SUSE-SU-2026:2316-1: important: Security update for 389-ds
SUSE-SU-2026:2314-1: important: Security update for libsoup
SUSE-SU-2026:2315-1: important: Security update for kubernetes1.23
SUSE-SU-2026:2318-1: important: Security update for python-Django
SUSE-SU-2026:2322-1: important: Security update for kubernetes1.24
SUSE-SU-2026:2328-1: important: Security update for xen
SUSE-SU-2026:2329-1: important: Security update for xen
SUSE-SU-2026:2332-1: important: Security update for the Linux Kernel
SUSE-SU-2026:2335-1: important: Security update for libyang
SUSE-SU-2026:2333-1: important: Security update for glibc
openSUSE-SU-2026:10979-1: moderate: agama-web-ui-21+360.16caae772-44.1 on GA media
openSUSE-SU-2026:10976-1: moderate: steampipe-2.4.4-1.1 on GA media
openSUSE-SU-2026:10974-1: moderate: python311-pypdf-6.13.0-1.1 on GA media
openSUSE-SU-2026:10970-1: moderate: libpodofo-devel-1.1.0-1.1 on GA media
openSUSE-SU-2026:10975-1: moderate: rclone-1.74.3-1.1 on GA media
SUSE-SU-2026:2339-1: important: Security update for kubernetes1.27
SUSE-SU-2026:2340-1: important: Security update for kubernetes1.23
SUSE-SU-2026:2342-1: important: Security update for kubernetes
SUSE-SU-2026:2345-1: important: Security update for kubernetes1.25
SUSE-SU-2026:2343-1: important: Security update for kubernetes1.24
SUSE-SU-2026:2353-1: important: Security update for wicked
SUSE-SU-2026:2344-1: important: Security update for kubernetes1.28
SUSE-SU-2026:2354-1: important: Security update for wicked
SUSE-SU-2026:2355-1: moderate: Security update for openCryptoki
SUSE-SU-2026:2316-1: important: Security update for 389-ds
# Security update for 389-ds
Announcement ID: SUSE-SU-2026:2316-1
Release Date: 2026-06-09T12:52:23Z
Rating: important
References:
* bsc#1265898
Cross-References:
* CVE-2026-9064
CVSS scores:
* CVE-2026-9064 ( SUSE ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-9064 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-9064 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products:
* openSUSE Leap 15.4
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
An update that solves one vulnerability can now be installed.
## Description:
This update for 389-ds fixes the following issue
* CVE-2026-9064: unbounded LDAP controls count in
`get_ldapmessage_controls_ext()` can lead to amplified CPU time and heap
allocation and a denial of service (bsc#1265898).
Changes for 389-ds:
* Update to version 2.0.20~git90.9f70d434e.
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.4
zypper in -t patch SUSE-2026-2316=1
* SUSE Linux Enterprise Server 15 SP4 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2316=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2316=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2316=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2316=1
## Package List:
* openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64)
* 389-ds-snmp-debuginfo-2.0.20~git90.9f70d434e-150400.3.51.1
* 389-ds-debugsource-2.0.20~git90.9f70d434e-150400.3.51.1
* 389-ds-snmp-2.0.20~git90.9f70d434e-150400.3.51.1
* libsvrcore0-debuginfo-2.0.20~git90.9f70d434e-150400.3.51.1
* 389-ds-debuginfo-2.0.20~git90.9f70d434e-150400.3.51.1
* libsvrcore0-2.0.20~git90.9f70d434e-150400.3.51.1
* 389-ds-2.0.20~git90.9f70d434e-150400.3.51.1
* lib389-2.0.20~git90.9f70d434e-150400.3.51.1
* 389-ds-devel-2.0.20~git90.9f70d434e-150400.3.51.1
* SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64)
* 389-ds-debugsource-2.0.20~git90.9f70d434e-150400.3.51.1
* libsvrcore0-debuginfo-2.0.20~git90.9f70d434e-150400.3.51.1
* 389-ds-debuginfo-2.0.20~git90.9f70d434e-150400.3.51.1
* libsvrcore0-2.0.20~git90.9f70d434e-150400.3.51.1
* 389-ds-2.0.20~git90.9f70d434e-150400.3.51.1
* lib389-2.0.20~git90.9f70d434e-150400.3.51.1
* 389-ds-devel-2.0.20~git90.9f70d434e-150400.3.51.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64)
* 389-ds-debugsource-2.0.20~git90.9f70d434e-150400.3.51.1
* libsvrcore0-debuginfo-2.0.20~git90.9f70d434e-150400.3.51.1
* 389-ds-debuginfo-2.0.20~git90.9f70d434e-150400.3.51.1
* libsvrcore0-2.0.20~git90.9f70d434e-150400.3.51.1
* 389-ds-2.0.20~git90.9f70d434e-150400.3.51.1
* lib389-2.0.20~git90.9f70d434e-150400.3.51.1
* 389-ds-devel-2.0.20~git90.9f70d434e-150400.3.51.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64
x86_64)
* 389-ds-debugsource-2.0.20~git90.9f70d434e-150400.3.51.1
* libsvrcore0-debuginfo-2.0.20~git90.9f70d434e-150400.3.51.1
* 389-ds-debuginfo-2.0.20~git90.9f70d434e-150400.3.51.1
* libsvrcore0-2.0.20~git90.9f70d434e-150400.3.51.1
* 389-ds-2.0.20~git90.9f70d434e-150400.3.51.1
* lib389-2.0.20~git90.9f70d434e-150400.3.51.1
* 389-ds-devel-2.0.20~git90.9f70d434e-150400.3.51.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64
x86_64)
* 389-ds-debugsource-2.0.20~git90.9f70d434e-150400.3.51.1
* libsvrcore0-debuginfo-2.0.20~git90.9f70d434e-150400.3.51.1
* 389-ds-debuginfo-2.0.20~git90.9f70d434e-150400.3.51.1
* libsvrcore0-2.0.20~git90.9f70d434e-150400.3.51.1
* 389-ds-2.0.20~git90.9f70d434e-150400.3.51.1
* lib389-2.0.20~git90.9f70d434e-150400.3.51.1
* 389-ds-devel-2.0.20~git90.9f70d434e-150400.3.51.1
## References:
* https://www.suse.com/security/cve/CVE-2026-9064.html
* https://bugzilla.suse.com/show_bug.cgi?id=1265898
SUSE-SU-2026:2314-1: important: Security update for libsoup
# Security update for libsoup
Announcement ID: SUSE-SU-2026:2314-1
Release Date: 2026-06-09T12:51:31Z
Rating: important
References:
* bsc#1257649
* bsc#1259767
Cross-References:
* CVE-2026-1801
* CVE-2026-4271
CVSS scores:
* CVE-2026-1801 ( SUSE ): 6.9
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
* CVE-2026-1801 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
* CVE-2026-1801 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
* CVE-2026-1801 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
* CVE-2026-4271 ( SUSE ): 8.8
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N
* CVE-2026-4271 ( SUSE ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
* CVE-2026-4271 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-4271 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Affected Products:
* Basesystem Module 15-SP7
* openSUSE Leap 15.6
* SUSE Linux Enterprise Desktop 15 SP7
* SUSE Linux Enterprise Real Time 15 SP7
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server 15 SP6 LTSS
* SUSE Linux Enterprise Server 15 SP7
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
* SUSE Linux Enterprise Server for SAP Applications 15 SP7
An update that solves two vulnerabilities can now be installed.
## Description:
This update for libsoup fixes the following issues
* CVE-2026-1801: HTTP Request Smuggling in
soup_filter_input_stream_read_line() (bsc#1257649).
* CVE-2026-4271: use-after-free in the HTTP/2 server when user signal handlers
disconnect connections during callback execution (bsc#1259767).
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.6
zypper in -t patch SUSE-2026-2314=1
* Basesystem Module 15-SP7
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-2314=1
* SUSE Linux Enterprise Server 15 SP6 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2314=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2314=1
## Package List:
* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586)
* libsoup-3_0-0-3.4.4-150600.3.47.1
* libsoup-devel-3.4.4-150600.3.47.1
* libsoup-3_0-0-debuginfo-3.4.4-150600.3.47.1
* libsoup-debugsource-3.4.4-150600.3.47.1
* typelib-1_0-Soup-3_0-3.4.4-150600.3.47.1
* openSUSE Leap 15.6 (aarch64_ilp32)
* libsoup-3_0-0-64bit-debuginfo-3.4.4-150600.3.47.1
* libsoup-3_0-0-64bit-3.4.4-150600.3.47.1
* libsoup-devel-64bit-3.4.4-150600.3.47.1
* openSUSE Leap 15.6 (x86_64)
* libsoup-3_0-0-32bit-3.4.4-150600.3.47.1
* libsoup-devel-32bit-3.4.4-150600.3.47.1
* libsoup-3_0-0-32bit-debuginfo-3.4.4-150600.3.47.1
* openSUSE Leap 15.6 (noarch)
* libsoup-lang-3.4.4-150600.3.47.1
* Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64)
* libsoup-3_0-0-3.4.4-150600.3.47.1
* libsoup-devel-3.4.4-150600.3.47.1
* libsoup-3_0-0-debuginfo-3.4.4-150600.3.47.1
* libsoup-debugsource-3.4.4-150600.3.47.1
* typelib-1_0-Soup-3_0-3.4.4-150600.3.47.1
* Basesystem Module 15-SP7 (noarch)
* libsoup-lang-3.4.4-150600.3.47.1
* SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64)
* libsoup-3_0-0-3.4.4-150600.3.47.1
* libsoup-devel-3.4.4-150600.3.47.1
* libsoup-3_0-0-debuginfo-3.4.4-150600.3.47.1
* libsoup-debugsource-3.4.4-150600.3.47.1
* typelib-1_0-Soup-3_0-3.4.4-150600.3.47.1
* SUSE Linux Enterprise Server 15 SP6 LTSS (noarch)
* libsoup-lang-3.4.4-150600.3.47.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64)
* libsoup-3_0-0-3.4.4-150600.3.47.1
* libsoup-devel-3.4.4-150600.3.47.1
* libsoup-3_0-0-debuginfo-3.4.4-150600.3.47.1
* libsoup-debugsource-3.4.4-150600.3.47.1
* typelib-1_0-Soup-3_0-3.4.4-150600.3.47.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP6 (noarch)
* libsoup-lang-3.4.4-150600.3.47.1
## References:
* https://www.suse.com/security/cve/CVE-2026-1801.html
* https://www.suse.com/security/cve/CVE-2026-4271.html
* https://bugzilla.suse.com/show_bug.cgi?id=1257649
* https://bugzilla.suse.com/show_bug.cgi?id=1259767
SUSE-SU-2026:2315-1: important: Security update for kubernetes1.23
# Security update for kubernetes1.23
Announcement ID: SUSE-SU-2026:2315-1
Release Date: 2026-06-09T12:51:53Z
Rating: important
References:
* bsc#1251168
* bsc#1262271
* bsc#1265740
Cross-References:
* CVE-2026-33814
* CVE-2026-35469
CVSS scores:
* CVE-2026-33814 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-33814 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-33814 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-35469 ( SUSE ): 7.1
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-35469 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-35469 ( NVD ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Affected Products:
* openSUSE Leap 15.3
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
An update that solves two vulnerabilities and has one security fix can now be
installed.
## Description:
This update for kubernetes1.23 fixes the following issues
* CVE-2026-33814: golang.org/x/net/http2: infinite loop in HTTP/2 transport
when given bad SETTINGS_MAX_FRAME_SIZE (bsc#1265740).
* CVE-2026-35469: github.com/moby/spdystream: memory amplification in SPDY
frame parsing leads to denial of service (bsc#1262271).
