUSE-SU-2026:2652-1
Release Date: 2026-06-26T12:21:07Z
Rating: important
References:
* bsc#1268557
* bsc#1268558
Cross-References:
* CVE-2026-55203
* CVE-2026-55204
CVSS scores:
* CVE-2026-55203 ( SUSE ): 5.6 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
* CVE-2026-55203 ( NVD ): 9.0
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:H/VA:N/SC:L/SI:H/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-55203 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
* CVE-2026-55203 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:H/A:N
* CVE-2026-55204 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-55204 ( NVD ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-55204 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products:
* openSUSE Leap 15.6
* SUSE Linux Enterprise High Availability Extension 15 SP6
* SUSE Linux Enterprise High Availability Extension 15 SP7
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server 15 SP7
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
* SUSE Linux Enterprise Server for SAP Applications 15 SP7
An update that solves two vulnerabilities can now be installed.
## Description:
This update for haproxy fixes the following issues
* CVE-2026-55203: integer overflow vulnerability in the fcgi_conn structure's
drl field that allows buffer misparse as new FCGI record headers
(bsc#1268557).
* CVE-2026-55204: null pointer dereference vulnerability in hpack_dht_insert()
within src/hpack-tbl.c (bsc#1268558).
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* SUSE Linux Enterprise High Availability Extension 15 SP6
zypper in -t patch SUSE-SLE-Product-HA-15-SP6-2026-2652=1
* SUSE Linux Enterprise High Availability Extension 15 SP7
zypper in -t patch SUSE-SLE-Product-HA-15-SP7-2026-2652=1
* openSUSE Leap 15.6
zypper in -t patch SUSE-2026-2652=1
## Package List:
* SUSE Linux Enterprise High Availability Extension 15 SP6 (aarch64 ppc64le
s390x x86_64)
* haproxy-debugsource-2.8.11+git0.01c1056a4-150600.3.15.1
* haproxy-debuginfo-2.8.11+git0.01c1056a4-150600.3.15.1
* haproxy-2.8.11+git0.01c1056a4-150600.3.15.1
* openSUSE Leap 15.6 (aarch64 i586 ppc64le s390x x86_64)
* haproxy-debugsource-2.8.11+git0.01c1056a4-150600.3.15.1
* haproxy-debuginfo-2.8.11+git0.01c1056a4-150600.3.15.1
* haproxy-2.8.11+git0.01c1056a4-150600.3.15.1
* SUSE Linux Enterprise High Availability Extension 15 SP7 (aarch64 ppc64le
s390x x86_64)
* haproxy-debugsource-2.8.11+git0.01c1056a4-150600.3.15.1
* haproxy-debuginfo-2.8.11+git0.01c1056a4-150600.3.15.1
* haproxy-2.8.11+git0.01c1056a4-150600.3.15.1
## References:
* https://www.suse.com/security/cve/CVE-2026-55203.html
* https://www.suse.com/security/cve/CVE-2026-55204.html
* https://bugzilla.suse.com/show_bug.cgi?id=1268557
* https://bugzilla.suse.com/show_bug.cgi?id=1268558
SUSE-SU-2026:2657-1: important: Security update for opensc
# Security update for opensc
Announcement ID: SUSE-SU-2026:2657-1
Release Date: 2026-06-26T12:25:12Z
Rating: important
References:
* bsc#1261214
* bsc#1261218
* bsc#1261219
* bsc#1261220
* bsc#1266963
* bsc#1267246
Cross-References:
* CVE-2025-49010
* CVE-2025-66037
* CVE-2025-66038
* CVE-2025-66215
* CVE-2026-10275
* CVE-2026-40528
CVSS scores:
* CVE-2025-49010 ( SUSE ): 1.0
CVSS:4.0/AV:P/AC:H/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
* CVE-2025-49010 ( SUSE ): 3.8 CVSS:3.1/AV:P/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L
* CVE-2025-49010 ( NVD ): 3.8 CVSS:3.1/AV:P/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L
* CVE-2025-49010 ( NVD ): 6.8 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2025-66037 ( SUSE ): 1.0
CVSS:4.0/AV:P/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
* CVE-2025-66037 ( SUSE ): 3.9 CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
* CVE-2025-66037 ( NVD ): 3.9 CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
* CVE-2025-66037 ( NVD ): 6.8 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2025-66038 ( SUSE ): 1.0
CVSS:4.0/AV:P/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
* CVE-2025-66038 ( SUSE ): 3.9 CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
* CVE-2025-66038 ( NVD ): 3.9 CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
* CVE-2025-66038 ( NVD ): 6.8 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2025-66215 ( SUSE ): 1.0
CVSS:4.0/AV:P/AC:H/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
* CVE-2025-66215 ( SUSE ): 3.8 CVSS:3.1/AV:P/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L
* CVE-2025-66215 ( NVD ): 3.8 CVSS:3.1/AV:P/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L
* CVE-2025-66215 ( NVD ): 6.8 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-10275 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-10275 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2026-10275 ( NVD ): 1.3
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-10275 ( NVD ): 5.0 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L
* CVE-2026-40528 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-40528 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-40528 ( NVD ): 1.0
CVSS:4.0/AV:P/AC:H/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-40528 ( NVD ): 3.8 CVSS:3.1/AV:P/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L
* CVE-2026-40528 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected Products:
* openSUSE Leap 15.4
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
* SUSE Linux Enterprise Micro 5.3
* SUSE Linux Enterprise Micro 5.4
* SUSE Linux Enterprise Micro 5.5
* SUSE Linux Enterprise Micro for Rancher 5.3
* SUSE Linux Enterprise Micro for Rancher 5.4
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server 15 SP5 LTSS
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
An update that solves six vulnerabilities can now be installed.