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.3
zypper in -t patch SUSE-2026-2315=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2315=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2315=1
* SUSE Linux Enterprise Server 15 SP4 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2315=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2315=1
## Package List:
* openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64)
* kubernetes1.23-kubeadm-1.23.17-150300.7.17.1
* kubernetes1.23-kubelet-common-1.23.17-150300.7.17.1
* kubernetes1.23-controller-manager-1.23.17-150300.7.17.1
* kubernetes1.23-apiserver-1.23.17-150300.7.17.1
* kubernetes1.23-client-common-1.23.17-150300.7.17.1
* kubernetes1.23-scheduler-1.23.17-150300.7.17.1
* kubernetes1.23-proxy-1.23.17-150300.7.17.1
* kubernetes1.23-client-1.23.17-150300.7.17.1
* kubernetes1.23-kubelet-1.23.17-150300.7.17.1
* openSUSE Leap 15.3 (noarch)
* kubernetes1.23-client-fish-completion-1.23.17-150300.7.17.1
* kubernetes1.23-client-bash-completion-1.23.17-150300.7.17.1
* openSUSE Leap 15.3 (ppc64le)
* kubernetes1.23-apiserver-debuginfo-1.23.17-150300.7.17.1
* kubernetes1.23-client-debuginfo-1.23.17-150300.7.17.1
* kubernetes1.23-scheduler-debuginfo-1.23.17-150300.7.17.1
* kubernetes1.23-kubeadm-debuginfo-1.23.17-150300.7.17.1
* kubernetes1.23-proxy-debuginfo-1.23.17-150300.7.17.1
* kubernetes1.23-controller-manager-debuginfo-1.23.17-150300.7.17.1
* kubernetes1.23-kubelet-debuginfo-1.23.17-150300.7.17.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64
x86_64)
* kubernetes1.23-client-1.23.17-150300.7.17.1
* kubernetes1.23-client-common-1.23.17-150300.7.17.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64
x86_64)
* kubernetes1.23-client-1.23.17-150300.7.17.1
* kubernetes1.23-client-common-1.23.17-150300.7.17.1
* SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64)
* kubernetes1.23-client-1.23.17-150300.7.17.1
* kubernetes1.23-client-common-1.23.17-150300.7.17.1
* SUSE Linux Enterprise Server 15 SP4 LTSS (ppc64le)
* kubernetes1.23-client-debuginfo-1.23.17-150300.7.17.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64)
* kubernetes1.23-client-1.23.17-150300.7.17.1
* kubernetes1.23-client-common-1.23.17-150300.7.17.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le)
* kubernetes1.23-client-debuginfo-1.23.17-150300.7.17.1
## References:
* https://www.suse.com/security/cve/CVE-2026-33814.html
* https://www.suse.com/security/cve/CVE-2026-35469.html
* https://bugzilla.suse.com/show_bug.cgi?id=1251168
* https://bugzilla.suse.com/show_bug.cgi?id=1262271
* https://bugzilla.suse.com/show_bug.cgi?id=1265740
SUSE-SU-2026:2318-1: important: Security update for python-Django
# Security update for python-Django
Announcement ID: SUSE-SU-2026:2318-1
Release Date: 2026-06-09T13:22:05Z
Rating: important
References:
* bsc#1267576
* bsc#1267577
* bsc#1267578
* bsc#1267579
* bsc#1267580
Cross-References:
* CVE-2026-35193
* CVE-2026-48587
* CVE-2026-6873
* CVE-2026-7666
* CVE-2026-8404
CVSS scores:
* CVE-2026-35193 ( SUSE ): 8.2
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
* CVE-2026-35193 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
* CVE-2026-35193 ( NVD ): 2.3
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-35193 ( NVD ): 3.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N
* CVE-2026-48587 ( SUSE ): 8.2
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
* CVE-2026-48587 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
* CVE-2026-48587 ( NVD ): 2.3
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-48587 ( NVD ): 3.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N
* CVE-2026-48587 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
* CVE-2026-6873 ( SUSE ): 6.3
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
* CVE-2026-6873 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N
* CVE-2026-6873 ( NVD ): 2.3
CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-6873 ( NVD ): 3.1 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
* CVE-2026-6873 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
* CVE-2026-7666 ( SUSE ): 9.1
CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
* CVE-2026-7666 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
* CVE-2026-7666 ( NVD ): 2.3
CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:P/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-7666 ( NVD ): 3.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N
* CVE-2026-8404 ( SUSE ): 8.2
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
* CVE-2026-8404 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
* CVE-2026-8404 ( NVD ): 2.3
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-8404 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
* CVE-2026-8404 ( NVD ): 3.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N
Affected Products:
* openSUSE Leap 15.6
* SUSE Linux Enterprise Desktop 15 SP7
* SUSE Linux Enterprise Real Time 15 SP7
* SUSE Linux Enterprise Server 15 SP7
* SUSE Linux Enterprise Server for SAP Applications 15 SP7
* SUSE Package Hub 15 15-SP7
An update that solves five vulnerabilities can now be installed.
## Description:
This update for python-Django fixes the following issues
* CVE-2026-6873: signed cookie salt namespace collision in
`django.http.HttpRequest.get_signed_cookie` (bsc#1267578).
* CVE-2026-7666: potential unencrypted email transmission via `STARTTLS` in
the SMTP backend (bsc#1267579).
* CVE-2026-8404: potential exposure of private data via case-sensitive `Cache-
Control` directives in `UpdateCacheMiddleware` (bsc#1267580).
* CVE-2026-35193: potential exposure of private data via missing `Vary:
Authorization` in `UpdateCacheMiddleware` (bsc#1267576).
* CVE-2026-48587: potential exposure of private data via whitespace padding in
`Vary` header (bsc#1267577).
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.6
zypper in -t patch SUSE-2026-2318=1
* SUSE Package Hub 15 15-SP7
zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-2318=1
## Package List:
* openSUSE Leap 15.6 (noarch)
* python311-Django-4.2.11-150600.3.59.1
* SUSE Package Hub 15 15-SP7 (noarch)
* python311-Django-4.2.11-150600.3.59.1
## References:
* https://www.suse.com/security/cve/CVE-2026-35193.html
* https://www.suse.com/security/cve/CVE-2026-48587.html
* https://www.suse.com/security/cve/CVE-2026-6873.html
* https://www.suse.com/security/cve/CVE-2026-7666.html
* https://www.suse.com/security/cve/CVE-2026-8404.html
* https://bugzilla.suse.com/show_bug.cgi?id=1267576
* https://bugzilla.suse.com/show_bug.cgi?id=1267577
* https://bugzilla.suse.com/show_bug.cgi?id=1267578
* https://bugzilla.suse.com/show_bug.cgi?id=1267579
* https://bugzilla.suse.com/show_bug.cgi?id=1267580
SUSE-SU-2026:2322-1: important: Security update for kubernetes1.24
# Security update for kubernetes1.24
Announcement ID: SUSE-SU-2026:2322-1
Release Date: 2026-06-09T14:32:17Z
Rating: important
References:
* bsc#1251168
* bsc#1262271
* bsc#1265740
Cross-References:
* CVE-2026-33814
* CVE-2026-35469
CVSS scores:
* CVE-2026-33814 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-33814 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-33814 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-35469 ( SUSE ): 7.1
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-35469 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-35469 ( NVD ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Affected Products:
* openSUSE Leap 15.4
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
An update that solves two vulnerabilities and has one security fix can now be
installed.
## Description:
This update for kubernetes1.24 fixes the following issues
* CVE-2026-33814: golang.org/x/net/http2: infinite loop in HTTP/2 transport
when given bad SETTINGS_MAX_FRAME_SIZE (bsc#1265740).
* CVE-2026-35469: github.com/moby/spdystream: memory amplification in SPDY
frame parsing leads to denial of service (bsc#1262271).
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.4
zypper in -t patch SUSE-2026-2322=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2322=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2322=1
* SUSE Linux Enterprise Server 15 SP4 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2322=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2322=1
## Package List:
* openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64)
* kubernetes1.24-client-common-1.24.17-150400.9.27.1
* kubernetes1.24-kubeadm-1.24.17-150400.9.27.1
* kubernetes1.24-proxy-1.24.17-150400.9.27.1
* kubernetes1.24-kubelet-1.24.17-150400.9.27.1
* kubernetes1.24-scheduler-1.24.17-150400.9.27.1
* kubernetes1.24-apiserver-1.24.17-150400.9.27.1
* kubernetes1.24-client-1.24.17-150400.9.27.1
* kubernetes1.24-kubelet-common-1.24.17-150400.9.27.1
* kubernetes1.24-controller-manager-1.24.17-150400.9.27.1
* openSUSE Leap 15.4 (noarch)
* kubernetes1.24-client-bash-completion-1.24.17-150400.9.27.1
* kubernetes1.24-client-fish-completion-1.24.17-150400.9.27.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64
x86_64)
* kubernetes1.24-client-common-1.24.17-150400.9.27.1
* kubernetes1.24-client-1.24.17-150400.9.27.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64
x86_64)
* kubernetes1.24-client-common-1.24.17-150400.9.27.1
* kubernetes1.24-client-1.24.17-150400.9.27.1
* SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64)
* kubernetes1.24-client-common-1.24.17-150400.9.27.1
* kubernetes1.24-client-1.24.17-150400.9.27.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64)
* kubernetes1.24-client-common-1.24.17-150400.9.27.1
* kubernetes1.24-client-1.24.17-150400.9.27.1
## References:
* https://www.suse.com/security/cve/CVE-2026-33814.html
* https://www.suse.com/security/cve/CVE-2026-35469.html
* https://bugzilla.suse.com/show_bug.cgi?id=1251168
* https://bugzilla.suse.com/show_bug.cgi?id=1262271
* https://bugzilla.suse.com/show_bug.cgi?id=1265740
SUSE-SU-2026:2328-1: important: Security update for xen
# Security update for xen
Announcement ID: SUSE-SU-2026:2328-1
Release Date: 2026-06-10T07:39:28Z
Rating: important
References:
* bsc#1266952
* bsc#1266953
* bsc#1266955
Cross-References:
* CVE-2026-42487
* CVE-2026-42488
* CVE-2026-42489
* CVE-2026-42490
CVSS scores:
* CVE-2026-42487 ( SUSE ): 8.8
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
* CVE-2026-42487 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
* CVE-2026-42488 ( SUSE ): 8.7
CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
* CVE-2026-42488 ( SUSE ): 7.5 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
* CVE-2026-42489 ( SUSE ): 6.8
CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H
* CVE-2026-42489 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H
* CVE-2026-42490 ( SUSE ): 6.8
CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H
* CVE-2026-42490 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H
Affected Products:
* openSUSE Leap 15.5
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
* SUSE Linux Enterprise Micro 5.5
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server 15 SP5 LTSS
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
An update that solves four vulnerabilities can now be installed.
## Description:
This update for xen fixes the following issues:
* CVE-2026-42487: x86 HVM I/O port list traversal (bsc#1266952).
* CVE-2026-42488: x86: mismatched mapcache metadata (bsc#1266955).
* CVE-2026-42489,CVE-2026-42490: domctl lock open to abuse (bsc#1266953).
## Special Instructions and Notes:
* Please reboot the system after installing this update.
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.5
zypper in -t patch SUSE-2026-2328=1
* SUSE Linux Enterprise Micro 5.5
zypper in -t patch SUSE-SLE-Micro-5.5-2026-2328=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2328=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2328=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2328=1
* SUSE Linux Enterprise Server 15 SP5 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2328=1
## Package List:
* openSUSE Leap 15.5 (aarch64 x86_64 i586)
* xen-tools-domU-4.17.6_12-150500.3.73.1
* xen-libs-debuginfo-4.17.6_12-150500.3.73.1
* xen-tools-domU-debuginfo-4.17.6_12-150500.3.73.1
* xen-debugsource-4.17.6_12-150500.3.73.1
* xen-libs-4.17.6_12-150500.3.73.1
* xen-devel-4.17.6_12-150500.3.73.1
* openSUSE Leap 15.5 (x86_64)
* xen-libs-32bit-4.17.6_12-150500.3.73.1
* xen-libs-32bit-debuginfo-4.17.6_12-150500.3.73.1
* openSUSE Leap 15.5 (aarch64 x86_64)
* xen-4.17.6_12-150500.3.73.1
* xen-tools-debuginfo-4.17.6_12-150500.3.73.1
* xen-doc-html-4.17.6_12-150500.3.73.1
* xen-tools-4.17.6_12-150500.3.73.1
* openSUSE Leap 15.5 (noarch)
* xen-tools-xendomains-wait-disk-4.17.6_12-150500.3.73.1
* openSUSE Leap 15.5 (aarch64_ilp32)
* xen-libs-64bit-debuginfo-4.17.6_12-150500.3.73.1
* xen-libs-64bit-4.17.6_12-150500.3.73.1
* SUSE Linux Enterprise Micro 5.5 (x86_64)
* xen-libs-debuginfo-4.17.6_12-150500.3.73.1
* xen-debugsource-4.17.6_12-150500.3.73.1
* xen-libs-4.17.6_12-150500.3.73.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (x86_64)
* xen-tools-domU-4.17.6_12-150500.3.73.1
* xen-tools-debuginfo-4.17.6_12-150500.3.73.1
* xen-libs-debuginfo-4.17.6_12-150500.3.73.1
* xen-tools-domU-debuginfo-4.17.6_12-150500.3.73.1
* xen-4.17.6_12-150500.3.73.1
* xen-debugsource-4.17.6_12-150500.3.73.1
* xen-libs-4.17.6_12-150500.3.73.1
* xen-tools-4.17.6_12-150500.3.73.1
* xen-devel-4.17.6_12-150500.3.73.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch)
* xen-tools-xendomains-wait-disk-4.17.6_12-150500.3.73.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5 (x86_64)
* xen-tools-domU-4.17.6_12-150500.3.73.1
* xen-tools-debuginfo-4.17.6_12-150500.3.73.1
* xen-libs-debuginfo-4.17.6_12-150500.3.73.1
* xen-tools-domU-debuginfo-4.17.6_12-150500.3.73.1
* xen-4.17.6_12-150500.3.73.1
* xen-debugsource-4.17.6_12-150500.3.73.1
* xen-libs-4.17.6_12-150500.3.73.1
* xen-tools-4.17.6_12-150500.3.73.1
* xen-devel-4.17.6_12-150500.3.73.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5 (noarch)
* xen-tools-xendomains-wait-disk-4.17.6_12-150500.3.73.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (x86_64)
* xen-tools-domU-4.17.6_12-150500.3.73.1
* xen-tools-debuginfo-4.17.6_12-150500.3.73.1
* xen-libs-debuginfo-4.17.6_12-150500.3.73.1
* xen-tools-domU-debuginfo-4.17.6_12-150500.3.73.1
* xen-4.17.6_12-150500.3.73.1
* xen-debugsource-4.17.6_12-150500.3.73.1
* xen-libs-4.17.6_12-150500.3.73.1
* xen-tools-4.17.6_12-150500.3.73.1
* xen-devel-4.17.6_12-150500.3.73.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch)
* xen-tools-xendomains-wait-disk-4.17.6_12-150500.3.73.1
* SUSE Linux Enterprise Server 15 SP5 LTSS (x86_64)
* xen-tools-domU-4.17.6_12-150500.3.73.1
* xen-tools-debuginfo-4.17.6_12-150500.3.73.1
* xen-libs-debuginfo-4.17.6_12-150500.3.73.1
* xen-tools-domU-debuginfo-4.17.6_12-150500.3.73.1
* xen-4.17.6_12-150500.3.73.1
* xen-debugsource-4.17.6_12-150500.3.73.1
* xen-libs-4.17.6_12-150500.3.73.1
* xen-tools-4.17.6_12-150500.3.73.1
* xen-devel-4.17.6_12-150500.3.73.1
* SUSE Linux Enterprise Server 15 SP5 LTSS (noarch)
* xen-tools-xendomains-wait-disk-4.17.6_12-150500.3.73.1
## References:
* https://www.suse.com/security/cve/CVE-2026-42487.html
* https://www.suse.com/security/cve/CVE-2026-42488.html
* https://www.suse.com/security/cve/CVE-2026-42489.html
* https://www.suse.com/security/cve/CVE-2026-42490.html
* https://bugzilla.suse.com/show_bug.cgi?id=1266952
* https://bugzilla.suse.com/show_bug.cgi?id=1266953
* https://bugzilla.suse.com/show_bug.cgi?id=1266955
SUSE-SU-2026:2329-1: important: Security update for xen
# Security update for xen
Announcement ID: SUSE-SU-2026:2329-1
Release Date: 2026-06-10T07:39:36Z
Rating: important
References:
* bsc#1266952
* bsc#1266953
* bsc#1266955
Cross-References:
* CVE-2026-42487
* CVE-2026-42488
* CVE-2026-42489
* CVE-2026-42490
CVSS scores:
* CVE-2026-42487 ( SUSE ): 8.8
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
* CVE-2026-42487 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
* CVE-2026-42488 ( SUSE ): 8.7
CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
* CVE-2026-42488 ( SUSE ): 7.5 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
* CVE-2026-42489 ( SUSE ): 6.8
CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H
* CVE-2026-42489 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H
* CVE-2026-42490 ( SUSE ): 6.8
CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H
* CVE-2026-42490 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H
Affected Products:
* openSUSE Leap 15.6
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server 15 SP6 LTSS
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
An update that solves four vulnerabilities can now be installed.
## Description:
This update for xen fixes the following issues:
* CVE-2026-42487: x86 HVM I/O port list traversal (bsc#1266952).
* CVE-2026-42488: x86: mismatched mapcache metadata (bsc#1266955).
* CVE-2026-42489,CVE-2026-42490: domctl lock open to abuse (bsc#1266953).
## Special Instructions and Notes:
* Please reboot the system after installing this update.
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.6
zypper in -t patch SUSE-2026-2329=1
* SUSE Linux Enterprise Server 15 SP6 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2329=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2329=1
## Package List:
* openSUSE Leap 15.6 (aarch64 x86_64 i586)
* xen-devel-4.18.5_18-150600.3.50.1
* xen-libs-debuginfo-4.18.5_18-150600.3.50.1
* xen-libs-4.18.5_18-150600.3.50.1
* xen-tools-domU-4.18.5_18-150600.3.50.1
* xen-debugsource-4.18.5_18-150600.3.50.1
* xen-tools-domU-debuginfo-4.18.5_18-150600.3.50.1
* openSUSE Leap 15.6 (x86_64)
* xen-libs-32bit-4.18.5_18-150600.3.50.1
* xen-libs-32bit-debuginfo-4.18.5_18-150600.3.50.1
* openSUSE Leap 15.6 (aarch64 x86_64)
* xen-tools-4.18.5_18-150600.3.50.1
* xen-4.18.5_18-150600.3.50.1
* xen-doc-html-4.18.5_18-150600.3.50.1
* xen-tools-debuginfo-4.18.5_18-150600.3.50.1
* openSUSE Leap 15.6 (noarch)
* xen-tools-xendomains-wait-disk-4.18.5_18-150600.3.50.1
* openSUSE Leap 15.6 (aarch64_ilp32)
* xen-libs-64bit-4.18.5_18-150600.3.50.1
* xen-libs-64bit-debuginfo-4.18.5_18-150600.3.50.1
* SUSE Linux Enterprise Server 15 SP6 LTSS (x86_64)
* xen-devel-4.18.5_18-150600.3.50.1
* xen-tools-debuginfo-4.18.5_18-150600.3.50.1
* xen-tools-4.18.5_18-150600.3.50.1
* xen-tools-domU-debuginfo-4.18.5_18-150600.3.50.1
* xen-libs-debuginfo-4.18.5_18-150600.3.50.1
* xen-libs-4.18.5_18-150600.3.50.1
* xen-tools-domU-4.18.5_18-150600.3.50.1
* xen-debugsource-4.18.5_18-150600.3.50.1
* xen-4.18.5_18-150600.3.50.1
* SUSE Linux Enterprise Server 15 SP6 LTSS (noarch)
* xen-tools-xendomains-wait-disk-4.18.5_18-150600.3.50.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP6 (x86_64)
* xen-devel-4.18.5_18-150600.3.50.1
* xen-tools-debuginfo-4.18.5_18-150600.3.50.1
* xen-tools-4.18.5_18-150600.3.50.1
* xen-tools-domU-debuginfo-4.18.5_18-150600.3.50.1
* xen-libs-debuginfo-4.18.5_18-150600.3.50.1
* xen-libs-4.18.5_18-150600.3.50.1
* xen-tools-domU-4.18.5_18-150600.3.50.1
* xen-debugsource-4.18.5_18-150600.3.50.1
* xen-4.18.5_18-150600.3.50.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP6 (noarch)
* xen-tools-xendomains-wait-disk-4.18.5_18-150600.3.50.1
## References:
* https://www.suse.com/security/cve/CVE-2026-42487.html
* https://www.suse.com/security/cve/CVE-2026-42488.html
* https://www.suse.com/security/cve/CVE-2026-42489.html
* https://www.suse.com/security/cve/CVE-2026-42490.html
* https://bugzilla.suse.com/show_bug.cgi?id=1266952
* https://bugzilla.suse.com/show_bug.cgi?id=1266953
* https://bugzilla.suse.com/show_bug.cgi?id=1266955
SUSE-SU-2026:2332-1: important: Security update for the Linux Kernel
# Security update for the Linux Kernel
Announcement ID: SUSE-SU-2026:2332-1
Release Date: 2026-06-10T08:41:19Z
Rating: important
References:
* bsc#1263790
* bsc#1263995
* bsc#1264551
* bsc#1266001
* bsc#1266009
* bsc#1266238
* bsc#1266711
* bsc#1266901
Cross-References:
* CVE-2026-31629
* CVE-2026-43037
* CVE-2026-43206
* CVE-2026-43499
* CVE-2026-43501
* CVE-2026-45852
* CVE-2026-46043
* CVE-2026-46243
CVSS scores:
* CVE-2026-31629 ( SUSE ): 8.7
CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-31629 ( SUSE ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-31629 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43037 ( SUSE ): 7.7
CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-43037 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43037 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43206 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43206 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43499 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-43499 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43499 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-43501 ( SUSE ): 7.1
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N
* CVE-2026-43501 ( SUSE ): 7.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H
* CVE-2026-43501 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-45852 ( SUSE ): 7.3
CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-45852 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-45852 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-46043 ( SUSE ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-46043 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-46043 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
* CVE-2026-46243 ( SUSE ): 8.5
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-46243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-46243 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-46243 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Affected Products:
* openSUSE Leap 15.5
* SUSE Linux Enterprise Micro 5.5
An update that solves eight vulnerabilities can now be installed.
## Description:
The SUSE Linux Enterprise 15 SP5 RT kernel was updated to fix various security
issues
The following security issues were fixed:
* CVE-2026-31629: nfc: llcp: add missing return after LLCP_CLOSED checks
(bsc#1263790).
* CVE-2026-43037: ip6_tunnel: clear skb2->cb in ip4ip6_err() (bsc#1263995).
* CVE-2026-43206: drm/amdkfd: Fix out-of-bounds write in kfd_event_page_set()
(bsc#1264551).
* CVE-2026-43499: rtmutex: Use waiter::task instead of current in
remove_waiter() (bsc#1266001).
* CVE-2026-43501: ipv6: rpl: reserve mac_len headroom when recompressed SRH
grows (bsc#1266009).
* CVE-2026-45852: RDMA/rxe: Fix double free in rxe_srq_from_init
(bsc#1266711).
* CVE-2026-46043: RDMA/rxe: Validate pad and ICRC before payload_size() in
rxe_rcv (bsc#1266901).
* CVE-2026-46243: smb: client: reject userspace cifs.spnego descriptions
(bsc#1266238).
## Special Instructions and Notes:
* Please reboot the system after installing this update.