## Description:
This update for opensc fixes the following issues
* CVE-2025-49010: stack-buffer-overflow via crafted smart card or USB device
responses (bsc#1261214).
* CVE-2025-66037: crafted input can cause an out-of-bounds read (bsc#1261218).
* CVE-2025-66038: improper compact-TLV length validation can lead to crash or
unexpected behavior (bsc#1261219).
* CVE-2025-66215: crafted smart card or USB device can cause a stack-buffer-
overflow write (bsc#1261220).
* CVE-2026-10275: global buffer overflow during key pair generation tests due
to missing input validation (bsc#1267246).
* CVE-2026-40528: stack and heap buffer overrun in the `do_key_value()`
function due to missing length check allows for memory corruption via a
crafted profile configuration file (bsc#1266963).
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* SUSE Linux Enterprise Micro for Rancher 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2026-2657=1
* SUSE Linux Enterprise Micro 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2026-2657=1
* SUSE Linux Enterprise Server 15 SP4 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2657=1
* SUSE Linux Enterprise Server 15 SP5 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2657=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2657=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2657=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2657=1
* SUSE Linux Enterprise Micro for Rancher 5.3
zypper in -t patch SUSE-SLE-Micro-5.3-2026-2657=1
* SUSE Linux Enterprise Micro 5.3
zypper in -t patch SUSE-SLE-Micro-5.3-2026-2657=1
* openSUSE Leap 15.4
zypper in -t patch SUSE-2026-2657=1
* SUSE Linux Enterprise Micro 5.5
zypper in -t patch SUSE-SLE-Micro-5.5-2026-2657=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2657=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2657=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2657=1
## Package List:
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64)
* opensc-debugsource-0.22.0-150400.3.17.1
* opensc-0.22.0-150400.3.17.1
* opensc-debuginfo-0.22.0-150400.3.17.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64
x86_64)
* opensc-debugsource-0.22.0-150400.3.17.1
* opensc-0.22.0-150400.3.17.1
* opensc-debuginfo-0.22.0-150400.3.17.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64
x86_64)
* opensc-debugsource-0.22.0-150400.3.17.1
* opensc-0.22.0-150400.3.17.1
* opensc-debuginfo-0.22.0-150400.3.17.1
* openSUSE Leap 15.4 (aarch64 i586 ppc64le s390x x86_64)
* opensc-debugsource-0.22.0-150400.3.17.1
* opensc-0.22.0-150400.3.17.1
* opensc-debuginfo-0.22.0-150400.3.17.1
* openSUSE Leap 15.4 (x86_64)
* opensc-32bit-0.22.0-150400.3.17.1
* opensc-32bit-debuginfo-0.22.0-150400.3.17.1
* openSUSE Leap 15.4 (aarch64_ilp32)
* opensc-64bit-debuginfo-0.22.0-150400.3.17.1
* opensc-64bit-0.22.0-150400.3.17.1
* SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64)
* opensc-debugsource-0.22.0-150400.3.17.1
* opensc-0.22.0-150400.3.17.1
* opensc-debuginfo-0.22.0-150400.3.17.1
* SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64)
* opensc-debugsource-0.22.0-150400.3.17.1
* opensc-0.22.0-150400.3.17.1
* opensc-debuginfo-0.22.0-150400.3.17.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64)
* opensc-debugsource-0.22.0-150400.3.17.1
* opensc-0.22.0-150400.3.17.1
* opensc-debuginfo-0.22.0-150400.3.17.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64
x86_64)
* opensc-debugsource-0.22.0-150400.3.17.1
* opensc-0.22.0-150400.3.17.1
* opensc-debuginfo-0.22.0-150400.3.17.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64
x86_64)
* opensc-debugsource-0.22.0-150400.3.17.1
* opensc-0.22.0-150400.3.17.1
* opensc-debuginfo-0.22.0-150400.3.17.1
* SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64)
* opensc-debugsource-0.22.0-150400.3.17.1
* opensc-0.22.0-150400.3.17.1
* opensc-debuginfo-0.22.0-150400.3.17.1
* SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64)
* opensc-debugsource-0.22.0-150400.3.17.1
* opensc-0.22.0-150400.3.17.1
* opensc-debuginfo-0.22.0-150400.3.17.1
* SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64)
* opensc-debugsource-0.22.0-150400.3.17.1
* opensc-0.22.0-150400.3.17.1
* opensc-debuginfo-0.22.0-150400.3.17.1
* SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64)
* opensc-debugsource-0.22.0-150400.3.17.1
* opensc-0.22.0-150400.3.17.1
* opensc-debuginfo-0.22.0-150400.3.17.1
* SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64)
* opensc-debugsource-0.22.0-150400.3.17.1
* opensc-0.22.0-150400.3.17.1
* opensc-debuginfo-0.22.0-150400.3.17.1
## References:
* https://www.suse.com/security/cve/CVE-2025-49010.html
* https://www.suse.com/security/cve/CVE-2025-66037.html
* https://www.suse.com/security/cve/CVE-2025-66038.html
* https://www.suse.com/security/cve/CVE-2025-66215.html
* https://www.suse.com/security/cve/CVE-2026-10275.html
* https://www.suse.com/security/cve/CVE-2026-40528.html
* https://bugzilla.suse.com/show_bug.cgi?id=1261214
* https://bugzilla.suse.com/show_bug.cgi?id=1261218
* https://bugzilla.suse.com/show_bug.cgi?id=1261219
* https://bugzilla.suse.com/show_bug.cgi?id=1261220
* https://bugzilla.suse.com/show_bug.cgi?id=1266963
* https://bugzilla.suse.com/show_bug.cgi?id=1267246
SUSE-SU-2026:2658-1: important: Security update for the Linux Kernel
# Security update for the Linux Kernel
Announcement ID: SUSE-SU-2026:2658-1
Release Date: 2026-06-26T13:07:34Z
Rating: important
References:
* bsc#1247954
* bsc#1255416
* bsc#1258538
* bsc#1260531
* bsc#1261700
* bsc#1262663
* bsc#1262993
* bsc#1263769
* bsc#1263879
* bsc#1263880
* bsc#1264076
* bsc#1264093
* bsc#1264116
* bsc#1264470
* bsc#1264610
* bsc#1265116
* bsc#1265211
* bsc#1265960
* bsc#1266214
* bsc#1266290
* bsc#1266810
* bsc#1266969
* bsc#1267205
* bsc#1267214
* bsc#1267220
* bsc#1267361
* bsc#1267369
* bsc#1267387
* bsc#1267621
* bsc#1267640
* bsc#1267651
* bsc#1267652
* bsc#1267697
Cross-References:
* CVE-2025-10263
* CVE-2025-68324
* CVE-2026-23392
* CVE-2026-31405
* CVE-2026-31473
* CVE-2026-31500
* CVE-2026-31613
* CVE-2026-31697
* CVE-2026-31698
* CVE-2026-31699
* CVE-2026-31758
* CVE-2026-31759
* CVE-2026-43077
* CVE-2026-43198
* CVE-2026-43366
* CVE-2026-43503
* CVE-2026-45886
* CVE-2026-45970
* CVE-2026-45984
* CVE-2026-46021
* CVE-2026-46037
* CVE-2026-46113
* CVE-2026-46116
* CVE-2026-46120
* CVE-2026-46123
* CVE-2026-46150
* CVE-2026-46159
* CVE-2026-46227
* CVE-2026-46273
CVSS scores:
* CVE-2025-10263 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
* CVE-2025-68324 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23392 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-23392 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-23392 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31405 ( SUSE ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31405 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-31405 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31473 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31473 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31473 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31500 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31500 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31500 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31613 ( SUSE ): 6.9
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31613 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
* CVE-2026-31613 ( NVD ): 8.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H
* CVE-2026-31697 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31697 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
* CVE-2026-31698 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31698 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
* CVE-2026-31699 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31699 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
* CVE-2026-31758 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31758 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31758 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31759 ( SUSE ): 6.9
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31759 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
* CVE-2026-31759 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43077 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-43077 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43077 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-43198 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-43198 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43198 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43366 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-43366 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43366 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43503 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-43503 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
* CVE-2026-43503 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
* CVE-2026-45886 ( SUSE ): 8.4
CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-45886 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-45886 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-45970 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-45970 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-45970 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-45984 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-45984 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-45984 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-46021 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-46021 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-46021 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-46037 ( SUSE ): 8.8
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-46037 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
* CVE-2026-46037 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
* CVE-2026-46113 ( SUSE ): 9.3
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
* CVE-2026-46113 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
* CVE-2026-46113 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
* CVE-2026-46116 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-46116 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-46116 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-46120 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
* CVE-2026-46120 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-46123 ( SUSE ): 6.9
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-46123 ( SUSE ): 7.7 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
* CVE-2026-46123 ( NVD ): 7.7 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
* CVE-2026-46150 ( SUSE ): 8.4
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
* CVE-2026-46150 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
* CVE-2026-46150 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
* CVE-2026-46159 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-46159 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-46227 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-46227 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-46227 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-46273 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-46273 ( NVD ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
Affected Products:
* openSUSE Leap 15.5
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
* SUSE Linux Enterprise Live Patching 15-SP5
* SUSE Linux Enterprise Micro 5.5
* SUSE Linux Enterprise Real Time 15 SP5
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server 15 SP5 LTSS
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
An update that solves 29 vulnerabilities and has four security fixes can now be
installed.
## Description:
The SUSE Linux Enterprise 15 SP5 kernel was updated to fix various security
issues
The following security issues were fixed:
* CVE-2025-10263: arm64: errata: Mitigate TLBI errata on various Arm CPUs
(bsc#1266290).
* CVE-2025-68324: scsi: imm: Fix use-after-free bug caused by unfinished
delayed work (bsc#1255416).
* CVE-2026-23392: netfilter: nf_tables: release flowtable after rcu grace
period on error (bsc#1260531).