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.5
zypper in -t patch SUSE-2026-2332=1
* SUSE Linux Enterprise Micro 5.5
zypper in -t patch SUSE-SLE-Micro-5.5-2026-2332=1
## Package List:
* openSUSE Leap 15.5 (x86_64)
* dlm-kmp-rt-debuginfo-5.14.21-150500.13.143.1
* kernel-rt-devel-debuginfo-5.14.21-150500.13.143.1
* kernel-syms-rt-5.14.21-150500.13.143.1
* gfs2-kmp-rt-5.14.21-150500.13.143.1
* kernel-rt-debugsource-5.14.21-150500.13.143.1
* kernel-rt-extra-5.14.21-150500.13.143.1
* kernel-rt-extra-debuginfo-5.14.21-150500.13.143.1
* kernel-rt_debug-vdso-debuginfo-5.14.21-150500.13.143.1
* ocfs2-kmp-rt-5.14.21-150500.13.143.1
* gfs2-kmp-rt-debuginfo-5.14.21-150500.13.143.1
* kernel-rt-livepatch-5.14.21-150500.13.143.1
* kernel-rt_debug-vdso-5.14.21-150500.13.143.1
* kernel-rt-vdso-debuginfo-5.14.21-150500.13.143.1
* kernel-rt-debuginfo-5.14.21-150500.13.143.1
* kernel-rt-devel-5.14.21-150500.13.143.1
* kselftests-kmp-rt-5.14.21-150500.13.143.1
* kernel-rt_debug-debuginfo-5.14.21-150500.13.143.1
* kernel-rt-optional-5.14.21-150500.13.143.1
* dlm-kmp-rt-5.14.21-150500.13.143.1
* kselftests-kmp-rt-debuginfo-5.14.21-150500.13.143.1
* cluster-md-kmp-rt-5.14.21-150500.13.143.1
* cluster-md-kmp-rt-debuginfo-5.14.21-150500.13.143.1
* kernel-rt_debug-devel-5.14.21-150500.13.143.1
* kernel-rt_debug-debugsource-5.14.21-150500.13.143.1
* kernel-rt-optional-debuginfo-5.14.21-150500.13.143.1
* reiserfs-kmp-rt-debuginfo-5.14.21-150500.13.143.1
* ocfs2-kmp-rt-debuginfo-5.14.21-150500.13.143.1
* reiserfs-kmp-rt-5.14.21-150500.13.143.1
* kernel-rt-vdso-5.14.21-150500.13.143.1
* kernel-rt-livepatch-devel-5.14.21-150500.13.143.1
* kernel-rt_debug-devel-debuginfo-5.14.21-150500.13.143.1
* openSUSE Leap 15.5 (nosrc x86_64)
* kernel-rt-5.14.21-150500.13.143.1
* kernel-rt_debug-5.14.21-150500.13.143.1
* openSUSE Leap 15.5 (noarch)
* kernel-source-rt-5.14.21-150500.13.143.1
* kernel-devel-rt-5.14.21-150500.13.143.1
* SUSE Linux Enterprise Micro 5.5 (noarch)
* kernel-source-rt-5.14.21-150500.13.143.1
* kernel-devel-rt-5.14.21-150500.13.143.1
* SUSE Linux Enterprise Micro 5.5 (nosrc x86_64)
* kernel-rt-5.14.21-150500.13.143.1
* SUSE Linux Enterprise Micro 5.5 (x86_64)
* kernel-rt-debuginfo-5.14.21-150500.13.143.1
* kernel-rt-debugsource-5.14.21-150500.13.143.1
## References:
* https://www.suse.com/security/cve/CVE-2026-31629.html
* https://www.suse.com/security/cve/CVE-2026-43037.html
* https://www.suse.com/security/cve/CVE-2026-43206.html
* https://www.suse.com/security/cve/CVE-2026-43499.html
* https://www.suse.com/security/cve/CVE-2026-43501.html
* https://www.suse.com/security/cve/CVE-2026-45852.html
* https://www.suse.com/security/cve/CVE-2026-46043.html
* https://www.suse.com/security/cve/CVE-2026-46243.html
* https://bugzilla.suse.com/show_bug.cgi?id=1263790
* https://bugzilla.suse.com/show_bug.cgi?id=1263995
* https://bugzilla.suse.com/show_bug.cgi?id=1264551
* https://bugzilla.suse.com/show_bug.cgi?id=1266001
* https://bugzilla.suse.com/show_bug.cgi?id=1266009
* https://bugzilla.suse.com/show_bug.cgi?id=1266238
* https://bugzilla.suse.com/show_bug.cgi?id=1266711
* https://bugzilla.suse.com/show_bug.cgi?id=1266901
SUSE-SU-2026:2335-1: important: Security update for libyang
# Security update for libyang
Announcement ID: SUSE-SU-2026:2335-1
Release Date: 2026-06-10T08:43:18Z
Rating: important
References:
* bsc#1265330
* bsc#1266316
Cross-References:
* CVE-2026-41401
* CVE-2026-44673
CVSS scores:
* CVE-2026-41401 ( SUSE ): 9.2
CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-41401 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-41401 ( NVD ): 7.1
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-41401 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-44673 ( SUSE ): 8.8
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N
* CVE-2026-44673 ( SUSE ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
* CVE-2026-44673 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products:
* openSUSE Leap 15.5
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server 15 SP5 LTSS
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server 15 SP6 LTSS
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
An update that solves two vulnerabilities can now be installed.
## Description:
This update for libyang fixes the following issues
* CVE-2026-41401: use-after-free in `lyd_parser_set_data_flags` when
processing crafted YANG XML documents with specific metadata attributes
(bsc#1266316).
* CVE-2026-44673: integer overflow in `lyb_read_string()` of
`src/parser_lyb.c` leads to heap buffer overflow when parsing a maliciously
crafted LYB binary blob (bsc#1265330).
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.5
zypper in -t patch SUSE-2026-2335=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2335=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2335=1
* SUSE Linux Enterprise Server 15 SP5 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2335=1
* SUSE Linux Enterprise Server 15 SP6 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2335=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2335=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2335=1
## Package List:
* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586)
* libyang-debuginfo-2.1.55-150500.3.5.1
* libyang-debugsource-2.1.55-150500.3.5.1
* yang-tools-debuginfo-2.1.55-150500.3.5.1
* libyang2-debuginfo-2.1.55-150500.3.5.1
* yang-tools-2.1.55-150500.3.5.1
* libyang2-2.1.55-150500.3.5.1
* libyang-devel-2.1.55-150500.3.5.1
* openSUSE Leap 15.5 (noarch)
* libyang-doc-2.1.55-150500.3.5.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64
x86_64)
* libyang-debuginfo-2.1.55-150500.3.5.1
* libyang-debugsource-2.1.55-150500.3.5.1
* libyang2-2.1.55-150500.3.5.1
* libyang2-debuginfo-2.1.55-150500.3.5.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64
x86_64)
* libyang-debuginfo-2.1.55-150500.3.5.1
* libyang-debugsource-2.1.55-150500.3.5.1
* libyang2-2.1.55-150500.3.5.1
* libyang2-debuginfo-2.1.55-150500.3.5.1
* SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64)
* libyang-debuginfo-2.1.55-150500.3.5.1
* libyang-debugsource-2.1.55-150500.3.5.1
* libyang2-2.1.55-150500.3.5.1
* libyang2-debuginfo-2.1.55-150500.3.5.1
* SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64)
* libyang-debuginfo-2.1.55-150500.3.5.1
* libyang-debugsource-2.1.55-150500.3.5.1
* libyang2-2.1.55-150500.3.5.1
* libyang2-debuginfo-2.1.55-150500.3.5.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64)
* libyang-debuginfo-2.1.55-150500.3.5.1
* libyang-debugsource-2.1.55-150500.3.5.1
* libyang2-2.1.55-150500.3.5.1
* libyang2-debuginfo-2.1.55-150500.3.5.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64)
* libyang-debuginfo-2.1.55-150500.3.5.1
* libyang-debugsource-2.1.55-150500.3.5.1
* libyang2-2.1.55-150500.3.5.1
* libyang2-debuginfo-2.1.55-150500.3.5.1
## References:
* https://www.suse.com/security/cve/CVE-2026-41401.html
* https://www.suse.com/security/cve/CVE-2026-44673.html
* https://bugzilla.suse.com/show_bug.cgi?id=1265330
* https://bugzilla.suse.com/show_bug.cgi?id=1266316
SUSE-SU-2026:2333-1: important: Security update for glibc
# Security update for glibc
Announcement ID: SUSE-SU-2026:2333-1
Release Date: 2026-06-10T08:42:34Z
Rating: important
References:
* bsc#1261206
* bsc#1262464
* bsc#1262465
Cross-References:
* CVE-2026-4046
* CVE-2026-5450
* CVE-2026-5928
CVSS scores:
* CVE-2026-4046 ( SUSE ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-4046 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-4046 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-5450 ( SUSE ): 5.1
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
* CVE-2026-5450 ( SUSE ): 5.9 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
* CVE-2026-5450 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-5928 ( SUSE ): 5.9
CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-5928 ( SUSE ): 5.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H
* CVE-2026-5928 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products:
* openSUSE Leap 15.3
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
* SUSE Linux Enterprise Micro 5.3
* SUSE Linux Enterprise Micro 5.4
* SUSE Linux Enterprise Micro 5.5
* SUSE Linux Enterprise Micro for Rancher 5.3
* SUSE Linux Enterprise Micro for Rancher 5.4
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server 15 SP5 LTSS
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
An update that solves three vulnerabilities can now be installed.
## Description:
This update for glibc fixes the following issues
* CVE-2026-4046: assertion failure when converting inputs may be used to
remotely crash an application (bsc#1261206).
* CVE-2026-5450: stdio-common: scanf %mc pattern will cause heap overflow when
width > 1024 (bsc#1262465).
* CVE-2026-5928: libio: ungetwc could be used to leak data on special
conditions (bsc#1262464).
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.3
zypper in -t patch SUSE-2026-2333=1
* SUSE Linux Enterprise Micro for Rancher 5.3
zypper in -t patch SUSE-SLE-Micro-5.3-2026-2333=1
* SUSE Linux Enterprise Micro 5.3
zypper in -t patch SUSE-SLE-Micro-5.3-2026-2333=1
* SUSE Linux Enterprise Micro for Rancher 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2026-2333=1
* SUSE Linux Enterprise Micro 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2026-2333=1
* SUSE Linux Enterprise Micro 5.5
zypper in -t patch SUSE-SLE-Micro-5.5-2026-2333=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2333=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2333=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2333=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2333=1
* SUSE Linux Enterprise Server 15 SP4 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2333=1
* SUSE Linux Enterprise Server 15 SP5 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2333=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2333=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2333=1
## Package List:
* openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 i586 i686)
* glibc-debuginfo-2.31-150300.101.1
* glibc-devel-2.31-150300.101.1
* glibc-locale-base-2.31-150300.101.1
* glibc-locale-2.31-150300.101.1
* glibc-profile-2.31-150300.101.1
* glibc-devel-debuginfo-2.31-150300.101.1
* glibc-debugsource-2.31-150300.101.1
* glibc-devel-static-2.31-150300.101.1
* glibc-2.31-150300.101.1
* glibc-locale-base-debuginfo-2.31-150300.101.1
* openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 i586)
* glibc-utils-2.31-150300.101.1
* glibc-utils-src-debugsource-2.31-150300.101.1
* nscd-2.31-150300.101.1
* nscd-debuginfo-2.31-150300.101.1
* glibc-extra-debuginfo-2.31-150300.101.1
* glibc-utils-debuginfo-2.31-150300.101.1
* glibc-extra-2.31-150300.101.1
* openSUSE Leap 15.3 (noarch)
* glibc-html-2.31-150300.101.1
* glibc-info-2.31-150300.101.1
* glibc-lang-2.31-150300.101.1
* glibc-i18ndata-2.31-150300.101.1
* openSUSE Leap 15.3 (x86_64)
* glibc-devel-static-32bit-2.31-150300.101.1
* glibc-profile-32bit-2.31-150300.101.1
* glibc-devel-32bit-debuginfo-2.31-150300.101.1
* glibc-utils-32bit-debuginfo-2.31-150300.101.1
* glibc-utils-32bit-2.31-150300.101.1
* glibc-32bit-2.31-150300.101.1
* glibc-devel-32bit-2.31-150300.101.1
* glibc-32bit-debuginfo-2.31-150300.101.1
* glibc-locale-base-32bit-debuginfo-2.31-150300.101.1
* glibc-locale-base-32bit-2.31-150300.101.1
* openSUSE Leap 15.3 (aarch64_ilp32)
* glibc-64bit-debuginfo-2.31-150300.101.1
* glibc-64bit-2.31-150300.101.1
* glibc-devel-64bit-debuginfo-2.31-150300.101.1
* glibc-devel-64bit-2.31-150300.101.1
* glibc-locale-base-64bit-debuginfo-2.31-150300.101.1
* glibc-utils-64bit-debuginfo-2.31-150300.101.1
* glibc-profile-64bit-2.31-150300.101.1
* glibc-devel-static-64bit-2.31-150300.101.1
* glibc-utils-64bit-2.31-150300.101.1
* glibc-locale-base-64bit-2.31-150300.101.1
* SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64)