* CVE-2026-31405: media: dvb-net: fix OOB access in ULE extension header
tables (bsc#1261700).
* CVE-2026-31473: media: mc, v4l2: serialize REINIT and REQBUFS with
req_queue_mutex (bsc#1262663).
* CVE-2026-31500: Bluetooth: btintel: serialize btintel_hw_error() with
hci_req_sync_lock (bsc#1262993).
* CVE-2026-31613: smb: client: fix OOB reads parsing symlink error response
(bsc#1263769).
* CVE-2026-31697: crypto: ccp: Don't attempt to copy ID to userspace if PSP
command failed (bsc#1264116).
* CVE-2026-31698: crypto: ccp: Don't attempt to copy PDH cert to userspace if
PSP command failed (bsc#1263880).
* CVE-2026-31699: crypto: ccp: Don't attempt to copy CSR to userspace if PSP
command failed (bsc#1263879).
* CVE-2026-31758: usb: usbtmc: Flush anchored URBs in usbtmc_release
(bsc#1264093).
* CVE-2026-31759: usb: ulpi: fix double free in ulpi_register_interface()
error path (bsc#1264076).
* CVE-2026-43077: crypto: algif_aead - Fix minimum RX size check for
decryption (bsc#1264470).
* CVE-2026-43198: tcp: fix potential race in tcp_v6_syn_recv_sock()
(bsc#1264610).
* CVE-2026-43366: io_uring/kbuf: check if target buffer list is still legacy
on recycle (bsc#1265116).
* CVE-2026-45886: bpf: Fix bpf_xdp_store_bytes proto for read-only arg
(bsc#1266810).
* CVE-2026-45970: bonding: alb: fix UAF in rlb_arp_recv during bond up/down
(bsc#1267205).
* CVE-2026-45984: gfs2: Move the inode glock locking to
gfs2_file_buffered_write (bsc#1267214).
* CVE-2026-46021: thermal: core: Fix thermal zone governor cleanup issues
(bsc#1267220).
* CVE-2026-46037: ipv4: icmp: validate reply type before using icmp_pointers
(bsc#1267361).
* CVE-2026-46113: KVM: x86/mmu: Add helper to convert SPTE value to its shadow
page (bsc#1266969).
* CVE-2026-46116: xfrm: defensively unhash xfrm_state lists in
__xfrm_state_delete (bsc#1267369).
* CVE-2026-46120: ip6_gre: Use cached t->net in ip6erspan_changelink()
(bsc#1267640).
* CVE-2026-46123: Bluetooth: virtio_bt: clamp rx length before skb_put
(bsc#1267621).
* CVE-2026-46150: fanotify: fix false positive on permission events
(bsc#1267387).
* CVE-2026-46159: btrfs: fix btrfs_ioctl_space_info() slot_count TOCTOU which
can lead to info-leak (bsc#1267652).
* CVE-2026-46227: sctp: revalidate list cursor after sctp_sendmsg_to_asoc() in
SCTP_SENDALL (bsc#1267697).
* CVE-2026-46273: ibmveth: Disable GSO for packets with small MSS (bsc#1265211
bsc#1267651).
The following non security issues were fixed:
* arm64: tlb: Allow XZR argument to TLBI ops (git-fixes).
* arm64: tlb: Optimize ARM64_WORKAROUND_REPEAT_TLBI (git-fixes).
* KVM: x86: Constrain guest-supported xfeatures only at KVM_GET_XSAVE{2}
(bsc#1247954).
* KVM: x86: Remove 'return void' expression for 'void function' (bsc#1247954).
* smb: client: correctly handle ErrorContextData as a flexible array (git-
fixes).
* x86/fpu: Allow caller to constrain xfeatures when copying to uabi buffer
(bsc#1247954).
## Special Instructions and Notes:
* Please reboot the system after installing this update.
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* SUSE Linux Enterprise Server 15 SP5 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2658=1
* SUSE Linux Enterprise Micro 5.5
zypper in -t patch SUSE-SLE-Micro-5.5-2026-2658=1
* openSUSE Leap 15.5
zypper in -t patch SUSE-2026-2658=1
* SUSE Linux Enterprise Live Patching 15-SP5
zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2026-2658=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2658=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2658=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2658=1
## Package List:
* SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64)
* kernel-default-devel-5.14.21-150500.55.172.2
* cluster-md-kmp-default-debuginfo-5.14.21-150500.55.172.2
* kernel-syms-5.14.21-150500.55.172.1
* ocfs2-kmp-default-5.14.21-150500.55.172.2
* ocfs2-kmp-default-debuginfo-5.14.21-150500.55.172.2
* gfs2-kmp-default-debuginfo-5.14.21-150500.55.172.2
* kernel-default-debugsource-5.14.21-150500.55.172.2
* gfs2-kmp-default-5.14.21-150500.55.172.2
* kernel-default-debuginfo-5.14.21-150500.55.172.2
* dlm-kmp-default-5.14.21-150500.55.172.2
* cluster-md-kmp-default-5.14.21-150500.55.172.2
* kernel-default-base-5.14.21-150500.55.172.2.150500.6.81.2
* reiserfs-kmp-default-5.14.21-150500.55.172.2
* reiserfs-kmp-default-debuginfo-5.14.21-150500.55.172.2
* kernel-obs-build-debugsource-5.14.21-150500.55.172.2
* dlm-kmp-default-debuginfo-5.14.21-150500.55.172.2
* kernel-obs-build-5.14.21-150500.55.172.2
* kernel-default-devel-debuginfo-5.14.21-150500.55.172.2
* SUSE Linux Enterprise Server for SAP Applications 15 SP5 (nosrc ppc64le
x86_64)
* kernel-default-5.14.21-150500.55.172.2
* SUSE Linux Enterprise Server for SAP Applications 15 SP5 (noarch)
* kernel-devel-5.14.21-150500.55.172.2
* kernel-macros-5.14.21-150500.55.172.2
* kernel-source-5.14.21-150500.55.172.2
* SUSE Linux Enterprise Server for SAP Applications 15 SP5 (noarch nosrc)
* kernel-docs-5.14.21-150500.55.172.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64
x86_64)
* kernel-default-devel-5.14.21-150500.55.172.2
* cluster-md-kmp-default-debuginfo-5.14.21-150500.55.172.2
* kernel-syms-5.14.21-150500.55.172.1
* ocfs2-kmp-default-5.14.21-150500.55.172.2
* ocfs2-kmp-default-debuginfo-5.14.21-150500.55.172.2
* gfs2-kmp-default-debuginfo-5.14.21-150500.55.172.2
* kernel-default-debugsource-5.14.21-150500.55.172.2
* gfs2-kmp-default-5.14.21-150500.55.172.2
* kernel-default-debuginfo-5.14.21-150500.55.172.2
* dlm-kmp-default-5.14.21-150500.55.172.2
* cluster-md-kmp-default-5.14.21-150500.55.172.2
* kernel-default-base-5.14.21-150500.55.172.2.150500.6.81.2
* kernel-obs-build-debugsource-5.14.21-150500.55.172.2
* dlm-kmp-default-debuginfo-5.14.21-150500.55.172.2
* kernel-obs-build-5.14.21-150500.55.172.2
* kernel-default-devel-debuginfo-5.14.21-150500.55.172.2
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64
nosrc)
* kernel-64kb-5.14.21-150500.55.172.2
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64)
* kernel-64kb-debuginfo-5.14.21-150500.55.172.2
* kernel-64kb-debugsource-5.14.21-150500.55.172.2
* kernel-64kb-devel-5.14.21-150500.55.172.2
* kernel-64kb-devel-debuginfo-5.14.21-150500.55.172.2
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 nosrc
x86_64)
* kernel-default-5.14.21-150500.55.172.2
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch)
* kernel-devel-5.14.21-150500.55.172.2
* kernel-macros-5.14.21-150500.55.172.2
* kernel-source-5.14.21-150500.55.172.2
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch nosrc)
* kernel-docs-5.14.21-150500.55.172.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64
x86_64)
* kernel-default-devel-5.14.21-150500.55.172.2
* cluster-md-kmp-default-debuginfo-5.14.21-150500.55.172.2
* kernel-syms-5.14.21-150500.55.172.1
* ocfs2-kmp-default-5.14.21-150500.55.172.2
* ocfs2-kmp-default-debuginfo-5.14.21-150500.55.172.2
* gfs2-kmp-default-debuginfo-5.14.21-150500.55.172.2
* kernel-default-debugsource-5.14.21-150500.55.172.2
* gfs2-kmp-default-5.14.21-150500.55.172.2
* kernel-default-debuginfo-5.14.21-150500.55.172.2
* dlm-kmp-default-5.14.21-150500.55.172.2
* cluster-md-kmp-default-5.14.21-150500.55.172.2