* glibc-debuginfo-2.31-150300.101.1
* glibc-devel-2.31-150300.101.1
* glibc-locale-base-2.31-150300.101.1
* glibc-locale-2.31-150300.101.1
* glibc-devel-debuginfo-2.31-150300.101.1
* glibc-debugsource-2.31-150300.101.1
* glibc-2.31-150300.101.1
* glibc-locale-base-debuginfo-2.31-150300.101.1
* SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64)
* glibc-debuginfo-2.31-150300.101.1
* glibc-devel-2.31-150300.101.1
* glibc-locale-base-2.31-150300.101.1
* glibc-locale-2.31-150300.101.1
* glibc-devel-debuginfo-2.31-150300.101.1
* glibc-debugsource-2.31-150300.101.1
* glibc-2.31-150300.101.1
* glibc-locale-base-debuginfo-2.31-150300.101.1
* SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64)
* glibc-debuginfo-2.31-150300.101.1
* glibc-devel-2.31-150300.101.1
* glibc-locale-base-2.31-150300.101.1
* glibc-locale-2.31-150300.101.1
* glibc-devel-debuginfo-2.31-150300.101.1
* glibc-debugsource-2.31-150300.101.1
* glibc-2.31-150300.101.1
* glibc-locale-base-debuginfo-2.31-150300.101.1
* SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64)
* glibc-debuginfo-2.31-150300.101.1
* glibc-devel-2.31-150300.101.1
* glibc-locale-base-2.31-150300.101.1
* glibc-locale-2.31-150300.101.1
* glibc-devel-debuginfo-2.31-150300.101.1
* glibc-debugsource-2.31-150300.101.1
* glibc-2.31-150300.101.1
* glibc-locale-base-debuginfo-2.31-150300.101.1
* SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64)
* glibc-debuginfo-2.31-150300.101.1
* glibc-devel-2.31-150300.101.1
* glibc-locale-base-2.31-150300.101.1
* glibc-locale-2.31-150300.101.1
* glibc-devel-debuginfo-2.31-150300.101.1
* glibc-debugsource-2.31-150300.101.1
* glibc-2.31-150300.101.1
* glibc-locale-base-debuginfo-2.31-150300.101.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64
x86_64)
* glibc-utils-2.31-150300.101.1
* glibc-debuginfo-2.31-150300.101.1
* glibc-devel-2.31-150300.101.1
* glibc-utils-src-debugsource-2.31-150300.101.1
* glibc-locale-base-2.31-150300.101.1
* nscd-2.31-150300.101.1
* glibc-utils-debuginfo-2.31-150300.101.1
* glibc-locale-2.31-150300.101.1
* glibc-extra-debuginfo-2.31-150300.101.1
* glibc-devel-debuginfo-2.31-150300.101.1
* glibc-profile-2.31-150300.101.1
* nscd-debuginfo-2.31-150300.101.1
* glibc-debugsource-2.31-150300.101.1
* glibc-devel-static-2.31-150300.101.1
* glibc-2.31-150300.101.1
* glibc-locale-base-debuginfo-2.31-150300.101.1
* glibc-extra-2.31-150300.101.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch)
* glibc-info-2.31-150300.101.1
* glibc-lang-2.31-150300.101.1
* glibc-i18ndata-2.31-150300.101.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (x86_64)
* glibc-devel-32bit-debuginfo-2.31-150300.101.1
* glibc-32bit-2.31-150300.101.1
* glibc-devel-32bit-2.31-150300.101.1
* glibc-32bit-debuginfo-2.31-150300.101.1
* glibc-locale-base-32bit-debuginfo-2.31-150300.101.1
* glibc-locale-base-32bit-2.31-150300.101.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64
x86_64)
* glibc-utils-2.31-150300.101.1
* glibc-debuginfo-2.31-150300.101.1
* glibc-devel-2.31-150300.101.1
* glibc-utils-src-debugsource-2.31-150300.101.1
* glibc-locale-base-2.31-150300.101.1
* nscd-2.31-150300.101.1
* glibc-utils-debuginfo-2.31-150300.101.1
* glibc-locale-2.31-150300.101.1
* glibc-extra-debuginfo-2.31-150300.101.1
* glibc-devel-debuginfo-2.31-150300.101.1
* glibc-profile-2.31-150300.101.1
* nscd-debuginfo-2.31-150300.101.1
* glibc-debugsource-2.31-150300.101.1
* glibc-devel-static-2.31-150300.101.1
* glibc-2.31-150300.101.1
* glibc-locale-base-debuginfo-2.31-150300.101.1
* glibc-extra-2.31-150300.101.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch)
* glibc-info-2.31-150300.101.1
* glibc-lang-2.31-150300.101.1
* glibc-i18ndata-2.31-150300.101.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (x86_64)
* glibc-devel-32bit-debuginfo-2.31-150300.101.1
* glibc-32bit-2.31-150300.101.1
* glibc-devel-32bit-2.31-150300.101.1
* glibc-32bit-debuginfo-2.31-150300.101.1
* glibc-locale-base-32bit-debuginfo-2.31-150300.101.1
* glibc-locale-base-32bit-2.31-150300.101.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64
x86_64)
* glibc-utils-2.31-150300.101.1
* glibc-utils-src-debugsource-2.31-150300.101.1
* nscd-2.31-150300.101.1
* glibc-debuginfo-2.31-150300.101.1
* glibc-locale-base-2.31-150300.101.1
* glibc-devel-2.31-150300.101.1
* glibc-utils-debuginfo-2.31-150300.101.1
* glibc-profile-2.31-150300.101.1
* glibc-locale-2.31-150300.101.1
* glibc-extra-debuginfo-2.31-150300.101.1
* nscd-debuginfo-2.31-150300.101.1
* glibc-devel-debuginfo-2.31-150300.101.1
* glibc-debugsource-2.31-150300.101.1
* glibc-devel-static-2.31-150300.101.1
* glibc-2.31-150300.101.1
* glibc-locale-base-debuginfo-2.31-150300.101.1
* glibc-extra-2.31-150300.101.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch)
* glibc-info-2.31-150300.101.1
* glibc-lang-2.31-150300.101.1
* glibc-i18ndata-2.31-150300.101.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (x86_64)
* glibc-devel-32bit-debuginfo-2.31-150300.101.1
* glibc-32bit-2.31-150300.101.1
* glibc-devel-32bit-2.31-150300.101.1
* glibc-32bit-debuginfo-2.31-150300.101.1
* glibc-locale-base-32bit-debuginfo-2.31-150300.101.1
* glibc-locale-base-32bit-2.31-150300.101.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (x86_64)
* glibc-devel-32bit-debuginfo-2.31-150300.101.1
* glibc-32bit-2.31-150300.101.1
* glibc-devel-32bit-2.31-150300.101.1
* glibc-32bit-debuginfo-2.31-150300.101.1
* glibc-locale-base-32bit-debuginfo-2.31-150300.101.1
* glibc-locale-base-32bit-2.31-150300.101.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64
x86_64)
* glibc-utils-2.31-150300.101.1
* glibc-debuginfo-2.31-150300.101.1
* glibc-devel-2.31-150300.101.1
* glibc-utils-src-debugsource-2.31-150300.101.1
* glibc-locale-base-2.31-150300.101.1
* nscd-2.31-150300.101.1
* glibc-utils-debuginfo-2.31-150300.101.1
* glibc-locale-2.31-150300.101.1
* glibc-extra-debuginfo-2.31-150300.101.1
* glibc-devel-debuginfo-2.31-150300.101.1
* glibc-profile-2.31-150300.101.1
* nscd-debuginfo-2.31-150300.101.1
* glibc-debugsource-2.31-150300.101.1
* glibc-devel-static-2.31-150300.101.1
* glibc-2.31-150300.101.1
* glibc-locale-base-debuginfo-2.31-150300.101.1
* glibc-extra-2.31-150300.101.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch)
* glibc-info-2.31-150300.101.1
* glibc-lang-2.31-150300.101.1
* glibc-i18ndata-2.31-150300.101.1
* SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64)
* glibc-utils-2.31-150300.101.1
* glibc-debuginfo-2.31-150300.101.1
* glibc-devel-2.31-150300.101.1
* glibc-utils-src-debugsource-2.31-150300.101.1
* glibc-locale-base-2.31-150300.101.1
* nscd-2.31-150300.101.1
* glibc-utils-debuginfo-2.31-150300.101.1
* glibc-locale-2.31-150300.101.1
* glibc-extra-debuginfo-2.31-150300.101.1
* glibc-devel-debuginfo-2.31-150300.101.1
* glibc-profile-2.31-150300.101.1
* nscd-debuginfo-2.31-150300.101.1
* glibc-debugsource-2.31-150300.101.1
* glibc-devel-static-2.31-150300.101.1
* glibc-2.31-150300.101.1
* glibc-locale-base-debuginfo-2.31-150300.101.1
* glibc-extra-2.31-150300.101.1
* SUSE Linux Enterprise Server 15 SP4 LTSS (noarch)
* glibc-info-2.31-150300.101.1
* glibc-lang-2.31-150300.101.1
* glibc-i18ndata-2.31-150300.101.1
* SUSE Linux Enterprise Server 15 SP4 LTSS (x86_64)
* glibc-devel-32bit-debuginfo-2.31-150300.101.1
* glibc-32bit-2.31-150300.101.1
* glibc-devel-32bit-2.31-150300.101.1
* glibc-32bit-debuginfo-2.31-150300.101.1
* glibc-locale-base-32bit-debuginfo-2.31-150300.101.1
* glibc-locale-base-32bit-2.31-150300.101.1
* SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64)
* glibc-utils-2.31-150300.101.1
* glibc-debuginfo-2.31-150300.101.1
* glibc-devel-2.31-150300.101.1
* glibc-utils-src-debugsource-2.31-150300.101.1
* glibc-locale-base-2.31-150300.101.1
* nscd-2.31-150300.101.1
* glibc-utils-debuginfo-2.31-150300.101.1
* glibc-locale-2.31-150300.101.1
* glibc-extra-debuginfo-2.31-150300.101.1
* glibc-devel-debuginfo-2.31-150300.101.1
* glibc-profile-2.31-150300.101.1
* nscd-debuginfo-2.31-150300.101.1
* glibc-debugsource-2.31-150300.101.1
* glibc-devel-static-2.31-150300.101.1
* glibc-2.31-150300.101.1
* glibc-locale-base-debuginfo-2.31-150300.101.1
* glibc-extra-2.31-150300.101.1
* SUSE Linux Enterprise Server 15 SP5 LTSS (noarch)
* glibc-info-2.31-150300.101.1
* glibc-lang-2.31-150300.101.1
* glibc-i18ndata-2.31-150300.101.1
* SUSE Linux Enterprise Server 15 SP5 LTSS (x86_64)
* glibc-devel-32bit-debuginfo-2.31-150300.101.1
* glibc-32bit-2.31-150300.101.1
* glibc-devel-32bit-2.31-150300.101.1
* glibc-32bit-debuginfo-2.31-150300.101.1
* glibc-locale-base-32bit-debuginfo-2.31-150300.101.1
* glibc-locale-base-32bit-2.31-150300.101.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64)
* glibc-utils-2.31-150300.101.1
* glibc-debuginfo-2.31-150300.101.1
* glibc-devel-2.31-150300.101.1
* glibc-utils-src-debugsource-2.31-150300.101.1
* glibc-locale-base-2.31-150300.101.1
* nscd-2.31-150300.101.1
* glibc-utils-debuginfo-2.31-150300.101.1
* glibc-locale-2.31-150300.101.1
* glibc-extra-debuginfo-2.31-150300.101.1
* glibc-devel-debuginfo-2.31-150300.101.1
* glibc-profile-2.31-150300.101.1
* nscd-debuginfo-2.31-150300.101.1
* glibc-debugsource-2.31-150300.101.1
* glibc-devel-static-2.31-150300.101.1
* glibc-2.31-150300.101.1
* glibc-locale-base-debuginfo-2.31-150300.101.1
* glibc-extra-2.31-150300.101.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5 (noarch)
* glibc-info-2.31-150300.101.1
* glibc-lang-2.31-150300.101.1
* glibc-i18ndata-2.31-150300.101.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5 (x86_64)
* glibc-devel-32bit-debuginfo-2.31-150300.101.1
* glibc-32bit-2.31-150300.101.1
* glibc-devel-32bit-2.31-150300.101.1
* glibc-32bit-debuginfo-2.31-150300.101.1
* glibc-locale-base-32bit-debuginfo-2.31-150300.101.1
* glibc-locale-base-32bit-2.31-150300.101.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64)
* glibc-utils-2.31-150300.101.1
* glibc-debuginfo-2.31-150300.101.1
* glibc-devel-2.31-150300.101.1
* glibc-utils-src-debugsource-2.31-150300.101.1
* glibc-locale-base-2.31-150300.101.1
* nscd-2.31-150300.101.1
* glibc-utils-debuginfo-2.31-150300.101.1
* glibc-locale-2.31-150300.101.1
* glibc-extra-debuginfo-2.31-150300.101.1
* glibc-devel-debuginfo-2.31-150300.101.1
* glibc-profile-2.31-150300.101.1
* nscd-debuginfo-2.31-150300.101.1
* glibc-debugsource-2.31-150300.101.1
* glibc-devel-static-2.31-150300.101.1
* glibc-2.31-150300.101.1
* glibc-locale-base-debuginfo-2.31-150300.101.1
* glibc-extra-2.31-150300.101.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch)
* glibc-info-2.31-150300.101.1
* glibc-lang-2.31-150300.101.1
* glibc-i18ndata-2.31-150300.101.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (x86_64)
* glibc-devel-32bit-debuginfo-2.31-150300.101.1
* glibc-32bit-2.31-150300.101.1
* glibc-devel-32bit-2.31-150300.101.1
* glibc-32bit-debuginfo-2.31-150300.101.1
* glibc-locale-base-32bit-debuginfo-2.31-150300.101.1
* glibc-locale-base-32bit-2.31-150300.101.1
## References:
* https://www.suse.com/security/cve/CVE-2026-4046.html
* https://www.suse.com/security/cve/CVE-2026-5450.html
* https://www.suse.com/security/cve/CVE-2026-5928.html
* https://bugzilla.suse.com/show_bug.cgi?id=1261206
* https://bugzilla.suse.com/show_bug.cgi?id=1262464
* https://bugzilla.suse.com/show_bug.cgi?id=1262465
openSUSE-SU-2026:10979-1: moderate: agama-web-ui-21+360.16caae772-44.1 on GA media
# agama-web-ui-21+360.16caae772-44.1 on GA media
Announcement ID: openSUSE-SU-2026:10979-1
Rating: moderate
Cross-References:
* CVE-2026-6402
* CVE-2026-9277
CVSS scores:
* CVE-2026-6402 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N
* CVE-2026-6402 ( SUSE ): 6 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
* CVE-2026-9277 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-9277 ( SUSE ): 9.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected Products:
* openSUSE Tumbleweed
An update that solves 2 vulnerabilities can now be installed.