* kernel-default-base-5.14.21-150500.55.172.2.150500.6.81.2
* kernel-obs-build-debugsource-5.14.21-150500.55.172.2
* dlm-kmp-default-debuginfo-5.14.21-150500.55.172.2
* kernel-obs-build-5.14.21-150500.55.172.2
* kernel-default-devel-debuginfo-5.14.21-150500.55.172.2
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 nosrc
x86_64)
* kernel-default-5.14.21-150500.55.172.2
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch)
* kernel-devel-5.14.21-150500.55.172.2
* kernel-macros-5.14.21-150500.55.172.2
* kernel-source-5.14.21-150500.55.172.2
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch nosrc)
* kernel-docs-5.14.21-150500.55.172.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 nosrc)
* kernel-64kb-5.14.21-150500.55.172.2
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64)
* kernel-64kb-debuginfo-5.14.21-150500.55.172.2
* kernel-64kb-debugsource-5.14.21-150500.55.172.2
* kernel-64kb-devel-5.14.21-150500.55.172.2
* kernel-64kb-devel-debuginfo-5.14.21-150500.55.172.2
* SUSE Linux Enterprise Live Patching 15-SP5 (nosrc)
* kernel-default-5.14.21-150500.55.172.2
* SUSE Linux Enterprise Live Patching 15-SP5 (ppc64le s390x x86_64)
* kernel-livepatch-5_14_21-150500_55_172-default-1-150500.11.3.2
* kernel-default-debugsource-5.14.21-150500.55.172.2
* kernel-livepatch-5_14_21-150500_55_172-default-debuginfo-1-150500.11.3.2
* kernel-livepatch-SLE15-SP5_Update_42-debugsource-1-150500.11.3.2
* kernel-default-debuginfo-5.14.21-150500.55.172.2
* kernel-default-livepatch-5.14.21-150500.55.172.2
* kernel-default-livepatch-devel-5.14.21-150500.55.172.2
* openSUSE Leap 15.5 (aarch64)
* dtb-amazon-5.14.21-150500.55.172.1
* dtb-amd-5.14.21-150500.55.172.1
* dtb-broadcom-5.14.21-150500.55.172.1
* dtb-allwinner-5.14.21-150500.55.172.1
* dlm-kmp-64kb-debuginfo-5.14.21-150500.55.172.2
* ocfs2-kmp-64kb-debuginfo-5.14.21-150500.55.172.2
* kernel-64kb-devel-5.14.21-150500.55.172.2
* reiserfs-kmp-64kb-debuginfo-5.14.21-150500.55.172.2
* dtb-rockchip-5.14.21-150500.55.172.1
* dtb-lg-5.14.21-150500.55.172.1
* kernel-64kb-extra-debuginfo-5.14.21-150500.55.172.2
* dtb-apm-5.14.21-150500.55.172.1
* cluster-md-kmp-64kb-debuginfo-5.14.21-150500.55.172.2
* dtb-amlogic-5.14.21-150500.55.172.1
* dtb-xilinx-5.14.21-150500.55.172.1
* dtb-hisilicon-5.14.21-150500.55.172.1
* dtb-altera-5.14.21-150500.55.172.1
* dtb-cavium-5.14.21-150500.55.172.1
* dtb-socionext-5.14.21-150500.55.172.1
* gfs2-kmp-64kb-5.14.21-150500.55.172.2
* gfs2-kmp-64kb-debuginfo-5.14.21-150500.55.172.2
* kernel-64kb-debugsource-5.14.21-150500.55.172.2
* reiserfs-kmp-64kb-5.14.21-150500.55.172.2
* kselftests-kmp-64kb-5.14.21-150500.55.172.2
* dtb-freescale-5.14.21-150500.55.172.1
* dtb-qcom-5.14.21-150500.55.172.1
* dtb-exynos-5.14.21-150500.55.172.1
* kernel-64kb-optional-5.14.21-150500.55.172.2
* dtb-apple-5.14.21-150500.55.172.1
* kselftests-kmp-64kb-debuginfo-5.14.21-150500.55.172.2
* dtb-mediatek-5.14.21-150500.55.172.1
* dtb-sprd-5.14.21-150500.55.172.1
* ocfs2-kmp-64kb-5.14.21-150500.55.172.2
* kernel-64kb-optional-debuginfo-5.14.21-150500.55.172.2
* kernel-64kb-devel-debuginfo-5.14.21-150500.55.172.2
* dtb-arm-5.14.21-150500.55.172.1
* cluster-md-kmp-64kb-5.14.21-150500.55.172.2
* dtb-nvidia-5.14.21-150500.55.172.1
* kernel-64kb-debuginfo-5.14.21-150500.55.172.2
* kernel-64kb-extra-5.14.21-150500.55.172.2
* dlm-kmp-64kb-5.14.21-150500.55.172.2
* dtb-renesas-5.14.21-150500.55.172.1
* dtb-marvell-5.14.21-150500.55.172.1
* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64)
* kernel-default-devel-5.14.21-150500.55.172.2
* cluster-md-kmp-default-debuginfo-5.14.21-150500.55.172.2
* ocfs2-kmp-default-5.14.21-150500.55.172.2
* ocfs2-kmp-default-debuginfo-5.14.21-150500.55.172.2
* gfs2-kmp-default-debuginfo-5.14.21-150500.55.172.2
* kernel-default-optional-5.14.21-150500.55.172.2
* kernel-default-debugsource-5.14.21-150500.55.172.2
* kernel-obs-qa-5.14.21-150500.55.172.1
* kernel-default-livepatch-5.14.21-150500.55.172.2
* kernel-default-extra-5.14.21-150500.55.172.2
* gfs2-kmp-default-5.14.21-150500.55.172.2
* kernel-default-debuginfo-5.14.21-150500.55.172.2
* dlm-kmp-default-5.14.21-150500.55.172.2