## Description:
These are all security issues fixed in the agama-web-ui-21+360.16caae772-44.1 package on the GA media of openSUSE Tumbleweed.
## Package List:
* openSUSE Tumbleweed:
* agama-web-ui 21+360.16caae772-44.1
## References:
* https://www.suse.com/security/cve/CVE-2026-6402.html
* https://www.suse.com/security/cve/CVE-2026-9277.html
openSUSE-SU-2026:10976-1: moderate: steampipe-2.4.4-1.1 on GA media
# steampipe-2.4.4-1.1 on GA media
Announcement ID: openSUSE-SU-2026:10976-1
Rating: moderate
Cross-References:
* CVE-2026-41889
CVSS scores:
* CVE-2026-41889 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2026-41889 ( SUSE ): 7.7 CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected Products:
* openSUSE Tumbleweed
An update that solves one vulnerability can now be installed.
## Description:
These are all security issues fixed in the steampipe-2.4.4-1.1 package on the GA media of openSUSE Tumbleweed.
## Package List:
* openSUSE Tumbleweed:
* steampipe 2.4.4-1.1
## References:
* https://www.suse.com/security/cve/CVE-2026-41889.html
openSUSE-SU-2026:10974-1: moderate: python311-pypdf-6.13.0-1.1 on GA media
# python311-pypdf-6.13.0-1.1 on GA media
Announcement ID: openSUSE-SU-2026:10974-1
Rating: moderate
Cross-References:
* CVE-2026-48155
* CVE-2026-48735
Affected Products:
* openSUSE Tumbleweed
An update that solves 2 vulnerabilities can now be installed.
## Description:
These are all security issues fixed in the python311-pypdf-6.13.0-1.1 package on the GA media of openSUSE Tumbleweed.
## Package List:
* openSUSE Tumbleweed:
* python311-pypdf 6.13.0-1.1
* python313-pypdf 6.13.0-1.1
* python314-pypdf 6.13.0-1.1
## References:
* https://www.suse.com/security/cve/CVE-2026-48155.html
* https://www.suse.com/security/cve/CVE-2026-48735.html
openSUSE-SU-2026:10970-1: moderate: libpodofo-devel-1.1.0-1.1 on GA media
# libpodofo-devel-1.1.0-1.1 on GA media
Announcement ID: openSUSE-SU-2026:10970-1
Rating: moderate
Cross-References:
* CVE-2026-44348
CVSS scores:
* CVE-2026-44348 ( SUSE ): 2.5 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2026-44348 ( SUSE ): 2 CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
Affected Products:
* openSUSE Tumbleweed
An update that solves one vulnerability can now be installed.
## Description:
These are all security issues fixed in the libpodofo-devel-1.1.0-1.1 package on the GA media of openSUSE Tumbleweed.
## Package List:
* openSUSE Tumbleweed:
* libpodofo-devel 1.1.0-1.1
* libpodofo4 1.1.0-1.1
## References:
* https://www.suse.com/security/cve/CVE-2026-44348.html
openSUSE-SU-2026:10975-1: moderate: rclone-1.74.3-1.1 on GA media
# rclone-1.74.3-1.1 on GA media
Announcement ID: openSUSE-SU-2026:10975-1
Rating: moderate
Cross-References:
* CVE-2026-27145
* CVE-2026-42504
* CVE-2026-42507
* CVE-2026-49980
CVSS scores:
* CVE-2026-27145 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2026-27145 ( SUSE ): 4.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
* CVE-2026-42504 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2026-42504 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-42507 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
* CVE-2026-42507 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
Affected Products:
* openSUSE Tumbleweed
An update that solves 4 vulnerabilities can now be installed.
## Description:
These are all security issues fixed in the rclone-1.74.3-1.1 package on the GA media of openSUSE Tumbleweed.
## Package List:
* openSUSE Tumbleweed:
* rclone 1.74.3-1.1
* rclone-bash-completion 1.74.3-1.1
* rclone-zsh-completion 1.74.3-1.1
## References:
* https://www.suse.com/security/cve/CVE-2026-27145.html
* https://www.suse.com/security/cve/CVE-2026-42504.html
* https://www.suse.com/security/cve/CVE-2026-42507.html
* https://www.suse.com/security/cve/CVE-2026-49980.html
SUSE-SU-2026:2339-1: important: Security update for kubernetes1.27
# Security update for kubernetes1.27
Announcement ID: SUSE-SU-2026:2339-1
Release Date: 2026-06-10T13:14:18Z
Rating: important
References:
* bsc#1251168
* bsc#1262271
* bsc#1265740
Cross-References:
* CVE-2026-33814
* CVE-2026-35469
CVSS scores:
* CVE-2026-33814 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-33814 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-33814 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-35469 ( SUSE ): 7.1
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-35469 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-35469 ( NVD ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Affected Products:
* openSUSE Leap 15.4
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server 15 SP5 LTSS
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
An update that solves two vulnerabilities and has one security fix can now be
installed.
## Description:
This update for kubernetes1.27 fixes the following issues
* CVE-2026-33814: golang.org/x/net/http2: infinite loop in HTTP/2 transport
when given bad SETTINGS_MAX_FRAME_SIZE (bsc#1265740).
* CVE-2026-35469: github.com/moby/spdystream: memory amplification in SPDY
frame parsing leads to denial of service (bsc#1262271).
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.4
zypper in -t patch SUSE-2026-2339=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2339=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2339=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2339=1
* SUSE Linux Enterprise Server 15 SP4 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2339=1
* SUSE Linux Enterprise Server 15 SP5 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2339=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2339=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2339=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2339=1
## Package List:
* openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64)
* kubernetes1.27-proxy-1.27.16-150400.9.21.1
* kubernetes1.27-client-1.27.16-150400.9.21.1
* kubernetes1.27-apiserver-1.27.16-150400.9.21.1
* kubernetes1.27-kubeadm-1.27.16-150400.9.21.1
* kubernetes1.27-kubelet-1.27.16-150400.9.21.1
* kubernetes1.27-scheduler-1.27.16-150400.9.21.1
* kubernetes1.27-kubelet-common-1.27.16-150400.9.21.1
* kubernetes1.27-controller-manager-1.27.16-150400.9.21.1
* kubernetes1.27-client-common-1.27.16-150400.9.21.1
* openSUSE Leap 15.4 (noarch)
* kubernetes1.27-client-fish-completion-1.27.16-150400.9.21.1
* kubernetes1.27-client-bash-completion-1.27.16-150400.9.21.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64
x86_64)
* kubernetes1.27-client-1.27.16-150400.9.21.1
* kubernetes1.27-client-common-1.27.16-150400.9.21.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64
x86_64)
* kubernetes1.27-client-1.27.16-150400.9.21.1
* kubernetes1.27-client-common-1.27.16-150400.9.21.1
* SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64)
* kubernetes1.27-client-1.27.16-150400.9.21.1
* kubernetes1.27-client-common-1.27.16-150400.9.21.1
* SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64)
* kubernetes1.27-client-1.27.16-150400.9.21.1
* kubernetes1.27-client-common-1.27.16-150400.9.21.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64
x86_64)
* kubernetes1.27-client-1.27.16-150400.9.21.1
* kubernetes1.27-client-common-1.27.16-150400.9.21.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64)
* kubernetes1.27-client-1.27.16-150400.9.21.1
* kubernetes1.27-client-common-1.27.16-150400.9.21.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64)
* kubernetes1.27-client-1.27.16-150400.9.21.1
* kubernetes1.27-client-common-1.27.16-150400.9.21.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64
x86_64)
* kubernetes1.27-client-1.27.16-150400.9.21.1
* kubernetes1.27-client-common-1.27.16-150400.9.21.1
## References:
* https://www.suse.com/security/cve/CVE-2026-33814.html
* https://www.suse.com/security/cve/CVE-2026-35469.html
* https://bugzilla.suse.com/show_bug.cgi?id=1251168
* https://bugzilla.suse.com/show_bug.cgi?id=1262271
* https://bugzilla.suse.com/show_bug.cgi?id=1265740
SUSE-SU-2026:2340-1: important: Security update for kubernetes1.23
# Security update for kubernetes1.23
Announcement ID: SUSE-SU-2026:2340-1
Release Date: 2026-06-10T13:14:46Z
Rating: important
References:
* bsc#1251168
* bsc#1262271
* bsc#1265740
Cross-References:
* CVE-2026-33814
* CVE-2026-35469
CVSS scores:
* CVE-2026-33814 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-33814 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-33814 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-35469 ( SUSE ): 7.1
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-35469 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-35469 ( NVD ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Affected Products:
* openSUSE Leap 15.5
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server 15 SP5 LTSS
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
An update that solves two vulnerabilities and has one security fix can now be
installed.
## Description:
This update for kubernetes1.23 fixes the following issues
* CVE-2026-33814: golang.org/x/net/http2: infinite loop in HTTP/2 transport
when given bad SETTINGS_MAX_FRAME_SIZE (bsc#1265740).
* CVE-2026-35469: github.com/moby/spdystream: memory amplification in SPDY
frame parsing leads to denial of service (bsc#1262271).
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.5
zypper in -t patch SUSE-2026-2340=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2340=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2340=1
* SUSE Linux Enterprise Server 15 SP5 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2340=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2340=1
## Package List:
* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64)
* kubernetes1.23-client-1.23.17-150500.3.26.1
* kubernetes1.23-apiserver-1.23.17-150500.3.26.1
* kubernetes1.23-scheduler-1.23.17-150500.3.26.1
* kubernetes1.23-kubelet-1.23.17-150500.3.26.1
* kubernetes1.23-kubeadm-1.23.17-150500.3.26.1
* kubernetes1.23-kubelet-common-1.23.17-150500.3.26.1
* kubernetes1.23-proxy-1.23.17-150500.3.26.1
* kubernetes1.23-client-common-1.23.17-150500.3.26.1
* kubernetes1.23-controller-manager-1.23.17-150500.3.26.1
* openSUSE Leap 15.5 (noarch)
* kubernetes1.23-client-bash-completion-1.23.17-150500.3.26.1
* kubernetes1.23-client-fish-completion-1.23.17-150500.3.26.1
* openSUSE Leap 15.5 (ppc64le)
* kubernetes1.23-scheduler-debuginfo-1.23.17-150500.3.26.1
* kubernetes1.23-client-debuginfo-1.23.17-150500.3.26.1
* kubernetes1.23-kubeadm-debuginfo-1.23.17-150500.3.26.1
* kubernetes1.23-proxy-debuginfo-1.23.17-150500.3.26.1
* kubernetes1.23-controller-manager-debuginfo-1.23.17-150500.3.26.1
* kubernetes1.23-apiserver-debuginfo-1.23.17-150500.3.26.1
* kubernetes1.23-kubelet-debuginfo-1.23.17-150500.3.26.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64
x86_64)
* kubernetes1.23-client-1.23.17-150500.3.26.1
* kubernetes1.23-client-common-1.23.17-150500.3.26.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64
x86_64)
* kubernetes1.23-client-1.23.17-150500.3.26.1
* kubernetes1.23-client-common-1.23.17-150500.3.26.1
* SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64)
* kubernetes1.23-client-1.23.17-150500.3.26.1
* kubernetes1.23-client-common-1.23.17-150500.3.26.1
* SUSE Linux Enterprise Server 15 SP5 LTSS (ppc64le)
* kubernetes1.23-client-debuginfo-1.23.17-150500.3.26.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64)
* kubernetes1.23-client-1.23.17-150500.3.26.1
* kubernetes1.23-client-common-1.23.17-150500.3.26.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le)
* kubernetes1.23-client-debuginfo-1.23.17-150500.3.26.1
## References:
* https://www.suse.com/security/cve/CVE-2026-33814.html
* https://www.suse.com/security/cve/CVE-2026-35469.html
* https://bugzilla.suse.com/show_bug.cgi?id=1251168
* https://bugzilla.suse.com/show_bug.cgi?id=1262271
* https://bugzilla.suse.com/show_bug.cgi?id=1265740
SUSE-SU-2026:2342-1: important: Security update for kubernetes
# Security update for kubernetes
Announcement ID: SUSE-SU-2026:2342-1
Release Date: 2026-06-10T13:15:04Z
Rating: important
References:
* bsc#1262270
* bsc#1265748
Cross-References:
* CVE-2026-33814
* CVE-2026-35469
CVSS scores:
* CVE-2026-33814 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-33814 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-33814 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-35469 ( SUSE ): 7.1
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-35469 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-35469 ( NVD ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Affected Products:
* Containers Module 15-SP7
* openSUSE Leap 15.6
* SUSE Linux Enterprise Real Time 15 SP7
* SUSE Linux Enterprise Server 15 SP7
* SUSE Linux Enterprise Server for SAP Applications 15 SP7
An update that solves two vulnerabilities can now be installed.
## Description:
This update for kubernetes fixes the following issues
* CVE-2026-33814: golang.org/x/net/http2: infinite loop in HTTP/2 transport
when given bad SETTINGS_MAX_FRAME_SIZE (bsc#1265748).
* CVE-2026-35469: github.com/moby/spdystream: memory amplification in SPDY
frame parsing leads to denial of service (bsc#1262270).
Changes for kubernetes:
* Update to version 1.35.4:
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.6
zypper in -t patch SUSE-2026-2342=1
* Containers Module 15-SP7
zypper in -t patch SUSE-SLE-Module-Containers-15-SP7-2026-2342=1
## Package List:
* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64)
* kubernetes1.35-client-common-1.35.4-150600.13.34.1
* kubernetes1.35-client-1.35.4-150600.13.34.1
* openSUSE Leap 15.6 (noarch)
* kubernetes1.35-client-bash-completion-1.35.4-150600.13.34.1
* kubernetes1.35-client-fish-completion-1.35.4-150600.13.34.1
* Containers Module 15-SP7 (aarch64 ppc64le s390x x86_64)
* kubernetes1.35-client-common-1.35.4-150600.13.34.1
* kubernetes1.35-client-1.35.4-150600.13.34.1
* Containers Module 15-SP7 (noarch)
* kubernetes1.35-client-bash-completion-1.35.4-150600.13.34.1
## References:
* https://www.suse.com/security/cve/CVE-2026-33814.html
* https://www.suse.com/security/cve/CVE-2026-35469.html
* https://bugzilla.suse.com/show_bug.cgi?id=1262270
* https://bugzilla.suse.com/show_bug.cgi?id=1265748
SUSE-SU-2026:2345-1: important: Security update for kubernetes1.25
# Security update for kubernetes1.25
Announcement ID: SUSE-SU-2026:2345-1
Release Date: 2026-06-10T13:16:39Z
Rating: important
References:
* bsc#1251168
* bsc#1262271
* bsc#1265740
Cross-References:
* CVE-2026-33814
* CVE-2026-35469
CVSS scores:
* CVE-2026-33814 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-33814 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-33814 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-35469 ( SUSE ): 7.1
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-35469 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-35469 ( NVD ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Affected Products:
* openSUSE Leap 15.4
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server 15 SP5 LTSS
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
An update that solves two vulnerabilities and has one security fix can now be
installed.
## Description:
This update for kubernetes1.25 fixes the following issues:
Security fixes:
* CVE-2026-33814: golang.org/x/net/http2: infinite loop in HTTP/2 transport
when given bad SETTINGS_MAX_FRAME_SIZE (bsc#1265740).
* CVE-2026-35469: github.com/moby/spdystream: memory amplification in SPDY
frame parsing leads to denial of service (bsc#1262271).
Other fixes:
* Adding `Requires: diffutils` dependency to Kubernetes*-client package
(bsc#1251168)
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.4
zypper in -t patch SUSE-2026-2345=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2345=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2345=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2345=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2345=1
* SUSE Linux Enterprise Server 15 SP4 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2345=1
* SUSE Linux Enterprise Server 15 SP5 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2345=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2345=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2345=1
## Package List:
* openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64)
* kubernetes1.25-scheduler-1.25.16-150400.9.27.1
* kubernetes1.25-kubeadm-1.25.16-150400.9.27.1
* kubernetes1.25-kubelet-common-1.25.16-150400.9.27.1
* kubernetes1.25-apiserver-1.25.16-150400.9.27.1
* kubernetes1.25-client-common-1.25.16-150400.9.27.1
* kubernetes1.25-client-1.25.16-150400.9.27.1
* kubernetes1.25-kubelet-1.25.16-150400.9.27.1
* kubernetes1.25-proxy-1.25.16-150400.9.27.1
* kubernetes1.25-controller-manager-1.25.16-150400.9.27.1
* openSUSE Leap 15.4 (noarch)
* kubernetes1.25-client-bash-completion-1.25.16-150400.9.27.1
* kubernetes1.25-client-fish-completion-1.25.16-150400.9.27.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64
x86_64)
* kubernetes1.25-client-1.25.16-150400.9.27.1
* kubernetes1.25-client-common-1.25.16-150400.9.27.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64
x86_64)
* kubernetes1.25-client-1.25.16-150400.9.27.1
* kubernetes1.25-client-common-1.25.16-150400.9.27.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64
x86_64)
* kubernetes1.25-client-1.25.16-150400.9.27.1
* kubernetes1.25-client-common-1.25.16-150400.9.27.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64
x86_64)
* kubernetes1.25-client-1.25.16-150400.9.27.1
* kubernetes1.25-client-common-1.25.16-150400.9.27.1
* SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64)
* kubernetes1.25-client-1.25.16-150400.9.27.1
* kubernetes1.25-client-common-1.25.16-150400.9.27.1
* SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64)
* kubernetes1.25-client-1.25.16-150400.9.27.1
* kubernetes1.25-client-common-1.25.16-150400.9.27.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64)
* kubernetes1.25-client-1.25.16-150400.9.27.1
* kubernetes1.25-client-common-1.25.16-150400.9.27.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64)
* kubernetes1.25-client-1.25.16-150400.9.27.1
* kubernetes1.25-client-common-1.25.16-150400.9.27.1
## References:
* https://www.suse.com/security/cve/CVE-2026-33814.html
* https://www.suse.com/security/cve/CVE-2026-35469.html
* https://bugzilla.suse.com/show_bug.cgi?id=1251168
* https://bugzilla.suse.com/show_bug.cgi?id=1262271
* https://bugzilla.suse.com/show_bug.cgi?id=1265740
SUSE-SU-2026:2343-1: important: Security update for kubernetes1.24
# Security update for kubernetes1.24
Announcement ID: SUSE-SU-2026:2343-1
Release Date: 2026-06-10T13:15:21Z
Rating: important
References:
* bsc#1251168
* bsc#1262271
* bsc#1265740
Cross-References:
* CVE-2026-33814
* CVE-2026-35469
CVSS scores:
* CVE-2026-33814 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-33814 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-33814 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-35469 ( SUSE ): 7.1
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-35469 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-35469 ( NVD ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Affected Products:
* openSUSE Leap 15.5
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server 15 SP5 LTSS
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
An update that solves two vulnerabilities and has one security fix can now be
installed.
## Description:
This update for kubernetes1.24 fixes the following issues
* CVE-2026-33814: golang.org/x/net/http2: infinite loop in HTTP/2 transport
when given bad SETTINGS_MAX_FRAME_SIZE (bsc#1265740).
* CVE-2026-35469: github.com/moby/spdystream: memory amplification in SPDY
frame parsing leads to denial of service (bsc#1262271).
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.5
zypper in -t patch SUSE-2026-2343=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2343=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2343=1
* SUSE Linux Enterprise Server 15 SP5 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2343=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2343=1
## Package List:
* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64)
* kubernetes1.24-apiserver-1.24.17-150500.3.33.1
* kubernetes1.24-client-1.24.17-150500.3.33.1
* kubernetes1.24-kubeadm-1.24.17-150500.3.33.1
* kubernetes1.24-scheduler-1.24.17-150500.3.33.1
* kubernetes1.24-kubelet-common-1.24.17-150500.3.33.1
* kubernetes1.24-controller-manager-1.24.17-150500.3.33.1
* kubernetes1.24-kubelet-1.24.17-150500.3.33.1
* kubernetes1.24-proxy-1.24.17-150500.3.33.1
* kubernetes1.24-client-common-1.24.17-150500.3.33.1
* openSUSE Leap 15.5 (noarch)
* kubernetes1.24-client-fish-completion-1.24.17-150500.3.33.1
* kubernetes1.24-client-bash-completion-1.24.17-150500.3.33.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64
x86_64)
* kubernetes1.24-client-common-1.24.17-150500.3.33.1
* kubernetes1.24-client-1.24.17-150500.3.33.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64
x86_64)
* kubernetes1.24-client-common-1.24.17-150500.3.33.1
* kubernetes1.24-client-1.24.17-150500.3.33.1
* SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64)
* kubernetes1.24-client-common-1.24.17-150500.3.33.1
* kubernetes1.24-client-1.24.17-150500.3.33.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64)
* kubernetes1.24-client-common-1.24.17-150500.3.33.1
* kubernetes1.24-client-1.24.17-150500.3.33.1
## References:
* https://www.suse.com/security/cve/CVE-2026-33814.html
* https://www.suse.com/security/cve/CVE-2026-35469.html
* https://bugzilla.suse.com/show_bug.cgi?id=1251168
* https://bugzilla.suse.com/show_bug.cgi?id=1262271
* https://bugzilla.suse.com/show_bug.cgi?id=1265740
SUSE-SU-2026:2353-1: important: Security update for wicked
# Security update for wicked
Announcement ID: SUSE-SU-2026:2353-1
Release Date: 2026-06-10T14:55:06Z
Rating: important
References:
* bsc#1265221
* jsc#PED-1942
Cross-References:
* CVE-2026-44932
CVSS scores:
* CVE-2026-44932 ( SUSE ): 5.8
CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:H/SI:H/SA:H
* CVE-2026-44932 ( SUSE ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products:
* openSUSE Leap 15.5
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
* SUSE Linux Enterprise Micro 5.5
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server 15 SP5 LTSS
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
An update that solves one vulnerability and contains one feature can now be
installed.
## Description:
This update for wicked fixes the following issues:
* CVE-2026-44932: Fixed indirect remote shell command injection via
unsanitized DHCP options (bsc#1265221).