* dlm-kmp-default-debuginfo-5.14.21-150500.55.172.2
* kselftests-kmp-default-debuginfo-5.14.21-150500.55.172.2
* cluster-md-kmp-default-5.14.21-150500.55.172.2
* kernel-obs-build-5.14.21-150500.55.172.2
* kernel-syms-5.14.21-150500.55.172.1
* kselftests-kmp-default-5.14.21-150500.55.172.2
* kernel-default-optional-debuginfo-5.14.21-150500.55.172.2
* reiserfs-kmp-default-5.14.21-150500.55.172.2
* reiserfs-kmp-default-debuginfo-5.14.21-150500.55.172.2
* kernel-obs-build-debugsource-5.14.21-150500.55.172.2
* kernel-default-extra-debuginfo-5.14.21-150500.55.172.2
* kernel-default-devel-debuginfo-5.14.21-150500.55.172.2
* openSUSE Leap 15.5 (nosrc)
* dtb-aarch64-5.14.21-150500.55.172.1
* openSUSE Leap 15.5 (aarch64 nosrc)
* kernel-64kb-5.14.21-150500.55.172.2
* openSUSE Leap 15.5 (aarch64 nosrc ppc64le s390x x86_64)
* kernel-default-5.14.21-150500.55.172.2
* openSUSE Leap 15.5 (aarch64 ppc64le x86_64)
* kernel-kvmsmall-devel-debuginfo-5.14.21-150500.55.172.2
* kernel-default-base-5.14.21-150500.55.172.2.150500.6.81.2
* kernel-kvmsmall-debugsource-5.14.21-150500.55.172.2
* kernel-kvmsmall-debuginfo-5.14.21-150500.55.172.2
* kernel-default-base-rebuild-5.14.21-150500.55.172.2.150500.6.81.2
* kernel-kvmsmall-devel-5.14.21-150500.55.172.2
* openSUSE Leap 15.5 (ppc64le s390x x86_64)
* kernel-default-livepatch-devel-5.14.21-150500.55.172.2
* kernel-livepatch-5_14_21-150500_55_172-default-1-150500.11.3.2
* kernel-livepatch-SLE15-SP5_Update_42-debugsource-1-150500.11.3.2
* kernel-livepatch-5_14_21-150500_55_172-default-debuginfo-1-150500.11.3.2
* openSUSE Leap 15.5 (x86_64)
* kernel-default-vdso-5.14.21-150500.55.172.2
* kernel-default-vdso-debuginfo-5.14.21-150500.55.172.2
* kernel-kvmsmall-vdso-debuginfo-5.14.21-150500.55.172.2
* kernel-kvmsmall-vdso-5.14.21-150500.55.172.2
* openSUSE Leap 15.5 (noarch)
* kernel-docs-html-5.14.21-150500.55.172.1
* kernel-source-vanilla-5.14.21-150500.55.172.2
* kernel-devel-5.14.21-150500.55.172.2
* kernel-macros-5.14.21-150500.55.172.2
* kernel-source-5.14.21-150500.55.172.2
* openSUSE Leap 15.5 (noarch nosrc)
* kernel-docs-5.14.21-150500.55.172.1
* openSUSE Leap 15.5 (aarch64 nosrc ppc64le x86_64)
* kernel-kvmsmall-5.14.21-150500.55.172.2
* openSUSE Leap 15.5 (nosrc s390x)
* kernel-zfcpdump-5.14.21-150500.55.172.2
* openSUSE Leap 15.5 (s390x)
* kernel-zfcpdump-debugsource-5.14.21-150500.55.172.2
* kernel-zfcpdump-debuginfo-5.14.21-150500.55.172.2
* SUSE Linux Enterprise Micro 5.5 (aarch64 nosrc ppc64le s390x x86_64)
* kernel-default-5.14.21-150500.55.172.2
* SUSE Linux Enterprise Micro 5.5 (aarch64 x86_64)
* kernel-default-base-5.14.21-150500.55.172.2.150500.6.81.2
* SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64)
* kernel-default-debuginfo-5.14.21-150500.55.172.2
* kernel-default-debugsource-5.14.21-150500.55.172.2
* SUSE Linux Enterprise Micro 5.5 (noarch)
* kernel-macros-5.14.21-150500.55.172.2
* kernel-source-5.14.21-150500.55.172.2
* SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64)
* kernel-default-devel-5.14.21-150500.55.172.2
* cluster-md-kmp-default-debuginfo-5.14.21-150500.55.172.2
* kernel-syms-5.14.21-150500.55.172.1
* ocfs2-kmp-default-5.14.21-150500.55.172.2
* ocfs2-kmp-default-debuginfo-5.14.21-150500.55.172.2
* gfs2-kmp-default-debuginfo-5.14.21-150500.55.172.2
* kernel-default-debugsource-5.14.21-150500.55.172.2
* gfs2-kmp-default-5.14.21-150500.55.172.2
* kernel-default-debuginfo-5.14.21-150500.55.172.2
* dlm-kmp-default-5.14.21-150500.55.172.2
* cluster-md-kmp-default-5.14.21-150500.55.172.2
* reiserfs-kmp-default-5.14.21-150500.55.172.2
* reiserfs-kmp-default-debuginfo-5.14.21-150500.55.172.2
* kernel-obs-build-debugsource-5.14.21-150500.55.172.2
* dlm-kmp-default-debuginfo-5.14.21-150500.55.172.2
* kernel-obs-build-5.14.21-150500.55.172.2
* kernel-default-devel-debuginfo-5.14.21-150500.55.172.2
* SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 nosrc ppc64le s390x
x86_64)
* kernel-default-5.14.21-150500.55.172.2
* SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le x86_64)
* kernel-default-base-5.14.21-150500.55.172.2.150500.6.81.2
* SUSE Linux Enterprise Server 15 SP5 LTSS (noarch)
* kernel-devel-5.14.21-150500.55.172.2
* kernel-macros-5.14.21-150500.55.172.2
* kernel-source-5.14.21-150500.55.172.2
* SUSE Linux Enterprise Server 15 SP5 LTSS (noarch nosrc)
* kernel-docs-5.14.21-150500.55.172.1
* SUSE Linux Enterprise Server 15 SP5 LTSS (nosrc s390x)
* kernel-zfcpdump-5.14.21-150500.55.172.2
* SUSE Linux Enterprise Server 15 SP5 LTSS (s390x)
* kernel-zfcpdump-debugsource-5.14.21-150500.55.172.2
* kernel-zfcpdump-debuginfo-5.14.21-150500.55.172.2
* SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 nosrc)
* kernel-64kb-5.14.21-150500.55.172.2
* SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64)
* kernel-64kb-debuginfo-5.14.21-150500.55.172.2
* kernel-64kb-debugsource-5.14.21-150500.55.172.2
* kernel-64kb-devel-5.14.21-150500.55.172.2
* kernel-64kb-devel-debuginfo-5.14.21-150500.55.172.2
## References:
* https://www.suse.com/security/cve/CVE-2025-10263.html
* https://www.suse.com/security/cve/CVE-2025-68324.html
* https://www.suse.com/security/cve/CVE-2026-23392.html
* https://www.suse.com/security/cve/CVE-2026-31405.html
* https://www.suse.com/security/cve/CVE-2026-31473.html
* https://www.suse.com/security/cve/CVE-2026-31500.html
* https://www.suse.com/security/cve/CVE-2026-31613.html
* https://www.suse.com/security/cve/CVE-2026-31697.html
* https://www.suse.com/security/cve/CVE-2026-31698.html
* https://www.suse.com/security/cve/CVE-2026-31699.html
* https://www.suse.com/security/cve/CVE-2026-31758.html
* https://www.suse.com/security/cve/CVE-2026-31759.html
* https://www.suse.com/security/cve/CVE-2026-43077.html
* https://www.suse.com/security/cve/CVE-2026-43198.html
* https://www.suse.com/security/cve/CVE-2026-43366.html
* https://www.suse.com/security/cve/CVE-2026-43503.html
* https://www.suse.com/security/cve/CVE-2026-45886.html
* https://www.suse.com/security/cve/CVE-2026-45970.html
* https://www.suse.com/security/cve/CVE-2026-45984.html
* https://www.suse.com/security/cve/CVE-2026-46021.html
* https://www.suse.com/security/cve/CVE-2026-46037.html
* https://www.suse.com/security/cve/CVE-2026-46113.html
* https://www.suse.com/security/cve/CVE-2026-46116.html
* https://www.suse.com/security/cve/CVE-2026-46120.html
* https://www.suse.com/security/cve/CVE-2026-46123.html
* https://www.suse.com/security/cve/CVE-2026-46150.html
* https://www.suse.com/security/cve/CVE-2026-46159.html
* https://www.suse.com/security/cve/CVE-2026-46227.html
* https://www.suse.com/security/cve/CVE-2026-46273.html
* https://bugzilla.suse.com/show_bug.cgi?id=1247954
* https://bugzilla.suse.com/show_bug.cgi?id=1255416
* https://bugzilla.suse.com/show_bug.cgi?id=1258538
* https://bugzilla.suse.com/show_bug.cgi?id=1260531
* https://bugzilla.suse.com/show_bug.cgi?id=1261700
* https://bugzilla.suse.com/show_bug.cgi?id=1262663
* https://bugzilla.suse.com/show_bug.cgi?id=1262993
* https://bugzilla.suse.com/show_bug.cgi?id=1263769
* https://bugzilla.suse.com/show_bug.cgi?id=1263879
* https://bugzilla.suse.com/show_bug.cgi?id=1263880
* https://bugzilla.suse.com/show_bug.cgi?id=1264076
* https://bugzilla.suse.com/show_bug.cgi?id=1264093
* https://bugzilla.suse.com/show_bug.cgi?id=1264116
* https://bugzilla.suse.com/show_bug.cgi?id=1264470
* https://bugzilla.suse.com/show_bug.cgi?id=1264610
* https://bugzilla.suse.com/show_bug.cgi?id=1265116
* https://bugzilla.suse.com/show_bug.cgi?id=1265211
* https://bugzilla.suse.com/show_bug.cgi?id=1265960
* https://bugzilla.suse.com/show_bug.cgi?id=1266214
* https://bugzilla.suse.com/show_bug.cgi?id=1266290
* https://bugzilla.suse.com/show_bug.cgi?id=1266810
* https://bugzilla.suse.com/show_bug.cgi?id=1266969
* https://bugzilla.suse.com/show_bug.cgi?id=1267205
* https://bugzilla.suse.com/show_bug.cgi?id=1267214
* https://bugzilla.suse.com/show_bug.cgi?id=1267220
* https://bugzilla.suse.com/show_bug.cgi?id=1267361
* https://bugzilla.suse.com/show_bug.cgi?id=1267369
* https://bugzilla.suse.com/show_bug.cgi?id=1267387
* https://bugzilla.suse.com/show_bug.cgi?id=1267621
* https://bugzilla.suse.com/show_bug.cgi?id=1267640
* https://bugzilla.suse.com/show_bug.cgi?id=1267651
* https://bugzilla.suse.com/show_bug.cgi?id=1267652
* https://bugzilla.suse.com/show_bug.cgi?id=1267697