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.5
zypper in -t patch SUSE-2026-2353=1
* SUSE Linux Enterprise Micro 5.5
zypper in -t patch SUSE-SLE-Micro-5.5-2026-2353=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2353=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2353=1
* SUSE Linux Enterprise Server 15 SP5 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2353=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2353=1
## Package List:
* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586)
* wicked-debugsource-0.6.79-150500.3.42.1
* wicked-nbft-0.6.79-150500.3.42.1
* wicked-0.6.79-150500.3.42.1
* wicked-debuginfo-0.6.79-150500.3.42.1
* wicked-service-0.6.79-150500.3.42.1
* SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64)
* wicked-0.6.79-150500.3.42.1
* wicked-service-0.6.79-150500.3.42.1
* wicked-debugsource-0.6.79-150500.3.42.1
* wicked-debuginfo-0.6.79-150500.3.42.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64
x86_64)
* wicked-debugsource-0.6.79-150500.3.42.1
* wicked-nbft-0.6.79-150500.3.42.1
* wicked-0.6.79-150500.3.42.1
* wicked-debuginfo-0.6.79-150500.3.42.1
* wicked-service-0.6.79-150500.3.42.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64
x86_64)
* wicked-debugsource-0.6.79-150500.3.42.1
* wicked-nbft-0.6.79-150500.3.42.1
* wicked-0.6.79-150500.3.42.1
* wicked-debuginfo-0.6.79-150500.3.42.1
* wicked-service-0.6.79-150500.3.42.1
* SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64)
* wicked-debugsource-0.6.79-150500.3.42.1
* wicked-nbft-0.6.79-150500.3.42.1
* wicked-0.6.79-150500.3.42.1
* wicked-debuginfo-0.6.79-150500.3.42.1
* wicked-service-0.6.79-150500.3.42.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64)
* wicked-debugsource-0.6.79-150500.3.42.1
* wicked-nbft-0.6.79-150500.3.42.1
* wicked-0.6.79-150500.3.42.1
* wicked-debuginfo-0.6.79-150500.3.42.1
* wicked-service-0.6.79-150500.3.42.1
## References:
* https://www.suse.com/security/cve/CVE-2026-44932.html
* https://bugzilla.suse.com/show_bug.cgi?id=1265221
* https://jira.suse.com/browse/PED-1942
SUSE-SU-2026:2344-1: important: Security update for kubernetes1.28
# Security update for kubernetes1.28
Announcement ID: SUSE-SU-2026:2344-1
Release Date: 2026-06-10T13:16:04Z
Rating: important
References:
* bsc#1251168
* bsc#1262271
* bsc#1265740
Cross-References:
* CVE-2026-33814
* CVE-2026-35469
CVSS scores:
* CVE-2026-33814 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-33814 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-33814 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-35469 ( SUSE ): 7.1
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-35469 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-35469 ( NVD ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Affected Products:
* openSUSE Leap 15.4
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server 15 SP5 LTSS
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
An update that solves two vulnerabilities and has one security fix can now be
installed.
## Description:
This update for kubernetes1.28 fixes the following issues:
Security fixes:
* CVE-2026-33814: golang.org/x/net/http2: infinite loop in HTTP/2 transport
when given bad SETTINGS_MAX_FRAME_SIZE (bsc#1265740).
* CVE-2026-35469: github.com/moby/spdystream: memory amplification in SPDY
frame parsing leads to denial of service (bsc#1262271).
Other fixes:
* Adding `Requires: diffutils` dependency to Kubernetes*-client package
(bsc#1251168)
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2344=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2344=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2344=1
* SUSE Linux Enterprise Server 15 SP4 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2344=1
* openSUSE Leap 15.4
zypper in -t patch SUSE-2026-2344=1
* SUSE Linux Enterprise Server 15 SP5 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2344=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2344=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2344=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2344=1
## Package List:
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64
x86_64)
* kubernetes1.28-client-common-1.28.13-150400.9.19.1
* kubernetes1.28-client-1.28.13-150400.9.19.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64
x86_64)
* kubernetes1.28-client-common-1.28.13-150400.9.19.1
* kubernetes1.28-client-1.28.13-150400.9.19.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64
x86_64)
* kubernetes1.28-client-common-1.28.13-150400.9.19.1
* kubernetes1.28-client-1.28.13-150400.9.19.1
* SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64)
* kubernetes1.28-client-common-1.28.13-150400.9.19.1
* kubernetes1.28-client-1.28.13-150400.9.19.1
* openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64)
* kubernetes1.28-proxy-1.28.13-150400.9.19.1
* kubernetes1.28-kubelet-1.28.13-150400.9.19.1
* kubernetes1.28-kubeadm-1.28.13-150400.9.19.1
* kubernetes1.28-client-common-1.28.13-150400.9.19.1
* kubernetes1.28-client-1.28.13-150400.9.19.1
* kubernetes1.28-apiserver-1.28.13-150400.9.19.1
* kubernetes1.28-kubelet-common-1.28.13-150400.9.19.1
* kubernetes1.28-scheduler-1.28.13-150400.9.19.1
* kubernetes1.28-controller-manager-1.28.13-150400.9.19.1
* openSUSE Leap 15.4 (noarch)
* kubernetes1.28-client-bash-completion-1.28.13-150400.9.19.1
* kubernetes1.28-client-fish-completion-1.28.13-150400.9.19.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64
x86_64)
* kubernetes1.28-client-common-1.28.13-150400.9.19.1
* kubernetes1.28-client-1.28.13-150400.9.19.1
* SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64)
* kubernetes1.28-client-common-1.28.13-150400.9.19.1
* kubernetes1.28-client-1.28.13-150400.9.19.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64)
* kubernetes1.28-client-common-1.28.13-150400.9.19.1
* kubernetes1.28-client-1.28.13-150400.9.19.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64)
* kubernetes1.28-client-common-1.28.13-150400.9.19.1
* kubernetes1.28-client-1.28.13-150400.9.19.1
## References:
* https://www.suse.com/security/cve/CVE-2026-33814.html
* https://www.suse.com/security/cve/CVE-2026-35469.html
* https://bugzilla.suse.com/show_bug.cgi?id=1251168
* https://bugzilla.suse.com/show_bug.cgi?id=1262271
* https://bugzilla.suse.com/show_bug.cgi?id=1265740
SUSE-SU-2026:2354-1: important: Security update for wicked
# Security update for wicked
Announcement ID: SUSE-SU-2026:2354-1
Release Date: 2026-06-10T14:56:00Z
Rating: important
References:
* bsc#1265221
* jsc#PED-1942
Cross-References:
* CVE-2026-44932
CVSS scores:
* CVE-2026-44932 ( SUSE ): 5.8
CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:H/SI:H/SA:H
* CVE-2026-44932 ( SUSE ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products:
* openSUSE Leap 15.4
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise Micro 5.3
* SUSE Linux Enterprise Micro 5.4
* SUSE Linux Enterprise Micro for Rancher 5.3
* SUSE Linux Enterprise Micro for Rancher 5.4
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
An update that solves one vulnerability and contains one feature can now be
installed.
## Description:
This update for wicked fixes the following issues:
* CVE-2026-44932: Fixed indirect remote shell command injection via
unsanitized DHCP options (bsc#1265221).
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.4
zypper in -t patch SUSE-2026-2354=1
* SUSE Linux Enterprise Micro for Rancher 5.3
zypper in -t patch SUSE-SLE-Micro-5.3-2026-2354=1
* SUSE Linux Enterprise Micro 5.3
zypper in -t patch SUSE-SLE-Micro-5.3-2026-2354=1
* SUSE Linux Enterprise Micro for Rancher 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2026-2354=1
* SUSE Linux Enterprise Micro 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2026-2354=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2354=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2354=1
* SUSE Linux Enterprise Server 15 SP4 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2354=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2354=1
## Package List:
* openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586)
* wicked-debugsource-0.6.79-150400.3.39.1
* wicked-0.6.79-150400.3.39.1
* wicked-debuginfo-0.6.79-150400.3.39.1
* wicked-service-0.6.79-150400.3.39.1
* SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64)
* wicked-debugsource-0.6.79-150400.3.39.1
* wicked-0.6.79-150400.3.39.1
* wicked-debuginfo-0.6.79-150400.3.39.1
* wicked-service-0.6.79-150400.3.39.1
* SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64)
* wicked-debugsource-0.6.79-150400.3.39.1
* wicked-0.6.79-150400.3.39.1
* wicked-debuginfo-0.6.79-150400.3.39.1
* wicked-service-0.6.79-150400.3.39.1
* SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64)
* wicked-debugsource-0.6.79-150400.3.39.1
* wicked-0.6.79-150400.3.39.1
* wicked-debuginfo-0.6.79-150400.3.39.1
* wicked-service-0.6.79-150400.3.39.1
* SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64)
* wicked-debugsource-0.6.79-150400.3.39.1
* wicked-0.6.79-150400.3.39.1
* wicked-debuginfo-0.6.79-150400.3.39.1
* wicked-service-0.6.79-150400.3.39.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64
x86_64)
* wicked-debugsource-0.6.79-150400.3.39.1
* wicked-0.6.79-150400.3.39.1
* wicked-debuginfo-0.6.79-150400.3.39.1
* wicked-service-0.6.79-150400.3.39.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64
x86_64)
* wicked-debugsource-0.6.79-150400.3.39.1
* wicked-0.6.79-150400.3.39.1
* wicked-debuginfo-0.6.79-150400.3.39.1
* wicked-service-0.6.79-150400.3.39.1
* SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64)
* wicked-debugsource-0.6.79-150400.3.39.1
* wicked-0.6.79-150400.3.39.1
* wicked-debuginfo-0.6.79-150400.3.39.1
* wicked-service-0.6.79-150400.3.39.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64)
* wicked-debugsource-0.6.79-150400.3.39.1
* wicked-0.6.79-150400.3.39.1
* wicked-debuginfo-0.6.79-150400.3.39.1
* wicked-service-0.6.79-150400.3.39.1
## References:
* https://www.suse.com/security/cve/CVE-2026-44932.html
* https://bugzilla.suse.com/show_bug.cgi?id=1265221
* https://jira.suse.com/browse/PED-1942
SUSE-SU-2026:2355-1: moderate: Security update for openCryptoki
# Security update for openCryptoki
Announcement ID: SUSE-SU-2026:2355-1
Release Date: 2026-06-10T15:08:36Z
Rating: moderate
References:
* bsc#1262283
Cross-References:
* CVE-2026-40253
CVSS scores:
* CVE-2026-40253 ( SUSE ): 7.0
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2026-40253 ( SUSE ): 6.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
* CVE-2026-40253 ( NVD ): 6.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
* CVE-2026-40253 ( NVD ): 6.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
Affected Products:
* openSUSE Leap 15.4
* SUSE Linux Enterprise Micro 5.4
* SUSE Linux Enterprise Micro for Rancher 5.4
An update that solves one vulnerability can now be installed.
## Description:
This update for openCryptoki fixes the following issue:
* CVE-2026-40253: malformed BER-encoded cryptographic objects can lead to
information disclosure and denial of service (bsc#1262283).
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.4
zypper in -t patch SUSE-2026-2355=1
* SUSE Linux Enterprise Micro for Rancher 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2026-2355=1
* SUSE Linux Enterprise Micro 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2026-2355=1
## Package List:
* openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586)
* openCryptoki-3.17.0-150400.4.16.1
* openCryptoki-debugsource-3.17.0-150400.4.16.1
* openCryptoki-devel-3.17.0-150400.4.16.1
* openCryptoki-debuginfo-3.17.0-150400.4.16.1
* openSUSE Leap 15.4 (i586)
* openCryptoki-32bit-debuginfo-3.17.0-150400.4.16.1
* openCryptoki-32bit-3.17.0-150400.4.16.1
* openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64)
* openCryptoki-64bit-debuginfo-3.17.0-150400.4.16.1
* openCryptoki-64bit-3.17.0-150400.4.16.1
* SUSE Linux Enterprise Micro for Rancher 5.4 (s390x)
* openCryptoki-3.17.0-150400.4.16.1
* openCryptoki-debugsource-3.17.0-150400.4.16.1
* openCryptoki-debuginfo-3.17.0-150400.4.16.1
* SUSE Linux Enterprise Micro 5.4 (s390x)
* openCryptoki-3.17.0-150400.4.16.1
* openCryptoki-debugsource-3.17.0-150400.4.16.1
* openCryptoki-debuginfo-3.17.0-150400.4.16.1
## References:
* https://www.suse.com/security/cve/CVE-2026-40253.html
* https://bugzilla.suse.com/show_bug.cgi?id=1262283
